$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/C21FA1CE080511EAA9457C67C4F9AE02.roa File: C21FA1CE080511EAA9457C67C4F9AE02.roa (raw, json) Hash identifier: jlJ7Tld2dLSNm+vxLU+DB4uapMo/I9nK2H7uiQod+hI= Subject key identifier: 33:B8:D9:76:9C:82:E6:23:51:DC:2F:D9:A4:B3:B6:07:2A:24:EC:D9 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 146A Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/C21FA1CE080511EAA9457C67C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:14:07 +0000 ROA not before: Sat 20 Dec 2025 17:14:33 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139263 IP address blocks: 2403:cfc0:1011::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:14:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5226 (0x146a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Dec 20 17:14:33 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a58d1f-d48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:3e:f4:14:49:89:1a:2e:90:b6:b2:91:ba:d7: d9:88:44:f4:c7:cc:60:33:77:f9:8a:4a:17:8f:b1: 07:9c:14:19:0f:7f:2c:12:4c:a6:75:c9:d9:99:b3: 5b:5d:59:df:76:50:20:c2:17:41:11:d9:01:ff:e1: dd:f7:86:5a:0d:b2:3f:53:a9:4e:0b:45:88:24:70: 56:51:aa:e6:e3:1b:4e:01:f8:48:d9:46:15:c3:e1: c0:e1:e9:ae:82:4d:e0:a4:64:20:3d:46:76:cd:b2: 68:e4:f3:84:73:28:92:3c:4b:6e:fa:92:fb:61:e9: e2:df:47:73:bb:25:c4:40:dc:bf:d7:26:6c:42:c8: c0:ef:1f:c4:03:31:51:36:61:e3:74:b6:a0:2b:a2: af:47:0d:73:d7:39:a8:93:be:92:d6:4d:ee:97:c4: 3f:90:6b:40:ac:2f:f8:87:f7:3f:dc:31:84:6f:5b: 77:c7:c5:4a:f3:32:8c:8d:aa:31:5b:67:90:b2:22: 3f:02:b0:56:b7:3c:eb:59:dd:fb:bd:3a:c7:49:44: c7:e7:06:d8:8f:0f:cc:fc:f1:e6:36:fd:24:da:9b: 98:95:f9:20:91:03:f5:6a:bd:eb:64:63:ff:fa:ff: a0:4e:0e:20:15:3c:4b:1c:ca:6f:78:d1:bc:10:7b: c0:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:B8:D9:76:9C:82:E6:23:51:DC:2F:D9:A4:B3:B6:07:2A:24:EC:D9 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/C21FA1CE080511EAA9457C67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:cfc0:1011::/48 Signature Algorithm: sha256WithRSAEncryption 31:96:39:81:ce:9c:7d:85:48:a0:75:e1:e9:05:7a:46:90:9d: e3:e9:53:64:42:03:d7:06:ef:a5:a1:a3:7c:92:83:a0:27:ba: 4a:ea:67:e3:27:9b:d5:09:2a:7b:76:96:b1:ba:1c:6b:e3:ec: 09:1e:da:d3:6c:01:68:fe:df:ea:13:91:13:d9:1c:9a:5d:c1: 54:ea:32:3a:a7:c8:e5:5d:d6:fe:f6:13:b4:a5:d6:70:d6:1a: 2a:d7:bf:05:df:0d:95:3c:26:0f:7d:8f:0c:25:c6:c4:ce:c3: cd:a8:a5:cf:8d:c4:14:37:67:86:24:4a:05:c7:ee:32:a7:b5: 7a:89:e1:80:3c:fa:93:80:77:f4:11:35:66:ab:e8:e4:81:be: e8:7c:ba:fd:32:f6:47:9b:d2:30:c7:1f:88:47:37:e1:7a:a0: 5e:85:0a:d8:f0:cd:18:42:35:9f:25:80:7d:d9:79:d6:aa:ee: 2c:07:4d:aa:fc:5e:77:74:7c:0b:60:b5:41:1f:58:22:0a:cb: 8f:bf:d0:d4:de:dd:34:8d:a1:33:0d:3c:10:9c:86:02:4c:4b: d5:bb:1a:e9:3b:b7:c2:64:bc:e4:72:3f:77:31:00:fe:66:d9: dd:f6:12:98:f1:d0:ae:12:df:09:14:84:24:68:01:44:ed:be: b0:6f:82:fa -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICFGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUxMjIwMTcxNDMzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGQxZi1kNDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqD70FEmJGi6QtrKRutfZiET0x8xgM3f5ikoXj7EHnBQZD38sEkymdcnZmbNb XVnfdlAgwhdBEdkB/+Hd94ZaDbI/U6lOC0WIJHBWUarm4xtOAfhI2UYVw+HA4emu gk3gpGQgPUZ2zbJo5POEcyiSPEtu+pL7Yeni30dzuyXEQNy/1yZsQsjA7x/EAzFR NmHjdLagK6KvRw1z1zmok76S1k3ul8Q/kGtArC/4h/c/3DGEb1t3x8VK8zKMjaox W2eQsiI/ArBWtzzrWd37vTrHSUTH5wbYjw/M/PHmNv0k2puYlfkgkQP1ar3rZGP/ +v+gTg4gFTxLHMpveNG8EHvAyQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFDO42Xac guYjUdwv2aSztgcqJOzZMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEQUUvNjE2NjZDMEVENjg5MTFFOEI2ODExNDMzQzRGOUFFMDIvQzIxRkExQ0Uw ODA1MTFFQUE5NDU3QzY3QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAPPwBARMA0GCSqGSIb3DQEBCwUAA4IBAQAxljmBzpx9hUigdeHp BXpGkJ3j6VNkQgPXBu+loaN8koOgJ7pK6mfjJ5vVCSp7dpaxuhxr4+wJHtrTbAFo /t/qE5ET2RyaXcFU6jI6p8jlXdb+9hO0pdZw1hoq178F3w2VPCYPfY8MJcbEzsPN qKXPjcQUN2eGJEoFx+4yp7V6ieGAPPqTgHf0ETVmq+jkgb7ofLr9MvZHm9Iwxx+I RzfheqBehQrY8M0YQjWfJYB92XnWqu4sB02q/F53dHwLYLVBH1giCsuPv9DU3t00 jaEzDTwQnIYCTEvVuxrpO7fCZLzkcj93MQD+Ztnd9hKY8dCuEt8JFIQkaAFE7b6w b4L6 -----END CERTIFICATE-----Generated at Mon Mar 2 18:09:10 2026 by rpki-client