$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/F552E6BA05A111F082D17325C4F9AE02.roa File: F552E6BA05A111F082D17325C4F9AE02.roa (raw, json) Hash identifier: 50HTgUj8BYD/Up0LzcZVR1qzl5yUcfq0/gOWZsXxQLA= Subject key identifier: 68:E2:C1:92:98:F6:E3:ED:4E:4B:48:6C:36:C9:E0:0C:EA:10:37:59 Certificate issuer: /CN=A9167FBA/serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Certificate serial: BD Authority key identifier: 15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/F552E6BA05A111F082D17325C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:24:42 +0000 ROA not before: Tue 09 Dec 2025 04:43:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153469 IP address blocks: 2401:dce0::/32 maxlen: 32 2401:dce0::/48 maxlen: 48 2401:dce0:1::/48 maxlen: 48 2401:dce0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:24:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=153C98D3313CC64EDB9AE15ABA3B543E48045990 Validity Not Before: Dec 9 04:43:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a58f9a-19d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:39:0c:79:3d:f6:8e:22:24:1f:5c:dd:a3:01: 8c:14:bb:49:81:dc:f8:17:45:1d:87:62:5d:02:ea: 3e:75:41:2f:56:9e:03:6d:df:49:92:e6:92:1f:db: b7:21:26:fb:f4:92:e9:2e:28:e8:00:af:e9:cf:e6: 88:bd:ef:bc:63:38:ee:62:c8:a8:10:dc:93:c7:f4: 8b:df:c6:9b:da:79:d5:7d:81:4b:e8:78:bb:0a:a1: 41:48:3a:e5:9d:03:87:09:66:82:17:51:e7:f8:3a: 85:b0:93:38:e4:8e:ce:b3:58:a7:3a:ad:48:da:27: b5:77:52:ad:82:a7:61:45:80:f8:37:8f:ca:ae:a5: a2:b9:1f:89:6b:06:32:ce:9d:1b:c7:d9:6e:b1:f1: 96:b3:0d:e2:b0:64:e2:d0:dc:68:d0:14:27:e9:b0: c0:aa:fd:fa:c1:13:ca:87:61:e5:29:b8:2a:0e:b8: 9c:58:a7:c3:08:d2:07:29:a6:d6:c6:7f:3b:0d:30: 04:f7:5f:c1:b5:1f:37:0d:de:54:ce:b7:dc:c0:f5: a6:bf:ee:2c:6d:b5:c4:39:cf:ad:f5:fb:b8:4a:b5: 6a:10:25:c8:9d:1c:2a:45:41:39:41:b3:6c:12:1e: 8a:83:4c:fe:65:05:a5:07:f2:0e:3e:29:48:82:2b: 53:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E2:C1:92:98:F6:E3:ED:4E:4B:48:6C:36:C9:E0:0C:EA:10:37:59 X509v3 Authority Key Identifier: keyid:15:3C:98:D3:31:3C:C6:4E:DB:9A:E1:5A:BA:3B:54:3E:48:04:59:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/FTyY0zE8xk7bmuFaujtUPkgEWZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTyY0zE8xk7bmuFaujtUPkgEWZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/4B6E00FC048F11F0872E8547C4F9AE02/F552E6BA05A111F082D17325C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:dce0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:73:e9:5b:5a:f8:13:79:59:f2:fc:f3:41:b8:00:ad:47:d1: d4:c8:e3:6b:de:4b:60:9a:64:10:8a:3c:f6:24:ba:14:26:57: b6:8a:5e:74:56:45:2b:ed:a9:a8:97:02:e2:4c:6c:00:68:35: 89:87:e6:64:24:48:78:ac:11:e9:14:df:dc:da:f7:67:08:40: 99:3a:bd:c1:3a:f2:63:62:7b:8f:10:38:51:2f:c9:11:cd:f4: f5:7a:b2:c7:77:a2:e1:97:4d:52:db:0d:56:1b:19:00:dd:96: 23:b2:2f:70:70:71:ef:eb:71:4e:66:52:61:cc:5e:1b:95:fe: 6b:78:ef:06:12:c3:b3:00:93:ea:19:6e:56:ed:4d:c5:61:ae: 17:0a:58:67:23:69:60:e8:bc:e1:1b:67:cc:88:b9:ef:41:50: 5a:1a:72:5c:83:a1:85:2a:2a:4b:8a:92:0b:77:8c:19:3f:19: 95:44:24:82:2a:2e:c5:a7:30:77:36:49:f4:fc:32:d3:a3:7f: 88:d5:2e:8c:d4:00:18:f6:c1:7e:7d:19:91:01:7c:e3:ba:90: f8:6b:50:79:e4:be:1d:c2:99:e0:fc:95:95:a2:c9:95:43:cc: 4c:ce:da:cd:a6:d1:5c:db:97:d0:a4:f6:6c:89:8d:64:97:ce: 48:69:e5:d1 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGQkExMTAvBgNVBAUTKDE1M0M5OEQzMzEzQ0M2NEVEQjlBRTE1QUJBM0I1NDNF NDgwNDU5OTAwHhcNMjUxMjA5MDQ0MzUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGY5YS0xOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljkMeT32jiIkH1zdowGMFLtJgdz4F0Udh2JdAuo+dUEvVp4Dbd9JkuaSH9u3 ISb79JLpLijoAK/pz+aIve+8YzjuYsioENyTx/SL38ab2nnVfYFL6Hi7CqFBSDrl nQOHCWaCF1Hn+DqFsJM45I7Os1inOq1I2ie1d1KtgqdhRYD4N4/KrqWiuR+JawYy zp0bx9lusfGWsw3isGTi0Nxo0BQn6bDAqv36wRPKh2HlKbgqDricWKfDCNIHKabW xn87DTAE91/BtR83Dd5UzrfcwPWmv+4sbbXEOc+t9fu4SrVqECXInRwqRUE5QbNs Eh6Kg0z+ZQWlB/IOPilIgitTjQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFGjiwZKY 9uPtTktIbDbJ4AzqEDdZMB8GA1UdIwQYMBaAFBU8mNMxPMZO25rhWro7VD5IBFmQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZCQS80QjZFMDBGQzA0 OEYxMUYwODcyRTg1NDdDNEY5QUUwMi9GVHlZMHpFOHhrN2JtdUZhdWp0VVBrZ0VX WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUeVkwekU4eGs3Ym11RmF1anRVUGtnRVdaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdGQkEvNEI2RTAwRkMwNDhGMTFGMDg3MkU4NTQ3QzRGOUFFMDIvRjU1MkU2QkEw NUExMTFGMDgyRDE3MzI1QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHc4DANBgkqhkiG9w0BAQsFAAOCAQEAWnPpW1r4E3lZ8vzzQbgA rUfR1Mjja95LYJpkEIo89iS6FCZXtopedFZFK+2pqJcC4kxsAGg1iYfmZCRIeKwR 6RTf3Nr3ZwhAmTq9wTryY2J7jxA4US/JEc309Xqyx3ei4ZdNUtsNVhsZAN2WI7Iv cHBx7+txTmZSYcxeG5X+a3jvBhLDswCT6hluVu1NxWGuFwpYZyNpYOi84RtnzIi5 70FQWhpyXIOhhSoqS4qSC3eMGT8ZlUQkgiouxacwdzZJ9Pwy06N/iNUujNQAGPbB fn0ZkQF847qQ+GtQeeS+HcKZ4PyVlaLJlUPMTM7azabRXNuX0KT2bImNZJfOSGnl 0Q== -----END CERTIFICATE-----Generated at Mon Mar 2 19:40:56 2026 by rpki-client