$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/12004368A41611EFA0D7CD42C4F9AE02.roa File: 12004368A41611EFA0D7CD42C4F9AE02.roa (raw, json) Hash identifier: Mbaq1JxQwVcFP87z4eBI+1tbhFSk65AD4tx8mWL3NcA= Subject key identifier: E3:55:AF:67:9E:EF:1C:65:75:D7:12:22:03:15:B3:DB:9A:5A:CC:A2 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: F6 Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/12004368A41611EFA0D7CD42C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:47:45 +0000 ROA not before: Sat 13 Dec 2025 05:44:33 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153399 IP address blocks: 2401:d520::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:05:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: Dec 13 05:44:33 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41951-40cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:b8:b7:c6:55:f9:3c:67:3a:d2:75:0d:64:b7: 63:69:ed:b2:6a:ef:16:2b:d6:33:1d:3f:05:5c:a4: b7:94:18:8d:77:8b:13:04:16:a0:9b:7c:f3:12:51: f8:7b:98:36:7b:8c:ab:ee:3b:76:0b:ba:89:f0:84: ae:a6:97:26:a2:33:7d:ea:eb:e4:99:cf:fa:da:1f: 3c:aa:3a:39:b1:1f:26:b6:fb:fd:cc:b8:1f:48:9b: 43:ac:82:37:9d:da:1a:9c:d0:8b:de:ea:7c:de:67: c6:b2:78:34:06:e8:5a:e3:05:71:5d:51:8d:ce:f3: c1:33:2e:cd:98:a3:bb:5c:90:0f:86:4e:03:8d:d5: 25:79:4e:9d:03:d0:0f:42:42:4d:68:d3:0c:a5:5e: 3a:14:6b:7f:f8:13:b9:33:3d:94:24:db:11:87:cb: 78:a5:e4:9f:4d:4c:ae:34:f0:23:70:0c:4c:04:ee: 48:8f:58:44:cb:51:18:d1:3c:71:9c:0a:c5:a9:83: 23:18:58:f4:43:62:ba:6e:b0:8a:46:25:7a:4e:d1: 7b:96:5a:4b:2e:a5:3e:67:05:ad:f6:33:75:44:db: d3:65:1a:7c:ff:9a:c2:d8:d6:19:91:5b:b9:e9:0e: 2f:f0:2e:f3:f8:99:3e:87:fd:00:2a:61:5e:f7:76: ce:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:55:AF:67:9E:EF:1C:65:75:D7:12:22:03:15:B3:DB:9A:5A:CC:A2 X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/12004368A41611EFA0D7CD42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:d520::/32 Signature Algorithm: sha256WithRSAEncryption 41:a8:73:4a:15:77:47:f6:25:3c:28:61:5c:c1:84:e2:e3:d5: a2:65:e5:d7:98:48:4e:a1:f9:21:97:9c:fb:e6:da:9b:9a:af: b5:02:3a:5e:aa:fa:16:20:d0:05:35:13:f5:c1:7a:8d:bb:c0: b4:ed:1d:c6:91:ed:86:01:03:12:9e:4c:01:65:90:3d:45:9e: 44:cd:c6:a6:c4:7b:d5:af:3f:25:74:81:35:b2:42:d7:a7:3f: 99:cb:7c:c9:ca:d4:bd:5a:f4:85:42:5e:8e:0c:a1:46:ba:94: aa:4a:cd:31:a8:1a:d4:54:e5:5f:d6:c1:76:06:20:cb:45:38: 16:36:01:7e:a6:34:84:41:a1:33:7d:6e:08:a4:d2:11:74:1b: fa:1a:62:64:c0:80:86:29:01:31:9b:07:ff:9e:27:5c:0c:3b: ac:e4:a8:89:bd:5b:62:09:e9:87:97:bb:e9:6d:a3:50:46:93: 1c:99:7f:91:f0:d8:3f:e1:84:d3:92:39:04:2b:4e:f8:38:0e: e4:50:2c:6d:29:43:b7:ca:e3:10:c9:de:40:5a:8c:17:9c:7a: 18:48:26:38:6e:73:4e:da:18:47:30:78:1a:a9:4b:3e:ea:dc: bf:df:ae:42:00:44:5c:ab:2f:a5:26:3b:03:b5:87:24:31:cd: 1f:d4:f8:e4 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCRjAxMTAvBgNVBAUTKERCM0RGRDg2Q0VCRkVBRUQzQUFGMTVERUFFRTY5NjUy MzQ3NDZBMjkwHhcNMjUxMjEzMDU0NDMzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTk1MS00MGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhbi3xlX5PGc60nUNZLdjae2yau8WK9YzHT8FXKS3lBiNd4sTBBagm3zzElH4 e5g2e4yr7jt2C7qJ8ISuppcmojN96uvkmc/62h88qjo5sR8mtvv9zLgfSJtDrII3 ndoanNCL3up83mfGsng0Buha4wVxXVGNzvPBMy7NmKO7XJAPhk4DjdUleU6dA9AP QkJNaNMMpV46FGt/+BO5Mz2UJNsRh8t4peSfTUyuNPAjcAxMBO5Ij1hEy1EY0Txx nArFqYMjGFj0Q2K6brCKRiV6TtF7llpLLqU+ZwWt9jN1RNvTZRp8/5rC2NYZkVu5 6Q4v8C7z+Jk+h/0AKmFe93bOpwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFONVr2ee 7xxlddcSIgMVs9uaWsyiMB8GA1UdIwQYMBaAFNs9/YbOv+rtOq8V3q7mllI0dGop MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUJGMC9BNzhGMUIxMkE0 MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1MDZyeFhlcnVhV1VqUjBh aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFCRjAvQTc4RjFCMTJBNDE1MTFFRkExNEZCRDNGQzRGOUFFMDIvMTIwMDQzNjhB NDE2MTFFRkEwRDdDRDQyQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHVIDANBgkqhkiG9w0BAQsFAAOCAQEAQahzShV3R/YlPChhXMGE 4uPVomXl15hITqH5IZec++bam5qvtQI6Xqr6FiDQBTUT9cF6jbvAtO0dxpHthgED Ep5MAWWQPUWeRM3GpsR71a8/JXSBNbJC16c/mct8ycrUvVr0hUJejgyhRrqUqkrN Maga1FTlX9bBdgYgy0U4FjYBfqY0hEGhM31uCKTSEXQb+hpiZMCAhikBMZsH/54n XAw7rOSoib1bYgnph5e76W2jUEaTHJl/kfDYP+GE05I5BCtO+DgO5FAsbSlDt8rj EMneQFqMF5x6GEgmOG5zTtoYRzB4GqlLPurcv9+uQgBEXKsvpSY7A7WHJDHNH9T4 5A== -----END CERTIFICATE-----Generated at Mon Mar 2 22:20:24 2026 by rpki-client