$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa File: C4A85FD48FE811E98B967A66C4F9AE02.roa (raw, json) Hash identifier: Yra/cySrBt0zcZ3P5GOXeK6swd+KmGvdWYxnM5VydGA= Subject key identifier: 70:5C:31:8D:A7:48:A4:E4:F0:84:69:0E:8D:8C:17:7E:5A:F1:E2:BD Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 11EF Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:16:59 +0000 ROA not before: Wed 20 Aug 2025 17:57:34 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24239 IP address blocks: 2404:f4c0:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4591 (0x11ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 20 17:57:34 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4829b-2d68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:4d:69:af:95:8d:b3:21:f8:fb:34:3e:1f:23: 4e:2e:ce:f3:5c:ed:76:58:dc:8e:65:ff:72:0e:93: d0:4f:67:17:8d:8a:bf:8d:05:ae:4c:fe:64:61:1d: 24:1f:ee:10:72:ac:d8:d5:c4:67:51:95:ea:ea:b8: f9:31:b3:c7:9e:39:3f:b6:48:c7:27:09:e4:d9:78: 2c:09:d5:4f:e5:3d:0a:5d:c4:70:4e:ed:7a:42:91: e4:3b:91:13:b1:3b:e9:b6:b5:fd:f5:9e:7a:31:03: b5:eb:9d:3c:6c:05:20:66:03:40:d7:c3:b7:49:35: 89:73:0d:40:09:a0:ef:15:d2:ad:81:5f:09:9d:12: c3:31:1c:e9:06:94:a1:16:dc:22:e1:45:23:e3:4a: eb:0d:7b:30:0a:2c:c1:c6:94:3f:b3:1e:5f:d5:d7: b8:f4:ea:e3:2a:b6:7e:cd:e9:69:c9:c6:99:b0:16: 65:e9:71:3d:be:fc:89:1b:ec:86:40:05:25:1c:88: e1:39:81:8b:2b:44:70:e6:76:4b:53:2e:c3:fd:37: be:3a:86:f8:68:1a:e9:95:9e:f7:67:68:9f:a5:33: 8c:13:a9:7a:4e:6d:a8:cf:a4:d1:b2:1a:33:b5:2b: 1e:7d:7c:25:fa:18:fb:40:e4:ed:dc:76:bf:38:f0: 9f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5C:31:8D:A7:48:A4:E4:F0:84:69:0E:8D:8C:17:7E:5A:F1:E2:BD X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/C4A85FD48FE811E98B967A66C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:f000::/44 Signature Algorithm: sha256WithRSAEncryption 5f:34:c3:f3:ec:a8:94:42:15:58:96:be:75:87:f7:b4:a7:c9: 87:b2:cd:be:82:2a:20:19:5b:00:7e:24:6b:9c:0c:7a:ae:21: 89:87:0c:1f:0b:6d:d4:f6:13:ad:4a:19:04:fc:7f:8a:41:9c: 39:37:da:d4:79:5c:0b:83:65:98:3b:26:05:dc:dd:05:37:c5: 29:e2:b5:97:91:19:5e:7b:b7:6a:88:5a:7b:3d:7f:76:e2:ab: 22:8d:c7:b3:2b:8f:b3:31:9f:d6:9d:f7:e8:d2:31:d4:c0:b4: 45:6b:d7:63:74:15:b6:08:d2:77:41:43:b2:29:95:b0:bf:5e: 3b:17:f0:fc:5f:fc:c2:60:a7:47:c6:78:d8:93:e8:bc:ca:23: 67:d3:ac:96:0a:ea:9d:d8:b2:4b:9f:36:1c:d4:6f:f8:93:77: 74:83:4b:6b:bd:96:5c:b1:96:29:e1:33:d8:68:cd:7d:7d:35: 62:03:7f:da:12:df:0f:e7:71:9c:41:e9:b4:ee:ec:7c:13:e4: 49:25:da:12:5d:bd:8e:f5:ca:80:50:36:ce:04:96:6e:b9:b8: 00:4e:59:3a:15:32:41:4b:aa:fb:f2:f8:79:ee:1b:d9:9a:59: d4:01:d1:b1:36:09:a7:7a:1c:6c:ef:b4:d8:5b:0d:29:80:0a: 10:99:1f:14 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwODIwMTc1NzM0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODI5Yi0yZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlE1pr5WNsyH4+zQ+HyNOLs7zXO12WNyOZf9yDpPQT2cXjYq/jQWuTP5kYR0k H+4QcqzY1cRnUZXq6rj5MbPHnjk/tkjHJwnk2XgsCdVP5T0KXcRwTu16QpHkO5ET sTvptrX99Z56MQO16508bAUgZgNA18O3STWJcw1ACaDvFdKtgV8JnRLDMRzpBpSh Ftwi4UUj40rrDXswCizBxpQ/sx5f1de49OrjKrZ+zelpycaZsBZl6XE9vvyJG+yG QAUlHIjhOYGLK0Rw5nZLUy7D/Te+Oob4aBrplZ73Z2ifpTOME6l6Tm2oz6TRshoz tSsefXwl+hj7QOTt3Ha/OPCf6QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFHBcMY2n SKTk8IRpDo2MF35a8eK9MB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvQzRBODVGRDQ4 RkU4MTFFOThCOTY3QTY2QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAT0wPAAMA0GCSqGSIb3DQEBCwUAA4IBAQBfNMPz7KiUQhVYlr51 h/e0p8mHss2+giogGVsAfiRrnAx6riGJhwwfC23U9hOtShkE/H+KQZw5N9rUeVwL g2WYOyYF3N0FN8Up4rWXkRlee7dqiFp7PX924qsijcezK4+zMZ/Wnffo0jHUwLRF a9djdBW2CNJ3QUOyKZWwv147F/D8X/zCYKdHxnjYk+i8yiNn06yWCuqd2LJLnzYc 1G/4k3d0g0trvZZcsZYp4TPYaM19fTViA3/aEt8P53GcQem07ux8E+RJJdoSXb2O 9cqAUDbOBJZuubgATlk6FTJBS6r78vh57hvZmlnUAdGxNgmnehxs77TYWw0pgAoQ mR8U -----END CERTIFICATE-----Generated at Mon Mar 2 05:42:37 2026 by rpki-client