$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/CDEDB7B4718811F08D1AD867C4F9AE02.roa File: CDEDB7B4718811F08D1AD867C4F9AE02.roa (raw, json) Hash identifier: +l65rbl9thyLekkQbVthWNi6n3HabDmXYb9AjxbOzY4= Subject key identifier: AA:BD:73:E7:E1:C1:A9:64:B5:45:98:D6:42:59:6E:30:84:75:5A:7F Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3A3E Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/CDEDB7B4718811F08D1AD867C4F9AE02.roa Signing time: Sun 01 Mar 2026 21:21:53 +0000 ROA not before: Fri 16 Jan 2026 16:12:56 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 131711 IP address blocks: 2402:1d20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14910 (0x3a3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 16 16:12:56 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4adf1-fdb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ed:46:fe:4a:51:63:01:6e:5c:1c:41:ef:af: 62:f0:99:69:16:49:ce:f3:b4:6a:04:4b:b4:eb:1c: 31:6d:86:71:0c:ee:44:98:9e:cc:71:93:59:8f:d0: d5:45:c9:18:fc:02:53:37:58:28:d8:72:1b:8b:2a: f4:86:ce:d0:a8:10:20:e5:2a:65:fd:9a:7c:11:c3: 05:97:d2:c6:ad:99:ce:d8:53:c5:90:3a:50:b9:26: 38:fd:73:6a:c7:e0:8f:07:02:1c:f0:5f:1d:84:f9: 3b:d7:a6:c4:0c:b0:2f:1e:71:ee:8a:a3:56:ae:a5: 00:dd:23:e0:db:11:bc:b4:7f:b8:d8:71:01:f2:91: 18:15:2c:39:fd:44:c2:03:64:c3:ca:2f:51:9c:21: a5:33:14:cf:4a:50:01:ee:0f:a3:54:87:21:78:4f: 0b:fa:0b:9a:c0:8a:0e:90:95:4c:db:c8:8f:95:9c: 9d:bf:93:8f:02:92:d8:9c:22:d8:88:09:bb:cf:d5: 99:2b:bd:ea:9f:52:3c:7b:cb:d3:28:2d:a7:e3:75: c5:86:c3:60:cd:98:69:25:46:c1:14:1a:d0:6b:c4: aa:d1:71:c4:f0:46:0f:2b:01:89:f3:76:4c:f3:ec: 8d:56:b2:bc:49:83:5f:e6:8b:c7:7e:e4:68:cd:17: af:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:BD:73:E7:E1:C1:A9:64:B5:45:98:D6:42:59:6E:30:84:75:5A:7F X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/CDEDB7B4718811F08D1AD867C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:1d20::/32 Signature Algorithm: sha256WithRSAEncryption 21:17:7e:75:20:33:2a:b5:c3:3e:12:c6:89:69:32:1b:e8:6e: af:3b:45:c1:78:86:5f:ca:ef:89:f8:c4:a9:7d:b1:43:71:a3: 3d:0a:40:68:87:21:37:6a:71:8f:89:3c:21:39:f2:6b:eb:5b: f7:79:13:f8:db:f3:f8:65:7b:0c:41:b3:f9:e9:e1:31:fa:9a: 4a:0a:2d:35:a3:b0:d7:f9:82:a3:80:c2:65:ab:d3:fa:a5:09: d2:1c:35:dc:5f:93:9e:1a:ee:ff:fc:ed:11:dc:83:46:80:4a: 82:fc:24:10:ec:ab:f7:02:ac:e8:47:86:81:4b:96:bf:ee:64: 10:4b:6d:1c:ab:6e:e7:b1:34:ea:8d:8a:24:03:8c:ec:90:8d: 99:09:66:ef:05:33:a5:1f:bf:3c:89:42:86:0c:fe:e1:72:9b: 01:98:10:79:4f:29:a2:88:f9:63:32:4e:2d:6e:e8:e1:bc:bb: 44:14:98:a6:f8:ba:b2:b7:1d:87:5a:22:25:d2:15:a5:90:07: 3d:78:9d:b1:ef:5a:86:8b:1c:80:19:ab:d3:63:1d:57:ea:7f: 47:4c:f6:62:6b:0b:8f:52:c1:d8:39:6b:a6:3a:2b:d6:ad:c4: 84:b2:63:03:7a:ec:03:78:be:14:f3:c1:76:54:18:61:37:50: 44:5b:ec:26 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICOj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjYwMTE2MTYxMjU2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWRmMS1mZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO1G/kpRYwFuXBxB769i8JlpFknO87RqBEu06xwxbYZxDO5EmJ7McZNZj9DV RckY/AJTN1go2HIbiyr0hs7QqBAg5Spl/Zp8EcMFl9LGrZnO2FPFkDpQuSY4/XNq x+CPBwIc8F8dhPk716bEDLAvHnHuiqNWrqUA3SPg2xG8tH+42HEB8pEYFSw5/UTC A2TDyi9RnCGlMxTPSlAB7g+jVIcheE8L+guawIoOkJVM28iPlZydv5OPApLYnCLY iAm7z9WZK73qn1I8e8vTKC2n43XFhsNgzZhpJUbBFBrQa8Sq0XHE8EYPKwGJ83ZM 8+yNVrK8SYNf5ovHfuRozRev6QIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFKq9c+fh walktUWY1kJZbjCEdVp/MB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQ0RFREI3QjQ3 MTg4MTFGMDhEMUFEODY3QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAIdIDANBgkqhkiG9w0BAQsFAAOCAQEAIRd+dSAzKrXDPhLGiWky G+hurztFwXiGX8rvifjEqX2xQ3GjPQpAaIchN2pxj4k8ITnya+tb93kT+Nvz+GV7 DEGz+enhMfqaSgotNaOw1/mCo4DCZavT+qUJ0hw13F+Tnhru//ztEdyDRoBKgvwk EOyr9wKs6EeGgUuWv+5kEEttHKtu57E06o2KJAOM7JCNmQlm7wUzpR+/PIlChgz+ 4XKbAZgQeU8pooj5YzJOLW7o4by7RBSYpvi6srcdh1oiJdIVpZAHPXidse9ahosc gBmr02MdV+p/R0z2YmsLj1LB2Dlrpjor1q3EhLJjA3rsA3i+FPPBdlQYYTdQRFvs Jg== -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:38 2026 by rpki-client