$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CD00AFA60B7111EF96420153C4F9AE02.roa File: CD00AFA60B7111EF96420153C4F9AE02.roa (raw, json) Hash identifier: 70/VhIPOf2grVO02kYyrU3o7P/3H8S0kks18zVD9AxQ= Subject key identifier: 37:00:E8:54:3B:AB:D6:BC:16:B8:4A:36:5A:1F:27:95:44:EC:C3:FB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D769 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CD00AFA60B7111EF96420153C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:49:59 +0000 ROA not before: Thu 08 May 2025 16:25:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150581 IP address blocks: 2401:9120::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55145 (0xd769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:25:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4c297-7af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2d:6b:62:b1:1d:89:21:53:05:9c:33:b0:96: dd:07:31:90:9d:7e:25:28:40:04:e6:f6:b8:f7:a4: 42:71:ef:a3:87:0e:e4:5e:75:5a:aa:23:52:8d:5e: 77:b5:81:b4:62:8a:b3:d6:a4:5f:32:4f:ff:d0:93: 07:2b:bb:16:ab:24:b6:4d:90:0e:83:1b:fa:36:2b: c4:f2:d1:a3:d4:4e:8b:8c:93:3d:e8:18:10:d2:af: 96:8a:c9:7d:11:ae:86:60:b1:51:a3:ce:4e:e4:47: e1:58:ac:5b:93:ad:d7:a6:e2:63:70:d7:4f:0b:bd: cd:2c:db:1b:c0:04:26:08:c8:bd:0d:41:ef:a5:b3: 9a:9a:74:41:f1:e7:9d:5a:0e:da:1a:0d:4e:b5:ee: c2:41:2e:12:38:c8:ab:7d:79:3b:11:56:58:b7:e4: 86:69:f0:c8:3f:61:45:8a:1e:d4:a7:2a:80:90:40: 65:25:e1:96:a0:6f:94:41:9b:0f:19:04:cb:f3:f5: 72:81:38:99:93:71:0e:34:9f:34:a5:e8:5d:d1:14: 8a:e2:ea:28:f4:6f:20:72:07:6d:a1:bf:54:18:be: 48:5d:76:a2:f9:7e:6c:8b:8f:c1:0c:56:f8:ed:cd: 0d:43:7c:db:20:6b:f0:41:96:d4:0f:4b:d4:70:20: 01:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:00:E8:54:3B:AB:D6:BC:16:B8:4A:36:5A:1F:27:95:44:EC:C3:FB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/CD00AFA60B7111EF96420153C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:9120::/32 Signature Algorithm: sha256WithRSAEncryption b7:db:f7:d7:b6:3a:d9:e1:3d:c6:db:ba:4d:71:bf:78:f7:4b: 8f:34:1f:5e:2c:8b:0a:4c:7f:4a:fd:3f:c7:59:37:b8:61:3c: ae:eb:eb:40:bd:2e:be:0c:a5:96:42:cc:4f:5a:ca:90:b7:8c: cd:23:b2:c4:c5:83:b4:c4:98:f5:93:f1:f7:7f:c8:86:12:4d: a0:4a:cc:4f:af:d5:47:1b:5d:37:d3:c1:f1:62:25:9d:a6:66: 2c:53:3b:80:23:e4:ce:00:2e:72:63:88:bf:2f:b8:bf:fa:d4: eb:af:9d:ae:f7:42:20:60:07:0e:d1:76:1c:48:a6:15:bc:c0: 44:57:fb:63:5c:a5:31:c5:0b:31:6a:60:cd:9e:4b:38:5a:f1: a3:40:0e:ba:32:1f:54:57:0f:cb:46:7a:a9:bd:27:54:81:c7: 5d:cd:a2:0d:50:bc:ee:ef:aa:7b:fb:b1:06:07:e1:4f:32:ae: 36:54:df:71:b4:7a:31:c3:d5:54:82:12:40:7a:94:1d:46:35: 07:00:59:94:8c:4f:f1:44:99:c7:1f:6a:b4:b3:51:06:0d:93: 87:7f:52:0f:ea:9c:d4:86:54:b6:e1:40:4e:92:08:37:58:33: c6:43:d9:66:9b:12:af:62:fd:18:d8:31:52:80:04:8d:85:28: 98:25:a2:f9 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIDANdpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjUwOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGMyOTctN2FmODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM8ta2KxHYkhUwWcM7CW3QcxkJ1+JShABOb2uPekQnHvo4cO5F51WqojUo1e d7WBtGKKs9akXzJP/9CTByu7Fqsktk2QDoMb+jYrxPLRo9ROi4yTPegYENKvlorJ fRGuhmCxUaPOTuRH4VisW5Ot16biY3DXTwu9zSzbG8AEJgjIvQ1B76Wzmpp0QfHn nVoO2hoNTrXuwkEuEjjIq315OxFWWLfkhmnwyD9hRYoe1KcqgJBAZSXhlqBvlEGb DxkEy/P1coE4mZNxDjSfNKXoXdEUiuLqKPRvIHIHbaG/VBi+SF12ovl+bIuPwQxW +O3NDUN82yBr8EGW1A9L1HAgAaECAwEAAaOCAmEwggJdMB0GA1UdDgQWBBQ3AOhU O6vWvBa4SjZaHyeVROzD+zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0NEMDBBRkE2 MEI3MTExRUY5NjQyMDE1M0M0RjlBRTAyLnJvYTAgBggrBgEFBQcBBwEB/wQRMA8w DQQCAAIwBwMFACQBkSAwDQYJKoZIhvcNAQELBQADggEBALfb99e2OtnhPcbbuk1x v3j3S480H14siwpMf0r9P8dZN7hhPK7r60C9Lr4MpZZCzE9aypC3jM0jssTFg7TE mPWT8fd/yIYSTaBKzE+v1UcbXTfTwfFiJZ2mZixTO4Aj5M4ALnJjiL8vuL/61Ouv na73QiBgBw7RdhxIphW8wERX+2NcpTHFCzFqYM2eSzha8aNADroyH1RXD8tGeqm9 J1SBx13Nog1QvO7vqnv7sQYH4U8yrjZU33G0ejHD1VSCEkB6lB1GNQcAWZSMT/FE mccfarSzUQYNk4d/Ug/qnNSGVLbhQE6SCDdYM8ZD2WabEq9i/RjYMVKABI2FKJgl ovk= -----END CERTIFICATE-----Generated at Mon Mar 2 11:08:59 2026 by rpki-client