$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/42D62828962711F0B74FEE0CC4F9AE02.roa File: 42D62828962711F0B74FEE0CC4F9AE02.roa (raw, json) Hash identifier: dEqBDGsqeiUN91FwP/nGNGZY5s+Bv1LRGDa/upjDjdI= Subject key identifier: FA:DB:7A:96:B4:E9:9D:18:8B:0D:E5:9F:C2:B2:9E:09:93:82:A1:08 Certificate issuer: /CN=A9199CFF/serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Certificate serial: D7 Authority key identifier: 50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/42D62828962711F0B74FEE0CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:27:56 +0000 ROA not before: Thu 15 Jan 2026 06:24:26 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 153523 IP address blocks: 2001:df4:e940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CFF, serialNumber=50BA63B93F8291295EE47031B96B45CDA5C24B0D Validity Not Before: Jan 15 06:24:26 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a43edc-df50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:3a:64:da:41:32:38:fa:41:57:d4:0c:ae: f7:57:cb:b3:ff:11:e4:33:6c:f9:ed:ed:44:01:2b: b1:53:50:95:a9:6d:21:a5:df:e5:56:5b:37:10:fe: c1:a0:d2:3b:02:bc:02:38:85:0c:5f:29:39:c9:a1: c6:92:13:03:48:3e:97:07:19:cc:32:d9:d8:3e:66: cb:60:04:78:27:1c:69:df:03:b2:b7:23:2d:2a:95: 56:45:62:f0:69:33:9f:21:26:00:2b:57:76:e0:ef: 8d:75:65:92:c8:30:ed:22:67:24:ae:2b:89:07:47: 03:35:b4:b7:1f:27:41:d6:da:0c:50:33:4e:70:22: a5:68:4f:b7:8e:f6:46:7c:6a:81:f9:23:e2:8d:49: e2:8d:0b:df:e3:89:c5:42:d5:da:b3:8f:8e:a8:39: 2d:5d:b1:c0:53:95:f2:b8:c8:07:2b:b7:97:07:5c: 5e:ec:f9:80:ff:8b:1a:68:37:f3:ff:ae:74:e1:c3: e1:67:7e:3e:4b:2a:f4:5c:96:65:66:0b:f0:37:a7: 15:87:af:25:14:92:bb:df:c6:5a:8e:07:06:cb:36: ce:47:40:af:27:95:bd:33:d1:ef:47:6e:cf:7b:1e: e9:86:a2:c2:00:71:91:e9:a8:1b:3b:c7:1e:fd:a3: 04:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:DB:7A:96:B4:E9:9D:18:8B:0D:E5:9F:C2:B2:9E:09:93:82:A1:08 X509v3 Authority Key Identifier: keyid:50:BA:63:B9:3F:82:91:29:5E:E4:70:31:B9:6B:45:CD:A5:C2:4B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/ULpjuT-CkSle5HAxuWtFzaXCSw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ULpjuT-CkSle5HAxuWtFzaXCSw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CFF/2AE16A58D7E011EF8B173D2FC4F9AE02/42D62828962711F0B74FEE0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:e940::/48 Signature Algorithm: sha256WithRSAEncryption d1:b0:17:ff:fc:19:21:7e:6f:56:0f:fd:bc:59:4a:ef:6b:36: c1:59:79:51:58:88:08:cd:20:99:bd:db:99:59:25:b4:e1:6b: db:85:32:3f:cd:0f:7c:bd:4c:a8:2f:cd:40:e3:ac:84:97:ab: 07:9c:3f:ff:b0:4a:a3:41:3d:9f:4b:b0:e4:c6:a4:cb:cb:9f: d0:85:bc:79:4d:55:81:69:7c:46:16:de:e8:75:e2:11:33:0a: 0a:c7:f1:9f:2b:fc:4a:97:a4:57:30:15:49:2e:f9:86:47:05: c1:73:bb:26:aa:fa:ff:82:85:db:52:13:90:ff:6d:ce:4d:bd: 8c:7b:f3:ca:47:4e:7e:00:6b:5d:80:b4:1e:74:0d:81:71:28: ce:f5:90:df:c1:bd:53:8c:28:5f:f2:9d:0f:dc:f7:5a:89:1d: ab:ce:69:4d:d8:33:ad:d1:61:79:0c:32:24:a0:58:96:25:3a: 7f:f5:64:91:6d:48:41:10:f0:cd:c2:79:01:cd:ba:c5:9f:7c: d1:22:ed:bb:fe:21:f4:1b:95:76:fa:fd:30:af:36:51:9e:2e: 16:4e:61:02:74:27:69:b3:36:75:07:7c:2d:27:df:9a:1c:c9: f2:ec:41:33:fe:12:b2:8e:f3:91:cc:00:51:08:1f:34:81:f6: 53:cb:49:7b -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlDRkYxMTAvBgNVBAUTKDUwQkE2M0I5M0Y4MjkxMjk1RUU0NzAzMUI5NkI0NUNE QTVDMjRCMEQwHhcNMjYwMTE1MDYyNDI2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2VkYy1kZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC46ZNpBMjj6QVfUDK73V8uz/xHkM2z57e1EASuxU1CVqW0hpd/lVls3EP7B oNI7ArwCOIUMXyk5yaHGkhMDSD6XBxnMMtnYPmbLYAR4Jxxp3wOytyMtKpVWRWLw aTOfISYAK1d24O+NdWWSyDDtImckriuJB0cDNbS3HydB1toMUDNOcCKlaE+3jvZG fGqB+SPijUnijQvf44nFQtXas4+OqDktXbHAU5XyuMgHK7eXB1xe7PmA/4saaDfz /6504cPhZ34+Syr0XJZlZgvwN6cVh68lFJK738ZajgcGyzbOR0CvJ5W9M9HvR27P ex7phqLCAHGR6agbO8ce/aMEmQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFPrbepa0 6Z0Yiw3ln8KyngmTgqEIMB8GA1UdIwQYMBaAFFC6Y7k/gpEpXuRwMblrRc2lwksN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUNGRi8yQUUxNkE1OEQ3 RTAxMUVGOEIxNzNEMkZDNEY5QUUwMi9VTHBqdVQtQ2tTbGU1SEF4dVd0RnphWENT dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VMcGp1VC1Da1NsZTVIQXh1V3RGemFYQ1N3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlDRkYvMkFFMTZBNThEN0UwMTFFRjhCMTczRDJGQzRGOUFFMDIvNDJENjI4Mjg5 NjI3MTFGMEI3NEZFRTBDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9OlAMA0GCSqGSIb3DQEBCwUAA4IBAQDRsBf//Bkhfm9WD/28 WUrvazbBWXlRWIgIzSCZvduZWSW04WvbhTI/zQ98vUyoL81A46yEl6sHnD//sEqj QT2fS7DkxqTLy5/Qhbx5TVWBaXxGFt7odeIRMwoKx/GfK/xKl6RXMBVJLvmGRwXB c7smqvr/goXbUhOQ/23OTb2Me/PKR05+AGtdgLQedA2BcSjO9ZDfwb1TjChf8p0P 3PdaiR2rzmlN2DOt0WF5DDIkoFiWJTp/9WSRbUhBEPDNwnkBzbrFn3zRIu27/iH0 G5V2+v0wrzZRni4WTmECdCdpszZ1B3wtJ9+aHMny7EEz/hKyjvORzABRCB80gfZT y0l7 -----END CERTIFICATE-----Generated at Mon Mar 2 10:53:24 2026 by rpki-client