$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/22EA7FCC21F111EC85C6186EC4F9AE02.roa File: 22EA7FCC21F111EC85C6186EC4F9AE02.roa (raw, json) Hash identifier: /7PTvNPgcLFfY00Vee6zJv3ylRwVj0RmOnfrCcAUvZk= Subject key identifier: 85:75:35:9C:BD:E3:F6:52:91:12:BD:70:A1:D3:89:86:77:1A:86:FF Certificate issuer: /CN=A919F0DA/serialNumber=94D587B6E75BF108AF5B424922C4A8BAAB3EE946 Certificate serial: 0879 Authority key identifier: 94:D5:87:B6:E7:5B:F1:08:AF:5B:42:49:22:C4:A8:BA:AB:3E:E9:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/22EA7FCC21F111EC85C6186EC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:21:52 +0000 ROA not before: Wed 30 Jul 2025 14:20:12 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55824 IP address blocks: 2001:4408:4300::/45 maxlen: 45 2001:4408:4508::/45 maxlen: 45 2001:4408:4d00::/45 maxlen: 45 2001:4408:4d08::/48 maxlen: 48 2001:4408:5b00::/45 maxlen: 45 2001:4408:6700::/45 maxlen: 45 2001:4408:6700::/48 maxlen: 48 2001:4408:6701::/48 maxlen: 48 2001:4408:6708::/45 maxlen: 45 2001:4408:6d00::/45 maxlen: 45 2001:4408:6d08::/45 maxlen: 45 2001:4408:8508::/45 maxlen: 45 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.crl rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0DA, serialNumber=94D587B6E75BF108AF5B424922C4A8BAAB3EE946 Validity Not Before: Jul 30 14:20:12 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a491d0-a64f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8e:5e:fd:23:58:3a:d1:24:c5:11:9d:0a:14: e9:73:a4:19:83:1b:da:0b:ea:bc:2c:fb:9f:4d:11: 86:a3:12:6f:d3:15:dd:9c:0b:b9:0e:6d:3d:bb:6a: 4a:d3:3b:9d:98:5d:d6:9e:ab:d9:67:ba:e1:97:89: 17:0c:32:4d:2e:ae:94:2c:25:79:65:71:c4:01:6c: 8e:b0:c7:67:15:0a:48:fa:9f:16:8e:1e:0f:f7:59: c0:d8:98:21:88:26:f8:36:78:6e:18:2f:59:77:06: 8f:8b:6b:33:ea:92:16:fe:29:f8:d3:a3:dd:60:17: a2:a3:12:0c:5e:08:c0:59:c2:f2:2d:58:d5:2c:a2: 20:68:50:c9:d4:96:04:72:98:27:a6:80:de:fb:ac: a8:a2:77:3c:04:3f:53:ef:f5:35:15:3d:2d:44:d4: b8:92:0e:c0:50:79:21:60:e7:63:29:55:86:04:9f: 9d:24:4c:2d:2f:38:75:8d:35:b0:fe:73:c3:da:a4: e5:35:e0:17:97:3e:d3:c0:3f:b6:53:3e:d4:1e:58: 66:3b:5b:9a:9b:e6:10:d3:58:80:d2:c1:d2:4a:e4: 93:51:bb:c3:77:61:d5:1d:95:2a:c1:4f:3e:ed:0b: 49:c9:b9:e0:62:d0:de:bd:d0:d7:f9:50:97:71:5d: 38:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:75:35:9C:BD:E3:F6:52:91:12:BD:70:A1:D3:89:86:77:1A:86:FF X509v3 Authority Key Identifier: keyid:94:D5:87:B6:E7:5B:F1:08:AF:5B:42:49:22:C4:A8:BA:AB:3E:E9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/lNWHtudb8QivW0JJIsSouqs-6UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lNWHtudb8QivW0JJIsSouqs-6UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0DA/150D3EF41D6811E28C1828A408B02CD2/22EA7FCC21F111EC85C6186EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:4408:4300::/45 2001:4408:4508::/45 2001:4408:4d00::-2001:4408:4d08:ffff:ffff:ffff:ffff:ffff 2001:4408:5b00::/45 2001:4408:6700::/44 2001:4408:6d00::/44 2001:4408:8508::/45 Signature Algorithm: sha256WithRSAEncryption a1:e3:08:b2:05:90:fb:a9:1d:6a:fb:00:81:fe:02:5c:f5:fd: 1e:24:84:c9:82:a2:db:97:9e:db:6b:4d:4f:08:8c:be:be:9f: 4a:83:7d:b1:e8:7b:e0:86:d7:ac:72:aa:8d:2a:c5:d4:e7:d0: 23:de:da:af:ec:ef:8e:a0:95:21:30:a6:50:d2:e4:e3:48:35: 65:b8:03:ef:74:01:c1:15:2b:b8:c0:f8:61:6b:fe:a1:e3:d2: d6:ea:03:2b:37:ed:df:4e:90:e3:5b:73:64:2a:bf:98:51:30: 61:18:36:60:15:19:c4:94:aa:fb:0b:65:80:4f:33:30:6b:64: 3b:47:29:bb:73:dc:c2:92:a9:dc:3b:78:d1:f0:d9:d7:6b:e9: 82:37:65:01:dc:8d:44:81:16:a3:e9:6b:a9:db:66:54:72:da: ff:30:e0:45:16:03:e0:1f:d3:69:2c:27:e1:3c:01:bb:31:55: 56:17:db:ca:70:ac:ce:23:4b:09:0a:7e:3b:15:9d:2e:b1:58: 16:16:ce:bf:bb:83:18:d6:98:2b:76:e3:a3:f7:56:df:b2:82: fe:81:9a:c9:27:27:6a:0c:d0:cb:98:2d:88:d2:d8:4e:f4:9a: fe:c6:d3:b1:f4:0a:5c:f0:55:e8:df:06:a7:b3:33:2c:94:4a: b6:9a:53:ca -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwREExMTAvBgNVBAUTKDk0RDU4N0I2RTc1QkYxMDhBRjVCNDI0OTIyQzRBOEJB QUIzRUU5NDYwHhcNMjUwNzMwMTQyMDEyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTFkMC1hNjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnI5e/SNYOtEkxRGdChTpc6QZgxvaC+q8LPufTRGGoxJv0xXdnAu5Dm09u2pK 0zudmF3WnqvZZ7rhl4kXDDJNLq6ULCV5ZXHEAWyOsMdnFQpI+p8Wjh4P91nA2Jgh iCb4NnhuGC9ZdwaPi2sz6pIW/in406PdYBeioxIMXgjAWcLyLVjVLKIgaFDJ1JYE cpgnpoDe+6yoonc8BD9T7/U1FT0tRNS4kg7AUHkhYOdjKVWGBJ+dJEwtLzh1jTWw /nPD2qTlNeAXlz7TwD+2Uz7UHlhmO1uam+YQ01iA0sHSSuSTUbvDd2HVHZUqwU8+ 7QtJybngYtDevdDX+VCXcV04/wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFIV1NZy9 4/ZSkRK9cKHTiYZ3Gob/MB8GA1UdIwQYMBaAFJTVh7bnW/EIr1tCSSLEqLqrPulG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBEQS8xNTBEM0VGNDFE NjgxMUUyOEMxODI4QTQwOEIwMkNEMi9sTldIdHVkYjhRaXZXMEpKSXNTb3Vxcy02 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xOV0h0dWRiOFFpdlcwSkpJc1NvdXFzLTZVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwREEvMTUwRDNFRjQxRDY4MTFFMjhDMTgyOEE0MDhCMDJDRDIvMjJFQTdGQ0My MUYxMTFFQzg1QzYxODZFQzRGOUFFMDIucm9hMGIGCCsGAQUFBwEHAQH/BFMwUTBP BAIAAjBJAwcDIAFECEMAAwcDIAFECEUIMBEDBgAgAUQITQMHACABRAhNCAMHAyAB RAhbAAMHBCABRAhnAAMHBCABRAhtAAMHAyABRAiFCDANBgkqhkiG9w0BAQsFAAOC AQEAoeMIsgWQ+6kdavsAgf4CXPX9HiSEyYKi25ee22tNTwiMvr6fSoN9seh74IbX rHKqjSrF1OfQI97ar+zvjqCVITCmUNLk40g1ZbgD73QBwRUruMD4YWv+oePS1uoD Kzft306Q41tzZCq/mFEwYRg2YBUZxJSq+wtlgE8zMGtkO0cpu3PcwpKp3Dt40fDZ 12vpgjdlAdyNRIEWo+lrqdtmVHLa/zDgRRYD4B/TaSwn4TwBuzFVVhfbynCsziNL CQp+OxWdLrFYFhbOv7uDGNaYK3bjo/dW37KC/oGayScnagzQy5gtiNLYTvSa/sbT sfQKXPBV6N8Gp7MzLJRKtppTyg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:35:45 2026 by rpki-client