$ rpki-client -vvf rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa File: 0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa (raw, json) Hash identifier: zpf55g2EZGmJ8domoDiH0XWR0tTe31ZdyOLgVVw44Oo= Subject key identifier: F8:6A:AC:DD:F8:8A:65:D5:C1:AF:CB:6C:D4:71:E7:93:B9:29:2B:CC Certificate issuer: /CN=A9118749/serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Certificate serial: DA Authority key identifier: 95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:58:23 +0000 ROA not before: Fri 29 Aug 2025 07:56:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 206804 IP address blocks: 2401:eaa0:1::/48 maxlen: 48 2401:eaa0:2::/48 maxlen: 48 2401:eaa0:3::/48 maxlen: 48 2401:eaa0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:49:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118749, serialNumber=95459D5D1EB04095FD163F0D84D1F3A46C15E4F0 Validity Not Before: Aug 29 07:56:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5977f-2323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c1:c8:0e:92:45:48:bc:a4:c1:28:0f:cc:6e: d5:ca:c9:6e:42:e2:4a:7a:d2:bd:f1:27:fa:c4:e0: 14:59:14:21:49:9b:6e:42:30:1a:ba:cc:04:27:44: 47:7e:aa:b3:d0:59:9c:99:79:24:3d:3f:c1:5b:16: 18:60:be:77:ea:b0:d2:31:62:00:d3:a3:94:f6:1a: c8:b5:da:24:5a:c1:93:ec:49:2a:fb:1a:29:03:71: 45:88:90:8b:0b:b7:9d:a4:ef:bc:63:80:c9:49:8b: 82:95:99:84:89:fa:ab:20:27:41:19:07:35:c8:2c: 9f:61:ad:10:be:11:d4:a8:52:03:bd:e3:97:ef:77: b0:ee:d0:58:0d:7f:31:60:f5:4e:54:66:1b:78:82: 9b:53:38:d1:ba:8f:27:40:9f:a5:e1:ad:b4:41:b8: ac:cb:1a:ac:3c:bc:48:1b:2b:1f:b2:03:02:8a:96: 9a:1b:78:7c:6e:8b:cb:73:17:f8:d8:29:8e:f2:d2: 54:f6:83:c7:eb:2a:a5:94:c1:fd:8c:8c:07:c7:64: fd:f7:a3:0b:c2:f8:2e:d4:64:66:08:1f:99:10:28: bd:fb:bf:85:b6:9f:4d:74:ef:34:21:b8:ec:e9:ea: 28:d9:1b:17:a8:24:bc:f3:41:81:c1:e4:6c:34:66: 56:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:6A:AC:DD:F8:8A:65:D5:C1:AF:CB:6C:D4:71:E7:93:B9:29:2B:CC X509v3 Authority Key Identifier: keyid:95:45:9D:5D:1E:B0:40:95:FD:16:3F:0D:84:D1:F3:A4:6C:15:E4:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUWdXR6wQJX9Fj8NhNHzpGwV5PA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118749/BA57DBA6DC2011EF91B5401EC4F9AE02/0D9D8C8CDC2311EFAEB2F679C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:eaa0:1::-2401:eaa0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 66:00:66:3a:26:9e:77:bb:22:3d:b9:85:88:33:62:9e:fc:22: 2d:1c:f5:65:7a:f0:15:65:d1:c0:dd:56:6d:1a:25:55:5f:c3: 57:ac:f0:f1:ed:a4:bd:0d:cf:b9:a2:03:47:c4:30:ee:ba:a2: 31:30:dd:ea:1e:93:e6:40:1c:b1:e9:7a:8f:fb:5b:4b:46:ad: 80:68:fc:1b:9e:9b:ef:00:ba:28:b8:62:01:a7:8e:ec:33:78: c9:aa:f6:f3:98:bc:5a:c8:c1:c2:d4:2d:03:76:ad:dd:01:7e: f1:36:a0:fd:69:ee:af:0b:55:bf:52:ec:97:7f:05:17:08:d3: fe:b8:2d:71:f2:e5:14:f2:19:55:2b:6f:00:75:01:75:29:c8: 1d:66:04:1c:b8:a5:e3:24:ae:76:40:34:2a:d9:07:d9:a5:7c: 51:71:10:88:59:47:45:7e:fb:b1:5c:c9:b7:31:24:ce:59:e7: 5e:d2:6c:8e:23:49:63:2a:f2:f1:eb:d5:fc:34:38:8a:05:d8: d4:6f:7c:3d:39:74:4f:2b:6e:98:4d:9a:dc:c0:bf:f8:cc:e4: fe:2c:68:5e:74:1d:a7:ce:c5:78:43:51:a2:2a:4b:8f:e0:23: 9b:91:f9:97:a8:3e:1d:c5:e6:0c:1d:2d:d0:91:e1:e1:31:64: 6f:40:51:9d -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3NDkxMTAvBgNVBAUTKDk1NDU5RDVEMUVCMDQwOTVGRDE2M0YwRDg0RDFGM0E0 NkMxNUU0RjAwHhcNMjUwODI5MDc1NjM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTc3Zi0yMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcHIDpJFSLykwSgPzG7VysluQuJKetK98Sf6xOAUWRQhSZtuQjAauswEJ0RH fqqz0FmcmXkkPT/BWxYYYL536rDSMWIA06OU9hrItdokWsGT7Ekq+xopA3FFiJCL C7edpO+8Y4DJSYuClZmEifqrICdBGQc1yCyfYa0QvhHUqFIDveOX73ew7tBYDX8x YPVOVGYbeIKbUzjRuo8nQJ+l4a20QbisyxqsPLxIGysfsgMCipaaG3h8bovLcxf4 2CmO8tJU9oPH6yqllMH9jIwHx2T996MLwvgu1GRmCB+ZECi9+7+Ftp9NdO80Ibjs 6eoo2RsXqCS880GBweRsNGZWxwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFPhqrN34 imXVwa/LbNRx55O5KSvMMB8GA1UdIwQYMBaAFJVFnV0esECV/RY/DYTR86RsFeTw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODc0OS9CQTU3REJBNkRD MjAxMUVGOTFCNTQwMUVDNEY5QUUwMi9sVVdkWFI2d1FKWDlGajhOaE5IenBHd1Y1 UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVV2RYUjZ3UUpYOUZqOE5oTkh6cEd3VjVQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg3NDkvQkE1N0RCQTZEQzIwMTFFRjkxQjU0MDFFQzRGOUFFMDIvMEQ5RDhDOENE QzIzMTFFRkFFQjJGNjc5QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAAjAUMBIDBwAkAeqgAAEDBwAkAeqgAAQwDQYJKoZIhvcNAQELBQADggEBAGYA Zjomnne7Ij25hYgzYp78Ii0c9WV68BVl0cDdVm0aJVVfw1es8PHtpL0Nz7miA0fE MO66ojEw3eoek+ZAHLHpeo/7W0tGrYBo/Buem+8Auii4YgGnjuwzeMmq9vOYvFrI wcLULQN2rd0BfvE2oP1p7q8LVb9S7Jd/BRcI0/64LXHy5RTyGVUrbwB1AXUpyB1m BBy4peMkrnZANCrZB9mlfFFxEIhZR0V++7FcybcxJM5Z517SbI4jSWMq8vHr1fw0 OIoF2NRvfD05dE8rbphNmtzAv/jM5P4saF50HafOxXhDUaIqS4/gI5uR+ZeoPh3F 5gwdLdCR4eExZG9AUZ0= -----END CERTIFICATE-----Generated at Thu Mar 26 17:34:04 2026 by rpki-client