$ rpki-client -vvf rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa File: 3219F778803B11F0BAF8A92DC4F9AE02.roa (raw, json) Hash identifier: qsrn91pM8G1hIO7HWIMSnDb/hEEeWuHWX7WAk8f2MwI= Subject key identifier: 24:0C:D0:42:EF:37:88:99:5A:6E:6C:66:26:53:4B:5C:AC:18:6B:34 Certificate issuer: /CN=A9127B24/serialNumber=F53BCFB8C72C1A3AB65E0EA88E3A1A21D28CD161 Certificate serial: 0109 Authority key identifier: F5:3B:CF:B8:C7:2C:1A:3A:B6:5E:0E:A8:8E:3A:1A:21:D2:8C:D1:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:13:20 +0000 ROA not before: Wed 15 Oct 2025 10:02:49 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153336 IP address blocks: 2401:c5e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.crl rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127B24, serialNumber=F53BCFB8C72C1A3AB65E0EA88E3A1A21D28CD161 Validity Not Before: Oct 15 10:02:49 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59aff-27aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:3f:ca:5a:9f:98:16:67:8e:0d:26:f8:5a:cc: 46:9e:ee:c5:d4:7f:01:4d:ce:dd:f5:bf:86:54:29: 7e:82:9c:4f:4c:24:c2:b8:7f:37:8f:d7:b4:4b:5a: a5:94:38:c1:d5:cc:fb:6b:68:ab:0f:57:c3:b5:fa: 36:8d:b2:03:e8:ba:ed:b8:7b:8d:9d:7e:ca:10:b1: ea:3c:6b:dd:34:3b:7e:fe:c7:eb:63:46:ea:7e:5e: 03:d8:d7:5e:a4:10:2b:75:3b:19:4d:1f:b9:8e:30: a5:ab:84:f4:9c:69:8f:1a:be:3b:b1:6e:fc:ef:5d: eb:01:e3:16:b4:5a:16:8f:a0:00:d7:f6:78:67:b0: ca:8d:ae:51:61:c5:19:11:46:b7:f1:df:60:1e:f0: 7a:f9:56:d5:28:45:26:52:45:4d:1f:40:f8:97:18: 52:fa:ef:bc:ac:19:4d:bf:2c:4e:11:55:aa:26:a3: da:a8:17:64:e0:90:0b:0c:ad:f0:6c:7b:c5:b3:b3: 64:3b:8d:5d:42:7a:11:34:d8:27:48:7d:ca:1a:8f: d8:d5:b8:42:b5:34:53:5c:ac:e1:53:da:f3:8f:1b: b7:04:03:95:a0:b9:6c:e5:48:ab:61:c1:4e:ff:b2: 15:21:06:3d:6d:83:0a:94:b3:76:f8:9a:b6:67:c3: 28:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0C:D0:42:EF:37:88:99:5A:6E:6C:66:26:53:4B:5C:AC:18:6B:34 X509v3 Authority Key Identifier: keyid:F5:3B:CF:B8:C7:2C:1A:3A:B6:5E:0E:A8:8E:3A:1A:21:D2:8C:D1:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TvPuMcsGjq2Xg6ojjoaIdKM0WE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127B24/1E4F3A5C8F7611EF84EC7715C4F9AE02/3219F778803B11F0BAF8A92DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:c5e0::/32 Signature Algorithm: sha256WithRSAEncryption 49:19:37:5f:f0:bf:ec:dc:12:87:3f:29:98:5f:3a:a7:49:66: 44:0e:6e:ac:8c:7b:f1:bf:9c:75:c0:d9:b9:16:f9:16:0c:0e: fb:a9:f7:0d:34:ad:83:c6:da:ec:24:93:8b:e6:d2:dd:64:85: 52:cf:5d:16:a9:40:32:03:be:d1:da:ef:36:b2:89:bc:9d:dd: 79:eb:44:42:0d:1e:d3:0a:d0:e4:97:a7:99:bc:1d:41:95:23: e6:14:53:ba:c0:3c:45:05:a7:56:e1:14:3e:e6:3c:f6:7d:c4: 58:47:fe:51:09:33:35:71:5e:f5:11:8f:b9:4c:00:c0:99:f9: 17:75:ac:b2:e0:47:34:a5:ee:62:68:95:75:44:d4:cd:6e:6f: 12:05:bd:2b:9f:6e:cc:c5:85:03:8d:b7:b2:8d:b2:ee:b9:a4: 4b:57:37:29:95:cb:a0:61:72:98:3b:01:e5:e3:d7:a5:ad:35: 12:0e:d0:df:05:f0:b4:de:35:90:95:ad:69:0b:b3:27:a3:b2: ac:33:c0:c0:da:9d:16:c2:4d:91:6f:5f:9f:b8:f5:1e:e7:86: 5b:1b:9f:57:dc:cd:88:77:cd:a7:64:b3:86:40:cc:06:7e:d7: 7e:68:d6:5f:72:10:2a:86:2c:ff:46:c2:07:a2:3a:fd:d5:4b: 50:d4:be:0e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdCMjQxMTAvBgNVBAUTKEY1M0JDRkI4QzcyQzFBM0FCNjVFMEVBODhFM0ExQTIx RDI4Q0QxNjEwHhcNMjUxMDE1MTAwMjQ5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWFmZi0yN2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2j/KWp+YFmeODSb4WsxGnu7F1H8BTc7d9b+GVCl+gpxPTCTCuH83j9e0S1ql lDjB1cz7a2irD1fDtfo2jbID6LrtuHuNnX7KELHqPGvdNDt+/sfrY0bqfl4D2Nde pBArdTsZTR+5jjClq4T0nGmPGr47sW78713rAeMWtFoWj6AA1/Z4Z7DKja5RYcUZ EUa38d9gHvB6+VbVKEUmUkVNH0D4lxhS+u+8rBlNvyxOEVWqJqPaqBdk4JALDK3w bHvFs7NkO41dQnoRNNgnSH3KGo/Y1bhCtTRTXKzhU9rzjxu3BAOVoLls5UirYcFO /7IVIQY9bYMKlLN2+Jq2Z8MoFQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFCQM0ELv N4iZWm5sZiZTS1ysGGs0MB8GA1UdIwQYMBaAFPU7z7jHLBo6tl4OqI46GiHSjNFh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0IyNC8xRTRGM0E1QzhG NzYxMUVGODRFQzc3MTVDNEY5QUUwMi85VHZQdU1jc0dqcTJYZzZvampvYUlkS00w V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUdlB1TWNzR2pxMlhnNm9qam9hSWRLTTBXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdCMjQvMUU0RjNBNUM4Rjc2MTFFRjg0RUM3NzE1QzRGOUFFMDIvMzIxOUY3Nzg4 MDNCMTFGMEJBRjhBOTJEQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHF4DANBgkqhkiG9w0BAQsFAAOCAQEASRk3X/C/7NwShz8pmF86 p0lmRA5urIx78b+cdcDZuRb5FgwO+6n3DTStg8ba7CSTi+bS3WSFUs9dFqlAMgO+ 0drvNrKJvJ3deetEQg0e0wrQ5JenmbwdQZUj5hRTusA8RQWnVuEUPuY89n3EWEf+ UQkzNXFe9RGPuUwAwJn5F3WssuBHNKXuYmiVdUTUzW5vEgW9K59uzMWFA423so2y 7rmkS1c3KZXLoGFymDsB5ePXpa01Eg7Q3wXwtN41kJWtaQuzJ6OyrDPAwNqdFsJN kW9fn7j1HueGWxufV9zNiHfNp2SzhkDMBn7XfmjWX3IQKoYs/0bCB6I6/dVLUNS+ Dg== -----END CERTIFICATE-----Generated at Fri Mar 27 03:26:11 2026 by rpki-client