$ rpki-client -vvf rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa File: CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa (raw, json) Hash identifier: AJp9crJkRdxKfaM9OAeWgFWXhY+vHbqNr4N+8nx8+8s= Subject key identifier: 98:03:D9:C4:AB:F3:85:B0:E3:57:68:74:AC:88:D1:57:93:CE:DB:83 Certificate issuer: /CN=A913E614/serialNumber=420F831CCE9A95B4F3135B1E557783AB202C6BAF Certificate serial: 3C Authority key identifier: 42:0F:83:1C:CE:9A:95:B4:F3:13:5B:1E:55:77:83:AB:20:2C:6B:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg-DHM6albTzE1seVXeDqyAsa68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:59:10 +0000 ROA not before: Fri 21 Nov 2025 12:29:58 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136905 IP address blocks: 2402:37e0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/Qg-DHM6albTzE1seVXeDqyAsa68.crl rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/Qg-DHM6albTzE1seVXeDqyAsa68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg-DHM6albTzE1seVXeDqyAsa68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:32:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E614, serialNumber=420F831CCE9A95B4F3135B1E557783AB202C6BAF Validity Not Before: Nov 21 12:29:58 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5899e-4118 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:ed:81:24:fd:2b:02:7f:d8:b4:86:0b:7f:dc: 9c:d7:f6:da:3d:9f:cb:8c:0b:5c:41:00:29:2f:8e: eb:1d:fc:89:c9:11:cd:6f:27:c4:42:3c:0b:78:5e: b5:23:04:38:13:0b:a9:52:c6:27:d2:64:14:92:53: e1:53:a4:ee:79:41:7d:3c:6e:fc:30:a5:b9:22:ef: 7c:25:f6:de:e5:19:02:23:6d:ea:47:c2:5b:27:60: 7c:4e:19:4e:50:59:8c:6a:32:1b:ff:48:c6:cc:90: 9d:a1:8f:6e:c4:13:4d:f5:fa:54:53:9b:bb:b8:d3: fe:e1:fd:74:c7:8e:5e:f0:4a:5c:a0:69:f7:4e:ba: 94:81:82:a9:0c:14:1c:c0:5d:e7:4b:e5:b9:6a:54: 94:4b:2a:3f:17:05:51:cd:1d:76:7a:b9:c1:a7:16: af:0b:4f:18:06:ae:bc:81:22:5b:8c:92:3a:ca:f3: 02:b6:ad:90:60:0b:9f:74:b3:d8:37:bc:e1:68:c9: 71:33:bd:f0:da:57:1f:60:e1:e7:94:75:17:02:8b: b7:47:ea:18:1d:4e:4a:79:92:4c:36:4b:b1:d2:29: 3d:17:04:a9:a3:95:1a:39:11:28:99:d0:47:e6:fa: ae:df:e5:a8:26:8b:4d:a0:84:79:1f:df:3d:c3:22: 35:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:03:D9:C4:AB:F3:85:B0:E3:57:68:74:AC:88:D1:57:93:CE:DB:83 X509v3 Authority Key Identifier: keyid:42:0F:83:1C:CE:9A:95:B4:F3:13:5B:1E:55:77:83:AB:20:2C:6B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/Qg-DHM6albTzE1seVXeDqyAsa68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qg-DHM6albTzE1seVXeDqyAsa68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E614/38E21D52C3A111F0B744C339C4F9AE02/CAFFD8E6C6D511F09C4D4F76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:37e0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:91:97:7e:8b:44:59:88:67:81:e6:af:34:a3:73:19:e8:5b: 37:56:83:56:27:01:b0:40:39:8e:7b:10:59:6c:1a:de:55:e1: 62:1f:f0:f9:aa:97:d4:d5:31:9b:ae:33:fd:cc:2d:3b:96:07: 91:ad:47:3f:89:5c:4e:0f:16:af:f9:73:7e:a1:61:ef:75:f2: 82:27:21:e6:4b:f2:0b:88:35:82:8e:5b:fb:7a:50:b5:07:de: 19:6a:8f:9c:37:f8:64:51:46:59:82:46:4e:e1:60:24:01:8d: e7:1f:16:4d:f5:cb:c4:d9:d7:e7:75:9e:de:10:1c:37:8b:99: 25:37:bf:e8:31:76:c7:28:21:69:6d:45:e9:97:40:40:a8:60: e4:6f:e6:78:cb:8c:10:da:6f:7d:1c:14:4c:00:7a:a9:0c:92: 20:e3:e7:a9:e1:04:58:ae:53:22:dd:2e:68:48:d4:c8:5e:7e: 4c:50:73:6b:3e:5b:7c:54:7e:67:6f:19:ca:e3:9e:0a:95:a5: 61:3d:51:cc:ce:01:69:5c:fb:4c:c7:52:72:44:d2:4c:c4:70: ae:e1:92:a3:57:73:c2:43:13:78:68:43:20:f0:0a:62:a3:f8: d3:e7:57:30:61:35:48:02:86:e3:e8:c7:58:20:7d:3b:d8:f8: 5f:7e:f0:9a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RTYxNDExMC8GA1UEBRMoNDIwRjgzMUNDRTlBOTVCNEYzMTM1QjFFNTU3NzgzQUIy MDJDNkJBRjAeFw0yNTExMjExMjI5NThaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4OTllLTQxMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCW7YEk/SsCf9i0hgt/3JzX9to9n8uMC1xBACkvjusd/InJEc1vJ8RCPAt4XrUj BDgTC6lSxifSZBSSU+FTpO55QX08bvwwpbki73wl9t7lGQIjbepHwlsnYHxOGU5Q WYxqMhv/SMbMkJ2hj27EE031+lRTm7u40/7h/XTHjl7wSlygafdOupSBgqkMFBzA XedL5blqVJRLKj8XBVHNHXZ6ucGnFq8LTxgGrryBIluMkjrK8wK2rZBgC590s9g3 vOFoyXEzvfDaVx9g4eeUdRcCi7dH6hgdTkp5kkw2S7HSKT0XBKmjlRo5ESiZ0Efm +q7f5agmi02ghHkf3z3DIjWpAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUmAPZxKvz hbDjV2h0rIjRV5PO24MwHwYDVR0jBBgwFoAUQg+DHM6albTzE1seVXeDqyAsa68w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNFNjE0LzM4RTIxRDUyQzNB MTExRjBCNzQ0QzMzOUM0RjlBRTAyL1FnLURITTZhbGJUekUxc2VWWGVEcXlBc2E2 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWctREhNNmFsYlR6RTFzZVZYZURxeUFzYTY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTYxNC8zOEUyMUQ1MkMzQTExMUYwQjc0NEMzMzlDNEY5QUUwMi9DQUZGRDhFNkM2 RDUxMUYwOUM0RDRGNzZDNEY5QUUwMi5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAjfgMA0GCSqGSIb3DQEBCwUAA4IBAQCNkZd+i0RZiGeB5q80o3MZ 6Fs3VoNWJwGwQDmOexBZbBreVeFiH/D5qpfU1TGbrjP9zC07lgeRrUc/iVxODxav +XN+oWHvdfKCJyHmS/ILiDWCjlv7elC1B94Zao+cN/hkUUZZgkZO4WAkAY3nHxZN 9cvE2dfndZ7eEBw3i5klN7/oMXbHKCFpbUXpl0BAqGDkb+Z4y4wQ2m99HBRMAHqp DJIg4+ep4QRYrlMi3S5oSNTIXn5MUHNrPlt8VH5nbxnK454KlaVhPVHMzgFpXPtM x1JyRNJMxHCu4ZKjV3PCQxN4aEMg8Apio/jT51cwYTVIAobj6MdYIH072PhffvCa -----END CERTIFICATE-----Generated at Thu Mar 26 04:07:53 2026 by rpki-client