$ rpki-client -vvf rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa File: 4D7DE09E9BFB11EF8E975D70C4F9AE02.roa (raw, json) Hash identifier: OXlWMlN/9eXJBuwyCfwBJ/3whRZMwq6quUWKtVMgPJQ= Subject key identifier: 49:73:F4:93:11:DF:5B:9F:DC:66:77:A7:44:18:42:7B:A8:68:A9:C2 Certificate issuer: /CN=A9142489/serialNumber=AAE5759A7E98AA7458598DE3C19AA1797F00F5F5 Certificate serial: 0101 Authority key identifier: AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:11:41 +0000 ROA not before: Sat 03 Jan 2026 05:23:54 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 153393 IP address blocks: 2401:d4e0::/48 maxlen: 48 2401:d4e0:1::/48 maxlen: 48 2401:d4e0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142489, serialNumber=AAE5759A7E98AA7458598DE3C19AA1797F00F5F5 Validity Not Before: Jan 3 05:23:54 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5a8ad-6030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5c:46:f9:23:80:a9:af:7b:9a:4b:51:d2:1b: e3:36:ad:9d:d6:cd:2e:ac:0a:e7:3c:1b:d1:cd:63: fe:8a:ea:e0:a8:0b:c6:c2:e4:f3:18:e4:a5:94:4b: e7:fb:b5:d0:5f:a9:23:77:c1:a2:9e:49:26:4b:45: 4e:b9:f1:e9:43:07:b3:28:b6:1e:54:33:c8:89:86: 4f:15:d7:21:3d:0b:e0:0f:a4:38:99:75:59:1c:4b: c3:3b:e7:b2:1e:ff:f9:07:80:0b:f2:bc:02:cd:d2: 6c:e1:96:36:d8:4b:01:95:40:8c:a4:63:10:4e:42: 43:9f:56:f1:d6:ac:56:2d:08:80:88:3b:d4:94:ec: 32:05:d5:d6:e1:24:cb:be:6d:bf:09:f6:e6:8c:2f: 83:6d:07:52:3a:ca:c5:22:21:8e:5e:de:b6:56:57: 3b:e3:43:29:e9:81:21:47:db:f4:0e:60:98:4a:12: 1a:f9:77:a5:40:a8:20:eb:36:ee:75:98:c2:80:fb: 06:8d:7f:b0:ce:c9:7d:37:6d:64:d5:b6:46:b2:f5: 18:74:f3:9c:b9:ef:8c:c5:2d:c3:b9:fb:a3:6f:62: ec:c0:db:82:73:77:ea:d4:f4:f5:f5:fa:8f:80:76: be:1b:1e:87:29:1c:3a:c0:ae:db:db:3c:f4:6b:16: 0d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:73:F4:93:11:DF:5B:9F:DC:66:77:A7:44:18:42:7B:A8:68:A9:C2 X509v3 Authority Key Identifier: keyid:AA:E5:75:9A:7E:98:AA:74:58:59:8D:E3:C1:9A:A1:79:7F:00:F5:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/quV1mn6YqnRYWY3jwZqheX8A9fU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/quV1mn6YqnRYWY3jwZqheX8A9fU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142489/3A3F28369BFA11EFBEB9846EC4F9AE02/4D7DE09E9BFB11EF8E975D70C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:d4e0::-2401:d4e0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a9:8f:bd:ca:fa:ca:97:1a:ef:ae:f7:59:8c:c1:88:2b:90:75: 21:44:ad:d3:b5:ab:2e:f2:57:ef:de:ad:07:79:c0:6b:11:3b: c9:9e:db:35:0e:a9:52:1f:2a:1c:8d:7b:ac:cc:eb:d8:16:d2: a1:eb:3f:7b:bb:ee:56:b4:30:1d:86:f8:39:b0:00:48:a0:55: e9:4a:40:90:9d:f2:d3:95:f3:41:12:a2:9a:74:4f:e3:35:12: ab:dd:da:27:cb:e7:cb:88:fb:9a:bf:65:25:37:50:49:1b:e3: 2b:49:8b:cb:26:80:f6:6f:c5:15:a3:02:4b:34:1e:b7:bd:19: ff:35:63:5b:80:1d:85:31:70:90:29:af:01:d3:1a:8e:4e:27: 66:c7:b8:69:35:d0:70:c8:4a:d6:9d:0c:a5:50:65:b8:18:bf: eb:fd:85:ad:96:c7:9b:c1:81:bd:be:8d:a3:c2:7d:e1:68:27: 23:50:8d:45:15:c7:56:e1:93:cb:88:b2:86:99:7f:48:df:70: df:9e:4f:89:9f:29:f3:45:9f:d6:d6:d0:5b:63:ed:42:ad:07: 6e:41:f2:19:76:f4:ac:4b:cf:30:a0:0a:4a:8b:9f:fd:97:c1: 16:7a:38:2b:c7:38:e8:6d:4f:0b:fc:83:52:da:c5:1a:83:d3: 4e:62:9e:7b -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0ODkxMTAvBgNVBAUTKEFBRTU3NTlBN0U5OEFBNzQ1ODU5OERFM0MxOUFBMTc5 N0YwMEY1RjUwHhcNMjYwMTAzMDUyMzU0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YThhZC02MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVxG+SOAqa97mktR0hvjNq2d1s0urArnPBvRzWP+iurgqAvGwuTzGOSllEvn +7XQX6kjd8GinkkmS0VOufHpQwezKLYeVDPIiYZPFdchPQvgD6Q4mXVZHEvDO+ey Hv/5B4AL8rwCzdJs4ZY22EsBlUCMpGMQTkJDn1bx1qxWLQiAiDvUlOwyBdXW4STL vm2/CfbmjC+DbQdSOsrFIiGOXt62Vlc740Mp6YEhR9v0DmCYShIa+XelQKgg6zbu dZjCgPsGjX+wzsl9N21k1bZGsvUYdPOcue+MxS3Dufujb2LswNuCc3fq1PT19fqP gHa+Gx6HKRw6wK7b2zz0axYNRwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFElz9JMR 31uf3GZ3p0QYQnuoaKnCMB8GA1UdIwQYMBaAFKrldZp+mKp0WFmN48GaoXl/APX1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ4OS8zQTNGMjgzNjlC RkExMUVGQkVCOTg0NkVDNEY5QUUwMi9xdVYxbW42WXFuUllXWTNqd1pxaGVYOEE5 ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F1VjFtbjZZcW5SWVdZM2p3WnFoZVg4QTlmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI0ODkvM0EzRjI4MzY5QkZBMTFFRkJFQjk4NDZFQzRGOUFFMDIvNEQ3REUwOUU5 QkZCMTFFRjhFOTc1RDcwQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASMBADBQUkAdTgAwcAJAHU4AACMA0GCSqGSIb3DQEBCwUAA4IBAQCpj73K +sqXGu+u91mMwYgrkHUhRK3Ttasu8lfv3q0HecBrETvJnts1DqlSHyocjXuszOvY FtKh6z97u+5WtDAdhvg5sABIoFXpSkCQnfLTlfNBEqKadE/jNRKr3dony+fLiPua v2UlN1BJG+MrSYvLJoD2b8UVowJLNB63vRn/NWNbgB2FMXCQKa8B0xqOTidmx7hp NdBwyErWnQylUGW4GL/r/YWtlsebwYG9vo2jwn3haCcjUI1FFcdW4ZPLiLKGmX9I 33Dfnk+JnynzRZ/W1tBbY+1CrQduQfIZdvSsS88woApKi5/9l8EWejgrxzjobU8L /INS2sUag9NOYp57 -----END CERTIFICATE-----Generated at Thu Mar 26 22:26:18 2026 by rpki-client