$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CDCC902E170811EFB6DE866CC4F9AE02.roa File: CDCC902E170811EFB6DE866CC4F9AE02.roa (raw, json) Hash identifier: hvZ+tMr6AX88yzB7ODUmxaPo2OOgSVT3sh9adQMgau8= Subject key identifier: BB:B5:0A:4C:E0:11:98:00:1C:C0:50:21:18:B5:72:A7:AC:E1:DD:47 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3C1C Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CDCC902E170811EFB6DE866CC4F9AE02.roa Signing time: Sun 01 Mar 2026 21:26:29 +0000 ROA not before: Fri 04 Jul 2025 14:50:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 2914 IP address blocks: 2001:d38::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15388 (0x3c1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jul 4 14:50:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4af05-0793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:42:5b:c8:20:61:70:b9:b4:10:85:7d:29:48: 76:cc:f9:8d:98:f4:fb:b7:20:da:00:f3:d7:67:c2: 10:8f:2c:7d:c3:7b:b4:50:6e:fe:dc:6a:7d:5e:62: 48:48:dc:42:3a:7c:e8:86:6c:30:bb:0f:2f:3d:5d: af:38:34:34:9d:64:13:c4:46:e2:0e:6d:3f:0c:3a: 07:21:62:22:1c:05:f1:59:0d:b1:cc:77:90:c6:3b: 7b:51:0c:8c:54:97:f1:9d:81:6e:e2:09:7f:61:43: 39:5f:a3:ce:57:6b:b1:3c:9d:50:eb:89:c4:59:f7: a2:94:96:6c:a5:7e:cb:d2:1a:bc:8b:33:77:a4:38: b6:7e:13:4f:a4:a1:ff:cb:07:a9:c0:23:ec:5c:49: db:24:1c:36:31:d7:ef:e9:4c:01:76:98:94:87:1d: 82:58:cb:4f:bf:b3:c1:43:2d:00:27:e8:d8:c6:c9: a8:96:d1:bf:12:c4:38:42:9d:33:c6:01:e6:c6:d8: d7:41:2a:44:a1:e8:14:5c:bd:6e:99:28:d0:71:73: f5:5c:68:d4:54:51:85:d2:ea:54:88:bc:55:ff:83: 13:49:67:94:b8:c3:b5:7e:be:c5:94:f0:0e:b7:4f: 2a:fa:01:cb:c2:2d:69:7f:bf:81:3a:16:2a:59:ef: cf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B5:0A:4C:E0:11:98:00:1C:C0:50:21:18:B5:72:A7:AC:E1:DD:47 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CDCC902E170811EFB6DE866CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:d38::/32 Signature Algorithm: sha256WithRSAEncryption 42:39:75:e2:40:e3:3b:64:5a:46:c7:c3:7c:1e:bc:b1:06:b1: 70:70:13:c8:28:bc:36:e4:ee:f7:b1:b9:ee:7f:23:e4:8c:b2: ba:19:61:d1:59:40:71:9b:7f:0c:84:e5:99:b2:94:ab:73:23: bb:bc:39:48:53:9d:d0:ad:c8:8b:72:f5:eb:31:1c:0c:59:9b: 7d:2c:5e:b1:c8:f3:20:43:64:52:70:12:ec:e9:4c:57:3e:91: d9:8c:6e:ce:e3:09:af:b9:d3:13:8b:22:a4:ba:a7:92:a3:be: ac:55:c9:4b:e4:a9:f6:bb:cc:c9:5b:26:d3:5c:32:3d:19:9a: 10:41:8d:2a:03:78:f8:f8:10:56:83:ac:56:5b:b1:d8:b3:87: 92:49:4c:08:02:96:84:56:e3:42:e9:f7:d3:d9:64:c2:6e:5c: a1:a3:6f:36:df:c6:d9:c0:43:0d:c4:8c:f8:c8:d6:e4:c2:08: 4c:58:1d:dd:5e:b8:d7:85:2e:56:fa:9b:68:25:3e:37:3f:f8: 47:cb:30:c9:7d:80:bf:1b:8a:d4:0a:18:70:7e:91:34:f6:09: c2:1c:22:2c:e1:17:c1:9a:e9:52:3d:e9:ed:20:75:71:96:c3: 10:8e:d6:e9:e8:bf:41:10:0a:99:28:e0:e1:37:57:6c:7c:05: 77:32:2c:de -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICPBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwNzA0MTQ1MDQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWYwNS0wNzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkJbyCBhcLm0EIV9KUh2zPmNmPT7tyDaAPPXZ8IQjyx9w3u0UG7+3Gp9XmJI SNxCOnzohmwwuw8vPV2vODQ0nWQTxEbiDm0/DDoHIWIiHAXxWQ2xzHeQxjt7UQyM VJfxnYFu4gl/YUM5X6POV2uxPJ1Q64nEWfeilJZspX7L0hq8izN3pDi2fhNPpKH/ ywepwCPsXEnbJBw2Mdfv6UwBdpiUhx2CWMtPv7PBQy0AJ+jYxsmoltG/EsQ4Qp0z xgHmxtjXQSpEoegUXL1umSjQcXP1XGjUVFGF0upUiLxV/4MTSWeUuMO1fr7FlPAO t08q+gHLwi1pf7+BOhYqWe/PfwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFLu1Ckzg EZgAHMBQIRi1cqes4d1HMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQ0RDQzkwMkUx NzA4MTFFRkI2REU4NjZDQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAIAENODANBgkqhkiG9w0BAQsFAAOCAQEAQjl14kDjO2RaRsfDfB68 sQaxcHATyCi8NuTu97G57n8j5Iyyuhlh0VlAcZt/DITlmbKUq3Mju7w5SFOd0K3I i3L16zEcDFmbfSxescjzIENkUnAS7OlMVz6R2YxuzuMJr7nTE4sipLqnkqO+rFXJ S+Sp9rvMyVsm01wyPRmaEEGNKgN4+PgQVoOsVlux2LOHkklMCAKWhFbjQun309lk wm5coaNvNt/G2cBDDcSM+MjW5MIITFgd3V6414UuVvqbaCU+Nz/4R8swyX2AvxuK 1AoYcH6RNPYJwhwiLOEXwZrpUj3p7SB1cZbDEI7W6ei/QRAKmSjg4TdXbHwFdzIs 3g== -----END CERTIFICATE-----Generated at Thu Mar 26 03:07:03 2026 by rpki-client