$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa File: B47102FE77F211EFBA1E9F7EC4F9AE02.roa (raw, json) Hash identifier: s8ZLRx82qpKC8d+4Ji2PmMxFJJ+eKUDb3t+BPotA2Pc= Subject key identifier: D4:48:26:15:C0:B2:55:56:49:68:35:AE:FE:DD:B4:73:6B:D0:CC:CD Certificate issuer: /CN=A914E600/serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Certificate serial: 0120 Authority key identifier: 7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:06:41 +0000 ROA not before: Sat 23 Aug 2025 06:41:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137552 IP address blocks: 2001:df4:1840::/47 maxlen: 47 2001:df4:1840::/48 maxlen: 48 2001:df4:1841::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=7F8245BBD4D459721B41D4FF2BBFB425FF118953 Validity Not Before: Aug 23 06:41:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a781-acbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:25:aa:59:87:32:6e:7d:b5:2c:80:1c:7a:f7: 1d:3d:e5:2c:dc:97:ba:8b:44:fe:87:79:f5:7f:21: 66:67:b8:c3:57:54:1a:54:df:cd:c8:b8:3b:d9:53: d8:cd:7a:76:c0:fd:3f:cb:b6:e6:d4:20:4d:21:06: db:78:78:a9:d0:4b:4a:50:e8:80:a1:39:32:ff:43: ba:97:6d:6e:23:4e:ac:6a:92:36:17:5d:80:2e:36: 88:12:2a:13:1e:c1:19:b8:81:05:07:ad:7a:13:d1: d4:ff:1b:e7:c2:9f:e9:bb:51:e7:a9:02:75:74:e8: b4:f3:ee:70:b1:d0:ea:83:9e:11:4e:22:91:41:f7: 4b:d5:69:94:45:48:13:46:20:69:18:59:b5:86:d1: 3e:01:d2:09:02:91:a1:d6:53:41:cc:2f:04:99:f1: e3:0a:71:51:c0:65:45:60:7a:4c:83:5e:64:3a:59: 27:70:e7:30:58:ae:c0:18:3e:a2:33:da:af:5a:09: 37:9f:4b:75:17:a8:a0:8e:7e:0f:f6:8f:07:19:36: 1e:bc:f7:aa:b6:e2:4a:60:5c:e7:a5:2e:9c:2e:fc: 0d:60:cb:1d:3b:c3:04:29:11:20:11:3b:cf:ad:eb: d3:d5:10:5e:af:b7:38:84:34:39:3c:53:65:d8:d5: 09:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:48:26:15:C0:B2:55:56:49:68:35:AE:FE:DD:B4:73:6B:D0:CC:CD X509v3 Authority Key Identifier: keyid:7F:82:45:BB:D4:D4:59:72:1B:41:D4:FF:2B:BF:B4:25:FF:11:89:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f4JFu9TUWXIbQdT_K7-0Jf8RiVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/2AA7D45E77F111EFAC112942C4F9AE02/B47102FE77F211EFBA1E9F7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:1840::/47 Signature Algorithm: sha256WithRSAEncryption b6:28:77:ef:99:39:8e:25:3c:e6:42:3b:2a:b1:2a:f7:fd:5a: 16:11:87:5b:43:14:f6:8e:cd:b1:d6:27:9d:07:35:3b:36:2e: 49:cf:81:36:b4:6f:e7:43:8c:d2:8b:3c:00:c1:b1:4d:a5:6d: 60:93:83:82:08:c9:6e:41:51:b1:e0:00:13:00:e9:54:23:37: ca:c7:1c:5e:58:54:42:d6:02:f0:d2:b2:b6:6e:a9:02:f4:24: c7:c9:1a:48:a6:e1:c5:4c:1b:7a:3c:50:26:00:41:57:8b:fb: a0:4d:17:54:c3:93:dd:28:6c:82:fe:70:ae:a8:9e:83:d9:50: 1e:5d:c0:7c:07:ec:c0:2e:d6:67:d0:8c:0f:7c:15:25:aa:b8: e2:2a:e9:dc:b1:a0:90:07:d6:93:dd:56:30:76:b2:af:83:6d: 35:ff:bf:5b:af:76:d3:72:21:61:f8:53:59:84:1c:87:f9:c1: 54:17:00:8c:7b:68:20:5b:30:54:af:d9:12:ff:7f:8d:99:59: 5f:70:71:86:fc:10:d3:ad:77:04:b2:69:b1:fe:b2:fa:b4:e2: 53:74:63:24:ca:9b:1d:ed:32:d4:e6:6c:d9:c0:c0:60:8d:16: 04:e3:4c:35:b0:4c:7f:68:7c:7c:39:2f:0b:6c:33:15:20:31: 7b:6c:d2:86 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2MDAxMTAvBgNVBAUTKDdGODI0NUJCRDRENDU5NzIxQjQxRDRGRjJCQkZCNDI1 RkYxMTg5NTMwHhcNMjUwODIzMDY0MTUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTc4MS1hY2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyWqWYcybn21LIAcevcdPeUs3Je6i0T+h3n1fyFmZ7jDV1QaVN/NyLg72VPY zXp2wP0/y7bm1CBNIQbbeHip0EtKUOiAoTky/0O6l21uI06sapI2F12ALjaIEioT HsEZuIEFB616E9HU/xvnwp/pu1HnqQJ1dOi08+5wsdDqg54RTiKRQfdL1WmURUgT RiBpGFm1htE+AdIJApGh1lNBzC8EmfHjCnFRwGVFYHpMg15kOlkncOcwWK7AGD6i M9qvWgk3n0t1F6igjn4P9o8HGTYevPeqtuJKYFznpS6cLvwNYMsdO8MEKREgETvP revT1RBer7c4hDQ5PFNl2NUJfwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFNRIJhXA slVWSWg1rv7dtHNr0MzNMB8GA1UdIwQYMBaAFH+CRbvU1FlyG0HU/yu/tCX/EYlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTYwMC8yQUE3RDQ1RTc3 RjExMUVGQUMxMTI5NDJDNEY5QUUwMi9mNEpGdTlUVVdYSWJRZFRfSzctMEpmOFJp Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y0SkZ1OVRVV1hJYlFkVF9LNy0wSmY4UmlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU2MDAvMkFBN0Q0NUU3N0YxMTFFRkFDMTEyOTQyQzRGOUFFMDIvQjQ3MTAyRkU3 N0YyMTFFRkJBMUU5RjdFQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcBIAEN9BhAMA0GCSqGSIb3DQEBCwUAA4IBAQC2KHfvmTmOJTzmQjsq sSr3/VoWEYdbQxT2js2x1iedBzU7Ni5Jz4E2tG/nQ4zSizwAwbFNpW1gk4OCCMlu QVGx4AATAOlUIzfKxxxeWFRC1gLw0rK2bqkC9CTHyRpIpuHFTBt6PFAmAEFXi/ug TRdUw5PdKGyC/nCuqJ6D2VAeXcB8B+zALtZn0IwPfBUlqrjiKuncsaCQB9aT3VYw drKvg201/79br3bTciFh+FNZhByH+cFUFwCMe2ggWzBUr9kS/3+NmVlfcHGG/BDT rXcEsmmx/rL6tOJTdGMkypsd7TLU5mzZwMBgjRYE40w1sEx/aHx8OS8LbDMVIDF7 bNKG -----END CERTIFICATE-----Generated at Thu Mar 26 15:58:58 2026 by rpki-client