$ rpki-client -vvf rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/1040CDC4EBB411EE9D86095BC4F9AE02.roa File: 1040CDC4EBB411EE9D86095BC4F9AE02.roa (raw, json) Hash identifier: TmPmnCGLgyK9Ap1rfmXl6pOPPj4J1wY9n/QSsrwz+OQ= Subject key identifier: B4:5F:FA:BA:68:0D:E7:9C:B2:84:80:AA:96:89:A8:E1:4F:39:B9:57 Certificate issuer: /CN=A9153490/serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51 Certificate serial: 018D Authority key identifier: 13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/1040CDC4EBB411EE9D86095BC4F9AE02.roa Signing time: Tue 03 Mar 2026 04:40:18 +0000 ROA not before: Tue 03 Mar 2026 04:40:18 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152470 IP address blocks: 2401:7f20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153490, serialNumber=137353D0E8C145A580CB00BC3222089C4048AE51 Validity Not Before: Mar 3 04:40:18 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a66632-4a10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:20:32:cf:91:9b:37:da:7d:b2:cb:33:d6:ed: b9:76:76:a4:e4:d1:74:a2:4c:2f:6e:3c:66:4b:86: 47:bc:86:28:17:33:2d:c8:b1:54:00:0d:11:89:54: da:85:9b:c2:61:04:87:ea:88:f0:10:95:09:9d:43: b2:1c:67:41:ea:1d:c5:1a:dd:44:bf:26:42:0a:5a: 88:07:da:fe:87:f9:d4:88:e3:3d:44:6b:69:b9:f0: 63:b2:9a:96:9a:58:2c:c1:1f:89:cb:fb:1b:30:99: d1:a6:23:e0:0c:e6:15:8f:d6:21:da:e1:23:de:23: 9b:9c:d6:19:1d:ff:cc:af:89:f0:f4:79:25:7d:4e: 85:60:57:a0:72:ca:a0:80:2b:38:43:6a:ce:d3:ef: c9:3c:06:35:10:3b:3d:d1:94:81:b8:cf:85:e8:a8: a3:be:71:44:a0:0e:a1:a4:7f:da:08:1f:b8:fe:6c: 6b:70:86:11:c5:40:30:0d:c8:66:a2:3f:70:5c:da: ed:16:d5:50:bf:d3:33:1c:70:c2:f5:61:6f:2d:5e: 5f:6b:7d:a8:e9:91:94:15:92:51:7f:f7:5a:c6:6b: 20:51:98:fd:f3:48:58:d4:3c:56:07:bf:b7:3a:8d: 24:f1:d5:a9:a1:26:d6:e6:9e:bd:76:31:9b:42:0d: f6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:5F:FA:BA:68:0D:E7:9C:B2:84:80:AA:96:89:A8:E1:4F:39:B9:57 X509v3 Authority Key Identifier: keyid:13:73:53:D0:E8:C1:45:A5:80:CB:00:BC:32:22:08:9C:40:48:AE:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/E3NT0OjBRaWAywC8MiIInEBIrlE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E3NT0OjBRaWAywC8MiIInEBIrlE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153490/99198F12D05411EEAF799F16C4F9AE02/1040CDC4EBB411EE9D86095BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:7f20::/32 Signature Algorithm: sha256WithRSAEncryption 81:67:41:01:80:ab:83:88:3a:ca:24:a7:ea:b7:c5:45:f4:49: 76:d8:18:e9:92:82:89:ef:05:f5:df:b8:93:78:e3:e1:47:8a: c2:ba:e1:4a:e3:eb:f0:c1:81:a9:7e:20:3e:4d:45:c8:43:3f: 03:9d:b5:8e:7c:04:d0:34:f3:a2:b9:26:99:2a:fd:7d:fb:5a: d7:f1:dc:5e:64:ae:b3:68:c1:71:ba:2a:e3:d8:90:ea:5c:eb: 22:86:b8:8c:34:9f:7b:46:d3:b3:0a:6f:50:80:16:dc:04:d5: c8:a6:a8:f5:11:c6:89:09:97:1e:a4:65:6e:14:88:01:5c:05: 58:db:e1:77:1b:9b:82:f2:61:77:0f:2a:ca:7c:68:6a:1a:86: db:13:84:cc:75:9f:ff:72:fa:ca:b0:fd:25:e2:62:b7:8e:f8: b8:8d:38:d0:4b:50:18:55:59:39:e8:43:1d:c3:d4:e1:5d:7a: c7:d9:1e:68:66:f5:55:51:ea:48:c7:b5:56:4e:94:6c:6c:03: c7:ca:21:cf:9f:e6:ab:70:eb:77:1b:67:74:1f:7f:8e:0c:9e: d1:bb:d7:cb:f9:98:d1:2d:23:12:d8:2a:81:c0:1a:65:5f:61: 16:2a:d9:5f:82:2a:80:2a:25:3c:43:25:ef:00:0f:05:11:72: 6c:70:67:40 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0OTAxMTAvBgNVBAUTKDEzNzM1M0QwRThDMTQ1QTU4MENCMDBCQzMyMjIwODlD NDA0OEFFNTEwHhcNMjYwMzAzMDQ0MDE4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NjYzMi00YTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkSAyz5GbN9p9sssz1u25dnak5NF0okwvbjxmS4ZHvIYoFzMtyLFUAA0RiVTa hZvCYQSH6ojwEJUJnUOyHGdB6h3FGt1EvyZCClqIB9r+h/nUiOM9RGtpufBjspqW mlgswR+Jy/sbMJnRpiPgDOYVj9Yh2uEj3iObnNYZHf/Mr4nw9HklfU6FYFegcsqg gCs4Q2rO0+/JPAY1EDs90ZSBuM+F6KijvnFEoA6hpH/aCB+4/mxrcIYRxUAwDchm oj9wXNrtFtVQv9MzHHDC9WFvLV5fa32o6ZGUFZJRf/daxmsgUZj980hY1DxWB7+3 Oo0k8dWpoSbW5p69djGbQg32PwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFLRf+rpo DeecsoSAqpaJqOFPOblXMB8GA1UdIwQYMBaAFBNzU9DowUWlgMsAvDIiCJxASK5R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzQ5MC85OTE5OEYxMkQw NTQxMUVFQUY3OTlGMTZDNEY5QUUwMi9FM05UME9qQlJhV0F5d0M4TWlJSW5FQkly bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UzTlQwT2pCUmFXQXl3QzhNaUlJbkVCSXJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM0OTAvOTkxOThGMTJEMDU0MTFFRUFGNzk5RjE2QzRGOUFFMDIvMTA0MENEQzRF QkI0MTFFRTlEODYwOTVCQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAF/IDANBgkqhkiG9w0BAQsFAAOCAQEAgWdBAYCrg4g6yiSn6rfF RfRJdtgY6ZKCie8F9d+4k3jj4UeKwrrhSuPr8MGBqX4gPk1FyEM/A521jnwE0DTz orkmmSr9ffta1/HcXmSus2jBcboq49iQ6lzrIoa4jDSfe0bTswpvUIAW3ATVyKao 9RHGiQmXHqRlbhSIAVwFWNvhdxubgvJhdw8qynxoahqG2xOEzHWf/3L6yrD9JeJi t474uI040EtQGFVZOehDHcPU4V16x9keaGb1VVHqSMe1Vk6UbGwDx8ohz5/mq3Dr dxtndB9/jgye0bvXy/mY0S0jEtgqgcAaZV9hFirZX4IqgColPEMl7wAPBRFybHBn QA== -----END CERTIFICATE-----Generated at Thu Mar 26 19:32:53 2026 by rpki-client