$ rpki-client -vvf rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/21F007E0F5FF11F0A5E3E8DF536F56BC.roa File: 21F007E0F5FF11F0A5E3E8DF536F56BC.roa (raw, json) Hash identifier: Nnd7RgfSHIzLCSHHiBA5Rftl8Ye/mbhR0u1X+itD58k= Subject key identifier: F7:B6:8A:C7:25:88:15:08:95:EE:44:C8:D3:D0:17:7B:CC:B8:F5:63 Certificate issuer: /CN=A9154515/serialNumber=43FBDDD5DB779A6B1EC48B3637FA97B318665B1B Certificate serial: 2E Authority key identifier: 43:FB:DD:D5:DB:77:9A:6B:1E:C4:8B:36:37:FA:97:B3:18:66:5B:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q_vd1dt3mmsexIs2N_qXsxhmWxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/21F007E0F5FF11F0A5E3E8DF536F56BC.roa Signing time: Mon 02 Mar 2026 13:37:19 +0000 ROA not before: Tue 03 Feb 2026 08:26:32 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 142647 IP address blocks: 2001:df6:9b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/Q_vd1dt3mmsexIs2N_qXsxhmWxs.crl rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/Q_vd1dt3mmsexIs2N_qXsxhmWxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q_vd1dt3mmsexIs2N_qXsxhmWxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154515, serialNumber=43FBDDD5DB779A6B1EC48B3637FA97B318665B1B Validity Not Before: Feb 3 08:26:32 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5928f-9c93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:02:e0:24:18:3a:8e:67:e1:ba:5c:2a:d8:35: 09:b4:dc:7e:c6:1b:01:e0:9d:77:22:46:12:cd:e7: f6:df:1a:a3:2f:ac:8e:7f:a9:fc:3f:aa:aa:a5:4b: 08:9a:cc:e3:80:98:06:d0:7a:37:14:29:4a:25:67: 0f:cb:72:60:3d:74:f3:10:ca:f2:f2:7c:e7:96:25: b8:06:db:8f:47:2e:7f:4c:7d:ad:30:c3:99:df:96: d3:3b:a1:d3:06:a1:e1:c7:b9:f8:bf:67:29:88:dd: e7:93:7b:ed:f4:5d:8b:c2:5f:07:4b:90:de:d2:84: 46:ec:0d:fc:a1:4a:d7:2c:26:14:04:c6:1b:e2:f7: 35:f6:0d:8b:73:cb:a7:0b:e0:4d:69:d2:08:e2:d5: aa:30:a3:da:bc:8b:cf:15:3e:ba:54:00:f3:4b:6e: d8:ae:6b:5a:26:e6:5f:c7:5e:e0:cd:61:49:53:fa: 23:9a:eb:e2:57:c7:fa:55:51:2a:f4:41:dd:d4:50: 32:1b:11:7d:4d:71:92:e7:1e:c0:b0:39:36:cd:39: 9c:99:ea:d9:6b:a2:6b:c7:40:70:8e:53:42:75:c2: a5:18:ad:a8:a0:87:be:e6:47:41:3a:79:04:05:d9: 63:18:5f:6d:66:02:45:33:4d:02:6d:d5:b7:e9:de: 66:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B6:8A:C7:25:88:15:08:95:EE:44:C8:D3:D0:17:7B:CC:B8:F5:63 X509v3 Authority Key Identifier: keyid:43:FB:DD:D5:DB:77:9A:6B:1E:C4:8B:36:37:FA:97:B3:18:66:5B:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/Q_vd1dt3mmsexIs2N_qXsxhmWxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q_vd1dt3mmsexIs2N_qXsxhmWxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154515/788C7706F5FE11F091DB0CDE536F56BC/21F007E0F5FF11F0A5E3E8DF536F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:9b40::/48 Signature Algorithm: sha256WithRSAEncryption 98:52:09:a9:47:04:4a:3a:2e:a7:ff:b8:cf:c3:df:ac:a2:d4: 50:75:04:be:c8:bc:c6:9d:f6:13:13:4d:8b:78:50:0d:60:88: fd:0e:09:25:c9:26:de:af:34:3d:4e:7e:51:04:db:4d:b6:bd: a3:6a:4a:ff:3a:6d:e0:62:28:ae:b0:a8:96:c5:11:ea:a3:ea: 86:57:78:82:44:27:d1:75:1e:c7:63:60:41:11:88:22:2b:7e: 60:45:20:2c:2f:8a:3b:5e:64:49:26:c1:33:14:86:86:6e:ee: eb:6d:73:38:2d:17:f9:f5:62:e2:92:0e:50:74:34:f3:10:44: e0:c8:ac:ba:61:75:06:5b:0e:9b:95:2c:cc:3c:43:e9:17:de: 5f:4a:a7:94:2c:2a:bf:12:87:0a:39:eb:ad:f0:b3:c6:88:6c: 0b:e1:57:fe:15:91:7d:db:ce:34:d5:68:00:d9:6c:49:48:04: be:86:20:50:6b:32:63:04:42:7e:4d:3a:ec:4b:a0:4f:e7:81: c3:ee:7f:e4:03:90:a3:82:c8:7d:8e:af:6d:e5:96:e9:16:02: 27:52:f8:b1:86:d5:12:7a:00:dc:f1:e0:d5:08:5f:6e:19:70: e0:24:4a:be:90:55:6e:11:4e:87:35:a1:95:96:87:42:fb:aa: 93:5e:e7:ec -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDUxNTExMC8GA1UEBRMoNDNGQkRERDVEQjc3OUE2QjFFQzQ4QjM2MzdGQTk3QjMx ODY2NUIxQjAeFw0yNjAyMDMwODI2MzJaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5MjhmLTljOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJAuAkGDqOZ+G6XCrYNQm03H7GGwHgnXciRhLN5/bfGqMvrI5/qfw/qqqlSwia zOOAmAbQejcUKUolZw/LcmA9dPMQyvLyfOeWJbgG249HLn9Mfa0ww5nfltM7odMG oeHHufi/ZymI3eeTe+30XYvCXwdLkN7ShEbsDfyhStcsJhQExhvi9zX2DYtzy6cL 4E1p0gji1aowo9q8i88VPrpUAPNLbtiua1om5l/HXuDNYUlT+iOa6+JXx/pVUSr0 Qd3UUDIbEX1NcZLnHsCwOTbNOZyZ6tlromvHQHCOU0J1wqUYraigh77mR0E6eQQF 2WMYX21mAkUzTQJt1bfp3maLAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQU97aKxyWI FQiV7kTI09AXe8y49WMwHwYDVR0jBBgwFoAUQ/vd1dt3mmsexIs2N/qXsxhmWxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0NTE1Lzc4OEM3NzA2RjVG RTExRjA5MURCMENERTUzNkY1NkJDL1FfdmQxZHQzbW1zZXhJczJOX3FYc3hobVd4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUV92ZDFkdDNtbXNleElzMk5fcVhzeGhtV3hzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDUxNS83ODhDNzcwNkY1RkUxMUYwOTFEQjBDREU1MzZGNTZCQy8yMUYwMDdFMEY1 RkYxMUYwQTVFM0U4REY1MzZGNTZCQy5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32m0AwDQYJKoZIhvcNAQELBQADggEBAJhSCalHBEo6Lqf/uM/D 36yi1FB1BL7IvMad9hMTTYt4UA1giP0OCSXJJt6vND1OflEE2022vaNqSv86beBi KK6wqJbFEeqj6oZXeIJEJ9F1HsdjYEERiCIrfmBFICwvijteZEkmwTMUhoZu7utt czgtF/n1YuKSDlB0NPMQRODIrLphdQZbDpuVLMw8Q+kX3l9Kp5QsKr8Shwo5663w s8aIbAvhV/4VkX3bzjTVaADZbElIBL6GIFBrMmMEQn5NOuxLoE/ngcPuf+QDkKOC yH2Or23llukWAidS+LGG1RJ6ANzx4NUIX24ZcOAkSr6QVW4RToc1oZWWh0L7qpNe 5+w= -----END CERTIFICATE-----Generated at Thu Mar 26 11:55:08 2026 by rpki-client