$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa File: 44B65A3890FF11EFA6BECB58C4F9AE02.roa (raw, json) Hash identifier: /KryMHMfzm4mv+PmAUUQ97+ZD6cBoGkFzqrA/qBGskk= Subject key identifier: EE:28:FF:75:DA:8B:2E:A9:42:1E:F2:67:DF:0F:ED:5F:7C:4C:51:3F Certificate issuer: /CN=A9160C9E/serialNumber=100D9AEE91D227FE475934F2978C3617D8CFA8EE Certificate serial: 0116 Authority key identifier: 10:0D:9A:EE:91:D2:27:FE:47:59:34:F2:97:8C:36:17:D8:CF:A8:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:10:31 +0000 ROA not before: Sun 19 Oct 2025 09:12:59 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153365 IP address blocks: 2401:cf20::/32 maxlen: 32 2401:cf20::/33 maxlen: 36 2401:cf20:8000::/33 maxlen: 35 2401:cf20:8000::/35 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.crl rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:09:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C9E, serialNumber=100D9AEE91D227FE475934F2978C3617D8CFA8EE Validity Not Before: Oct 19 09:12:59 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a41ea7-8723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3d:79:aa:50:b5:1d:66:85:45:d9:1a:d1:cc: 4a:66:29:f7:ff:75:8d:65:c9:81:b6:b8:32:9a:dd: a2:dc:84:ae:a3:33:1c:b5:fa:9b:22:ce:5e:77:c4: 31:15:c9:a7:21:27:c1:3b:a5:62:c6:45:a3:00:84: 36:1d:37:e6:b3:8b:e3:9d:5a:4f:8d:da:03:e0:e8: 5a:65:8e:88:e1:b6:3d:e9:db:ae:b6:28:7e:80:9e: e5:77:e2:41:a0:67:2a:f4:d1:21:5a:95:17:d6:38: f9:fc:a5:a5:5c:aa:00:e5:70:2d:76:73:5a:96:a8: 0e:84:0a:46:84:d6:6f:58:94:4f:69:83:de:90:41: 5a:9e:bb:23:07:88:25:56:fa:3c:9a:c8:de:1a:25: 1e:b3:29:83:47:e7:14:9f:6b:fd:4c:1b:da:b2:7e: 1b:4b:b9:fb:87:f8:de:eb:85:56:df:a3:45:0f:ee: 6a:fc:c3:4a:b2:39:39:ea:3f:77:c9:3f:f8:52:31: 28:ca:11:2c:60:f3:82:9d:85:c1:9f:bc:4c:56:4c: 09:40:34:26:40:44:52:7d:c3:04:13:46:fa:80:9d: b1:aa:9d:79:3b:1d:16:07:65:4b:5d:4b:3c:d5:4c: c0:54:20:e8:4a:49:21:3f:30:6a:d9:74:59:43:2f: 98:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:28:FF:75:DA:8B:2E:A9:42:1E:F2:67:DF:0F:ED:5F:7C:4C:51:3F X509v3 Authority Key Identifier: keyid:10:0D:9A:EE:91:D2:27:FE:47:59:34:F2:97:8C:36:17:D8:CF:A8:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EA2a7pHSJ_5HWTTyl4w2F9jPqO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C9E/57FF4BCA8BCA11EFABFC1A39C4F9AE02/44B65A3890FF11EFA6BECB58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:cf20::/32 Signature Algorithm: sha256WithRSAEncryption 03:70:57:df:ce:95:84:42:3c:8e:eb:2b:06:19:8c:c0:9e:d9: f5:94:86:c9:ea:8a:88:d7:d1:e7:87:71:ec:e1:b1:ea:60:9a: 7a:09:7a:5a:e1:80:42:e7:ef:0a:b6:c7:a5:de:90:28:23:0d: e0:18:bd:d2:6c:d9:15:f4:ca:cc:42:06:bd:ef:cd:90:e2:d9: 39:7c:91:10:0e:fb:59:6f:5e:1b:74:af:a5:f9:cf:bd:52:52: 17:a5:03:e9:52:30:01:1b:d6:cb:b1:c9:65:a7:8d:74:04:2b: 9a:15:18:69:17:6b:2e:0e:f5:9f:3d:00:b8:aa:6f:47:29:37: 3d:1e:3e:dc:cf:ad:7a:36:8f:4e:92:f1:dc:d8:b0:18:9f:b6: d1:88:26:5f:fc:10:7f:e7:c1:dc:34:30:0b:2d:b6:5b:e1:54: 8f:4a:18:09:6d:d7:b0:cb:04:21:37:c5:52:7d:e4:6e:18:35: 2a:ac:7e:25:ed:55:b6:33:c4:ab:62:7b:d4:fa:6e:03:cf:68: 13:92:b8:2b:c8:c7:e8:dc:2d:92:0f:b4:18:88:38:01:c3:0d: 11:5c:8b:ca:8f:40:5a:57:0b:7f:04:d6:1d:b8:4b:ab:b7:b7: 44:37:2d:72:0e:0a:5e:00:ba:68:52:01:7b:4d:bd:88:3d:14: 64:cf:da:96 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOUUxMTAvBgNVBAUTKDEwMEQ5QUVFOTFEMjI3RkU0NzU5MzRGMjk3OEMzNjE3 RDhDRkE4RUUwHhcNMjUxMDE5MDkxMjU5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWVhNy04NzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2T15qlC1HWaFRdka0cxKZin3/3WNZcmBtrgymt2i3ISuozMctfqbIs5ed8Qx FcmnISfBO6VixkWjAIQ2HTfms4vjnVpPjdoD4OhaZY6I4bY96duutih+gJ7ld+JB oGcq9NEhWpUX1jj5/KWlXKoA5XAtdnNalqgOhApGhNZvWJRPaYPekEFanrsjB4gl Vvo8msjeGiUesymDR+cUn2v9TBvasn4bS7n7h/je64VW36NFD+5q/MNKsjk56j93 yT/4UjEoyhEsYPOCnYXBn7xMVkwJQDQmQERSfcMEE0b6gJ2xqp15Ox0WB2VLXUs8 1UzAVCDoSkkhPzBq2XRZQy+YIQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFO4o/3Xa iy6pQh7yZ98P7V98TFE/MB8GA1UdIwQYMBaAFBANmu6R0if+R1k08peMNhfYz6ju MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5RS81N0ZGNEJDQThC Q0ExMUVGQUJGQzFBMzlDNEY5QUUwMi9FQTJhN3BIU0pfNUhXVFR5bDR3MkY5alBx TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBMmE3cEhTSl81SFdUVHlsNHcyRjlqUHFPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBDOUUvNTdGRjRCQ0E4QkNBMTFFRkFCRkMxQTM5QzRGOUFFMDIvNDRCNjVBMzg5 MEZGMTFFRkE2QkVDQjU4QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHPIDANBgkqhkiG9w0BAQsFAAOCAQEAA3BX386VhEI8jusrBhmM wJ7Z9ZSGyeqKiNfR54dx7OGx6mCaegl6WuGAQufvCrbHpd6QKCMN4Bi90mzZFfTK zEIGve/NkOLZOXyREA77WW9eG3SvpfnPvVJSF6UD6VIwARvWy7HJZaeNdAQrmhUY aRdrLg71nz0AuKpvRyk3PR4+3M+tejaPTpLx3NiwGJ+20YgmX/wQf+fB3DQwCy22 W+FUj0oYCW3XsMsEITfFUn3kbhg1Kqx+Je1VtjPEq2J71PpuA89oE5K4K8jH6Nwt kg+0GIg4AcMNEVyLyo9AWlcLfwTWHbhLq7e3RDctcg4KXgC6aFIBe029iD0UZM/a lg== -----END CERTIFICATE-----Generated at Thu Mar 26 07:22:49 2026 by rpki-client