$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa File: A6449CBA54A011EFB35AED26C4F9AE02.roa (raw, json) Hash identifier: AJTS1uac5xr56izQXzMX4fYwq+Z9F06HUjaUX+s4Dl4= Subject key identifier: E0:32:5E:4E:CA:72:63:02:18:2E:E5:CE:21:ED:0C:87:23:B2:25:6B Certificate issuer: /CN=A9163EB9/serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Certificate serial: 0131 Authority key identifier: 3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:51:28 +0000 ROA not before: Tue 23 Sep 2025 06:25:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131108 IP address blocks: 2401:b860::/32 maxlen: 32 2401:b860::/36 maxlen: 36 2401:b860:1000::/36 maxlen: 36 2401:b860:2000::/36 maxlen: 36 2401:b860:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EB9, serialNumber=3CC7790E2037665EF4962B81DAD2FD07ED46F8B2 Validity Not Before: Sep 23 06:25:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a595e0-d7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2f:02:4b:59:11:5e:3e:08:d9:b6:35:64:d1: 04:32:32:90:eb:bc:6f:b2:04:a4:5f:1a:b4:83:2b: b8:3d:03:b9:18:8b:e5:ea:8f:e0:8e:b8:f6:fe:8c: 3f:a8:a9:ec:7b:ca:82:60:8a:cd:62:1c:e4:04:85: 3c:9d:d8:0c:05:12:a3:2b:de:a3:a8:b6:ba:f1:ae: 82:99:0f:b4:cc:f3:d5:3b:f5:e1:71:bc:d6:24:aa: b3:f2:f4:b6:c6:dc:e0:15:22:70:f6:2b:79:d9:69: 2c:51:8f:65:fb:41:9e:f0:b0:ff:4f:e6:26:9e:3b: 79:c0:29:95:00:1d:e8:ee:3e:1e:fe:95:42:77:72: 2b:69:34:ad:c3:b2:1f:5f:49:ce:5e:49:65:98:c9: 15:1b:4b:27:70:73:44:63:cc:e5:a9:8e:ec:a7:99: 25:b5:33:2c:12:8a:b5:62:67:a3:96:94:44:82:77: b5:34:b9:38:3f:da:bc:bc:0a:a7:ef:47:5e:06:55: 7a:c1:4e:c2:21:fa:10:a6:61:10:29:75:07:68:df: cc:c0:ab:f2:60:3f:01:9e:e3:70:19:98:a5:73:03: fe:6e:02:5a:17:8d:00:9e:29:ab:fe:ea:f8:f7:a5: 3b:67:ef:46:ed:e0:6b:73:2a:db:31:73:dc:5a:98: df:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:32:5E:4E:CA:72:63:02:18:2E:E5:CE:21:ED:0C:87:23:B2:25:6B X509v3 Authority Key Identifier: keyid:3C:C7:79:0E:20:37:66:5E:F4:96:2B:81:DA:D2:FD:07:ED:46:F8:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/PMd5DiA3Zl70liuB2tL9B-1G-LI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PMd5DiA3Zl70liuB2tL9B-1G-LI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EB9/051C9E6454A011EF86AE5922C4F9AE02/A6449CBA54A011EFB35AED26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:b860::/32 Signature Algorithm: sha256WithRSAEncryption 05:59:ea:c6:fc:72:1b:66:3f:79:35:92:71:d5:64:39:5d:a5: 95:2b:58:d7:54:32:25:d8:30:41:e9:3d:91:ec:ea:22:28:f9: 90:1b:5b:d7:c6:3d:62:91:b9:22:49:d1:fe:7b:0b:3e:bb:ad: a9:4b:36:fd:92:cb:0f:3d:0d:9d:c7:61:fe:7f:1f:0a:f6:b9: 4d:f3:57:8e:58:e9:2f:39:14:bd:8c:a2:14:94:df:5e:40:07: 11:95:6d:91:a2:3f:e4:0c:fc:54:dd:31:2a:62:fa:20:3f:40: 2a:92:a3:2f:18:be:da:0d:51:81:41:91:14:ca:ea:b9:00:e1: 54:f6:99:3a:24:a1:e7:25:d3:44:87:4b:49:fc:45:5f:73:e3: 9b:ab:ce:de:55:f3:6a:94:d9:62:19:54:cd:3a:35:8b:f9:1a: d0:37:af:38:b2:f2:75:1a:63:bc:21:6b:92:71:10:bd:54:0a: 13:7f:8e:a1:de:51:c0:59:e1:00:15:87:d7:e4:d1:1b:e5:5d: 48:da:a9:bc:56:47:1e:98:ab:4d:93:84:6b:89:ea:28:2f:85: 0e:92:dd:4d:a2:86:d6:e3:a2:4d:f1:48:24:8e:ac:9a:a8:78: 1d:32:73:a1:ef:5c:f3:34:81:d9:6c:2d:c8:f2:9c:3c:03:dc: 5c:38:75:b6 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFQjkxMTAvBgNVBAUTKDNDQzc3OTBFMjAzNzY2NUVGNDk2MkI4MURBRDJGRDA3 RUQ0NkY4QjIwHhcNMjUwOTIzMDYyNTM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTVlMC1kN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyi8CS1kRXj4I2bY1ZNEEMjKQ67xvsgSkXxq0gyu4PQO5GIvl6o/gjrj2/ow/ qKnse8qCYIrNYhzkBIU8ndgMBRKjK96jqLa68a6CmQ+0zPPVO/XhcbzWJKqz8vS2 xtzgFSJw9it52WksUY9l+0Ge8LD/T+Ymnjt5wCmVAB3o7j4e/pVCd3IraTStw7If X0nOXkllmMkVG0sncHNEY8zlqY7sp5kltTMsEoq1YmejlpREgne1NLk4P9q8vAqn 70deBlV6wU7CIfoQpmEQKXUHaN/MwKvyYD8BnuNwGZilcwP+bgJaF40Animr/ur4 96U7Z+9G7eBrcyrbMXPcWpjfVQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFOAyXk7K cmMCGC7lziHtDIcjsiVrMB8GA1UdIwQYMBaAFDzHeQ4gN2Ze9JYrgdrS/QftRviy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VCOS8wNTFDOUU2NDU0 QTAxMUVGODZBRTU5MjJDNEY5QUUwMi9QTWQ1RGlBM1psNzBsaXVCMnRMOUItMUct TEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BNZDVEaUEzWmw3MGxpdUIydEw5Qi0xRy1MSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjNFQjkvMDUxQzlFNjQ1NEEwMTFFRjg2QUU1OTIyQzRGOUFFMDIvQTY0NDlDQkE1 NEEwMTFFRkIzNUFFRDI2QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAG4YDANBgkqhkiG9w0BAQsFAAOCAQEABVnqxvxyG2Y/eTWScdVk OV2llStY11QyJdgwQek9kezqIij5kBtb18Y9YpG5IknR/nsLPrutqUs2/ZLLDz0N ncdh/n8fCva5TfNXjljpLzkUvYyiFJTfXkAHEZVtkaI/5Az8VN0xKmL6ID9AKpKj Lxi+2g1RgUGRFMrquQDhVPaZOiSh5yXTRIdLSfxFX3Pjm6vO3lXzapTZYhlUzTo1 i/ka0DevOLLydRpjvCFrknEQvVQKE3+Ood5RwFnhABWH1+TRG+VdSNqpvFZHHpir TZOEa4nqKC+FDpLdTaKG1uOiTfFIJI6smqh4HTJzoe9c8zSB2WwtyPKcPAPcXDh1 tg== -----END CERTIFICATE-----Generated at Thu Mar 26 17:58:42 2026 by rpki-client