$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/2D810A88AB4011EF849D9515C4F9AE02.roa File: 2D810A88AB4011EF849D9515C4F9AE02.roa (raw, json) Hash identifier: ReDU3pM6puyTOqvPDYn/OPZQZEhbfRxZyleb6fyedWE= Subject key identifier: 00:DB:4E:92:B1:A0:4F:0B:FC:8D:7E:75:A6:04:C6:F7:06:08:CF:4C Certificate issuer: /CN=A9172FC5/serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Certificate serial: F6 Authority key identifier: FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/2D810A88AB4011EF849D9515C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:08:41 +0000 ROA not before: Wed 03 Dec 2025 04:34:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 132233 IP address blocks: 2401:d820::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=FD88DEF9A6BDDBEA59389EDC6171AADCA106B509 Validity Not Before: Dec 3 04:34:19 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a58bd9-78c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:93:38:ce:34:19:1a:3f:15:2b:a8:12:5d:4e: ae:9c:b5:44:21:45:0d:3e:19:e0:e6:28:00:67:9c: 53:9c:dc:94:8c:fa:44:f2:35:95:98:83:c6:7b:fb: 1a:e0:ab:f9:6c:32:82:eb:8f:4e:6e:38:c8:19:be: 71:6d:44:23:d2:6d:11:32:e9:3b:b0:9f:ab:09:7a: b5:b9:91:57:fa:32:d7:fa:c3:16:7a:6f:df:d1:22: 58:ca:28:38:7b:fd:05:d1:9f:de:a9:1e:ab:49:5c: f0:ee:64:e1:a9:cc:c9:6f:0e:b6:53:78:a5:0a:91: 45:e3:fa:17:3b:45:ac:ef:1e:d8:7d:57:fd:40:f7: a8:da:d0:c1:3a:91:07:fa:e5:b2:83:8a:1e:e3:fa: 9e:59:86:f6:ac:b0:c7:ee:98:b4:9e:a9:95:67:5a: 5b:a8:d2:a1:1f:c0:96:71:0a:32:c4:eb:3d:43:da: 6d:dd:ca:6c:42:5f:37:6c:06:7c:90:7e:59:bf:8e: e0:1f:ee:e3:66:0f:d5:97:7d:d5:ef:e6:56:13:36: 1a:db:9f:e9:d4:92:3a:09:25:c1:58:5d:8e:9d:66: 27:1b:b2:56:34:a9:c5:e5:02:d8:df:74:6f:e9:ae: 71:b6:6e:09:57:d2:a5:eb:a8:93:bd:42:a2:53:eb: a0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:DB:4E:92:B1:A0:4F:0B:FC:8D:7E:75:A6:04:C6:F7:06:08:CF:4C X509v3 Authority Key Identifier: keyid:FD:88:DE:F9:A6:BD:DB:EA:59:38:9E:DC:61:71:AA:DC:A1:06:B5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/_Yje-aa92-pZOJ7cYXGq3KEGtQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Yje-aa92-pZOJ7cYXGq3KEGtQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/EDABD230AB3F11EFBE02CF14C4F9AE02/2D810A88AB4011EF849D9515C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:d820::/32 Signature Algorithm: sha256WithRSAEncryption 9f:a9:9d:1e:04:10:a0:5e:28:36:ef:73:6a:4e:53:0b:3e:f1: e1:9d:50:3a:3c:19:00:b2:17:f6:0c:b6:92:e9:b4:06:00:7b: 34:37:c8:e7:1c:ac:0e:c8:5a:8b:d5:84:a8:62:e2:46:83:75: c9:5c:ae:75:27:9d:37:99:1e:7c:59:41:82:1b:e7:f7:42:7e: c1:de:b0:3f:fb:a1:e7:ea:b7:2c:7e:e8:04:9f:77:a5:0e:d9: da:83:dd:db:c6:7a:24:1f:2a:e6:a3:b2:71:0b:65:65:8b:d4: 91:a0:36:1e:42:6d:b0:ea:b9:8c:3d:79:28:0b:6c:5e:9a:7a: fa:94:d4:cd:04:b0:06:09:c1:eb:16:24:af:28:eb:09:e6:4c: 25:99:ee:88:01:f3:b1:63:28:b7:c2:07:8e:ed:d9:83:f5:0f: fc:17:54:73:3f:44:43:e2:5c:db:26:a4:8e:a0:1f:6f:27:b7: 12:7f:50:88:a1:9d:cc:96:67:ba:0f:8d:d2:54:a0:0b:f2:7f: 54:00:23:af:65:52:1f:87:5e:61:00:f4:52:72:cf:3c:ae:97: bc:58:b7:27:21:d9:92:b0:4d:d0:2e:34:2c:c5:41:f0:8f:3e: 06:93:0f:ac:65:74:4d:a9:10:e0:81:00:6f:49:bd:4b:c2:6d: 4a:1e:19:20 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEZEODhERUY5QTZCRERCRUE1OTM4OUVEQzYxNzFBQURD QTEwNkI1MDkwHhcNMjUxMjAzMDQzNDE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGJkOS03OGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5M4zjQZGj8VK6gSXU6unLVEIUUNPhng5igAZ5xTnNyUjPpE8jWVmIPGe/sa 4Kv5bDKC649ObjjIGb5xbUQj0m0RMuk7sJ+rCXq1uZFX+jLX+sMWem/f0SJYyig4 e/0F0Z/eqR6rSVzw7mThqczJbw62U3ilCpFF4/oXO0Ws7x7YfVf9QPeo2tDBOpEH +uWyg4oe4/qeWYb2rLDH7pi0nqmVZ1pbqNKhH8CWcQoyxOs9Q9pt3cpsQl83bAZ8 kH5Zv47gH+7jZg/Vl33V7+ZWEzYa25/p1JI6CSXBWF2OnWYnG7JWNKnF5QLY33Rv 6a5xtm4JV9Kl66iTvUKiU+ugswIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFADbTpKx oE8L/I1+daYExvcGCM9MMB8GA1UdIwQYMBaAFP2I3vmmvdvqWTie3GFxqtyhBrUJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FREFCRDIzMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9fWWplLWFhOTItcFpPSjdjWVhHcTNLRUd0 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ZamUtYWE5Mi1wWk9KN2NZWEdxM0tFR3RRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJGQzUvRURBQkQyMzBBQjNGMTFFRkJFMDJDRjE0QzRGOUFFMDIvMkQ4MTBBODhB QjQwMTFFRjg0OUQ5NTE1QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHYIDANBgkqhkiG9w0BAQsFAAOCAQEAn6mdHgQQoF4oNu9zak5T Cz7x4Z1QOjwZALIX9gy2kum0BgB7NDfI5xysDshai9WEqGLiRoN1yVyudSedN5ke fFlBghvn90J+wd6wP/uh5+q3LH7oBJ93pQ7Z2oPd28Z6JB8q5qOycQtlZYvUkaA2 HkJtsOq5jD15KAtsXpp6+pTUzQSwBgnB6xYkryjrCeZMJZnuiAHzsWMot8IHju3Z g/UP/BdUcz9EQ+Jc2yakjqAfbye3En9QiKGdzJZnug+N0lSgC/J/VAAjr2VSH4de YQD0UnLPPK6XvFi3JyHZkrBN0C40LMVB8I8+BpMPrGV0TakQ4IEAb0m9S8JtSh4Z IA== -----END CERTIFICATE-----Generated at Fri Mar 27 01:28:24 2026 by rpki-client