$ rpki-client -vvf rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/E984A66AAC3211F09AD8CA60C4F9AE02.roa File: E984A66AAC3211F09AD8CA60C4F9AE02.roa (raw, json) Hash identifier: K3c5oq/qmuRX+k4/b8uhhcLi8asZQ+2HUoQXvrhiTHA= Subject key identifier: 52:5E:E1:D2:C0:82:E4:06:56:52:F2:54:13:C1:4E:EC:99:90:2A:21 Certificate issuer: /CN=A9178E49/serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Certificate serial: 0948 Authority key identifier: 2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/E984A66AAC3211F09AD8CA60C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:47:05 +0000 ROA not before: Sat 18 Oct 2025 14:58:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140877 IP address blocks: 2400:dc60::/32 maxlen: 32 2400:dc60::/48 maxlen: 48 2400:dc60:1::/48 maxlen: 48 2400:dc60:2::/48 maxlen: 48 2400:dc60:3::/48 maxlen: 48 2400:dc60:4::/48 maxlen: 48 2400:dc60:5::/48 maxlen: 48 2400:dc60:6::/48 maxlen: 48 2400:dc60:7::/48 maxlen: 48 2400:dc60:8::/48 maxlen: 48 2400:dc60:9::/48 maxlen: 48 2400:dc60:a::/48 maxlen: 48 2400:dc60:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 20:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2376 (0x948) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178E49, serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Validity Not Before: Oct 18 14:58:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a61369-9377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:65:cb:d1:50:24:fa:59:99:ec:5d:8e:f9:27: ce:84:03:3c:fd:a1:6c:91:68:30:87:61:32:48:c3: ab:02:f2:b4:74:fc:97:f1:06:e4:d8:c4:79:eb:b4: 6f:5d:a6:35:86:6f:0d:0a:c1:ea:16:f5:2f:57:78: 64:05:e7:e2:fa:94:75:82:dc:6c:5e:98:a0:39:cc: 1f:cd:9c:f9:ad:2d:aa:26:c8:ed:81:93:d8:46:f3: fd:63:8b:58:9e:15:dc:2d:49:5b:b6:fd:03:4b:19: f4:f1:a4:46:a0:3e:fd:e2:0b:bf:f2:18:d5:7b:c5: e6:16:f3:72:eb:88:fa:6a:71:d2:ce:1d:49:e2:89: 55:a4:7c:69:da:42:c4:75:c1:c9:0c:6f:6f:f2:72: 49:12:aa:36:10:64:96:18:91:be:26:6f:07:d6:3b: 95:fc:d1:91:4a:7c:ba:b2:ea:d2:12:d5:11:d5:83: 1f:e2:46:85:03:7b:5f:10:65:d3:c9:a0:bd:ff:f9: bd:7e:30:e5:e3:ec:2a:08:97:16:f8:c4:63:fe:f3: 7c:7f:21:e4:d6:cc:88:e3:f7:e4:91:a5:f4:79:8c: 78:b0:1a:57:1b:9b:19:85:37:f7:db:e3:d9:ca:ab: ef:cd:99:17:e3:4c:a7:aa:53:9d:86:b9:f3:c0:c3: 80:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:5E:E1:D2:C0:82:E4:06:56:52:F2:54:13:C1:4E:EC:99:90:2A:21 X509v3 Authority Key Identifier: keyid:2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/E984A66AAC3211F09AD8CA60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:dc60::/32 Signature Algorithm: sha256WithRSAEncryption 93:46:9a:65:16:b4:1b:8c:42:96:c3:1c:40:52:c0:ab:71:8b: 76:17:58:33:a1:5d:d5:91:37:64:80:5a:90:da:5c:24:36:83: 35:93:92:c7:6b:41:07:4f:c2:b9:95:7c:f8:26:8d:e8:25:b8: 0f:c8:61:e3:e9:d5:3c:d9:63:2d:77:29:42:a7:e9:d0:13:4d: 78:1f:a2:98:b6:fd:97:4e:ce:bd:ae:86:8e:39:b6:9d:71:0e: 57:ca:b9:7c:b0:59:60:c3:6d:a8:da:60:c7:23:8a:c4:f2:81: a2:2e:c7:ab:89:eb:5c:34:47:21:8f:a3:6b:af:59:f6:17:03: a3:79:d6:56:71:16:0a:0a:94:de:2f:6c:91:82:2a:eb:c3:13: 47:f9:ed:a5:69:7b:5b:44:5b:e2:51:cd:29:a3:71:fe:85:42: 8a:07:03:71:42:8e:9e:2b:d6:51:89:62:64:7a:1d:41:f5:14: 83:9d:64:97:2e:5d:9f:f2:46:2f:9c:64:c1:27:fd:3b:22:d8: 38:7e:43:47:9d:09:e2:3e:79:13:8d:4d:55:d0:f2:31:f4:f9: 83:6b:a2:23:3f:d1:18:46:48:9d:4a:43:29:b0:f9:df:45:1c: 4e:66:e7:86:7b:35:90:46:9d:a7:1f:b7:1c:53:34:31:0e:45: c9:16:94:9d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFNDkxMTAvBgNVBAUTKDJEM0RGQjVFMjIxMkIyOTA1ODY4QjE3NzE2N0Q1NDhC MERGRTNDRjQwHhcNMjUxMDE4MTQ1ODMyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MTM2OS05Mzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnWXL0VAk+lmZ7F2O+SfOhAM8/aFskWgwh2EySMOrAvK0dPyX8Qbk2MR567Rv XaY1hm8NCsHqFvUvV3hkBefi+pR1gtxsXpigOcwfzZz5rS2qJsjtgZPYRvP9Y4tY nhXcLUlbtv0DSxn08aRGoD794gu/8hjVe8XmFvNy64j6anHSzh1J4olVpHxp2kLE dcHJDG9v8nJJEqo2EGSWGJG+Jm8H1juV/NGRSny6surSEtUR1YMf4kaFA3tfEGXT yaC9//m9fjDl4+wqCJcW+MRj/vN8fyHk1syI4/fkkaX0eYx4sBpXG5sZhTf32+PZ yqvvzZkX40ynqlOdhrnzwMOA0QIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFFJe4dLA guQGVlLyVBPBTuyZkCohMB8GA1UdIwQYMBaAFC09+14iErKQWGixdxZ9VIsN/jz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEU0OS8zRjAyMDI0NkJF MTIxMUVBQkI2MEEyODJDNEY5QUUwMi9MVDM3WGlJU3NwQllhTEYzRm4xVWl3My1Q UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUMzdYaUlTc3BCWWFMRjNGbjFVaXczLVBQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFNDkvM0YwMjAyNDZCRTEyMTFFQUJCNjBBMjgyQzRGOUFFMDIvRTk4NEE2NkFB QzMyMTFGMDlBRDhDQTYwQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJADcYDANBgkqhkiG9w0BAQsFAAOCAQEAk0aaZRa0G4xClsMcQFLA q3GLdhdYM6Fd1ZE3ZIBakNpcJDaDNZOSx2tBB0/CuZV8+CaN6CW4D8hh4+nVPNlj LXcpQqfp0BNNeB+imLb9l07Ova6Gjjm2nXEOV8q5fLBZYMNtqNpgxyOKxPKBoi7H q4nrXDRHIY+ja69Z9hcDo3nWVnEWCgqU3i9skYIq68MTR/ntpWl7W0Rb4lHNKaNx /oVCigcDcUKOnivWUYliZHodQfUUg51kly5dn/JGL5xkwSf9OyLYOH5DR50J4j55 E41NVdDyMfT5g2uiIz/RGEZInUpDKbD530UcTmbnhns1kEadpx+3HFM0MQ5FyRaU nQ== -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:14 2026 by rpki-client