$ rpki-client -vvf rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/5B4D02987E5B11F09260CE56C4F9AE02.roa File: 5B4D02987E5B11F09260CE56C4F9AE02.roa (raw, json) Hash identifier: YSqNnOxJ+Xkes9UNemwulrLNoP9a1fzLC+DIw2bAtgY= Subject key identifier: 28:D9:6B:16:FD:49:C8:8C:B6:F9:0B:FF:99:66:06:C4:F4:9D:0C:C5 Certificate issuer: /CN=A919A777/serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Certificate serial: 01C1 Authority key identifier: 64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/5B4D02987E5B11F09260CE56C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:14:36 +0000 ROA not before: Fri 21 Nov 2025 19:24:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 205927 IP address blocks: 2403:ad80:5012::/48 maxlen: 48 2403:ad80:5015::/48 maxlen: 48 2403:ad80:5016::/48 maxlen: 48 2403:ad80:5017::/48 maxlen: 48 2403:ad80:5019::/48 maxlen: 48 2403:ad80:5020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A777, serialNumber=647D0927DB3B178E2F654A3268557FE5B5D6729C Validity Not Before: Nov 21 19:24:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4820c-d844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d4:dd:bc:02:bc:d1:3e:34:39:8f:d3:5b:e8: e6:62:81:ca:2d:de:29:17:c9:2e:32:98:f0:1c:87: d0:f1:e7:e5:51:5f:cf:6c:11:48:7a:97:01:a3:92: 1b:1d:e9:27:e9:e6:ea:20:fd:b1:4b:c5:e6:aa:b1: df:84:89:a0:18:89:d8:ca:89:6a:b6:39:a1:38:89: c0:8c:cb:09:f8:7b:de:98:6b:ec:9f:76:4e:d0:14: 75:66:65:5e:bc:24:41:a0:cd:3e:1e:d9:ce:e0:3d: 50:3d:51:0c:79:f5:e9:ce:dc:cd:aa:55:3f:d4:60: 7f:a5:c8:84:78:fe:11:63:2d:bb:0c:74:15:6f:a7: 50:eb:7f:9c:bf:7c:e2:de:11:0d:a8:16:79:a1:5f: 73:10:ec:f2:c1:9a:c9:e4:90:15:e7:44:49:e9:90: 57:31:eb:e2:68:c3:a8:c5:c7:bf:d6:2c:97:97:2e: 6d:14:e1:14:c1:f3:db:4a:1a:6b:b2:fe:3f:6f:d1: 70:50:0e:b3:1f:40:06:51:d1:52:df:ca:7c:37:15: 06:fc:48:88:a2:11:11:64:3d:84:78:6a:36:29:f4: 41:9e:14:ef:62:0f:35:54:fe:93:14:88:8b:cc:cf: 34:52:0d:00:c9:9e:46:96:a6:61:59:fd:f9:06:e8: cc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D9:6B:16:FD:49:C8:8C:B6:F9:0B:FF:99:66:06:C4:F4:9D:0C:C5 X509v3 Authority Key Identifier: keyid:64:7D:09:27:DB:3B:17:8E:2F:65:4A:32:68:55:7F:E5:B5:D6:72:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH0JJ9s7F44vZUoyaFV_5bXWcpw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A777/0BA572B0EC4F11EEA1B38866C4F9AE02/5B4D02987E5B11F09260CE56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:ad80:5012::/48 2403:ad80:5015::-2403:ad80:5017:ffff:ffff:ffff:ffff:ffff 2403:ad80:5019::/48 2403:ad80:5020::/48 Signature Algorithm: sha256WithRSAEncryption 02:23:fe:c7:73:73:52:ad:26:29:c7:c6:23:42:35:69:4e:a9: f2:77:0f:ea:1a:02:49:89:18:04:0c:c8:60:a7:ad:0a:58:f3: 61:0e:92:7c:66:40:df:c2:57:f7:81:87:96:bb:8f:c7:e1:24: f8:51:a7:fa:f0:e4:c0:30:cf:3c:03:c5:40:14:99:84:2d:9d: 9f:12:97:3b:ce:19:82:2b:79:0e:12:08:61:c7:89:29:a3:28: 1d:d7:f2:8b:70:20:b4:9d:44:b1:86:7b:44:16:e7:3c:6b:08: 3b:9d:1b:48:a9:5d:f6:19:f0:8c:f8:72:05:5f:7c:33:ec:2c: 0d:f9:a9:66:fe:bc:ba:f6:63:7e:e4:8f:21:50:f9:a9:f9:d2: 71:3d:cd:56:66:80:6f:0e:91:8c:00:62:c1:f3:0f:e4:39:79: 59:f9:92:bc:18:2a:75:3b:99:62:7d:4e:34:e7:83:cd:09:31: 33:6d:ac:1d:f7:8d:eb:b4:26:aa:6a:91:33:21:61:60:6e:86: 86:a9:b9:d3:e7:99:d3:86:8c:4f:e3:4a:e4:64:89:74:a2:0e: be:7b:50:da:c5:a6:18:ac:91:4b:2a:c8:3b:b7:5e:4c:6e:65: 20:d7:9d:77:73:62:3f:14:82:78:48:87:e3:7e:31:a4:9a:fb: ba:ae:e4:69 -----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3NzcxMTAvBgNVBAUTKDY0N0QwOTI3REIzQjE3OEUyRjY1NEEzMjY4NTU3RkU1 QjVENjcyOUMwHhcNMjUxMTIxMTkyNDU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODIwYy1kODQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tTdvAK80T40OY/TW+jmYoHKLd4pF8kuMpjwHIfQ8eflUV/PbBFIepcBo5Ib Hekn6ebqIP2xS8XmqrHfhImgGInYyolqtjmhOInAjMsJ+HvemGvsn3ZO0BR1ZmVe vCRBoM0+HtnO4D1QPVEMefXpztzNqlU/1GB/pciEeP4RYy27DHQVb6dQ63+cv3zi 3hENqBZ5oV9zEOzywZrJ5JAV50RJ6ZBXMeviaMOoxce/1iyXly5tFOEUwfPbShpr sv4/b9FwUA6zH0AGUdFS38p8NxUG/EiIohERZD2EeGo2KfRBnhTvYg81VP6TFIiL zM80Ug0AyZ5GlqZhWf35BujMywIDAQABo4ICiTCCAoUwHQYDVR0OBBYEFCjZaxb9 SciMtvkL/5lmBsT0nQzFMB8GA1UdIwQYMBaAFGR9CSfbOxeOL2VKMmhVf+W11nKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTc3Ny8wQkE1NzJCMEVD NEYxMUVFQTFCMzg4NjZDNEY5QUUwMi9aSDBKSjlzN0Y0NHZaVW95YUZWXzViWFdj cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIMEpKOXM3RjQ0dlpVb3lhRlZfNWJYV2Nwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3NzcvMEJBNTcyQjBFQzRGMTFFRUExQjM4ODY2QzRGOUFFMDIvNUI0RDAyOTg3 RTVCMTFGMDkyNjBDRTU2QzRGOUFFMDIucm9hMEgGCCsGAQUFBwEHAQH/BDkwNzA1 BAIAAjAvAwcAJAOtgFASMBIDBwAkA62AUBUDBwMkA62AUBADBwAkA62AUBkDBwAk A62AUCAwDQYJKoZIhvcNAQELBQADggEBAAIj/sdzc1KtJinHxiNCNWlOqfJ3D+oa AkmJGAQMyGCnrQpY82EOknxmQN/CV/eBh5a7j8fhJPhRp/rw5MAwzzwDxUAUmYQt nZ8SlzvOGYIreQ4SCGHHiSmjKB3X8otwILSdRLGGe0QW5zxrCDudG0ipXfYZ8Iz4 cgVffDPsLA35qWb+vLr2Y37kjyFQ+an50nE9zVZmgG8OkYwAYsHzD+Q5eVn5krwY KnU7mWJ9TjTng80JMTNtrB33jeu0JqpqkTMhYWBuhoapudPnmdOGjE/jSuRkiXSi Dr57UNrFphiskUsqyDu3XkxuZSDXnXdzYj8UgnhIh+N+MaSa+7qu5Gk= -----END CERTIFICATE-----Generated at Thu Mar 26 09:22:56 2026 by rpki-client