$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/60B3CD6EAF2E11EEBF12DF45C4F9AE02.roa File: 60B3CD6EAF2E11EEBF12DF45C4F9AE02.roa (raw, json) Hash identifier: k6OuevF23aA2TplDmcNj+qm0rXJRW20WiPv4Wp1+30E= Subject key identifier: 90:28:91:45:0A:92:7A:BD:28:E0:9C:DD:1A:8D:05:97:71:86:B5:AB Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0F22 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/60B3CD6EAF2E11EEBF12DF45C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:38:33 +0000 ROA not before: Tue 02 Sep 2025 18:37:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 23077 IP address blocks: 2405:84c0:3000::/36 maxlen: 40 2405:84c0:5e00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:41:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3874 (0xf22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:37:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a487a9-73cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4f:20:97:b7:8c:d7:52:64:30:d0:93:29:7a: 07:f8:2d:31:1f:bd:47:0f:97:82:e5:82:8f:7d:cc: b7:f3:b1:27:e3:32:82:20:45:35:5c:71:92:70:2f: 1c:16:3d:27:42:f1:ed:1e:30:58:79:e4:63:44:31: b5:1a:bf:66:b8:73:56:41:b5:89:63:24:cd:91:14: 52:5d:3f:90:b0:d5:24:e0:5d:a5:a1:29:6e:c2:16: 1e:86:06:10:e0:74:b4:fa:84:46:f6:4a:aa:d8:09: e1:07:16:e9:d2:42:8b:42:f6:b4:69:0b:33:e0:43: 4c:1e:0a:db:d6:ea:15:cf:a8:6c:76:0f:a8:5c:b8: 6f:8f:f4:84:e1:e1:f0:1e:40:f0:73:38:a5:3f:c8: 01:02:33:b3:62:70:94:9d:13:03:83:73:80:39:86: 42:bb:26:df:9f:fd:eb:b5:ec:13:f7:49:41:d6:82: 89:59:c2:54:ed:e1:28:24:ff:ae:ac:04:10:80:7a: 45:fe:13:b8:ba:8a:3e:13:f1:80:ee:e5:ec:79:c0: 39:80:e5:15:a8:b7:c3:6e:a2:f7:4f:03:14:02:fe: de:71:aa:e5:a2:94:53:c7:12:5c:24:8b:11:80:0d: af:62:c5:5c:54:3a:20:4c:1d:5a:1c:a7:8d:6d:c6: dd:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:28:91:45:0A:92:7A:BD:28:E0:9C:DD:1A:8D:05:97:71:86:B5:AB X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/60B3CD6EAF2E11EEBF12DF45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:84c0:3000::/36 2405:84c0:5e00::/40 Signature Algorithm: sha256WithRSAEncryption 6a:c1:b8:ef:23:00:77:70:17:3f:7d:9e:55:4d:59:b3:62:63: 1b:9d:72:26:ae:93:a1:4f:0f:11:f4:1d:04:ec:92:96:f1:a7: c9:7b:94:4b:c3:b3:33:85:6a:66:ca:86:5b:8e:d2:69:9b:4f: da:be:69:0e:0f:83:8e:ec:34:83:f2:7a:d8:a4:46:c3:21:79: 44:c5:67:00:4f:a7:50:c5:dd:b3:d1:ce:ea:23:e9:2f:c7:1e: 14:9d:23:57:85:fd:43:27:b8:2c:5f:44:ce:b7:2f:db:c8:12: e2:8d:02:e1:b9:05:c3:fb:da:e5:08:81:a0:cb:61:3b:39:44: 23:ca:8d:05:e0:ae:08:d7:e2:1d:f5:9a:41:c0:74:38:6b:6d: 35:5d:af:c4:84:1c:9d:a9:68:a8:05:ce:14:eb:87:4b:5c:81: a1:9a:89:48:30:65:b3:5d:17:7a:fe:9e:a1:e0:1e:41:02:ed: 56:7e:41:a2:f1:93:cf:4c:75:ab:4c:f6:87:cb:7a:8b:89:ba: 2e:df:16:66:73:5b:89:43:81:02:f1:91:09:78:64:d1:58:46: 3d:8f:cf:c7:22:81:80:fd:fd:c2:56:a5:32:70:8b:32:5d:68: 19:d7:e0:be:17:6e:88:87:1d:64:5b:c6:d6:15:05:e2:54:83: d7:ca:eb:1d -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgICDyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzNzU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdhOS03M2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq08gl7eM11JkMNCTKXoH+C0xH71HD5eC5YKPfcy387En4zKCIEU1XHGScC8c Fj0nQvHtHjBYeeRjRDG1Gr9muHNWQbWJYyTNkRRSXT+QsNUk4F2loSluwhYehgYQ 4HS0+oRG9kqq2AnhBxbp0kKLQva0aQsz4ENMHgrb1uoVz6hsdg+oXLhvj/SE4eHw HkDwczilP8gBAjOzYnCUnRMDg3OAOYZCuybfn/3rtewT90lB1oKJWcJU7eEoJP+u rAQQgHpF/hO4uoo+E/GA7uXsecA5gOUVqLfDbqL3TwMUAv7ecarlopRTxxJcJIsR gA2vYsVcVDogTB1aHKeNbcbdwQIDAQABo4ICajCCAmYwHQYDVR0OBBYEFJAokUUK knq9KOCc3RqNBZdxhrWrMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNjBCM0NENkVB RjJFMTFFRUJGMTJERjQ1QzRGOUFFMDIucm9hMCkGCCsGAQUFBwEHAQH/BBowGDAW BAIAAjAQAwYEJAWEwDADBgAkBYTAXjANBgkqhkiG9w0BAQsFAAOCAQEAasG47yMA d3AXP32eVU1Zs2JjG51yJq6ToU8PEfQdBOySlvGnyXuUS8OzM4VqZsqGW47SaZtP 2r5pDg+Djuw0g/J62KRGwyF5RMVnAE+nUMXds9HO6iPpL8ceFJ0jV4X9Qye4LF9E zrcv28gS4o0C4bkFw/va5QiBoMthOzlEI8qNBeCuCNfiHfWaQcB0OGttNV2vxIQc naloqAXOFOuHS1yBoZqJSDBls10Xev6eoeAeQQLtVn5BovGTz0x1q0z2h8t6i4m6 Lt8WZnNbiUOBAvGRCXhk0VhGPY/PxyKBgP39wlalMnCLMl1oGdfgvhduiIcdZFvG 1hUF4lSD18rrHQ== -----END CERTIFICATE-----Generated at Sat Mar 7 13:29:10 2026 by rpki-client