$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/B8E9FF6C30D711F1A1164457AD833773.roa File: B8E9FF6C30D711F1A1164457AD833773.roa (raw, json) Hash identifier: Wi3AWfEJ5yfzp8iH/9sjzPZ0wWudSXoz7Qc3qdfL/zg= Subject key identifier: ED:51:7E:07:8A:C5:97:DB:E7:36:77:18:65:3B:21:D0:6F:6D:CC:77 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: F9 Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/B8E9FF6C30D711F1A1164457AD833773.roa Signing time: Sun 05 Apr 2026 10:10:50 +0000 ROA not before: Sun 05 Apr 2026 10:10:50 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 138512 IP address blocks: 2001:df5:21c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 10:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Apr 5 10:10:50 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d2352a-10af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:74:3c:e7:4f:50:01:2a:5b:5a:83:16:c3:a8: f6:87:ea:4f:c3:4d:a5:02:21:8d:90:f3:30:26:19: ce:4a:bd:96:1b:20:b1:56:9c:aa:f9:8c:1b:e7:cf: 68:2a:c8:a2:ae:77:16:f2:99:9b:73:6d:ea:d7:8d: 58:c8:3e:e2:ad:fe:b9:fc:4e:3c:b4:ed:c6:02:a1: 52:a7:43:3c:4b:84:e2:fb:b6:e6:79:15:8c:45:f0: 48:5f:eb:a8:fe:1f:33:cf:ea:73:b3:2a:43:04:2b: 0e:51:24:79:ce:80:8e:de:b8:45:0a:09:7a:80:4e: 5e:df:0a:57:30:6a:a2:54:8c:4b:a1:6d:00:4f:e4: d0:98:2c:85:99:21:f3:df:35:95:38:e4:1d:f8:c0: 3f:ba:2e:92:da:6c:59:94:1b:ca:d3:f8:b1:fe:86: 71:8f:42:4b:38:5d:1b:74:e4:34:de:fa:e3:fa:b7: 1b:02:92:96:6d:2d:84:9b:65:1d:3f:96:22:1d:3d: 33:e1:31:65:bd:53:3d:4b:1b:eb:b7:c4:78:5d:f2: 14:39:e5:89:8c:b9:9d:89:bf:51:96:d3:fa:33:21: e2:16:3b:11:8e:d2:d6:c1:8d:28:de:d0:d7:19:86: 2a:76:53:07:b2:eb:b0:e0:3f:87:ca:5b:cc:85:44: 2f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:51:7E:07:8A:C5:97:DB:E7:36:77:18:65:3B:21:D0:6F:6D:CC:77 X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/B8E9FF6C30D711F1A1164457AD833773.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:21c0::/48 Signature Algorithm: sha256WithRSAEncryption 2a:ed:d7:89:c6:09:25:c9:8f:6f:e6:77:bb:1a:a1:82:18:8c: 81:9e:ff:f0:da:c8:2f:90:d0:f0:31:e8:ad:1b:be:60:ac:43: 47:45:7d:5b:50:21:e5:10:6f:85:63:38:ca:49:17:f6:2b:71: 4d:46:7e:15:50:96:4c:ff:02:d0:8a:7f:ce:23:c8:5a:31:69: 44:10:50:45:5f:48:12:ca:22:9f:8b:77:56:29:7d:9e:bb:9c: 5d:16:f7:ec:09:e0:20:97:35:0b:55:55:e4:fb:29:9d:90:3d: 3f:ab:fd:f0:70:44:7d:94:0b:80:57:14:7e:c1:7b:f0:1f:df: 30:d1:15:a1:d9:67:8d:3c:3d:3d:d1:f6:09:89:da:b3:a8:00: 21:86:23:45:75:d2:4a:1e:a7:51:6d:8f:b7:c7:39:a5:d4:b2: c1:24:bd:3b:dc:37:98:b9:c4:ab:17:ce:f8:15:7c:68:6f:ef: 86:a8:07:5d:26:67:52:0e:94:9f:70:05:a3:35:c3:18:56:5e: cf:18:c4:c7:e7:a9:dd:3e:56:7a:47:f7:4b:91:dd:10:c6:28: ba:09:62:35:b5:82:00:c7:07:ec:80:71:7a:6f:14:e7:eb:5c: 6a:73:a7:2c:ee:d0:8b:5a:7f:38:2b:3b:c5:bf:fd:4e:d6:be: 01:5d:0c:00 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJDODkxMTAvBgNVBAUTKEIxNzRBM0Q0QkE5QjQ3NkUyQjMxRTQ3QzcyQTI5OEQw NDREOTg3ODUwHhcNMjYwNDA1MTAxMDUwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQyMzUyYS0xMGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHQ8509QASpbWoMWw6j2h+pPw02lAiGNkPMwJhnOSr2WGyCxVpyq+Ywb589o KsiirncW8pmbc23q141YyD7irf65/E48tO3GAqFSp0M8S4Ti+7bmeRWMRfBIX+uo /h8zz+pzsypDBCsOUSR5zoCO3rhFCgl6gE5e3wpXMGqiVIxLoW0AT+TQmCyFmSHz 3zWVOOQd+MA/ui6S2mxZlBvK0/ix/oZxj0JLOF0bdOQ03vrj+rcbApKWbS2Em2Ud P5YiHT0z4TFlvVM9Sxvrt8R4XfIUOeWJjLmdib9RltP6MyHiFjsRjtLWwY0o3tDX GYYqdlMHsuuw4D+HylvMhUQvDwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFO1RfgeK xZfb5zZ3GGU7IdBvbcx3MB8GA1UdIwQYMBaAFLF0o9S6m0duKzHkfHKimNBE2YeF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkM4OS85RTcyNjJCRUVG Q0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIyNHJNZVI4Y3FLWTBFVFpo NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkJDODkvOUU3MjYyQkVFRkNFMTFFRjg5M0ZGNzBFQzRGOUFFMDIvQjhFOUZGNkMz MEQ3MTFGMUExMTY0NDU3QUQ4MzM3NzMucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9SHAMA0GCSqGSIb3DQEBCwUAA4IBAQAq7deJxgklyY9v5ne7 GqGCGIyBnv/w2sgvkNDwMeitG75grENHRX1bUCHlEG+FYzjKSRf2K3FNRn4VUJZM /wLQin/OI8haMWlEEFBFX0gSyiKfi3dWKX2eu5xdFvfsCeAglzULVVXk+ymdkD0/ q/3wcER9lAuAVxR+wXvwH98w0RWh2WeNPD090fYJidqzqAAhhiNFddJKHqdRbY+3 xzml1LLBJL073DeYucSrF874FXxob++GqAddJmdSDpSfcAWjNcMYVl7PGMTH56nd PlZ6R/dLkd0Qxii6CWI1tYIAxwfsgHF6bxTn61xqc6cs7tCLWn84KzvFv/1O1r4B XQwA -----END CERTIFICATE-----Generated at Sun Apr 5 21:25:48 2026 by rpki-client