$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa File: B28CA9F85F3711EFA108CA0CC4F9AE02.roa (raw, json) Hash identifier: WKmzx9OVJHDLRn+OE+HYihlpvhRQYLWkY/szy+7Cuks= Subject key identifier: C4:3F:7E:BF:AE:61:2C:88:41:76:C8:76:FF:C2:06:AB:B6:06:25:AB Certificate issuer: /CN=A91813ED/serialNumber=C29597B258AD660CE0BA79758309EB8C57959435 Certificate serial: 0127 Authority key identifier: C2:95:97:B2:58:AD:66:0C:E0:BA:79:75:83:09:EB:8C:57:95:94:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:40:19 +0000 ROA not before: Wed 03 Sep 2025 06:28:24 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135559 IP address blocks: 2001:df4:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.crl rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=C29597B258AD660CE0BA79758309EB8C57959435 Validity Not Before: Sep 3 06:28:24 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58533-9221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c9:dd:54:19:ad:9b:80:27:bd:57:e6:fa:01: dc:38:e6:a9:2c:fb:f3:b5:5a:23:d0:08:c4:d9:76: 65:a9:f8:2d:07:49:48:c9:86:17:1b:2c:0f:0e:a9: f3:00:b8:13:e1:7d:23:4b:c0:f3:c3:d9:87:8d:b9: a2:d7:c3:ea:7e:09:45:06:bb:e8:c7:17:06:e2:03: 8e:5f:26:c5:64:9f:99:97:f1:97:fc:79:b3:bd:30: 2a:57:82:88:81:ae:f8:da:73:ed:cc:16:90:2a:e0: 9f:cb:c9:b5:bf:35:b7:6a:17:eb:7c:bd:b7:a9:4c: 46:09:eb:d1:25:e8:9b:c0:ef:bf:5a:75:2a:06:7b: dd:a4:98:c1:c0:f7:5f:03:cd:08:f0:4f:71:5f:56: 89:09:b6:81:ca:ef:9d:34:d9:66:a9:a3:02:47:25: 44:f0:d2:35:fd:34:2e:4b:d0:b2:1d:4d:b7:6b:d2: 47:27:57:e0:bb:82:61:cf:61:ff:bd:8f:59:56:32: d1:f2:a4:1a:ce:7b:93:3a:42:5d:4c:cb:44:b4:a0: 32:f8:45:dd:1f:fa:42:99:39:86:37:b0:c4:6d:58: 06:f3:08:f6:2a:03:50:be:f0:04:a1:b2:02:3a:c2: c0:55:73:12:fd:87:95:db:f9:66:58:62:c0:e4:9d: d1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:3F:7E:BF:AE:61:2C:88:41:76:C8:76:FF:C2:06:AB:B6:06:25:AB X509v3 Authority Key Identifier: keyid:C2:95:97:B2:58:AD:66:0C:E0:BA:79:75:83:09:EB:8C:57:95:94:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:2040::/48 Signature Algorithm: sha256WithRSAEncryption cb:f4:4f:c3:4f:78:64:00:6e:8a:4c:67:78:df:ec:a2:a9:06: d0:83:58:9f:0d:e3:de:45:03:3f:11:a8:e2:c5:4d:a8:91:47: 56:44:20:87:ed:38:28:a2:a3:97:96:8c:13:b8:b1:0a:7c:44: 9e:79:74:e0:31:be:44:00:cc:06:3e:87:31:4b:0e:ea:aa:67: 06:dc:5b:37:7a:57:f4:8c:bb:42:63:42:7d:4f:fb:5d:6f:2d: 9d:59:81:e3:34:ab:9d:a1:12:85:7f:8a:54:66:27:89:e3:9a: 20:ac:53:e5:41:db:f8:3e:02:46:17:0f:c7:54:d2:00:45:f1: 0e:a6:de:cd:4b:e0:56:32:3d:48:33:41:fd:b6:ba:d5:c5:ec: 29:11:25:0c:39:07:38:25:47:17:fe:d8:ab:56:b1:d6:70:8a: 41:3e:92:59:10:57:71:20:6b:79:da:77:ae:42:7a:18:d0:4a: 2b:67:c9:cc:b9:5a:2c:fd:f3:ee:dd:17:b6:ad:ca:2a:a2:98: 07:a3:1c:99:9c:6d:87:26:13:c0:fe:e0:f2:ce:90:9a:77:66: c7:06:ff:cd:1a:b7:97:16:a7:02:9a:c4:22:f9:d8:7b:13:98: 37:02:8f:57:1c:a0:24:27:7c:0f:b1:0b:c2:ec:57:48:d2:11: 03:0f:a1:bd -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKEMyOTU5N0IyNThBRDY2MENFMEJBNzk3NTgzMDlFQjhD NTc5NTk0MzUwHhcNMjUwOTAzMDYyODI0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODUzMy05MjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcndVBmtm4AnvVfm+gHcOOapLPvztVoj0AjE2XZlqfgtB0lIyYYXGywPDqnz ALgT4X0jS8Dzw9mHjbmi18PqfglFBrvoxxcG4gOOXybFZJ+Zl/GX/HmzvTAqV4KI ga742nPtzBaQKuCfy8m1vzW3ahfrfL23qUxGCevRJeibwO+/WnUqBnvdpJjBwPdf A80I8E9xX1aJCbaByu+dNNlmqaMCRyVE8NI1/TQuS9CyHU23a9JHJ1fgu4Jhz2H/ vY9ZVjLR8qQaznuTOkJdTMtEtKAy+EXdH/pCmTmGN7DEbVgG8wj2KgNQvvAEobIC OsLAVXMS/YeV2/lmWGLA5J3RnwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFMQ/fr+u YSyIQXbIdv/CBqu2BiWrMB8GA1UdIwQYMBaAFMKVl7JYrWYM4Lp5dYMJ64xXlZQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC83MDI4QzZDODVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi93cFdYc2xpdFpnemd1bmwxZ3ducmpGZVZs RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dwV1hzbGl0Wmd6Z3VubDFnd25yakZlVmxEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRUQvNzAyOEM2Qzg1RjM3MTFFRkJGMzY5RTU4QzRGOUFFMDIvQjI4Q0E5Rjg1 RjM3MTFFRkExMDhDQTBDQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9CBAMA0GCSqGSIb3DQEBCwUAA4IBAQDL9E/DT3hkAG6KTGd4 3+yiqQbQg1ifDePeRQM/EajixU2okUdWRCCH7TgooqOXlowTuLEKfESeeXTgMb5E AMwGPocxSw7qqmcG3Fs3elf0jLtCY0J9T/tdby2dWYHjNKudoRKFf4pUZieJ45og rFPlQdv4PgJGFw/HVNIARfEOpt7NS+BWMj1IM0H9trrVxewpESUMOQc4JUcX/tir VrHWcIpBPpJZEFdxIGt52neuQnoY0EorZ8nMuVos/fPu3Re2rcoqopgHoxyZnG2H JhPA/uDyzpCad2bHBv/NGreXFqcCmsQi+dh7E5g3Ao9XHKAkJ3wPsQvC7FdI0hED D6G9 -----END CERTIFICATE-----Generated at Wed Mar 4 13:00:17 2026 by rpki-client