$ rpki-client -vvf rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/CDF591B2457411F1A79BF008B4833773.roa File: CDF591B2457411F1A79BF008B4833773.roa (raw, json) Hash identifier: wwvP6N0iZcxJteZa0vMxZP6scYPHrDTfF4JThPFyUsY= Subject key identifier: 80:9E:B2:60:E5:C3:F2:2B:2D:2D:0C:46:11:A9:86:C9:FE:C4:75:C5 Certificate issuer: /CN=A91883D3/serialNumber=317A727FF63E27C29CC01CB67993E2C61F08041E Certificate serial: 0141 Authority key identifier: 31:7A:72:7F:F6:3E:27:C2:9C:C0:1C:B6:79:93:E2:C6:1F:08:04:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXpyf_Y-J8KcwBy2eZPixh8IBB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/CDF591B2457411F1A79BF008B4833773.roa Signing time: Fri 01 May 2026 15:45:40 +0000 ROA not before: Fri 01 May 2026 15:45:40 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152451 IP address blocks: 2401:7c60::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/MXpyf_Y-J8KcwBy2eZPixh8IBB4.crl rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/MXpyf_Y-J8KcwBy2eZPixh8IBB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXpyf_Y-J8KcwBy2eZPixh8IBB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91883D3, serialNumber=317A727FF63E27C29CC01CB67993E2C61F08041E Validity Not Before: May 1 15:45:40 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69f4caa4-dfb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b6:39:50:1d:83:11:da:d7:aa:12:a9:a9:b4: b8:3d:fc:56:b0:e7:64:f7:bc:b6:3f:58:c3:9f:b5: 78:17:2d:84:71:7a:35:34:2c:66:23:da:f3:5b:15: 70:b2:45:f8:7f:b5:ba:ec:b5:d3:de:65:f4:62:d3: c6:95:3b:97:5f:e3:a3:14:31:a2:21:2b:62:65:b7: 96:14:3a:18:48:23:5b:b3:bc:21:90:c9:c6:0a:fd: 6b:ee:4d:ed:73:69:9a:05:75:e0:c9:ee:90:aa:03: b9:e1:7a:4c:51:24:89:8b:a0:49:4d:9a:ac:35:ea: 84:f3:83:cf:fd:76:70:11:04:0a:2f:5b:f3:64:1f: 73:16:f6:dd:09:13:47:ae:74:e1:37:18:40:38:53: 7a:11:53:99:00:f4:77:85:8b:a8:2a:86:e7:22:08: bf:19:2a:3a:9d:66:0a:d8:46:40:90:55:43:9a:32: 0f:77:60:1e:2d:b6:77:dc:cd:7c:ad:fd:37:1b:52: 18:05:2a:7a:2f:ca:81:51:92:f2:61:61:5c:4b:3f: d8:08:1c:81:84:e5:54:3a:60:48:c0:a9:7d:d7:40: 9d:ab:53:18:d1:c9:12:68:f5:42:fa:65:52:d9:dc: 37:1b:af:91:a1:76:ea:9f:54:76:44:b8:8b:82:4c: a8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:9E:B2:60:E5:C3:F2:2B:2D:2D:0C:46:11:A9:86:C9:FE:C4:75:C5 X509v3 Authority Key Identifier: keyid:31:7A:72:7F:F6:3E:27:C2:9C:C0:1C:B6:79:93:E2:C6:1F:08:04:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/MXpyf_Y-J8KcwBy2eZPixh8IBB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXpyf_Y-J8KcwBy2eZPixh8IBB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/CDF591B2457411F1A79BF008B4833773.roa sbgp-ipAddrBlock: critical IPv6: 2401:7c60::/48 Signature Algorithm: sha256WithRSAEncryption 0d:a4:e5:97:0a:98:a9:cc:c7:6a:0f:11:f2:6d:9e:73:96:67: ac:26:4c:16:54:42:9a:5a:ca:5d:88:30:7d:7e:37:07:f1:30: a3:cd:b3:02:b3:ad:dd:bd:6c:fe:7a:15:dc:0e:96:a1:dc:84: df:09:0d:0b:9b:20:a9:96:ce:0b:26:3e:c7:d4:65:50:bb:f1: 6c:fe:44:af:41:ca:09:59:45:44:e8:70:3f:a7:d9:5a:a0:6d: f2:2c:60:86:fa:56:a9:cc:93:24:7f:eb:d3:b9:47:85:2b:f7: 1e:3c:5f:e5:00:15:7c:59:d9:f9:41:59:61:1e:a9:5c:ae:be: 65:3d:dc:a0:78:f9:e8:18:d4:8f:ba:9d:ea:b3:bb:b0:a2:38: 39:fd:54:43:21:3e:86:39:1f:67:72:1f:62:1e:a1:84:a7:7c: d1:5f:e8:9a:00:2b:50:fa:13:ff:8d:d2:75:87:ab:b3:ea:b5: ed:f4:1c:6e:6f:86:30:26:8d:01:f5:70:a6:71:15:01:18:cd: e7:ec:16:c2:58:78:c1:4f:a2:b9:ea:0e:c8:69:1c:83:7a:4d: 38:c7:ad:95:ca:f0:e7:3f:34:10:ee:81:13:43:02:e6:84:2f: 5a:d9:61:e6:bc:a4:74:cc:a8:a8:85:24:14:40:9d:56:64:92: 83:81:14:bf -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgzRDMxMTAvBgNVBAUTKDMxN0E3MjdGRjYzRTI3QzI5Q0MwMUNCNjc5OTNFMkM2 MUYwODA0MUUwHhcNMjYwNTAxMTU0NTQwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0Y2FhNC1kZmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmbY5UB2DEdrXqhKpqbS4PfxWsOdk97y2P1jDn7V4Fy2EcXo1NCxmI9rzWxVw skX4f7W67LXT3mX0YtPGlTuXX+OjFDGiIStiZbeWFDoYSCNbs7whkMnGCv1r7k3t c2maBXXgye6QqgO54XpMUSSJi6BJTZqsNeqE84PP/XZwEQQKL1vzZB9zFvbdCRNH rnThNxhAOFN6EVOZAPR3hYuoKobnIgi/GSo6nWYK2EZAkFVDmjIPd2AeLbZ33M18 rf03G1IYBSp6L8qBUZLyYWFcSz/YCByBhOVUOmBIwKl910Cdq1MY0ckSaPVC+mVS 2dw3G6+RoXbqn1R2RLiLgkyoHwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFICesmDl w/IrLS0MRhGphsn+xHXFMB8GA1UdIwQYMBaAFDF6cn/2PifCnMActnmT4sYfCAQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODNEMy85NTc2MDE2ODVF MzYxMUVGQUM5MkQzMTRDNEY5QUUwMi9NWHB5Zl9ZLUo4S2N3QnkyZVpQaXhoOElC QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01YcHlmX1ktSjhLY3dCeTJlWlBpeGg4SUJCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODgzRDMvOTU3NjAxNjg1RTM2MTFFRkFDOTJEMzE0QzRGOUFFMDIvQ0RGNTkxQjI0 NTc0MTFGMUE3OUJGMDA4QjQ4MzM3NzMucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAF8YAAAMA0GCSqGSIb3DQEBCwUAA4IBAQANpOWXCpipzMdqDxHy bZ5zlmesJkwWVEKaWspdiDB9fjcH8TCjzbMCs63dvWz+ehXcDpah3ITfCQ0LmyCp ls4LJj7H1GVQu/Fs/kSvQcoJWUVE6HA/p9laoG3yLGCG+lapzJMkf+vTuUeFK/ce PF/lABV8Wdn5QVlhHqlcrr5lPdygePnoGNSPup3qs7uwojg5/VRDIT6GOR9nch9i HqGEp3zRX+iaACtQ+hP/jdJ1h6uz6rXt9Bxub4YwJo0B9XCmcRUBGM3n7BbCWHjB T6K56g7IaRyDek04x62VyvDnPzQQ7oETQwLmhC9a2WHmvKR0zKiohSQUQJ1WZJKD gRS/ -----END CERTIFICATE-----Generated at Sun May 3 19:32:29 2026 by rpki-client