$ rpki-client -vvf rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/CF137DC0457411F1A79BF008B4833773.roa File: CF137DC0457411F1A79BF008B4833773.roa (raw, json) Hash identifier: 4fmOTfm1xvbXGmcGvEf79mu94zqU9KuHGIqfto8HIsA= Subject key identifier: 7B:0F:E9:E4:D3:33:19:11:9A:78:5F:A6:BA:E8:07:71:28:97:FF:D4 Certificate issuer: /CN=A91883D3/serialNumber=317A727FF63E27C29CC01CB67993E2C61F08041E Certificate serial: 0143 Authority key identifier: 31:7A:72:7F:F6:3E:27:C2:9C:C0:1C:B6:79:93:E2:C6:1F:08:04:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXpyf_Y-J8KcwBy2eZPixh8IBB4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/CF137DC0457411F1A79BF008B4833773.roa Signing time: Fri 01 May 2026 15:45:42 +0000 ROA not before: Fri 01 May 2026 15:45:42 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 54113 IP address blocks: 2401:7c60:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/MXpyf_Y-J8KcwBy2eZPixh8IBB4.crl rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/MXpyf_Y-J8KcwBy2eZPixh8IBB4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXpyf_Y-J8KcwBy2eZPixh8IBB4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91883D3, serialNumber=317A727FF63E27C29CC01CB67993E2C61F08041E Validity Not Before: May 1 15:45:42 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69f4caa6-8637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a9:d9:13:da:ff:ee:cf:cb:6f:81:3c:38:83: 63:21:c9:90:3f:42:cf:2d:b3:bc:73:66:5c:cb:3a: 33:29:38:d9:0d:79:fc:a9:6c:80:59:49:2b:08:39: af:d5:cd:87:34:38:8b:ad:04:f5:63:2e:f3:34:c6: 1a:17:f7:6f:91:19:6b:20:81:88:e3:37:23:c6:97: f7:61:e1:4f:35:f2:40:82:59:7f:ee:0d:c4:f6:e1: 62:cc:7c:23:10:94:ea:70:b9:53:41:d5:6f:c9:9d: 89:31:03:f6:77:1f:11:bb:ad:5e:ae:39:ca:30:8f: 2a:46:5f:c5:4f:b3:3b:e3:8f:c3:c3:ab:9f:5e:a5: cb:59:5f:b9:52:27:9f:b9:18:ba:d4:d2:b8:4b:17: b4:00:05:a9:2f:7b:01:fe:01:d1:b7:e3:4d:be:aa: de:38:5e:31:42:a2:84:08:bb:b1:8f:8c:14:62:dd: 13:91:92:ff:07:94:4c:bc:32:1f:69:91:e4:81:7e: b2:4c:94:8e:54:50:03:96:a6:e6:53:52:9f:46:2d: ed:77:34:e6:32:34:68:cf:26:84:0e:78:ed:ac:f1: a4:0b:e6:13:5c:b9:3d:56:67:17:17:f3:43:b2:c3: bf:ef:08:3b:35:93:f9:3b:da:b6:75:d9:9e:22:d6: 22:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0F:E9:E4:D3:33:19:11:9A:78:5F:A6:BA:E8:07:71:28:97:FF:D4 X509v3 Authority Key Identifier: keyid:31:7A:72:7F:F6:3E:27:C2:9C:C0:1C:B6:79:93:E2:C6:1F:08:04:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/MXpyf_Y-J8KcwBy2eZPixh8IBB4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MXpyf_Y-J8KcwBy2eZPixh8IBB4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91883D3/957601685E3611EFAC92D314C4F9AE02/CF137DC0457411F1A79BF008B4833773.roa sbgp-ipAddrBlock: critical IPv6: 2401:7c60:1::/48 Signature Algorithm: sha256WithRSAEncryption 4f:c6:80:39:63:8e:c7:8f:6b:78:16:7e:47:8b:81:eb:6b:45: 2f:fd:a2:0b:30:1c:9f:f4:25:ea:88:ec:a1:52:0b:b4:c0:70: 72:95:43:dd:c2:3a:71:88:19:de:9d:1d:ce:09:55:f0:e8:70: 6f:4c:33:20:c7:23:09:93:20:11:f8:3c:c1:66:c0:9e:e0:81: 24:82:5b:90:df:9a:43:4c:74:9f:40:9a:63:3f:e4:14:3f:97: d3:47:fc:90:9a:2f:22:15:3e:03:9b:a2:00:f8:83:7e:5a:4e: d0:9a:1b:3f:e3:cc:9d:9e:03:35:9e:df:76:1d:83:25:b0:63: 8c:9b:33:35:86:3c:a5:eb:18:ed:04:88:a7:ec:35:f6:76:6e: ea:d0:69:d5:12:8f:72:af:b4:a0:40:73:5d:fb:45:49:6e:f3: 80:53:d6:19:fc:bd:e9:6c:41:0c:77:e2:4f:62:ab:1a:d4:06: 3f:32:f2:ff:8f:17:f7:c3:6f:83:2b:57:31:2e:17:ad:e8:b5: 02:a4:a2:77:c6:cb:8d:16:71:f3:ce:b6:95:12:92:13:9b:61: 6a:54:2a:38:ca:8b:da:16:d8:a8:5c:1d:dd:60:39:d3:2b:19: 24:1e:8d:2c:ad:5d:1a:f3:96:54:07:0a:28:4a:34:5d:64:04: cf:28:ff:d7 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgzRDMxMTAvBgNVBAUTKDMxN0E3MjdGRjYzRTI3QzI5Q0MwMUNCNjc5OTNFMkM2 MUYwODA0MUUwHhcNMjYwNTAxMTU0NTQyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0Y2FhNi04NjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6nZE9r/7s/Lb4E8OINjIcmQP0LPLbO8c2ZcyzozKTjZDXn8qWyAWUkrCDmv 1c2HNDiLrQT1Yy7zNMYaF/dvkRlrIIGI4zcjxpf3YeFPNfJAgll/7g3E9uFizHwj EJTqcLlTQdVvyZ2JMQP2dx8Ru61erjnKMI8qRl/FT7M744/Dw6ufXqXLWV+5Uief uRi61NK4Sxe0AAWpL3sB/gHRt+NNvqreOF4xQqKECLuxj4wUYt0TkZL/B5RMvDIf aZHkgX6yTJSOVFADlqbmU1KfRi3tdzTmMjRozyaEDnjtrPGkC+YTXLk9VmcXF/ND ssO/7wg7NZP5O9q2ddmeItYi0QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFHsP6eTT MxkRmnhfprroB3Eol//UMB8GA1UdIwQYMBaAFDF6cn/2PifCnMActnmT4sYfCAQe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODNEMy85NTc2MDE2ODVF MzYxMUVGQUM5MkQzMTRDNEY5QUUwMi9NWHB5Zl9ZLUo4S2N3QnkyZVpQaXhoOElC QjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01YcHlmX1ktSjhLY3dCeTJlWlBpeGg4SUJCNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODgzRDMvOTU3NjAxNjg1RTM2MTFFRkFDOTJEMzE0QzRGOUFFMDIvQ0YxMzdEQzA0 NTc0MTFGMUE3OUJGMDA4QjQ4MzM3NzMucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAF8YAABMA0GCSqGSIb3DQEBCwUAA4IBAQBPxoA5Y47Hj2t4Fn5H i4Hra0Uv/aILMByf9CXqiOyhUgu0wHBylUPdwjpxiBnenR3OCVXw6HBvTDMgxyMJ kyAR+DzBZsCe4IEkgluQ35pDTHSfQJpjP+QUP5fTR/yQmi8iFT4Dm6IA+IN+Wk7Q mhs/48ydngM1nt92HYMlsGOMmzM1hjyl6xjtBIin7DX2dm7q0GnVEo9yr7SgQHNd +0VJbvOAU9YZ/L3pbEEMd+JPYqsa1AY/MvL/jxf3w2+DK1cxLhet6LUCpKJ3xsuN FnHzzraVEpITm2FqVCo4yovaFtioXB3dYDnTKxkkHo0srV0a85ZUBwooSjRdZATP KP/X -----END CERTIFICATE-----Generated at Sun May 3 17:50:00 2026 by rpki-client