$ rpki-client -vvf rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/B91F8BF69EE211EF883C7D14C4F9AE02.roa File: B91F8BF69EE211EF883C7D14C4F9AE02.roa (raw, json) Hash identifier: ZDVRhk4Hb4b1xXnQy0ZdVUz1asas5v+rKuVjxDG/hzE= Subject key identifier: DA:42:51:58:62:0B:4C:12:48:B3:C7:FE:1D:E1:6E:B7:9B:91:0B:45 Certificate issuer: /CN=A9190818/serialNumber=548430EAB88E4E378FB5005AFAE5CAB9C0007A1A Certificate serial: 012F Authority key identifier: 54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/B91F8BF69EE211EF883C7D14C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:25:48 +0000 ROA not before: Thu 20 Nov 2025 10:30:16 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 153371 IP address blocks: 2401:ce20::/48 maxlen: 48 2401:ce20:1::/48 maxlen: 48 2401:ce20:2::/48 maxlen: 48 2401:ce20:3::/48 maxlen: 48 2401:ce20:4::/48 maxlen: 48 2401:ce20:5::/48 maxlen: 48 2401:ce20:6::/48 maxlen: 48 2401:ce20:7::/48 maxlen: 48 2401:ce20:8::/48 maxlen: 48 2401:ce20:9::/48 maxlen: 48 2401:ce20:10::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.crl rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 05:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190818, serialNumber=548430EAB88E4E378FB5005AFAE5CAB9C0007A1A Validity Not Before: Nov 20 10:30:16 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a581cc-268c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d5:bc:4b:d3:28:e8:9d:05:e7:b2:c1:5e:f5: 14:bd:df:2f:37:7b:02:5f:f0:ef:4a:88:39:ba:7c: b0:2b:f5:6b:32:8b:e4:ed:91:46:db:47:9f:6f:55: 5e:5f:9c:5a:ab:d0:3f:60:6b:55:2d:1d:91:80:bd: 66:8c:bb:27:18:39:db:1f:a7:79:43:2b:df:f0:11: e4:f0:7d:91:b2:3f:89:e6:b3:aa:ac:c5:79:5c:c3: 1b:0a:88:2b:bb:de:3a:bb:39:6a:12:44:1f:50:7c: 0d:3d:d3:fa:90:e8:66:f7:b9:ac:e0:7b:58:c1:17: bd:89:d4:ed:8b:b3:9f:71:6a:a5:4c:9b:c7:b3:1c: 5f:01:2b:3e:f3:89:57:9d:e7:01:b7:af:60:14:80: 9a:41:16:fb:54:bc:92:eb:d9:1d:24:66:76:91:e6: c9:bc:e5:c9:23:bf:83:d5:7b:59:c5:d2:04:a6:05: 1a:d2:39:de:b0:55:69:d9:c0:f6:08:b1:85:f1:dc: 14:da:28:d9:eb:10:a1:5f:10:59:40:96:cb:f8:08: da:0c:66:7d:b0:1e:11:77:b0:2a:3e:00:24:c0:b5: e6:15:57:0b:f5:fc:b6:9c:1c:1e:19:2f:12:c8:45: fb:8d:45:84:0c:45:f4:69:1a:ef:aa:45:92:c0:6a: 48:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:42:51:58:62:0B:4C:12:48:B3:C7:FE:1D:E1:6E:B7:9B:91:0B:45 X509v3 Authority Key Identifier: keyid:54:84:30:EA:B8:8E:4E:37:8F:B5:00:5A:FA:E5:CA:B9:C0:00:7A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/VIQw6riOTjePtQBa-uXKucAAeho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIQw6riOTjePtQBa-uXKucAAeho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190818/7E1F6AE2909D11EF9717F650C4F9AE02/B91F8BF69EE211EF883C7D14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:ce20::-2401:ce20:9:ffff:ffff:ffff:ffff:ffff 2401:ce20:10::/44 Signature Algorithm: sha256WithRSAEncryption 94:81:cc:a4:59:6c:e5:3a:8c:bd:2d:ff:1c:18:e7:9c:6f:1a: c3:2c:9e:da:26:07:1d:9c:f4:94:59:dd:52:0a:22:26:2f:85: 16:bd:91:e5:e4:3d:53:c1:7f:d4:7e:d6:8d:33:a1:1e:4b:76: e2:b2:1f:80:87:25:87:60:ba:16:9b:17:1a:c1:32:db:d6:64: 5a:9a:a9:c7:d9:18:56:fb:c4:50:df:7a:1e:32:b4:92:5d:f6: 05:59:8f:42:26:e8:88:18:fc:62:45:01:de:84:7c:06:3a:46: 4f:06:60:28:90:07:fe:dc:89:20:1f:b9:55:00:6e:75:74:db: 13:d0:18:f5:55:d5:21:b6:a6:d3:f1:5f:c7:7b:2f:53:af:de: f6:43:4d:fb:fb:b4:b3:aa:42:6d:7a:a0:fa:ec:9b:7b:a5:14: 98:60:38:3d:fa:61:5d:90:c8:23:b8:62:64:4a:42:33:35:cc: b8:ca:74:ed:b6:dc:8b:19:8f:fa:eb:8b:bc:52:a9:4c:e1:5c: 16:fe:0e:c3:08:f3:53:5c:d6:d6:50:a9:ac:93:63:ce:d1:ca: be:e4:70:84:a2:82:75:a0:ea:13:ca:6b:de:58:4d:c7:8e:0e: ce:b1:05:f4:69:04:61:81:38:0a:02:9f:7a:2c:24:2e:39:e6: 55:d0:d3:dc -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA4MTgxMTAvBgNVBAUTKDU0ODQzMEVBQjg4RTRFMzc4RkI1MDA1QUZBRTVDQUI5 QzAwMDdBMUEwHhcNMjUxMTIwMTAzMDE2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODFjYy0yNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9W8S9Mo6J0F57LBXvUUvd8vN3sCX/DvSog5unywK/VrMovk7ZFG20efb1Ve X5xaq9A/YGtVLR2RgL1mjLsnGDnbH6d5Qyvf8BHk8H2Rsj+J5rOqrMV5XMMbCogr u946uzlqEkQfUHwNPdP6kOhm97ms4HtYwRe9idTti7OfcWqlTJvHsxxfASs+84lX necBt69gFICaQRb7VLyS69kdJGZ2kebJvOXJI7+D1XtZxdIEpgUa0jnesFVp2cD2 CLGF8dwU2ijZ6xChXxBZQJbL+AjaDGZ9sB4Rd7AqPgAkwLXmFVcL9fy2nBweGS8S yEX7jUWEDEX0aRrvqkWSwGpIEwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFNpCUVhi C0wSSLPH/h3hbrebkQtFMB8GA1UdIwQYMBaAFFSEMOq4jk43j7UAWvrlyrnAAHoa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDgxOC83RTFGNkFFMjkw OUQxMUVGOTcxN0Y2NTBDNEY5QUUwMi9WSVF3NnJpT1RqZVB0UUJhLXVYS3VjQUFl aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJUXc2cmlPVGplUHRRQmEtdVhLdWNBQWVoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTA4MTgvN0UxRjZBRTI5MDlEMTFFRjk3MTdGNjUwQzRGOUFFMDIvQjkxRjhCRjY5 RUUyMTFFRjg4M0M3RDE0QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAh BAIAAjAbMBADBQUkAc4gAwcBJAHOIAAIAwcEJAHOIAAQMA0GCSqGSIb3DQEBCwUA A4IBAQCUgcykWWzlOoy9Lf8cGOecbxrDLJ7aJgcdnPSUWd1SCiImL4UWvZHl5D1T wX/UftaNM6EeS3bish+AhyWHYLoWmxcawTLb1mRamqnH2RhW+8RQ33oeMrSSXfYF WY9CJuiIGPxiRQHehHwGOkZPBmAokAf+3IkgH7lVAG51dNsT0Bj1VdUhtqbT8V/H ey9Tr972Q037+7SzqkJteqD67Jt7pRSYYDg9+mFdkMgjuGJkSkIzNcy4ynTtttyL GY/664u8UqlM4VwW/g7DCPNTXNbWUKmsk2PO0cq+5HCEooJ1oOoTymveWE3Hjg7O sQX0aQRhgTgKAp96LCQuOeZV0NPc -----END CERTIFICATE-----Generated at Sat Mar 7 11:22:24 2026 by rpki-client