$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa File: 3590603EEA9911EDA6A36E18C4F9AE02.roa (raw, json) Hash identifier: KAOajreZKNs6OhlZEEuG6IUQi2eX+xK6ACMq1TNvAF4= Subject key identifier: EC:37:E0:67:B1:BA:22:A2:D7:E6:3D:95:F5:33:45:E1:AC:C0:CA:54 Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 3176 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa Signing time: Sat 02 May 2026 16:18:24 +0000 ROA not before: Sat 02 May 2026 16:18:24 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 140911 IP address blocks: 2405:2000:902::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 May 2026 15:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12662 (0x3176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: May 2 16:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f623d0-1e73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3c:d3:21:93:e7:24:95:d9:c9:d6:cc:bb:14: f4:58:a6:95:6d:20:2d:bb:4d:41:88:cb:eb:f2:03: 00:0d:f8:27:18:6d:43:b3:71:93:2a:29:16:f3:9c: 08:83:41:13:27:e1:5c:53:e7:9a:3a:24:6d:f9:19: 9d:c0:25:da:06:ab:dc:57:ba:db:c0:69:ab:81:c2: 61:f4:86:7e:d0:ef:c6:ec:69:29:be:b0:63:18:42: 13:71:75:3c:9e:54:b0:85:51:73:87:e6:14:99:9f: cb:ff:2c:01:c3:23:87:4d:c2:34:9d:3a:da:1d:6d: fe:c6:29:db:b6:97:d2:d4:ac:69:01:06:30:c1:a5: 35:5a:ba:d4:ed:1d:bc:20:60:15:b8:92:51:83:65: d3:b5:41:08:3c:99:df:e4:41:58:b2:4a:00:60:11: 1f:a0:16:ff:30:c7:1a:ef:54:0c:bc:f4:91:b1:08: b2:df:6d:8a:7b:c6:41:af:f3:0c:fd:66:ea:10:cf: c6:4b:1e:11:79:97:5c:55:29:88:6f:19:25:ec:40: 1b:2e:cd:99:23:80:ea:99:5a:59:dc:5d:08:6b:52: e7:3f:f8:9d:02:8d:87:2c:9d:98:70:f6:25:da:49: b3:d1:33:23:5e:b5:34:56:4b:2f:9c:8f:28:8e:4a: bc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:37:E0:67:B1:BA:22:A2:D7:E6:3D:95:F5:33:45:E1:AC:C0:CA:54 X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/3590603EEA9911EDA6A36E18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:2000:902::/48 Signature Algorithm: sha256WithRSAEncryption 60:6e:ef:ee:69:c3:e8:6a:b2:73:0e:f2:3c:f8:dc:fa:2f:22: 01:4e:de:2b:48:1f:9b:5a:18:82:42:c6:d7:96:57:87:a0:9b: fc:b7:7d:7b:40:49:46:62:c3:0f:f9:8a:d6:6a:87:7e:11:69: 27:d7:4c:c1:e8:52:50:b4:e4:5b:f2:7d:ea:6a:0f:5f:7d:12: 51:be:38:a3:e2:1b:77:3d:fc:d5:93:7e:6c:7c:d0:fb:dc:e8: c4:f6:14:54:8a:94:35:c3:7c:92:0e:e8:e6:91:e3:91:61:bd: e0:82:9a:9f:04:6c:05:67:60:1e:cc:96:7b:2c:39:77:0c:34: 1b:91:3e:c2:8e:b7:95:98:8d:6e:0e:9d:65:1f:a2:f3:5d:42: d6:68:60:e5:e3:99:35:51:bc:8c:5c:e6:ab:d0:9f:29:19:a1: 09:c7:56:94:02:a2:4b:be:9c:39:0e:b7:7d:f5:d2:92:54:7e: 63:a7:3f:f8:f5:d2:89:96:89:8a:04:e3:39:30:31:1c:62:ee: 54:f7:b2:96:d2:c0:36:92:b1:a7:3a:ac:26:b5:dd:a1:e3:9c: 5f:2d:42:23:f1:06:c0:87:53:f0:6d:2d:3a:9d:d1:fd:b2:3a: a7:23:c8:eb:82:07:10:e2:4c:6e:2f:1a:48:b0:85:f8:66:5a: 7c:ab:26:ce -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICMXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjYwNTAyMTYxODI0WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2MjNkMC0xZTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjzTIZPnJJXZydbMuxT0WKaVbSAtu01BiMvr8gMADfgnGG1Ds3GTKikW85wI g0ETJ+FcU+eaOiRt+RmdwCXaBqvcV7rbwGmrgcJh9IZ+0O/G7GkpvrBjGEITcXU8 nlSwhVFzh+YUmZ/L/ywBwyOHTcI0nTraHW3+xinbtpfS1KxpAQYwwaU1WrrU7R28 IGAVuJJRg2XTtUEIPJnf5EFYskoAYBEfoBb/MMca71QMvPSRsQiy322Ke8ZBr/MM /WbqEM/GSx4ReZdcVSmIbxkl7EAbLs2ZI4DqmVpZ3F0Ia1LnP/idAo2HLJ2YcPYl 2kmz0TMjXrU0VksvnI8ojkq8XwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFOw34Gex uiKi1+Y9lfUzReGswMpUMB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvMzU5MDYwM0VF QTk5MTFFREE2QTM2RTE4QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAUgAAkCMA0GCSqGSIb3DQEBCwUAA4IBAQBgbu/uacPoarJzDvI8 +Nz6LyIBTt4rSB+bWhiCQsbXlleHoJv8t317QElGYsMP+YrWaod+EWkn10zB6FJQ tORb8n3qag9ffRJRvjij4ht3PfzVk35sfND73OjE9hRUipQ1w3ySDujmkeORYb3g gpqfBGwFZ2AezJZ7LDl3DDQbkT7CjreVmI1uDp1lH6LzXULWaGDl45k1UbyMXOar 0J8pGaEJx1aUAqJLvpw5Drd99dKSVH5jpz/49dKJlomKBOM5MDEcYu5U97KW0sA2 krGnOqwmtd2h45xfLUIj8QbAh1PwbS06ndH9sjqnI8jrggcQ4kxuLxpIsIX4Zlp8 qybO -----END CERTIFICATE-----Generated at Fri May 8 19:27:33 2026 by rpki-client