$ rpki-client -vvf rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa File: 5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa (raw, json) Hash identifier: Hl3h+xajA6uyUcgR+szgYx0GkKpSQx8UaQOMAFI5mWs= Subject key identifier: 8F:31:86:43:DA:2B:DE:48:B7:DC:FA:B3:54:66:31:06:5C:17:80:B5 Certificate issuer: /CN=A91955C8/serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Certificate serial: 3174 Authority key identifier: C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa Signing time: Sat 02 May 2026 16:18:19 +0000 ROA not before: Sat 02 May 2026 16:18:19 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 10103 IP address blocks: 2405:2000:1002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 May 2026 22:28:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12660 (0x3174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955C8, serialNumber=C6673D3648F43F4674F5F5EBFCBFA31BB964F64B Validity Not Before: May 2 16:18:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f623cb-a1ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:10:e8:6d:e2:14:02:88:01:a5:b5:35:3a:02: 97:3e:5d:8a:78:49:a7:56:7d:d5:c8:c5:ad:e3:b8: 64:25:4e:6e:57:f5:da:6c:5e:1b:39:e0:df:ab:85: d2:46:93:e8:18:b2:95:9b:32:f6:ef:c0:0c:3d:f9: e6:4c:19:69:ee:5f:2e:e9:f1:a6:b2:6e:bb:d0:8c: 47:d8:c7:19:3c:ef:54:8b:33:cc:89:5c:65:db:1a: 7f:15:50:f7:25:96:d7:50:53:6f:52:1d:ea:f3:3b: ba:19:5d:73:d0:28:7e:c7:8d:be:f8:63:31:39:de: d6:11:a9:1d:24:7c:2a:4c:de:de:83:08:21:1d:3d: 3e:8e:da:9f:d9:83:dc:f2:da:44:10:9a:f2:1b:2d: d6:13:e7:33:ec:96:91:17:37:5a:82:6d:6c:f7:63: c6:58:a6:a4:3d:56:b5:d5:da:2b:85:7a:4b:10:96: 3a:df:7e:d9:27:f1:20:f1:7b:46:8b:a9:2f:1a:97: 80:a3:64:87:ce:c6:2b:16:ac:d6:da:b6:27:c5:78: 65:0c:cc:5a:83:93:68:8e:ca:74:5c:a0:49:3e:58: 7e:20:35:b7:e5:1e:5d:d0:83:33:cb:58:d1:81:31: 07:36:00:12:be:96:80:bf:9a:01:54:97:15:f4:63: ff:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:31:86:43:DA:2B:DE:48:B7:DC:FA:B3:54:66:31:06:5C:17:80:B5 X509v3 Authority Key Identifier: keyid:C6:67:3D:36:48:F4:3F:46:74:F5:F5:EB:FC:BF:A3:1B:B9:64:F6:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xmc9Nkj0P0Z09fXr_L-jG7lk9ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955C8/9CD3E8F6FF5811E2BB4B2E3F5911EA32/5B58485AB9DC11EEA6B2DC1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:2000:1002::/48 Signature Algorithm: sha256WithRSAEncryption 00:bc:86:10:ae:c3:29:0d:13:ac:95:68:5d:cb:93:a5:51:b7: 60:0a:5b:45:20:c2:3a:63:20:34:75:a5:87:1c:1f:96:06:0d: e6:ad:76:93:22:f5:06:29:e9:69:e7:f3:96:d1:dc:e6:ad:41: 51:80:e6:d9:9e:3d:92:5e:60:6c:a1:93:b1:9c:eb:ac:e5:73: 5f:45:3b:9b:29:6e:0b:c5:44:89:1e:7a:35:22:b4:d2:d7:5e: 7e:19:00:8f:f7:e1:56:5c:8f:d5:0c:b3:2f:c1:4c:53:93:0c: 06:3d:ee:c3:e6:c6:b0:e2:10:31:53:c2:83:2f:91:7a:1a:3f: 4a:58:70:b9:5c:8b:ad:b8:a5:ac:d5:29:4d:fb:35:0f:1a:63: 44:68:03:04:30:2a:74:cf:be:fa:5e:96:e5:ff:19:46:d0:17: 6e:a3:eb:13:27:24:f7:14:ad:cb:31:1d:00:79:3c:21:4c:9a: 92:de:17:9d:3d:67:d1:d5:fc:e8:1c:9c:2b:cc:ec:a4:9a:b4: 4c:df:75:31:77:1e:db:05:13:7e:ff:b1:fa:8e:c4:26:9d:ff: 14:d9:7a:05:ec:bd:a6:28:87:95:cd:cd:e8:13:2b:46:39:28: c4:ea:30:f3:cf:83:ab:3f:6f:62:a1:3a:76:9d:ae:74:fe:cb: a0:51:56:89 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICMXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU1QzgxMTAvBgNVBAUTKEM2NjczRDM2NDhGNDNGNDY3NEY1RjVFQkZDQkZBMzFC Qjk2NEY2NEIwHhcNMjYwNTAyMTYxODE5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2MjNjYi1hMWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtxDobeIUAogBpbU1OgKXPl2KeEmnVn3VyMWt47hkJU5uV/XabF4bOeDfq4XS RpPoGLKVmzL278AMPfnmTBlp7l8u6fGmsm670IxH2McZPO9UizPMiVxl2xp/FVD3 JZbXUFNvUh3q8zu6GV1z0Ch+x42++GMxOd7WEakdJHwqTN7egwghHT0+jtqf2YPc 8tpEEJryGy3WE+cz7JaRFzdagm1s92PGWKakPVa11dorhXpLEJY6337ZJ/Eg8XtG i6kvGpeAo2SHzsYrFqzW2rYnxXhlDMxag5Nojsp0XKBJPlh+IDW35R5d0IMzy1jR gTEHNgASvpaAv5oBVJcV9GP/3QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFI8xhkPa K95It9z6s1RmMQZcF4C1MB8GA1UdIwQYMBaAFMZnPTZI9D9GdPX16/y/oxu5ZPZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTVDOC85Q0QzRThGNkZG NTgxMUUyQkI0QjJFM0Y1OTExRUEzMi94bWM5TmtqMFAwWjA5ZlhyX0wtakc3bGs5 a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3htYzlOa2owUDBaMDlmWHJfTC1qRzdsazlrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU1QzgvOUNEM0U4RjZGRjU4MTFFMkJCNEIyRTNGNTkxMUVBMzIvNUI1ODQ4NUFC OURDMTFFRUE2QjJEQzFEQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAUgABACMA0GCSqGSIb3DQEBCwUAA4IBAQAAvIYQrsMpDROslWhd y5OlUbdgCltFIMI6YyA0daWHHB+WBg3mrXaTIvUGKelp5/OW0dzmrUFRgObZnj2S XmBsoZOxnOus5XNfRTubKW4LxUSJHno1IrTS115+GQCP9+FWXI/VDLMvwUxTkwwG Pe7D5saw4hAxU8KDL5F6Gj9KWHC5XIutuKWs1SlN+zUPGmNEaAMEMCp0z776Xpbl /xlG0Bduo+sTJyT3FK3LMR0AeTwhTJqS3hedPWfR1fzoHJwrzOykmrRM33Uxdx7b BRN+/7H6jsQmnf8U2XoF7L2mKIeVzc3oEytGOSjE6jDzz4OrP29ioTp2na50/sug UVaJ -----END CERTIFICATE-----Generated at Wed May 6 02:41:27 2026 by rpki-client