$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/FA05DFF47F4911ED847FF862C4F9AE02.roa File: FA05DFF47F4911ED847FF862C4F9AE02.roa (raw, json) Hash identifier: Xinoh9viRvWKVFQ3xI51CltzIw6uHtVQBHvt6HCcLWg= Subject key identifier: 77:A8:10:91:0E:EB:BD:83:A1:51:25:89:CD:1B:EE:B7:2B:34:14:36 Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: 0282 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/FA05DFF47F4911ED847FF862C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:16:04 +0000 ROA not before: Wed 17 Dec 2025 02:21:18 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 3598 IP address blocks: 2404:f801::/32 maxlen: 32 2404:f801:8028::/48 maxlen: 48 2404:f801:8058::/48 maxlen: 48 2404:f801:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:56:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Validity Not Before: Dec 17 02:21:18 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46644-e09f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f0:6f:5b:c0:81:18:bb:d7:d7:f9:73:96:53: 8d:1d:da:d2:0c:42:75:86:11:67:31:12:4d:63:e1: c8:ab:f5:52:0c:50:5c:c6:35:1a:26:97:28:df:c8: c5:42:16:89:bd:25:3a:8b:39:e1:72:60:09:71:89: 8b:a8:86:38:a9:33:4f:fd:72:06:ba:4e:8e:55:84: 03:69:a0:fd:82:17:41:a1:f3:0c:d0:f0:32:0d:1d: 34:50:89:3a:85:6b:91:6f:fb:87:44:e2:05:53:d5: 40:1d:4b:47:c2:33:b8:12:83:a8:95:8f:f5:14:8f: 26:18:fe:9d:d8:fa:82:93:71:57:36:b3:5d:9f:1c: 19:71:d1:8b:a4:a8:22:3a:52:23:f4:63:22:d2:f0: 6c:1e:a4:38:f0:b3:69:28:df:44:75:95:cb:c4:66: 93:40:1c:67:c2:4b:d0:c7:e4:6f:de:a0:97:a8:92: 39:63:71:61:9e:ed:31:e9:08:fd:d0:23:80:e6:a4: 32:17:24:4d:20:b6:5c:b3:69:de:05:27:50:37:08: 71:a2:7c:18:a9:39:01:e4:a8:9d:07:e0:a0:a9:b1: 3a:b7:d3:08:1a:13:35:a0:26:41:43:bc:bf:12:02: 83:1e:3b:cf:73:1e:d7:8e:e8:58:12:d6:72:c2:85: 2c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A8:10:91:0E:EB:BD:83:A1:51:25:89:CD:1B:EE:B7:2B:34:14:36 X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/FA05DFF47F4911ED847FF862C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:f801::/32 Signature Algorithm: sha256WithRSAEncryption 60:8d:39:af:91:1a:75:ea:cc:8f:ae:b7:1f:6d:eb:99:c8:fe: 1e:76:4d:70:74:48:24:7f:f1:76:1d:50:2d:81:25:df:63:9f: 5b:47:c0:92:cd:6e:49:57:48:8e:b9:f2:dc:9a:f2:de:d6:35: 47:84:6e:33:80:cf:80:17:55:fa:ab:d9:99:09:ca:65:75:0a: 62:b8:e7:27:01:66:d4:5d:85:18:7d:69:c5:72:f7:b9:0c:85: d8:14:1d:dd:26:57:5a:3c:9f:d8:93:0a:31:50:d6:3a:34:76: 4d:aa:f9:f0:91:69:a3:38:b2:31:9c:b9:04:0d:2f:c0:ab:97: 5d:58:84:8c:1d:d5:25:7b:f4:4b:b8:49:7a:80:55:ca:ac:ed: 7b:07:86:db:ae:ee:12:b7:34:28:f1:c6:14:ad:0f:cd:78:dc: 9b:d4:c7:92:86:8d:fe:a3:e0:94:61:f2:45:d5:6a:05:cc:44: 59:a9:93:15:8d:9b:48:b7:b1:63:24:a5:ed:18:7c:77:72:6d: 2d:ce:79:77:d9:9c:a3:23:b1:73:5c:43:0b:63:70:6f:90:c1: 30:65:16:02:fe:18:d6:2d:2c:47:27:14:d2:de:e3:92:69:fc: e5:dc:6c:59:a9:91:ec:ce:cc:0f:c1:f0:66:96:fe:fc:0c:bc: d2:dc:9e:5b -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjUxMjE3MDIyMTE4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjY0NC1lMDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/BvW8CBGLvX1/lzllONHdrSDEJ1hhFnMRJNY+HIq/VSDFBcxjUaJpco38jF QhaJvSU6iznhcmAJcYmLqIY4qTNP/XIGuk6OVYQDaaD9ghdBofMM0PAyDR00UIk6 hWuRb/uHROIFU9VAHUtHwjO4EoOolY/1FI8mGP6d2PqCk3FXNrNdnxwZcdGLpKgi OlIj9GMi0vBsHqQ48LNpKN9EdZXLxGaTQBxnwkvQx+Rv3qCXqJI5Y3Fhnu0x6Qj9 0COA5qQyFyRNILZcs2neBSdQNwhxonwYqTkB5KidB+CgqbE6t9MIGhM1oCZBQ7y/ EgKDHjvPcx7XjuhYEtZywoUsyQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFHeoEJEO 672DoVElic0b7rcrNBQ2MB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvRkEwNURGRjQ3 RjQ5MTFFRDg0N0ZGODYyQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAT4ATANBgkqhkiG9w0BAQsFAAOCAQEAYI05r5EaderMj663H23r mcj+HnZNcHRIJH/xdh1QLYEl32OfW0fAks1uSVdIjrny3Jry3tY1R4RuM4DPgBdV +qvZmQnKZXUKYrjnJwFm1F2FGH1pxXL3uQyF2BQd3SZXWjyf2JMKMVDWOjR2Tar5 8JFpoziyMZy5BA0vwKuXXViEjB3VJXv0S7hJeoBVyqzteweG267uErc0KPHGFK0P zXjcm9THkoaN/qPglGHyRdVqBcxEWamTFY2bSLexYySl7Rh8d3JtLc55d9mcoyOx c1xDC2Nwb5DBMGUWAv4Y1i0sRycU0t7jkmn85dxsWamR7M7MD8HwZpb+/Ay80tye Ww== -----END CERTIFICATE-----Generated at Thu Mar 5 01:39:34 2026 by rpki-client