$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa File: B066E5B6C5C111F0BD9B1831C4F9AE02.roa (raw, json) Hash identifier: NLyaxD8xqaGyXKL8OoFduYbT8nOjVNNYm1Tj40sfJzo= Subject key identifier: 61:8C:E4:7A:AB:62:C0:FF:98:CE:32:20:32:FD:4A:BC:24:BC:17:35 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0F5C Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa Signing time: Mon 01 Jun 2026 05:57:03 +0000 ROA not before: Mon 01 Jun 2026 05:57:03 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 209554 IP address blocks: 2001:df1:4580::/48 maxlen: 48 2405:84c0::/32 maxlen: 32 2405:84c0::/48 maxlen: 48 2405:84c0:2000::/36 maxlen: 40 2405:84c0:4000::/36 maxlen: 40 2405:84c0:5000::/36 maxlen: 40 2405:84c0:6800::/40 maxlen: 44 2405:84c0:6f00::/40 maxlen: 44 2405:84c0:8000::/44 maxlen: 48 2405:84c0:8010::/44 maxlen: 48 2405:84c0:8020::/44 maxlen: 48 2405:84c0:8030::/44 maxlen: 48 2405:84c0:8040::/44 maxlen: 48 2405:84c0:8050::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Jun 2026 17:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3932 (0xf5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Jun 1 05:57:03 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6a1d1f2f-f1ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:76:ac:33:4a:23:57:2e:1a:02:f6:a4:65:f2: 84:38:d2:84:63:6e:10:ac:17:15:66:cf:90:d2:e7: 1a:6f:8c:21:48:41:bc:52:00:29:9f:10:54:03:79: ed:25:98:56:f7:82:f7:3a:bc:0f:e2:23:1a:31:05: 2c:a9:1b:65:f9:73:43:24:45:af:46:56:29:66:ab: 0d:1c:69:fc:44:ea:8d:21:b2:82:07:53:64:bc:08: 0b:44:b4:d9:40:63:f6:0b:0d:02:c6:f5:d6:0f:da: 17:ca:42:47:6d:ee:0d:46:eb:2e:b2:ab:10:51:b2: 65:e3:84:b9:f8:9e:c0:f5:4e:4a:f1:02:a7:56:94: 25:bc:dd:d3:fc:ea:8f:d8:5b:73:60:76:a2:63:70: a7:ad:d6:93:2c:92:8f:0c:57:ad:05:16:00:b3:fa: a0:0e:7c:9b:e3:96:dd:7f:9b:32:7e:8b:84:1e:45: 0f:19:a1:9e:70:b7:2f:29:88:d3:81:9a:35:df:2a: 3f:30:31:92:96:83:10:bd:7e:db:81:26:84:c5:71: 3d:12:a8:f5:ef:5e:d6:a6:2c:77:8b:b7:d2:bc:30: 50:70:cb:4d:42:2e:a9:3c:1c:2f:fc:d5:19:f2:36: ba:8d:8f:7c:0a:e6:39:70:fd:86:c3:e3:a4:b3:f5: 4d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8C:E4:7A:AB:62:C0:FF:98:CE:32:20:32:FD:4A:BC:24:BC:17:35 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df1:4580::/48 2405:84c0::/32 Signature Algorithm: sha256WithRSAEncryption 62:46:c2:35:1f:90:a5:83:fe:fd:fa:7c:a2:fb:e9:d4:a5:f2: 4d:b1:1a:17:87:d1:b2:0a:da:e9:83:96:01:45:07:3f:b6:b9: 62:44:08:8d:39:ae:aa:c9:cc:26:49:a5:8a:18:58:74:1f:6f: d8:82:81:55:57:85:6e:9d:11:06:f6:06:b7:7a:95:df:ce:d9: 79:9a:bd:86:83:8a:9b:65:c2:11:b6:78:e4:9d:3a:fd:50:bc: 86:6c:4b:cc:f6:fb:a1:39:b8:a5:92:f2:f0:c7:35:1e:2f:17: 27:f3:d9:fe:cc:e9:62:90:de:53:6b:8c:55:09:fa:e6:43:7d: c3:77:9c:ec:57:85:4e:e5:3d:7b:46:17:f7:ff:5a:3f:7f:3a: b5:4c:7d:9b:17:a1:33:3a:3f:e9:3e:58:3a:50:74:67:b5:a6: eb:07:f5:89:1f:9d:e6:18:e1:aa:15:87:1d:20:12:15:ad:35: 77:b7:b2:e4:57:a4:c8:49:13:a6:f7:ef:c1:70:65:8e:82:f9: fe:90:d8:d7:5d:5f:5f:06:79:99:36:f1:9c:c8:02:79:8d:70: 0a:80:b6:95:18:80:8d:47:8f:ac:f2:b9:4c:cd:43:45:65:85: f2:f7:9e:e5:88:bb:af:4f:06:02:52:87:d8:30:fc:8d:95:ec: 35:f0:0e:f2 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgICD1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjYwNjAxMDU1NzAzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFkMWYyZi1mMWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh3asM0ojVy4aAvakZfKEONKEY24QrBcVZs+Q0ucab4whSEG8UgApnxBUA3nt JZhW94L3OrwP4iMaMQUsqRtl+XNDJEWvRlYpZqsNHGn8ROqNIbKCB1NkvAgLRLTZ QGP2Cw0CxvXWD9oXykJHbe4NRususqsQUbJl44S5+J7A9U5K8QKnVpQlvN3T/OqP 2FtzYHaiY3CnrdaTLJKPDFetBRYAs/qgDnyb45bdf5syfouEHkUPGaGecLcvKYjT gZo13yo/MDGSloMQvX7bgSaExXE9Eqj1717Wpix3i7fSvDBQcMtNQi6pPBwv/NUZ 8ja6jY98CuY5cP2Gw+Oks/VN3wIDAQABo4ICajCCAmYwHQYDVR0OBBYEFGGM5Hqr YsD/mM4yIDL9SrwkvBc1MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvQjA2NkU1QjZD NUMxMTFGMEJEOUIxODMxQzRGOUFFMDIucm9hMCkGCCsGAQUFBwEHAQH/BBowGDAW BAIAAjAQAwcAIAEN8UWAAwUAJAWEwDANBgkqhkiG9w0BAQsFAAOCAQEAYkbCNR+Q pYP+/fp8ovvp1KXyTbEaF4fRsgra6YOWAUUHP7a5YkQIjTmuqsnMJkmlihhYdB9v 2IKBVVeFbp0RBvYGt3qV387ZeZq9hoOKm2XCEbZ45J06/VC8hmxLzPb7oTm4pZLy 8Mc1Hi8XJ/PZ/szpYpDeU2uMVQn65kN9w3ec7FeFTuU9e0YX9/9aP386tUx9mxeh Mzo/6T5YOlB0Z7Wm6wf1iR+d5hjhqhWHHSASFa01d7ey5FekyEkTpvfvwXBljoL5 /pDY111fXwZ5mTbxnMgCeY1wCoC2lRiAjUePrPK5TM1DRWWF8vee5Yi7r08GAlKH 2DD8jZXsNfAO8g== -----END CERTIFICATE-----Generated at Sat Jun 6 13:37:47 2026 by rpki-client