$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/594EEA2CAEA711EE961B0558C4F9AE02.roa File: 594EEA2CAEA711EE961B0558C4F9AE02.roa (raw, json) Hash identifier: 1WtzE6xd4FzSwtfwfBdNhh6CgzY26325aS+D53ov/rw= Subject key identifier: A8:9F:9E:70:39:CC:64:5A:7D:71:F3:0E:B6:9C:76:06:C0:D1:35:36 Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 07C4 Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/594EEA2CAEA711EE961B0558C4F9AE02.roa Signing time: Sat 10 Jan 2026 21:17:40 +0000 ROA not before: Sat 10 Jan 2026 21:17:40 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 24545 IP address blocks: 2400:7e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 20:45:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1988 (0x7c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23, serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: Jan 10 21:17:40 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=6962c1f4-36a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:b6:78:49:da:e0:b0:68:6e:fe:7e:7e:17: 38:7f:23:16:07:1e:61:ec:65:3a:13:f4:8a:b0:cf: 25:fb:c4:46:3f:d0:98:39:f8:fe:7a:38:a0:81:54: 10:f4:a7:4a:84:b0:01:9e:59:5c:72:4b:9e:88:98: d0:2b:a0:e1:e2:f6:33:ee:43:50:1c:de:83:ef:e0: f8:ff:0c:5d:b8:72:1b:f8:62:0c:a0:0e:0c:67:66: ec:de:81:ab:44:a1:fd:4f:27:d0:71:e3:03:b4:26: 51:d4:0f:d1:0f:0b:d0:54:76:7e:ef:5f:ab:0f:33: 08:7a:02:00:b1:2c:53:17:91:0d:67:07:2a:e4:58: 6d:3f:c1:95:21:cb:59:77:76:77:c9:21:1b:5f:47: b1:d4:12:c0:58:cb:5b:8d:e2:54:21:08:e7:2c:75: 3d:af:20:78:94:17:65:2e:f3:d1:97:31:aa:c0:cd: 35:0c:c8:6d:48:4d:63:48:5b:e7:c7:f1:fa:5d:a8: 83:9d:ff:35:a8:8c:7a:29:70:e3:33:e8:45:10:4f: 9f:61:b2:4d:9e:8e:a8:06:bd:13:9c:d5:f8:e6:f5: b7:b9:80:d4:e4:02:4d:64:8d:47:ed:10:9b:a4:6a: cf:48:a4:3d:7f:a4:b1:1f:ff:9e:79:0a:b2:a6:89: 68:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:9F:9E:70:39:CC:64:5A:7D:71:F3:0E:B6:9C:76:06:C0:D1:35:36 X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/594EEA2CAEA711EE961B0558C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:7e40::/32 Signature Algorithm: sha256WithRSAEncryption 94:4a:d9:8e:a1:8e:93:17:17:8e:a5:ee:d6:36:6c:e8:b8:22: 3f:5c:af:23:96:5b:6c:0f:4f:71:96:88:db:73:e5:3e:e9:89: 2d:ee:7d:bb:11:eb:f0:da:00:4e:6b:93:da:c9:8e:e9:8e:d5: f8:f9:a2:0a:90:c4:f3:33:07:d4:21:29:09:d5:e2:bd:f1:04: 84:1a:cd:1a:f6:8c:78:c2:80:c9:d0:05:f8:01:80:54:2a:2e: 16:73:66:00:56:c7:95:22:c4:77:e1:c5:fc:51:16:5a:19:fe: a5:e8:bf:87:92:47:63:9b:b7:32:f0:b6:bd:6b:32:a9:71:d2: 3b:b7:fe:fa:32:16:14:70:9f:16:d9:05:2d:c8:bf:76:2d:53: 96:6b:79:b9:51:a3:de:20:78:cd:7a:e9:18:d5:ad:60:54:b7: 9f:42:52:7c:b6:a3:f7:cc:1f:1b:9b:29:5f:04:50:1e:34:1b: 62:ad:9f:7f:c7:45:b8:f6:16:db:77:72:e9:6b:31:d6:bc:ab: 0b:3c:98:96:80:af:7b:53:71:26:e4:4c:29:67:67:f0:87:f8: 44:ad:39:57:eb:9d:19:c1:53:cf:74:17:0f:ec:01:f7:e7:88: 44:14:f4:b8:de:fc:fc:ca:8f:12:e8:87:a2:73:e2:3d:a7:da: c2:b4:1b:8b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICB8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjYwMTEwMjExNzQwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTYyYzFmNC0zNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8m2eEna4LBobv5+fhc4fyMWBx5h7GU6E/SKsM8l+8RGP9CYOfj+ejiggVQQ 9KdKhLABnllcckueiJjQK6Dh4vYz7kNQHN6D7+D4/wxduHIb+GIMoA4MZ2bs3oGr RKH9TyfQceMDtCZR1A/RDwvQVHZ+71+rDzMIegIAsSxTF5ENZwcq5FhtP8GVIctZ d3Z3ySEbX0ex1BLAWMtbjeJUIQjnLHU9ryB4lBdlLvPRlzGqwM01DMhtSE1jSFvn x/H6XaiDnf81qIx6KXDjM+hFEE+fYbJNno6oBr0TnNX45vW3uYDU5AJNZI1H7RCb pGrPSKQ9f6SxH/+eeQqypolo8wIDAQABo4ICljCCApIwHQYDVR0OBBYEFKifnnA5 zGRafXHzDracdgbA0TU2MB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFBMjMvQUM1MzNERUUyODk2MTFFQkJBQUQ1NzIxQzRGOUFFMDIvNTk0RUVBMkNB RUE3MTFFRTk2MUIwNTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAH5AMA0GCSqGSIb3DQEBCwUAA4IBAQCUStmOoY6TFxeO pe7WNmzouCI/XK8jlltsD09xlojbc+U+6Ykt7n27Eevw2gBOa5PayY7pjtX4+aIK kMTzMwfUISkJ1eK98QSEGs0a9ox4woDJ0AX4AYBUKi4Wc2YAVseVIsR34cX8URZa Gf6l6L+Hkkdjm7cy8La9azKpcdI7t/76MhYUcJ8W2QUtyL92LVOWa3m5UaPeIHjN eukY1a1gVLefQlJ8tqP3zB8bmylfBFAeNBtirZ9/x0W49hbbd3LpazHWvKsLPJiW gK97U3Em5EwpZ2fwh/hErTlX650ZwVPPdBcP7AH354hEFPS43vz8yo8S6Ieic+I9 p9rCtBuL -----END CERTIFICATE-----Generated at Fri Feb 20 00:11:47 2026 by rpki-client