$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/A0A96F80AD8511F08B0A1857C4F9AE02.roa File: A0A96F80AD8511F08B0A1857C4F9AE02.roa (raw, json) Hash identifier: E4mvIp0TY49n7Ku16oPaGsPeRK5kr/jdVq6qAjBUp9s= Subject key identifier: E7:7E:5F:2B:3E:20:6F:A2:F4:E7:1B:4E:3E:51:05:A6:72:2C:D1:20 Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 072A Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/A0A96F80AD8511F08B0A1857C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:29:12 +0000 ROA not before: Sun 02 Nov 2025 22:11:55 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55201 IP address blocks: 2401:d3c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 21:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Nov 2 22:11:55 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a47768-b4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:99:3e:81:b2:2f:93:7c:aa:6b:fa:3f:55:a6: be:eb:3b:6c:21:2a:db:8a:6b:46:3b:45:13:22:4d: 83:72:3e:e2:89:f4:0f:76:66:63:fb:1f:07:5b:64: 47:30:aa:54:16:f8:e9:84:33:3e:ea:79:cb:f0:14: 83:e8:58:e9:7d:52:b6:cd:07:ae:b1:14:cf:76:cc: 1b:e5:ed:87:82:3f:75:f8:c7:ec:d6:b5:57:5c:b8: 34:d0:4a:18:8f:ba:1e:d4:35:3f:a0:d4:48:e9:0b: e7:2d:f0:2a:ee:8d:25:cb:30:3b:d1:74:e2:3b:56: 3c:91:e3:46:25:a5:f6:bc:fb:a2:b3:dc:a2:77:8e: 06:d0:b1:98:44:3b:fc:bc:0f:5a:71:af:ac:29:10: 9d:6c:14:f8:84:68:69:73:32:32:80:6b:0b:d6:38: 9c:84:bb:40:e7:f9:66:01:f4:2e:43:f1:2f:f9:f7: 82:ba:b0:c5:e4:a9:f5:ce:da:64:e3:65:e0:87:a4: 34:37:e2:88:1a:d3:f5:c4:54:cb:ba:7c:af:da:e8: 85:bb:24:63:8c:15:1f:6e:04:f7:31:e0:ef:58:5e: d7:35:d6:79:28:9d:aa:dc:34:40:55:0f:d2:9b:66: 6c:11:25:f7:db:41:f4:20:c2:4f:44:b9:52:1f:c1: dc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:7E:5F:2B:3E:20:6F:A2:F4:E7:1B:4E:3E:51:05:A6:72:2C:D1:20 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/A0A96F80AD8511F08B0A1857C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:d3c0::/32 Signature Algorithm: sha256WithRSAEncryption 60:b6:bf:76:14:3e:25:47:6e:c3:37:60:1b:fb:05:a8:dc:f1: ae:3d:f6:90:42:00:14:30:b3:10:09:01:fe:b5:15:1e:0a:9f: 9b:96:bc:93:80:36:7b:bf:ff:2b:af:db:4f:04:78:ef:59:be: 3f:70:61:1d:e6:81:40:22:b0:96:f2:4e:1c:78:df:cc:aa:29: 03:16:0b:a6:6c:aa:2f:e5:a6:36:7d:df:92:56:ff:56:8f:3f: 68:9e:88:9d:5b:33:62:58:97:e0:1e:52:25:8f:a6:1b:ca:b6: bb:2e:78:9e:18:9f:7e:ac:15:d0:32:a8:61:2d:18:ce:8e:ca: 35:e4:7f:3f:7b:de:ae:56:b1:93:d6:0f:92:b8:4e:a6:b1:41: d1:d7:93:27:2d:d0:93:d6:02:8e:64:09:11:ef:b1:f3:3e:a1: 04:a4:65:fb:4b:f7:bd:bb:2f:1c:82:51:15:10:09:7c:af:68: 8a:e7:2f:ce:25:9f:56:f4:0b:b6:6c:69:bc:20:e4:90:20:85: 5b:59:44:17:6e:3b:45:8d:5f:18:40:33:c0:ca:c1:04:02:0f: 0f:cc:f0:8b:5b:9b:44:a4:5c:b6:36:51:c3:d5:86:42:65:35: 9c:9c:2a:1f:88:d5:51:f9:f0:b2:81:3b:46:a7:6e:87:55:3c: f4:39:42:f8 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUxMTAyMjIxMTU1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzc2OC1iNGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZk+gbIvk3yqa/o/Vaa+6ztsISrbimtGO0UTIk2Dcj7iifQPdmZj+x8HW2RH MKpUFvjphDM+6nnL8BSD6FjpfVK2zQeusRTPdswb5e2Hgj91+Mfs1rVXXLg00EoY j7oe1DU/oNRI6QvnLfAq7o0lyzA70XTiO1Y8keNGJaX2vPuis9yid44G0LGYRDv8 vA9aca+sKRCdbBT4hGhpczIygGsL1jichLtA5/lmAfQuQ/Ev+feCurDF5Kn1ztpk 42Xgh6Q0N+KIGtP1xFTLunyv2uiFuyRjjBUfbgT3MeDvWF7XNdZ5KJ2q3DRAVQ/S m2ZsESX320H0IMJPRLlSH8HcXwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFOd+Xys+ IG+i9OcbTj5RBaZyLNEgMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1RTYvODdEMUVEMDY3QTg3MTFFQjkwOEVCRDYzQzRGOUFFMDIvQTBBOTZGODBB RDg1MTFGMDhCMEExODU3QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHTwDANBgkqhkiG9w0BAQsFAAOCAQEAYLa/dhQ+JUduwzdgG/sF qNzxrj32kEIAFDCzEAkB/rUVHgqfm5a8k4A2e7//K6/bTwR471m+P3BhHeaBQCKw lvJOHHjfzKopAxYLpmyqL+WmNn3fklb/Vo8/aJ6InVszYliX4B5SJY+mG8q2uy54 nhiffqwV0DKoYS0Yzo7KNeR/P3verlaxk9YPkrhOprFB0deTJy3Qk9YCjmQJEe+x 8z6hBKRl+0v3vbsvHIJRFRAJfK9oiucvziWfVvQLtmxpvCDkkCCFW1lEF247RY1f GEAzwMrBBAIPD8zwi1ubRKRctjZRw9WGQmU1nJwqH4jVUfnwsoE7Rqduh1U89DlC +A== -----END CERTIFICATE-----Generated at Sat Mar 7 17:27:07 2026 by rpki-client