$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa File: 8C0868D0C9DC11EE8B24C55EC4F9AE02.roa (raw, json) Hash identifier: O4XanTDe0ztngiWNae9hBO/GQEgCdTJ5b4fu8JScoU8= Subject key identifier: EB:56:A9:4A:DA:2D:7B:F3:DE:40:44:20:AA:0D:23:98:FC:9F:A7:18 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0B45 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa Signing time: Thu 26 Mar 2026 19:25:02 +0000 ROA not before: Thu 26 Mar 2026 19:25:02 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 3949 IP address blocks: 2001:218:2008::/48 maxlen: 48 2001:218:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 Apr 2026 19:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 19:25:02 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c5880e-7794 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:89:03:11:bc:e2:c5:c2:ea:0a:9a:c2:94: ee:8d:97:00:1b:da:3b:59:5a:f8:95:5a:f0:fe:e4: ef:5b:f4:41:f7:16:26:4b:cd:8f:70:87:70:27:27: d7:f5:68:cf:4b:34:2d:03:77:42:ef:5e:61:ae:1d: ef:f9:62:99:0e:64:0f:b3:6e:a0:18:3f:8e:6b:24: ff:0d:a3:fa:96:61:49:23:70:34:6c:7e:fe:f6:42: 2d:d9:d1:cc:79:92:fa:28:ab:68:b9:2a:be:c5:16: 4a:18:7a:fc:b2:56:e3:36:f4:87:95:68:eb:50:82: 47:ed:95:70:bb:f4:fd:42:b9:58:af:d2:a8:3b:1e: fe:f3:98:0b:10:60:74:c4:c7:66:c3:07:18:42:3c: ce:7e:ce:0d:94:43:c1:ab:3b:ec:23:bb:b5:48:85: c3:f4:c1:d0:a7:e7:92:ae:1a:28:ef:4c:25:c8:cd: d6:42:36:5b:d6:b0:be:c5:67:23:5d:c6:d2:7d:83: 79:6d:dc:68:89:5f:c5:d7:e7:64:d9:09:22:92:c9: c2:2c:c4:69:e5:e0:4a:30:11:b8:4e:52:ec:8c:d2: d8:da:69:fc:a9:e8:e5:1a:97:f7:14:e0:16:fd:44: 02:e4:36:92:df:35:77:2c:02:c7:ea:29:58:1e:14: f7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:56:A9:4A:DA:2D:7B:F3:DE:40:44:20:AA:0D:23:98:FC:9F:A7:18 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:218:2008::/48 2001:218:3001::/48 Signature Algorithm: sha256WithRSAEncryption 14:31:0f:4b:15:76:a1:e7:f0:7b:00:d3:ed:58:b2:0f:27:33: 15:28:9c:02:1b:ad:c3:20:9f:a3:1d:6f:29:1b:b6:41:61:1b: cb:88:6d:07:06:94:ae:c1:b6:8b:59:d1:26:20:4e:b8:ad:c2: c6:ba:91:0f:6b:62:a7:32:cb:58:e1:88:e1:f0:3e:23:17:fd: 56:b6:ca:9e:7d:13:5a:8a:fa:a8:a5:77:fd:fb:32:7f:4c:03: ff:7b:c8:49:ea:b7:5b:f2:fa:af:65:bb:7c:19:38:2c:f3:c9: 85:6d:b1:ad:1d:a8:4f:84:2f:92:27:e8:c6:52:bf:e6:e0:8f: 37:37:cb:bd:fa:b9:4a:6f:db:8c:10:e3:75:3f:ec:c6:8e:cd: 77:69:da:b3:b3:b8:88:c1:87:72:35:a2:9e:98:36:fd:63:18: 74:d7:65:b4:a7:14:a6:84:88:49:7a:9d:5c:36:5e:ff:c6:e7: 95:1a:c0:1d:7f:cb:9f:85:0e:9a:7e:e2:4d:e9:f9:8b:e0:29: f1:c8:8d:79:e0:bf:05:c4:ae:c1:62:1a:a8:34:a0:b2:e0:e5: df:d6:90:8d:47:26:2f:51:62:12:8b:9d:71:c6:da:0d:c1:08: e8:7c:1b:70:a6:8b:00:59:44:94:07:d0:2c:80:55:f9:55:25: 56:b9:46:12 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjYwMzI2MTkyNTAyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1ODgwZS03Nzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1SJAxG84sXC6gqawpTujZcAG9o7WVr4lVrw/uTvW/RB9xYmS82PcIdwJyfX 9WjPSzQtA3dC715hrh3v+WKZDmQPs26gGD+OayT/DaP6lmFJI3A0bH7+9kIt2dHM eZL6KKtouSq+xRZKGHr8slbjNvSHlWjrUIJH7ZVwu/T9QrlYr9KoOx7+85gLEGB0 xMdmwwcYQjzOfs4NlEPBqzvsI7u1SIXD9MHQp+eSrhoo70wlyM3WQjZb1rC+xWcj XcbSfYN5bdxoiV/F1+dk2QkiksnCLMRp5eBKMBG4TlLsjNLY2mn8qejlGpf3FOAW /UQC5DaS3zV3LALH6ilYHhT3MQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFOtWqUra LXvz3kBEIKoNI5j8n6cYMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvOEMwODY4RDBD OURDMTFFRThCMjRDNTVFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcAIAECGCAIAwcAIAECGDABMA0GCSqGSIb3DQEBCwUAA4IBAQAUMQ9L FXah5/B7ANPtWLIPJzMVKJwCG63DIJ+jHW8pG7ZBYRvLiG0HBpSuwbaLWdEmIE64 rcLGupEPa2KnMstY4Yjh8D4jF/1WtsqefRNaivqopXf9+zJ/TAP/e8hJ6rdb8vqv Zbt8GTgs88mFbbGtHahPhC+SJ+jGUr/m4I83N8u9+rlKb9uMEON1P+zGjs13adqz s7iIwYdyNaKemDb9Yxh012W0pxSmhIhJep1cNl7/xueVGsAdf8ufhQ6afuJN6fmL 4CnxyI154L8FxK7BYhqoNKCy4OXf1pCNRyYvUWISi51xxtoNwQjofBtwposAWUSU B9AsgFX5VSVWuUYS -----END CERTIFICATE-----Generated at Mon Mar 30 21:41:54 2026 by rpki-client