$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa File: 8610B9DCF33F11EEB412F210C4F9AE02.roa (raw, json) Hash identifier: +qCBgSwgU8M+3DqJXTVNThr1zCfTVO4cctLLYlIo8ns= Subject key identifier: 94:79:CD:4D:15:A3:1F:7F:BB:3B:6F:1D:10:47:9E:A0:CA:E2:45:DB Certificate issuer: /CN=A91C1A4E/serialNumber=A921635C7493F21CD26093D5903510802F4E3586 Certificate serial: 0C1B Authority key identifier: A9:21:63:5C:74:93:F2:1C:D2:60:93:D5:90:35:10:80:2F:4E:35:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa Signing time: Tue 31 Mar 2026 19:24:03 +0000 ROA not before: Tue 31 Mar 2026 19:24:03 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 138585 IP address blocks: 2404:53c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.crl rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 18:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A4E, serialNumber=A921635C7493F21CD26093D5903510802F4E3586 Validity Not Before: Mar 31 19:24:03 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cc1f53-dd58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:13:f3:a4:95:cb:88:ce:59:ec:49:88:aa:15: 09:94:e1:80:de:25:07:6b:37:cf:6c:6f:64:00:ef: 60:e6:ba:8e:37:90:9d:b4:14:8d:da:b9:fe:11:5d: 9a:ab:24:d2:a5:12:98:52:c9:c8:f6:4d:07:2a:59: e5:d5:ae:eb:12:3c:30:f7:b2:2e:8e:e9:a8:30:c5: ac:fd:1a:43:11:64:4e:43:80:ad:2d:91:3a:2a:6d: 13:ee:a2:b2:43:6b:d7:86:fc:e7:45:cc:bb:fd:33: 72:f2:73:7b:9d:68:df:7f:61:5b:c6:88:d8:b0:04: 07:86:93:0d:ea:96:20:3d:26:62:69:9b:e3:e0:34: 8c:0c:37:e7:0d:72:c1:38:98:57:44:31:86:ec:4b: 14:72:df:8a:5f:51:4e:85:be:0a:9c:02:41:2f:70: a7:ad:01:c7:e7:26:4a:1d:94:fe:5d:be:5a:10:c7: 5b:97:c9:fb:83:6f:fe:e6:4d:25:97:88:4f:81:ea: 80:28:36:cd:33:a7:bb:7b:ad:1c:ab:71:bc:97:24: ab:2a:77:cf:e6:4f:db:d8:17:52:ce:74:43:d6:9a: e9:05:44:47:e8:e8:d2:82:45:6f:dc:fb:e5:68:6d: 5f:87:4b:47:13:03:16:08:3d:83:5a:b8:3c:60:d2: c2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:79:CD:4D:15:A3:1F:7F:BB:3B:6F:1D:10:47:9E:A0:CA:E2:45:DB X509v3 Authority Key Identifier: keyid:A9:21:63:5C:74:93:F2:1C:D2:60:93:D5:90:35:10:80:2F:4E:35:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:53c0::/32 Signature Algorithm: sha256WithRSAEncryption d2:52:50:a8:09:e7:c3:35:ac:96:9d:be:fe:1d:b0:5f:03:d1: bb:be:67:a1:33:5c:55:6b:98:df:ac:c2:6d:f0:d7:0a:3e:94: c6:67:20:f8:3a:5d:f9:b3:4b:81:1b:73:9f:66:27:f6:fd:05: df:be:4f:82:a1:f0:ef:3f:ca:d3:ec:35:16:2f:2a:0d:fe:20: e5:91:a4:01:40:5c:12:32:71:9a:db:31:6a:60:91:bb:4c:8a: 4d:20:06:6f:7e:e4:da:d2:fb:64:13:73:a9:64:e5:be:1e:d8: e0:f0:67:5d:4c:c8:fd:d5:37:49:a7:50:2f:d8:bb:47:67:39: 2c:f5:7a:af:b1:5f:eb:f8:52:44:0c:14:66:8b:43:a4:8c:af: 0e:fb:41:37:c8:ab:21:f7:d4:6f:93:74:98:ef:c2:9f:0f:b9: e5:30:19:bf:a5:62:e9:d5:7a:bf:76:6f:c2:b9:64:42:e2:f6: 38:5c:97:83:c8:a2:30:78:f5:e4:4a:4b:f2:28:9d:8d:c6:09: 13:35:43:c0:9d:4c:6a:48:4e:c3:3a:98:23:0b:54:6b:5a:fb: 3e:f9:2b:06:72:7e:46:f2:c2:5b:20:89:e1:c3:7a:e2:18:d1: 16:a2:f6:34:b9:21:98:da:11:73:36:7d:be:62:e1:74:df:a2: d8:75:33:66 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBNEUxMTAvBgNVBAUTKEE5MjE2MzVDNzQ5M0YyMUNEMjYwOTNENTkwMzUxMDgw MkY0RTM1ODYwHhcNMjYwMzMxMTkyNDAzWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjMWY1My1kZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhPzpJXLiM5Z7EmIqhUJlOGA3iUHazfPbG9kAO9g5rqON5CdtBSN2rn+EV2a qyTSpRKYUsnI9k0HKlnl1a7rEjww97IujumoMMWs/RpDEWROQ4CtLZE6Km0T7qKy Q2vXhvznRcy7/TNy8nN7nWjff2FbxojYsAQHhpMN6pYgPSZiaZvj4DSMDDfnDXLB OJhXRDGG7EsUct+KX1FOhb4KnAJBL3CnrQHH5yZKHZT+Xb5aEMdbl8n7g2/+5k0l l4hPgeqAKDbNM6e7e60cq3G8lySrKnfP5k/b2BdSznRD1prpBURH6OjSgkVv3Pvl aG1fh0tHEwMWCD2DWrg8YNLC5wIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFJR5zU0V ox9/uztvHRBHnqDK4kXbMB8GA1UdIwQYMBaAFKkhY1x0k/Ic0mCT1ZA1EIAvTjWG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUE0RS9BNDlCNEQ3NDM3 QzYxMUVBOUQ5NkFFNTFDNEY5QUUwMi9xU0ZqWEhTVDhoelNZSlBWa0RVUWdDOU9O WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRmpYSFNUOGh6U1lKUFZrRFVRZ0M5T05ZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBNEUvQTQ5QjRENzQzN0M2MTFFQTlEOTZBRTUxQzRGOUFFMDIvODYxMEI5RENG MzNGMTFFRUI0MTJGMjEwQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJARTwDANBgkqhkiG9w0BAQsFAAOCAQEA0lJQqAnnwzWslp2+/h2w XwPRu75noTNcVWuY36zCbfDXCj6Uxmcg+Dpd+bNLgRtzn2Yn9v0F375PgqHw7z/K 0+w1Fi8qDf4g5ZGkAUBcEjJxmtsxamCRu0yKTSAGb37k2tL7ZBNzqWTlvh7Y4PBn XUzI/dU3SadQL9i7R2c5LPV6r7Ff6/hSRAwUZotDpIyvDvtBN8irIffUb5N0mO/C nw+55TAZv6Vi6dV6v3ZvwrlkQuL2OFyXg8iiMHj15EpL8iidjcYJEzVDwJ1MakhO wzqYIwtUa1r7PvkrBnJ+RvLCWyCJ4cN64hjRFqL2NLkhmNoRczZ9vmLhdN+i2HUz Zg== -----END CERTIFICATE-----Generated at Mon Apr 6 09:55:28 2026 by rpki-client