$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa File: 2BF1D5F07E3511EE8CB63458C4F9AE02.roa (raw, json) Hash identifier: y512Vfv9khNilQdj8KLU0HhrU0fT3QsaNnHmkL8j2KY= Subject key identifier: EB:DD:E1:BE:29:C8:F1:E7:EA:47:72:52:F5:0D:A3:69:BB:15:AC:DD Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 046E Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa Signing time: Fri 03 Apr 2026 00:32:51 +0000 ROA not before: Fri 03 Apr 2026 00:32:51 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 136251 IP address blocks: 210.79.61.0/24 maxlen: 24 210.79.62.0/24 maxlen: 24 210.79.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:02:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6, serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Apr 3 00:32:51 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf0ab3-b495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2c:f3:0f:e2:2e:98:ff:8e:2d:b9:08:d8:07: a9:fa:21:c3:77:ee:5a:fb:de:b9:3a:9f:5a:ad:17: 97:54:d5:de:15:5a:f7:09:29:14:c3:ac:a4:df:06: 6c:c7:60:4b:c0:0b:59:6e:91:7c:4b:26:0d:a3:c0: e8:21:86:62:2e:80:a5:51:ab:f7:1b:8a:3c:65:4b: 8c:ce:45:4c:bf:a8:54:a7:61:15:de:39:5a:9a:2d: 5d:4d:aa:ff:80:a8:b7:c9:5d:29:50:2e:06:5e:fe: 5d:af:7c:1e:82:f6:ed:1e:a6:fa:2b:64:a8:d4:d2: 44:f3:c0:14:81:6f:5a:a7:d8:b5:6a:15:00:89:d5: 7f:db:b7:a5:1b:53:21:32:e2:0e:56:95:9c:da:e0: 96:bc:c2:c8:07:58:f6:96:ec:5d:9b:38:50:c1:6d: 37:36:ce:83:be:f8:03:4d:ca:f1:6b:14:b9:98:06: 87:b0:f6:38:0f:47:8c:ce:ae:ee:54:76:e4:7f:20: d0:0a:28:89:98:9a:6e:14:39:b0:20:94:2a:4b:a9: ca:a8:5f:39:f3:72:9c:57:26:4d:b4:77:e4:a6:3e: 45:ed:a5:06:0d:00:ea:ae:60:33:0b:99:9a:70:ff: 24:67:5c:79:0d:06:a4:90:59:11:da:56:e7:9d:77: b1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DD:E1:BE:29:C8:F1:E7:EA:47:72:52:F5:0D:A3:69:BB:15:AC:DD X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/2BF1D5F07E3511EE8CB63458C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.79.61.0-210.79.63.255 Signature Algorithm: sha256WithRSAEncryption 52:0a:78:a7:b3:02:d7:71:9d:2b:24:9f:5f:97:de:9a:2c:b7: 24:1f:23:90:ba:14:3f:68:2e:d2:11:67:e8:54:09:fb:61:63: ad:72:2e:77:fc:7c:d6:c4:a8:8f:8a:d0:78:bc:fa:a2:c3:f7: ae:ba:5f:f0:4d:5f:ff:36:c7:7d:e8:13:ea:b1:10:a4:1d:bf: 48:a8:37:00:e7:43:4c:84:a5:2f:65:f6:ab:dc:7b:6d:47:09: 27:09:0f:a9:0b:43:2d:65:96:19:b4:05:3d:b7:27:72:79:9a: 1e:30:4b:be:85:f4:da:a8:8f:f4:3e:c9:66:aa:c3:2b:67:53: ad:3d:f9:8a:0c:2f:20:35:ed:8f:59:f9:35:2b:ea:97:ff:c5: 71:34:f7:68:8b:2e:27:bb:a9:2b:51:a6:da:e0:fc:5c:73:10: c5:41:3c:c8:e2:9e:82:4c:3d:f1:20:11:71:28:3d:7b:c6:87: 3c:07:f8:ab:99:62:dd:7a:e5:a8:78:76:37:86:df:de:aa:c7: 78:4b:56:a3:32:ac:af:98:9d:09:54:2c:00:fd:37:c7:2a:98: 52:cb:14:77:1c:ee:74:c8:7c:b6:5b:09:8c:11:94:b3:89:b5: 64:a7:9c:96:0e:68:26:a8:cc:e2:f0:cb:4e:cf:0a:04:26:cc: 3c:87:f0:5e -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjYwNDAzMDAzMjUxWhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGFiMy1iNDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6CzzD+IumP+OLbkI2Aep+iHDd+5a+965Op9arReXVNXeFVr3CSkUw6yk3wZs x2BLwAtZbpF8SyYNo8DoIYZiLoClUav3G4o8ZUuMzkVMv6hUp2EV3jlami1dTar/ gKi3yV0pUC4GXv5dr3wegvbtHqb6K2So1NJE88AUgW9ap9i1ahUAidV/27elG1Mh MuIOVpWc2uCWvMLIB1j2luxdmzhQwW03Ns6DvvgDTcrxaxS5mAaHsPY4D0eMzq7u VHbkfyDQCiiJmJpuFDmwIJQqS6nKqF8583KcVyZNtHfkpj5F7aUGDQDqrmAzC5ma cP8kZ1x5DQakkFkR2lbnnXexWQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFOvd4b4p yPHn6kdyUvUNo2m7FazdMB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvMkJGMUQ1RjA3 RTM1MTFFRThDQjYzNDU4QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBADSTz0DBAbSTwAwDQYJKoZIhvcNAQELBQADggEBAFIKeKezAtdx nSskn1+X3postyQfI5C6FD9oLtIRZ+hUCfthY61yLnf8fNbEqI+K0Hi8+qLD9666 X/BNX/82x33oE+qxEKQdv0ioNwDnQ0yEpS9l9qvce21HCScJD6kLQy1llhm0BT23 J3J5mh4wS76F9Nqoj/Q+yWaqwytnU609+YoMLyA17Y9Z+TUr6pf/xXE092iLLie7 qStRptrg/FxzEMVBPMjinoJMPfEgEXEoPXvGhzwH+KuZYt165ah4djeG396qx3hL VqMyrK+YnQlULAD9N8cqmFLLFHcc7nTIfLZbCYwRlLOJtWSnnJYOaCaozOLwy07P CgQmzDyH8F4= -----END CERTIFICATE-----Generated at Mon Apr 6 13:57:19 2026 by rpki-client