$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/BB8F3118497B11F096DCA14EC4F9AE02.roa File: BB8F3118497B11F096DCA14EC4F9AE02.roa (raw, json) Hash identifier: oQWD1xCgvEBo74MYI/v+krw85igCsnWcu6Q2lw2VOEE= Subject key identifier: 39:5B:28:A0:C7:1C:A0:F7:4C:EF:EC:51:E8:CC:B3:C3:F8:F8:9D:8D Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: A2 Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/BB8F3118497B11F096DCA14EC4F9AE02.roa Signing time: Fri 03 Apr 2026 07:41:09 +0000 ROA not before: Fri 03 Apr 2026 07:41:09 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 45773 IP address blocks: 2001:df5:ac40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 06:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Apr 3 07:41:09 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf6f15-2a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8f:55:6e:35:24:09:fb:4b:e9:ac:f0:28:04: 61:bc:4d:fd:c5:e6:f7:6a:37:ad:d5:bf:4f:7e:e8: f7:64:e8:97:eb:15:ed:c2:f6:3b:69:dc:05:3e:a9: fd:4f:43:d1:bf:fe:47:7c:1e:f1:66:a0:93:26:14: 12:62:e2:22:5d:fb:a5:6a:b8:bc:3f:4a:b7:96:28: 85:df:93:a9:70:13:f5:7c:34:2e:4a:f7:40:bf:e0: 2a:33:1f:02:a6:75:ee:c3:d7:2f:a0:66:26:e9:86: 99:f5:51:72:92:32:54:42:6c:60:cc:50:1d:de:54: b5:e4:e0:d7:fa:a4:4e:ba:08:ab:89:34:5e:06:ed: 12:e3:26:4d:d7:ee:a7:71:e6:08:52:0d:e6:14:a4: 73:46:a7:60:1b:63:dc:52:8d:45:97:f4:1e:a4:09: 66:60:32:6d:d0:fe:d1:ae:19:5b:21:25:73:31:6f: 2c:41:38:d5:26:42:59:f2:62:dc:db:a2:2a:7a:45: 8c:f4:f7:11:0d:17:90:ea:fa:d0:95:5a:3a:af:a7: 53:7f:76:3d:22:5f:0b:63:bb:1d:f5:cb:d7:b9:ad: fb:92:a3:78:97:d5:1f:48:83:30:b9:82:64:1d:c2: 53:05:3d:31:8b:cd:2b:a4:7a:9b:8b:e4:7e:51:f4: 22:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5B:28:A0:C7:1C:A0:F7:4C:EF:EC:51:E8:CC:B3:C3:F8:F8:9D:8D X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/BB8F3118497B11F096DCA14EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:ac40::/48 Signature Algorithm: sha256WithRSAEncryption 90:02:41:e8:33:d4:e2:57:f5:e1:a7:2a:68:4e:8c:f2:46:19: 70:ad:5a:6f:36:8d:7e:ec:5b:6b:98:19:ce:44:74:34:03:2a: d5:56:f0:15:10:85:c6:e9:2e:fb:21:3f:38:73:a0:d2:ab:61: 6a:7a:47:6b:cc:86:41:cb:91:3e:ed:47:27:b2:a2:9e:43:8a: 54:7c:40:9e:78:9f:20:ea:aa:48:fe:51:06:82:d7:86:c0:fa: 8f:9b:ed:d0:2c:29:9a:1f:da:8a:0d:0d:cc:cc:6a:b0:58:46: ca:6c:2e:df:85:12:69:35:bb:68:75:85:76:e7:0e:65:30:b5: 95:d7:89:38:7e:e7:8e:3b:90:0a:94:22:90:0d:98:a8:c7:79: 33:01:31:89:b3:61:02:92:89:63:46:5e:1e:a9:1f:e3:f4:43: 22:5c:69:fc:c2:d4:e8:cb:28:d3:8a:07:cf:87:5d:06:3e:bd: 70:f4:64:bc:5d:8d:19:9e:c9:2e:0b:37:be:8a:71:86:86:29: 6c:85:81:42:14:53:ff:46:fa:1c:46:57:b7:91:11:96:65:c9: 5d:21:5c:ac:ca:44:f2:3c:c5:a2:81:2a:2f:85:47:4b:51:e1: 11:62:92:2a:98:fb:46:13:c8:e3:67:bf:fc:8a:56:21:d8:d8: 03:b9:03:58 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQ0IxMTAvBgNVBAUTKENCNTMxQzFFQzY5MjI1RjBEQ0FFNDRDRUNBNUUzNTk4 MENFOUMwRjIwHhcNMjYwNDAzMDc0MTA5WhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNmYxNS0yYTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoo9VbjUkCftL6azwKARhvE39xeb3ajet1b9Pfuj3ZOiX6xXtwvY7adwFPqn9 T0PRv/5HfB7xZqCTJhQSYuIiXfulari8P0q3liiF35OpcBP1fDQuSvdAv+AqMx8C pnXuw9cvoGYm6YaZ9VFykjJUQmxgzFAd3lS15ODX+qROugiriTReBu0S4yZN1+6n ceYIUg3mFKRzRqdgG2PcUo1Fl/QepAlmYDJt0P7RrhlbISVzMW8sQTjVJkJZ8mLc 26IqekWM9PcRDReQ6vrQlVo6r6dTf3Y9Il8LY7sd9cvXua37kqN4l9UfSIMwuYJk HcJTBT0xi80rpHqbi+R+UfQiuwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFDlbKKDH HKD3TO/sUejMs8P4+J2NMB8GA1UdIwQYMBaAFMtTHB7GkiXw3K5EzspeNZgM6cDy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZDQi9GNURCN0ExNjQy MDUxMUYwQkY3QTg3MTFDNEY5QUUwMi95MU1jSHNhU0pmRGNya1RPeWw0MW1BenB3 UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQ0IvRjVEQjdBMTY0MjA1MTFGMEJGN0E4NzExQzRGOUFFMDIvQkI4RjMxMTg0 OTdCMTFGMDk2RENBMTRFQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9axAMA0GCSqGSIb3DQEBCwUAA4IBAQCQAkHoM9TiV/Xhpypo TozyRhlwrVpvNo1+7FtrmBnORHQ0AyrVVvAVEIXG6S77IT84c6DSq2FqekdrzIZB y5E+7UcnsqKeQ4pUfECeeJ8g6qpI/lEGgteGwPqPm+3QLCmaH9qKDQ3MzGqwWEbK bC7fhRJpNbtodYV25w5lMLWV14k4fueOO5AKlCKQDZiox3kzATGJs2ECkoljRl4e qR/j9EMiXGn8wtToyyjTigfPh10GPr1w9GS8XY0ZnskuCze+inGGhilshYFCFFP/ RvocRle3kRGWZcldIVysykTyPMWigSovhUdLUeERYpIqmPtGE8jjZ7/8ilYh2NgD uQNY -----END CERTIFICATE-----Generated at Mon Apr 6 13:35:32 2026 by rpki-client