$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D46B2C087F8711EC81E76A59C4F9AE02.roa File: D46B2C087F8711EC81E76A59C4F9AE02.roa (raw, json) Hash identifier: hUayntDdKbP8YD8KFW+2g7hE9d13fe7KDzMZQmXs21I= Subject key identifier: C8:14:2D:A3:6D:32:5F:EA:5D:E3:79:AA:C6:E0:F4:73:03:87:14:5D Certificate issuer: /CN=A91D51A0/serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Certificate serial: 04D9 Authority key identifier: C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D46B2C087F8711EC81E76A59C4F9AE02.roa Signing time: Tue 03 Mar 2026 00:32:30 +0000 ROA not before: Tue 03 Mar 2026 00:32:30 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 149476 IP address blocks: 2400:54a0::/48 maxlen: 48 2400:54a0:1004::/48 maxlen: 48 2400:54a0:1030::/48 maxlen: 48 2400:54a0:2040::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 23:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1241 (0x4d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51A0, serialNumber=C6EABEB93E1D06E2C32E1C4CBE147CFB39992539 Validity Not Before: Mar 3 00:32:30 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a62c1e-d03f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:00:68:2b:3b:29:ca:5f:8b:a3:68:31:98:f7: 55:29:ad:03:65:13:90:80:35:74:56:e6:67:e6:c0: d9:2a:f7:a6:82:ca:58:a8:3a:53:8a:30:05:87:ef: 9e:52:af:4e:81:df:c2:54:58:c9:58:59:7a:b5:6e: 03:af:4a:ff:73:32:c8:76:18:59:21:b1:e4:23:b6: 3d:51:3e:41:45:55:34:f3:3b:26:7a:f2:07:46:60: a5:9c:22:a5:e5:42:f9:e5:59:d7:09:2c:c2:8a:38: a1:5a:45:47:a2:46:68:ec:58:9e:b9:d5:7a:4c:8b: 85:42:48:0e:74:fd:0b:8b:38:60:3d:97:8d:38:da: c5:91:c4:1d:01:77:31:40:3e:7a:58:43:c9:92:6c: b6:e6:d0:f1:fc:a4:f7:6a:ba:81:a2:6c:08:89:80: f5:1e:80:d3:47:ec:ab:98:aa:05:2b:23:4b:e6:90: 1d:4e:61:33:cc:e3:be:3e:aa:33:05:29:4b:87:84: fc:f7:81:45:97:4a:6a:0b:da:8f:29:56:3d:34:e6: 69:1a:48:5f:1f:b7:83:8a:24:38:30:94:7a:fb:49: cb:97:a1:3f:94:20:80:47:06:43:2d:f4:a5:7c:67: 06:41:e1:2e:22:e5:4c:95:c2:63:6b:73:07:7c:50: 5d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:14:2D:A3:6D:32:5F:EA:5D:E3:79:AA:C6:E0:F4:73:03:87:14:5D X509v3 Authority Key Identifier: keyid:C6:EA:BE:B9:3E:1D:06:E2:C3:2E:1C:4C:BE:14:7C:FB:39:99:25:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/xuq-uT4dBuLDLhxMvhR8-zmZJTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xuq-uT4dBuLDLhxMvhR8-zmZJTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51A0/7C53910C7F8411EC80518E51C4F9AE02/D46B2C087F8711EC81E76A59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:54a0::/48 2400:54a0:1004::/48 2400:54a0:1030::/48 2400:54a0:2040::/44 Signature Algorithm: sha256WithRSAEncryption 43:42:77:2f:c5:06:7a:81:d8:22:58:28:da:dd:aa:01:bd:1f: c3:49:82:28:60:5c:80:73:71:f5:8d:28:ff:8c:46:64:24:65: ea:4e:48:5d:5c:72:04:54:7a:c0:4c:ef:a0:91:b0:0a:53:03: ab:59:5b:c0:59:ea:fc:2a:f4:d2:f4:64:3f:d1:59:7b:71:c9: 3f:c6:f5:5b:b1:d1:52:26:9e:70:ce:ee:55:69:8e:18:94:8a: 62:24:25:49:c0:54:4f:b5:3c:c5:b5:33:71:79:0d:54:ab:78: 53:73:d5:08:c4:fa:cf:41:d3:e5:04:1d:74:a1:28:f7:47:2e: 69:c0:e2:9f:3f:bd:1c:50:2b:76:71:0f:9e:00:93:1d:07:1c: 7d:ac:70:00:96:26:d2:06:85:a2:06:33:4e:9a:93:7f:c5:b9: 2e:7f:21:cb:0b:b3:01:3d:cb:8e:18:ec:71:14:7c:5f:aa:6e: 53:70:f4:13:16:c6:2d:61:80:e4:07:83:f4:fb:71:0d:07:a9: 2c:d2:82:4f:a2:6d:02:33:c9:98:5a:2d:1d:b8:c1:e3:a2:0d: 91:58:a8:29:82:16:fc:5d:c9:bb:fe:ed:b5:bf:74:8b:ae:e8: a7:43:89:4b:46:25:13:c6:e1:5a:ad:c0:3f:36:62:ff:82:fd: 78:c8:ea:99 -----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgICBNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQTAxMTAvBgNVBAUTKEM2RUFCRUI5M0UxRDA2RTJDMzJFMUM0Q0JFMTQ3Q0ZC Mzk5OTI1MzkwHhcNMjYwMzAzMDAzMjMwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MmMxZS1kMDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wBoKzspyl+Lo2gxmPdVKa0DZROQgDV0VuZn5sDZKvemgspYqDpTijAFh++e Uq9Ogd/CVFjJWFl6tW4Dr0r/czLIdhhZIbHkI7Y9UT5BRVU08zsmevIHRmClnCKl 5UL55VnXCSzCijihWkVHokZo7FieudV6TIuFQkgOdP0LizhgPZeNONrFkcQdAXcx QD56WEPJkmy25tDx/KT3arqBomwIiYD1HoDTR+yrmKoFKyNL5pAdTmEzzOO+Pqoz BSlLh4T894FFl0pqC9qPKVY9NOZpGkhfH7eDiiQ4MJR6+0nLl6E/lCCARwZDLfSl fGcGQeEuIuVMlcJja3MHfFBdbwIDAQABo4ICfjCCAnowHQYDVR0OBBYEFMgULaNt Ml/qXeN5qsbg9HMDhxRdMB8GA1UdIwQYMBaAFMbqvrk+HQbiwy4cTL4UfPs5mSU5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFBMC83QzUzOTEwQzdG ODQxMUVDODA1MThFNTFDNEY5QUUwMi94dXEtdVQ0ZEJ1TERMaHhNdmhSOC16bVpK VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h1cS11VDRkQnVMRExoeE12aFI4LXptWkpUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUxQTAvN0M1MzkxMEM3Rjg0MTFFQzgwNTE4RTUxQzRGOUFFMDIvRDQ2QjJDMDg3 Rjg3MTFFQzgxRTc2QTU5QzRGOUFFMDIucm9hMD0GCCsGAQUFBwEHAQH/BC4wLDAq BAIAAjAkAwcAJABUoAAAAwcAJABUoBAEAwcAJABUoBAwAwcEJABUoCBAMA0GCSqG SIb3DQEBCwUAA4IBAQBDQncvxQZ6gdgiWCja3aoBvR/DSYIoYFyAc3H1jSj/jEZk JGXqTkhdXHIEVHrATO+gkbAKUwOrWVvAWer8KvTS9GQ/0Vl7cck/xvVbsdFSJp5w zu5VaY4YlIpiJCVJwFRPtTzFtTNxeQ1Uq3hTc9UIxPrPQdPlBB10oSj3Ry5pwOKf P70cUCt2cQ+eAJMdBxx9rHAAlibSBoWiBjNOmpN/xbkufyHLC7MBPcuOGOxxFHxf qm5TcPQTFsYtYYDkB4P0+3ENB6ks0oJPom0CM8mYWi0duMHjog2RWKgpghb8Xcm7 /u21v3SLruinQ4lLRiUTxuFarcA/NmL/gv14yOqZ -----END CERTIFICATE-----Generated at Sat Mar 7 12:30:56 2026 by rpki-client