$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa File: A55DE586ED6311EDB69EB62AC4F9AE02.roa (raw, json) Hash identifier: Haq9c3mobxsJMn/x25E88RNo8gpvrl+CWFq0EQN37pk= Subject key identifier: 3F:43:B0:DD:6D:45:B5:4E:CE:5F:83:28:2A:C2:97:06:7E:9B:3B:1B Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 03BF Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:55:51 +0000 ROA not before: Wed 11 Jun 2025 02:18:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18004 IP address blocks: 2407:2440:1b::/48 maxlen: 48 2407:2440:1c::/48 maxlen: 48 2407:2440:1d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 00:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 11 02:18:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a588d7-7a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:14:84:48:db:35:52:95:95:14:fd:dc:49:bf: 2d:ac:f6:59:7b:42:60:8d:78:f0:3e:25:1d:2c:b2: ad:a9:33:81:26:87:7c:62:34:36:51:06:14:c0:5b: 37:e2:c1:1a:65:f1:e9:4b:e2:7c:83:ae:46:ab:1e: 4d:0b:88:79:65:dd:a2:ef:05:f6:5c:90:f5:a6:1b: aa:f5:dd:37:7c:ad:5f:e3:47:63:c9:b4:69:5a:b0: 1a:cd:77:2c:6d:c6:cb:86:95:47:c1:ea:b1:3e:cd: a0:01:b7:55:73:17:29:3a:d9:9a:10:85:cb:40:5c: 84:63:b7:0b:06:b0:4a:8d:0c:aa:29:59:e8:a2:e5: 4c:b7:ad:4a:b3:b4:cb:89:31:de:f4:c3:5b:63:c0: 95:70:96:68:df:ef:62:15:76:16:18:0a:6f:f4:8a: 7a:28:1e:b7:92:90:5e:5d:04:8d:fb:70:72:56:3e: 38:c9:1f:9e:bc:80:58:d7:06:e3:1f:43:cf:35:b6: 6a:04:10:d6:10:c3:bf:c6:ce:53:d2:71:8e:56:6c: 98:51:2a:2a:47:bf:de:41:0f:5c:50:f2:a8:5e:f7: c8:71:ab:e8:39:4c:8c:e0:1c:1f:a1:37:76:0f:57: bc:70:36:e5:86:71:92:f4:bc:33:ae:11:98:5e:f9: 9b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:43:B0:DD:6D:45:B5:4E:CE:5F:83:28:2A:C2:97:06:7E:9B:3B:1B X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/A55DE586ED6311EDB69EB62AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:2440:1b::-2407:2440:1d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0d:38:c3:76:03:e3:ed:57:41:66:26:83:e0:f2:e5:43:69:3d: 3f:d1:af:ff:63:d8:f5:67:09:75:0e:cd:72:24:e4:08:f9:09: 50:3f:d7:51:9b:13:d1:ed:5c:97:db:b6:41:fe:0c:7a:2d:92: 67:47:2a:bc:9b:27:4c:08:d6:28:13:d4:85:6e:13:60:9f:4e: a5:20:42:df:a8:5f:c2:96:e7:8d:59:13:0f:cc:87:3b:48:18: 37:40:85:46:a8:83:c4:74:22:8c:a4:1a:d3:d1:1d:82:1f:a3: 11:f8:71:3d:da:92:67:05:85:97:4f:af:32:70:7a:f7:27:5a: 57:3a:ea:5a:63:d6:f0:37:37:49:43:1f:ed:f8:62:63:b6:99: 11:a5:6c:f8:c3:46:57:75:45:a9:66:88:fc:64:62:f1:b1:c2: 0a:81:05:82:7d:18:f6:2d:f3:9c:5c:86:a9:57:af:25:01:19: 01:c1:b5:ac:3b:08:3f:2e:a3:0b:1b:d5:dd:93:6b:20:61:ef: c5:1b:a4:2d:af:58:61:07:50:90:d1:0c:95:e4:0c:23:62:d7: 07:54:f5:47:62:e9:18:87:86:8f:1c:07:0f:ac:5e:41:f7:31: f1:2e:1e:8b:e9:f1:f3:87:01:fc:7a:5c:42:98:a6:08:31:00: 1f:14:be:c4 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjUwNjExMDIxODQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODhkNy03YTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxSESNs1UpWVFP3cSb8trPZZe0JgjXjwPiUdLLKtqTOBJod8YjQ2UQYUwFs3 4sEaZfHpS+J8g65Gqx5NC4h5Zd2i7wX2XJD1phuq9d03fK1f40djybRpWrAazXcs bcbLhpVHweqxPs2gAbdVcxcpOtmaEIXLQFyEY7cLBrBKjQyqKVnoouVMt61Ks7TL iTHe9MNbY8CVcJZo3+9iFXYWGApv9Ip6KB63kpBeXQSN+3ByVj44yR+evIBY1wbj H0PPNbZqBBDWEMO/xs5T0nGOVmyYUSoqR7/eQQ9cUPKoXvfIcavoOUyM4BwfoTd2 D1e8cDblhnGS9LwzrhGYXvmbFQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFD9DsN1t RbVOzl+DKCrClwZ+mzsbMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvQTU1REU1ODZF RDYzMTFFREI2OUVCNjJBQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAAjAUMBIDBwAkByRAABsDBwEkByRAABwwDQYJKoZIhvcNAQELBQADggEBAA04 w3YD4+1XQWYmg+Dy5UNpPT/Rr/9j2PVnCXUOzXIk5Aj5CVA/11GbE9HtXJfbtkH+ DHotkmdHKrybJ0wI1igT1IVuE2CfTqUgQt+oX8KW541ZEw/MhztIGDdAhUaog8R0 IoykGtPRHYIfoxH4cT3akmcFhZdPrzJwevcnWlc66lpj1vA3N0lDH+34YmO2mRGl bPjDRld1RalmiPxkYvGxwgqBBYJ9GPYt85xchqlXryUBGQHBtaw7CD8uowsb1d2T ayBh78UbpC2vWGEHUJDRDJXkDCNi1wdU9Udi6RiHho8cBw+sXkH3MfEuHovp8fOH Afx6XEKYpggxAB8UvsQ= -----END CERTIFICATE-----Generated at Fri Mar 13 08:38:51 2026 by rpki-client