$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/A13BE9EE8EE911EE8698A64FC4F9AE02.roa File: A13BE9EE8EE911EE8698A64FC4F9AE02.roa (raw, json) Hash identifier: 4turJDMKvJX6BEMRMrLdrpDFQWtRsZaeIh3uqcwidvM= Subject key identifier: A3:8C:A8:44:61:C0:E7:CF:62:CD:4B:6B:7F:B9:C5:5A:1C:72:CE:4F Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 02AF Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/A13BE9EE8EE911EE8698A64FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:30:56 +0000 ROA not before: Thu 31 Jul 2025 04:10:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 61112 IP address blocks: 2401:b60:5::/48 maxlen: 48 2401:b60:7::/48 maxlen: 48 2401:b60:2a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 02:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jul 31 04:10:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a485e0-e025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:14:fe:4f:e3:47:7e:f7:68:4f:00:c6:3a:c3: 5e:73:ec:75:5d:cb:56:fc:68:8d:21:80:26:b1:0a: 0e:41:00:ef:d0:af:c7:33:7f:b5:15:b0:25:ab:01: 50:61:86:c1:ef:c1:41:18:b3:20:6d:03:f4:03:c7: 1f:ab:b1:85:54:95:ff:70:c4:7a:74:5c:7b:bd:8c: 65:ae:a5:d3:f6:96:ac:16:3d:b0:f7:10:2d:93:79: b7:84:07:2f:29:81:8b:bd:d8:d5:83:a7:c6:4a:ef: 69:08:f4:6c:8a:25:48:a8:0f:2f:8a:f8:29:25:f3: 4a:ed:07:3b:01:09:a0:c5:a5:a6:11:c1:69:3a:02: 97:45:52:f1:14:da:0f:5d:27:95:48:f7:fa:68:83: 5c:d0:82:e0:27:dc:38:ec:20:a0:2a:71:68:ce:42: 84:f4:6f:ee:d1:fc:23:1d:33:82:d8:23:ec:a1:31: 56:4a:cd:7c:00:cd:a9:59:a5:98:51:90:29:8f:02: 71:b7:d9:0a:54:85:25:65:88:e2:1c:88:bc:e5:1e: 65:6c:36:00:bc:db:4e:51:f9:f6:0c:1b:05:7b:77: 87:95:8e:43:89:1d:45:46:c3:ce:7d:ff:e0:61:dc: 8f:4b:5a:73:6b:04:46:4e:e6:4c:c9:99:91:12:85: 6e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:8C:A8:44:61:C0:E7:CF:62:CD:4B:6B:7F:B9:C5:5A:1C:72:CE:4F X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/A13BE9EE8EE911EE8698A64FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:b60:5::/48 2401:b60:7::/48 2401:b60:2a::/48 Signature Algorithm: sha256WithRSAEncryption 07:8d:93:0d:ef:22:33:2b:82:e5:c7:6e:e6:62:a2:6f:0f:8e: 85:03:97:bc:19:81:37:a6:d6:01:a8:24:db:00:7d:16:fc:63: 96:c7:2d:56:4a:0e:c7:fb:1c:b9:e7:ea:46:73:60:51:e3:1c: 4a:b8:72:db:a5:ad:33:77:f7:27:76:0e:fd:a2:de:5a:46:25: 71:7d:5b:27:c1:c2:6e:74:df:e7:22:cc:a2:39:58:d8:33:cc: a1:1c:2b:b1:7d:f6:8a:d3:83:38:ed:88:e6:0a:8e:c5:c8:99: 99:6a:b2:8b:70:9b:33:7c:30:e7:21:4f:7d:6c:24:82:32:c7: 1e:e7:6f:59:49:03:8f:81:ad:ab:ce:46:7c:9f:ff:61:99:b3: ee:95:48:d8:1b:d3:47:67:1b:48:52:69:07:a0:27:9b:ba:a4: 85:4e:fe:20:66:c8:cb:04:5d:f2:f6:e4:04:07:75:7e:39:33: e9:51:70:bd:c7:63:b7:15:2f:eb:9b:db:06:21:af:60:72:0c: ed:53:f0:b7:e2:bb:23:20:7a:e0:bb:bb:a4:15:85:37:b3:ba: da:d9:ea:3b:78:63:a4:42:0c:dc:6f:28:86:86:b3:39:d8:58: ba:6a:1b:04:e9:09:ac:26:18:f7:38:2a:c4:52:7a:a5:82:fe: 85:84:8a:ba -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNzMxMDQxMDUzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODVlMC1lMDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxT+T+NHfvdoTwDGOsNec+x1XctW/GiNIYAmsQoOQQDv0K/HM3+1FbAlqwFQ YYbB78FBGLMgbQP0A8cfq7GFVJX/cMR6dFx7vYxlrqXT9pasFj2w9xAtk3m3hAcv KYGLvdjVg6fGSu9pCPRsiiVIqA8vivgpJfNK7Qc7AQmgxaWmEcFpOgKXRVLxFNoP XSeVSPf6aINc0ILgJ9w47CCgKnFozkKE9G/u0fwjHTOC2CPsoTFWSs18AM2pWaWY UZApjwJxt9kKVIUlZYjiHIi85R5lbDYAvNtOUfn2DBsFe3eHlY5DiR1FRsPOff/g YdyPS1pzawRGTuZMyZmREoVuOQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFKOMqERh wOfPYs1La3+5xVoccs5PMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvQTEzQkU5RUU4 RUU5MTFFRTg2OThBNjRGQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAh BAIAAjAbAwcAJAELYAAFAwcAJAELYAAHAwcAJAELYAAqMA0GCSqGSIb3DQEBCwUA A4IBAQAHjZMN7yIzK4Llx27mYqJvD46FA5e8GYE3ptYBqCTbAH0W/GOWxy1WSg7H +xy55+pGc2BR4xxKuHLbpa0zd/cndg79ot5aRiVxfVsnwcJudN/nIsyiOVjYM8yh HCuxffaK04M47YjmCo7FyJmZarKLcJszfDDnIU99bCSCMsce529ZSQOPga2rzkZ8 n/9hmbPulUjYG9NHZxtIUmkHoCebuqSFTv4gZsjLBF3y9uQEB3V+OTPpUXC9x2O3 FS/rm9sGIa9gcgztU/C34rsjIHrgu7ukFYU3s7ra2eo7eGOkQgzcbyiGhrM52Fi6 ahsE6QmsJhj3OCrEUnqlgv6FhIq6 -----END CERTIFICATE-----Generated at Thu Mar 5 22:04:16 2026 by rpki-client