$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AEFCCA501F5A11F0BA7E6961C4F9AE02.roa File: AEFCCA501F5A11F0BA7E6961C4F9AE02.roa (raw, json) Hash identifier: y5ImLQShXTdYNOJzkUx9fF2JnCdfm6BVJ7HEJ2KJnqQ= Subject key identifier: 03:00:B6:BF:F0:E4:F7:B9:4D:7A:72:3E:ED:0E:16:75:CF:64:91:E6 Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 0459 Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AEFCCA501F5A11F0BA7E6961C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:30:57 +0000 ROA not before: Wed 31 Dec 2025 00:19:45 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151055 IP address blocks: 2400:16e0::/32 maxlen: 32 2400:16e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 23:47:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1113 (0x459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Dec 31 00:19:45 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a477d1-ddaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:34:99:ff:f9:06:3c:66:d6:20:30:20:72: 88:12:8f:c7:4a:7e:15:ef:b7:35:0b:dd:e6:2b:6f: 27:9d:2f:6c:1a:59:61:cd:be:09:02:10:6c:59:1b: 11:f1:bf:2b:91:56:37:b0:26:3a:88:c6:c8:18:8c: 95:8c:e8:68:9e:ef:47:30:30:d7:a3:5d:50:ee:fb: 26:fe:88:bc:63:ad:53:0c:a0:ad:91:3a:47:4e:95: d6:74:83:25:31:e4:98:f0:4e:eb:7d:5f:d6:ef:b1: 1a:59:10:88:9b:5b:8b:17:61:9f:ae:6c:bf:dd:de: a0:38:ee:f0:8c:fa:7f:7e:8d:a9:d1:f2:88:ff:4b: 64:5a:45:fe:07:8c:3c:32:de:c5:10:86:66:e4:82: c5:13:45:e1:e5:a4:b8:4a:bc:1c:d6:8b:16:7a:6a: 7a:42:ad:5e:aa:1b:92:c2:5d:a3:77:01:ed:16:85: 2a:34:4a:ba:e4:52:a9:1c:ff:ed:f1:ab:dc:60:7c: a8:d0:02:05:cc:1d:70:5d:c0:6d:8e:5b:b7:1d:65: 65:81:46:58:e2:a2:39:9b:5b:e0:7e:0a:80:69:47: e5:27:6d:11:8f:a1:5b:d1:98:68:48:b5:d8:e2:39: 91:46:67:e3:24:77:bf:68:a5:e6:12:1b:be:a6:5a: e6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:00:B6:BF:F0:E4:F7:B9:4D:7A:72:3E:ED:0E:16:75:CF:64:91:E6 X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AEFCCA501F5A11F0BA7E6961C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:16e0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:c4:9d:b2:f9:33:be:3f:df:84:8f:59:8d:d4:0e:d1:e4:51: e6:69:b6:85:86:f8:d6:a6:e0:b7:07:24:ae:6b:c8:08:c5:86: 3f:70:c1:d4:8b:2c:20:d9:d4:91:5e:13:52:15:e7:fc:fa:71: 73:c9:49:d7:56:a6:21:05:14:18:64:01:fd:4d:0b:a3:7f:32: 36:32:c9:66:b4:c7:06:f7:92:c9:6d:a4:ba:be:6a:f0:6d:4b: 59:20:e6:cd:8a:71:b1:fa:70:e4:9a:fc:b1:71:e7:c1:3a:49: 8c:a2:89:e8:5d:36:9d:39:b5:7c:02:93:3a:3e:f2:4f:b8:94: 5d:9a:62:a4:14:2d:9b:44:b6:08:d8:41:47:fd:d2:5d:9d:23: 5c:4b:7e:98:b4:46:a8:73:2f:fd:56:df:8b:1d:36:28:11:9b: e5:bd:66:98:96:8c:be:2c:a2:82:4f:4e:25:8f:a4:6d:0d:d8: 4e:62:40:5c:97:5a:d9:a3:5e:55:e2:9d:15:8b:f7:eb:fa:db: 8f:d9:8a:66:d6:cd:06:68:ec:6b:ce:53:86:55:d3:8c:db:4f: d3:bc:21:a4:a1:ba:de:ab:82:17:25:c1:ae:8d:1a:e3:c4:c6: 75:8d:cd:2a:54:c1:51:d1:e8:26:2e:56:f6:a0:d3:ff:a7:c5: 36:26:c3:f4 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICBFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUxMjMxMDAxOTQ1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzdkMS1kZGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteU0mf/5Bjxm1iAwIHKIEo/HSn4V77c1C93mK28nnS9sGllhzb4JAhBsWRsR 8b8rkVY3sCY6iMbIGIyVjOhonu9HMDDXo11Q7vsm/oi8Y61TDKCtkTpHTpXWdIMl MeSY8E7rfV/W77EaWRCIm1uLF2Gfrmy/3d6gOO7wjPp/fo2p0fKI/0tkWkX+B4w8 Mt7FEIZm5ILFE0Xh5aS4Srwc1osWemp6Qq1eqhuSwl2jdwHtFoUqNEq65FKpHP/t 8avcYHyo0AIFzB1wXcBtjlu3HWVlgUZY4qI5m1vgfgqAaUflJ20Rj6Fb0ZhoSLXY 4jmRRmfjJHe/aKXmEhu+plrm6wIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFAMAtr/w 5Pe5TXpyPu0OFnXPZJHmMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4QzkvNDBFMEMwRUU5MzZDMTFFQ0JEQzExQTIwQzRGOUFFMDIvQUVGQ0NBNTAx RjVBMTFGMEJBN0U2OTYxQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAAW4DANBgkqhkiG9w0BAQsFAAOCAQEADcSdsvkzvj/fhI9ZjdQO 0eRR5mm2hYb41qbgtwckrmvICMWGP3DB1IssINnUkV4TUhXn/Ppxc8lJ11amIQUU GGQB/U0Lo38yNjLJZrTHBveSyW2kur5q8G1LWSDmzYpxsfpw5Jr8sXHnwTpJjKKJ 6F02nTm1fAKTOj7yT7iUXZpipBQtm0S2CNhBR/3SXZ0jXEt+mLRGqHMv/Vbfix02 KBGb5b1mmJaMviyigk9OJY+kbQ3YTmJAXJda2aNeVeKdFYv36/rbj9mKZtbNBmjs a85ThlXTjNtP07whpKG63quCFyXBro0a48TGdY3NKlTBUdHoJi5W9qDT/6fFNibD 9A== -----END CERTIFICATE-----Generated at Fri Mar 13 09:56:25 2026 by rpki-client