$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/F51067B4C65D11EF84CD2E17C4F9AE02.roa File: F51067B4C65D11EF84CD2E17C4F9AE02.roa (raw, json) Hash identifier: 0/KER6jtg26LthiMhAoQFVwFGIJvGgJoOvUmyRDRsmM= Subject key identifier: C2:6C:84:71:CB:59:3E:81:CD:8C:D0:04:4E:3B:C3:E0:C8:CB:22:61 Certificate issuer: /CN=A91336DF/serialNumber=64F21CDE648B39B5282B8CB127928E2332488294 Certificate serial: 0113 Authority key identifier: 64:F2:1C:DE:64:8B:39:B5:28:2B:8C:B1:27:92:8E:23:32:48:82:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/F51067B4C65D11EF84CD2E17C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:44:46 +0000 ROA not before: Wed 13 Aug 2025 07:16:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153183 IP address blocks: 2401:b660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.crl rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91336DF, serialNumber=64F21CDE648B39B5282B8CB127928E2332488294 Validity Not Before: Aug 13 07:16:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a25e-1fd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:59:86:6b:dd:32:47:8e:34:90:23:d0:a0:db: ce:13:54:1c:e3:52:e1:1c:7f:0a:72:ee:c1:d9:f2: 29:71:31:7e:75:03:aa:54:ef:15:fa:14:51:0b:03: 9f:10:5d:ab:a8:1a:33:d2:c3:5f:d0:1e:94:aa:9e: 7a:a2:4b:f6:4b:0d:02:9d:02:53:e0:3a:15:d1:d9: bb:58:86:95:13:75:82:da:5c:0c:cd:61:8c:3f:6d: 23:c0:8a:40:39:0d:c3:69:66:46:f3:4d:74:2d:df: 58:d8:4c:ae:c0:50:8d:00:53:65:3d:7a:df:b6:bd: 31:23:db:5e:ce:93:e4:f7:de:85:bf:1e:fd:ae:76: f0:e0:91:db:1b:a8:57:4b:06:78:d5:78:65:c1:3e: cb:35:2f:ad:a4:88:26:55:31:37:52:fd:5c:62:4f: 24:ab:6e:54:2d:8f:28:64:4f:19:d6:d7:35:8d:0c: d1:8b:c3:17:5d:3a:c3:3f:aa:82:2e:eb:93:7c:90: fc:79:3e:a5:6e:e6:5f:13:97:25:a4:e7:5f:ed:13: d5:67:22:41:fb:40:ff:36:15:81:64:31:7e:85:a3: 7e:ce:59:b8:88:18:51:29:dd:f6:b4:0a:88:2b:cf: 40:f4:d6:d4:e1:a2:2d:c5:6a:6c:c9:68:fb:78:bc: 3a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6C:84:71:CB:59:3E:81:CD:8C:D0:04:4E:3B:C3:E0:C8:CB:22:61 X509v3 Authority Key Identifier: keyid:64:F2:1C:DE:64:8B:39:B5:28:2B:8C:B1:27:92:8E:23:32:48:82:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/F51067B4C65D11EF84CD2E17C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:b660::/32 Signature Algorithm: sha256WithRSAEncryption c4:ba:f3:28:d0:ce:93:10:ff:8a:64:0d:d3:ca:75:61:f4:d2: ef:f3:95:78:11:59:da:c9:78:70:75:39:c7:f4:69:02:63:f4: 59:31:5e:2c:4a:e6:ed:98:73:5b:10:c7:5a:89:cb:65:f4:a7: c1:83:af:19:54:74:a8:f7:ec:52:20:12:ca:61:0c:c2:4c:de: dd:7c:31:1a:de:26:2a:c4:c7:9b:f1:c6:e5:8e:d6:f5:24:8a: df:0d:17:f9:be:fd:91:ba:5d:a2:7e:b4:88:78:31:aa:79:19: ef:1e:a8:05:91:41:91:63:f9:51:c6:1e:f6:3d:fa:84:b4:21: 7f:34:32:5b:ca:4b:16:2e:ff:55:78:ef:09:56:b4:ce:55:5c: a9:bb:5c:de:4f:ca:1b:a0:b3:b9:56:25:b7:5b:4d:5f:45:66: 8d:73:f9:69:7c:db:f8:88:38:40:d5:73:9f:c0:52:f9:0e:71: e8:2f:53:18:eb:28:93:8a:57:d5:17:3a:7e:2d:42:69:2e:d5: f8:f6:e7:39:7c:c2:0d:cd:70:4c:90:d1:1d:d8:55:f2:18:e3: f0:93:07:12:5c:64:43:89:5a:d7:9d:60:b1:95:cd:e2:eb:fa: 3d:d8:49:9d:90:f3:42:de:c2:c9:f7:c4:03:d6:af:a2:3a:c1: e8:aa:dd:a8 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM2REYxMTAvBgNVBAUTKDY0RjIxQ0RFNjQ4QjM5QjUyODJCOENCMTI3OTI4RTIz MzI0ODgyOTQwHhcNMjUwODEzMDcxNjU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTI1ZS0xZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FmGa90yR440kCPQoNvOE1Qc41LhHH8Kcu7B2fIpcTF+dQOqVO8V+hRRCwOf EF2rqBoz0sNf0B6Uqp56okv2Sw0CnQJT4DoV0dm7WIaVE3WC2lwMzWGMP20jwIpA OQ3DaWZG8010Ld9Y2EyuwFCNAFNlPXrftr0xI9tezpPk996Fvx79rnbw4JHbG6hX SwZ41XhlwT7LNS+tpIgmVTE3Uv1cYk8kq25ULY8oZE8Z1tc1jQzRi8MXXTrDP6qC LuuTfJD8eT6lbuZfE5clpOdf7RPVZyJB+0D/NhWBZDF+haN+zlm4iBhRKd32tAqI K89A9NbU4aItxWpsyWj7eLw6UQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFMJshHHL WT6BzYzQBE47w+DIyyJhMB8GA1UdIwQYMBaAFGTyHN5kizm1KCuMsSeSjiMySIKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzZERi8yMzE4NDA4Qzgx M0YxMUVGOUNDRTFBMUFDNEY5QUUwMi9aUEljM21TTE9iVW9LNHl4SjVLT0l6Skln cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQSWMzbVNMT2JVb0s0eXhKNUtPSXpKSWdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM2REYvMjMxODQwOEM4MTNGMTFFRjlDQ0UxQTFBQzRGOUFFMDIvRjUxMDY3QjRD NjVEMTFFRjg0Q0QyRTE3QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAG2YDANBgkqhkiG9w0BAQsFAAOCAQEAxLrzKNDOkxD/imQN08p1 YfTS7/OVeBFZ2sl4cHU5x/RpAmP0WTFeLErm7ZhzWxDHWonLZfSnwYOvGVR0qPfs UiASymEMwkze3XwxGt4mKsTHm/HG5Y7W9SSK3w0X+b79kbpdon60iHgxqnkZ7x6o BZFBkWP5UcYe9j36hLQhfzQyW8pLFi7/VXjvCVa0zlVcqbtc3k/KG6CzuVYlt1tN X0VmjXP5aXzb+Ig4QNVzn8BS+Q5x6C9TGOsok4pX1Rc6fi1CaS7V+PbnOXzCDc1w TJDRHdhV8hjj8JMHElxkQ4la151gsZXN4uv6PdhJnZDzQt7CyffEA9avojrB6Krd qA== -----END CERTIFICATE-----Generated at Thu Mar 26 05:37:58 2026 by rpki-client