$ rpki-client -vvf rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa File: F2257AC0289011ED8AEEB43CC4F9AE02.roa (raw, json) Hash identifier: vLKPklVP43k6OROJ42PijdvI9ys2gzzUNgh6DMpb1V4= Subject key identifier: 04:E0:67:6C:16:7D:A1:52:95:D6:8A:61:71:A5:E6:C7:C5:87:15:F0 Certificate issuer: /CN=A91340D8/serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Certificate serial: 02D2 Authority key identifier: 1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:10:51 +0000 ROA not before: Sun 21 Sep 2025 02:20:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 19855 IP address blocks: 2400:7160:2000::/44 maxlen: 44 2400:7160:2020::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91340D8, serialNumber=1B8AE7C74301729D85C31595249C3B48F1B9151E Validity Not Before: Sep 21 02:20:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4650a-f3f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f2:da:e6:a3:14:4f:96:1c:7b:94:12:61:d5: 2d:96:bb:82:21:24:ad:f0:6c:91:01:2f:a4:79:dd: b2:65:1b:97:e5:e5:c0:c9:cf:1d:b9:f0:ef:cb:53: 38:38:b0:0f:f9:6c:f0:88:3e:71:97:bd:76:ce:40: 75:aa:29:32:1f:7e:f6:81:d9:ca:d6:ea:ee:af:7c: 1d:2d:4d:1a:87:d5:2d:bc:8e:13:4b:08:ab:f3:85: c2:b3:c5:37:5b:e1:ca:c3:81:d9:fb:6d:b0:00:06: aa:28:94:2f:82:20:95:bb:b7:67:c1:94:29:22:46: 63:8a:4c:9d:ef:a9:ff:83:f5:b4:9e:86:7c:78:6d: 21:f0:11:10:fc:4a:69:fa:76:c7:6e:47:77:2f:3e: e6:d0:90:9e:44:04:d8:89:ed:8c:f8:38:68:74:a0: a7:0c:cf:95:47:02:04:2d:2b:15:cc:21:05:31:42: de:fd:b7:ee:9d:fd:b1:55:ee:ff:09:d0:0d:a0:4c: ee:d1:ad:02:8c:7d:b4:0f:1b:03:a6:4d:fe:2c:52: 77:b0:bf:ce:52:d7:cc:20:52:f9:99:e9:0f:14:2e: a2:39:42:04:bf:ce:43:f6:43:fd:53:bf:21:37:e8: c4:4e:76:41:40:9f:8a:72:15:e1:22:a2:6d:a9:cc: 89:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E0:67:6C:16:7D:A1:52:95:D6:8A:61:71:A5:E6:C7:C5:87:15:F0 X509v3 Authority Key Identifier: keyid:1B:8A:E7:C7:43:01:72:9D:85:C3:15:95:24:9C:3B:48:F1:B9:15:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/G4rnx0MBcp2FwxWVJJw7SPG5FR4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G4rnx0MBcp2FwxWVJJw7SPG5FR4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91340D8/B3DE5CE4288D11EDA9A4EA6FC4F9AE02/F2257AC0289011ED8AEEB43CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:7160:2000::/44 2400:7160:2020::/44 Signature Algorithm: sha256WithRSAEncryption 53:fb:b1:88:f4:3b:c0:1d:28:ab:b6:8d:e8:f3:79:82:58:4c: d4:7f:be:2e:90:02:13:65:5d:33:6e:12:2e:93:43:93:33:ab: 0d:09:a7:2d:1b:6a:79:dd:f6:1e:01:eb:0f:c4:07:5b:2e:7e: 8a:ba:4c:46:36:76:1d:0a:9d:b8:45:55:24:1b:28:be:7a:b1: df:03:dc:81:de:3d:26:c9:36:57:59:f4:cd:30:fb:8c:b2:61: 6d:7a:9b:8e:c6:e3:dc:2d:d0:ab:d7:57:29:fe:d4:58:18:28: 4e:4e:ae:48:a7:1a:0d:a1:33:3f:ac:5b:5d:20:54:86:35:7e: f2:44:f3:7d:1f:a1:e7:55:a6:30:78:2b:fc:41:58:bc:6e:80: 43:ae:55:d6:0b:a8:af:ee:c0:00:ab:7c:08:7c:eb:cc:8b:16: 48:b4:10:f6:20:62:f7:cd:47:06:bb:ab:a2:ad:3d:4f:ca:0b: d3:cb:57:00:46:35:12:a4:6e:c2:e4:e2:f7:df:e4:d3:9d:d9: 01:9d:dd:c2:48:3d:69:8c:30:0d:47:8d:f8:5a:ec:7e:7a:a5: 78:c4:d4:e3:3d:a6:65:05:1a:04:19:4e:94:cc:94:40:e5:12: 11:f7:d2:7a:51:e6:7f:e9:61:fc:28:51:2d:c5:43:15:8d:0c: 31:40:7d:bb -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQwRDgxMTAvBgNVBAUTKDFCOEFFN0M3NDMwMTcyOUQ4NUMzMTU5NTI0OUMzQjQ4 RjFCOTE1MUUwHhcNMjUwOTIxMDIyMDA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjUwYS1mM2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPLa5qMUT5Yce5QSYdUtlruCISSt8GyRAS+ked2yZRuX5eXAyc8dufDvy1M4 OLAP+WzwiD5xl712zkB1qikyH372gdnK1urur3wdLU0ah9UtvI4TSwir84XCs8U3 W+HKw4HZ+22wAAaqKJQvgiCVu7dnwZQpIkZjikyd76n/g/W0noZ8eG0h8BEQ/Epp +nbHbkd3Lz7m0JCeRATYie2M+DhodKCnDM+VRwIELSsVzCEFMULe/bfunf2xVe7/ CdANoEzu0a0CjH20DxsDpk3+LFJ3sL/OUtfMIFL5mekPFC6iOUIEv85D9kP9U78h N+jETnZBQJ+KchXhIqJtqcyJYQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFATgZ2wW faFSldaKYXGl5sfFhxXwMB8GA1UdIwQYMBaAFBuK58dDAXKdhcMVlSScO0jxuRUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDBEOC9CM0RFNUNFNDI4 OEQxMUVEQTlBNEVBNkZDNEY5QUUwMi9HNHJueDBNQmNwMkZ3eFdWSkp3N1NQRzVG UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0cm54ME1CY3AyRnd4V1ZKSnc3U1BHNUZSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQwRDgvQjNERTVDRTQyODhEMTFFREE5QTRFQTZGQzRGOUFFMDIvRjIyNTdBQzAy ODkwMTFFRDhBRUVCNDNDQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJABxYCAAAwcEJABxYCAgMA0GCSqGSIb3DQEBCwUAA4IBAQBT+7GI 9DvAHSirto3o83mCWEzUf74ukAITZV0zbhIuk0OTM6sNCactG2p53fYeAesPxAdb Ln6KukxGNnYdCp24RVUkGyi+erHfA9yB3j0myTZXWfTNMPuMsmFtepuOxuPcLdCr 11cp/tRYGChOTq5IpxoNoTM/rFtdIFSGNX7yRPN9H6HnVaYweCv8QVi8boBDrlXW C6iv7sAAq3wIfOvMixZItBD2IGL3zUcGu6uirT1PygvTy1cARjUSpG7C5OL33+TT ndkBnd3CSD1pjDANR434Wux+eqV4xNTjPaZlBRoEGU6UzJRA5RIR99J6UeZ/6WH8 KFEtxUMVjQwxQH27 -----END CERTIFICATE-----Generated at Thu Mar 26 13:02:08 2026 by rpki-client