$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa File: 5BE6836E501B11F0928AD730C4F9AE02.roa (raw, json) Hash identifier: HqC74BaNIFmQgf5fwQEJTWp7cLFg8PUR+S6AsCpz7RE= Subject key identifier: C0:33:C1:8B:89:04:0A:01:B2:89:06:15:E6:81:9D:27:40:D9:FE:68 Certificate issuer: /CN=A91685E9/serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Certificate serial: 011E Authority key identifier: F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa Signing time: Tue 03 Mar 2026 06:42:13 +0000 ROA not before: Tue 03 Mar 2026 06:42:13 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152565 IP address blocks: 2401:e920::/33 maxlen: 33 2401:e920:8000::/34 maxlen: 34 2401:e920:c00c::/48 maxlen: 48 2401:e920:fffa::/48 maxlen: 48 2401:e920:fffb::/48 maxlen: 48 2401:e920:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Validity Not Before: Mar 3 06:42:13 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a682c5-2f44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dd:99:ab:cb:7a:6c:63:23:78:e8:45:af:d9: 47:a8:3f:21:6e:6a:f2:82:20:3c:bb:a3:08:c6:16: d9:ce:d7:94:7e:1e:dc:a2:36:56:fc:ae:f4:17:9e: e6:da:90:f6:b5:0f:04:29:7d:d9:d1:b0:25:47:8d: 32:2b:ec:17:da:e3:7b:a3:de:5b:ab:35:5b:b5:57: 2b:ce:51:a8:77:15:53:a3:03:07:9a:7e:cf:d9:44: f8:72:7c:d5:44:73:33:a2:db:ff:7f:a3:09:cd:b9: 66:75:c9:3e:5b:80:60:15:0e:5a:d1:14:52:6c:36: a4:31:5b:18:9c:99:bb:73:70:67:43:2d:ea:70:8d: b1:c3:21:5d:ef:f7:18:2b:57:fa:0d:7f:83:1c:82: c6:61:27:6d:11:3f:fd:9a:73:00:f6:fd:c0:d1:cf: 75:9c:1d:85:05:7f:95:90:0d:73:f7:0c:ad:3f:3d: db:72:64:9d:fd:e6:71:64:8a:ab:e5:53:9f:9d:6b: 63:11:b3:3c:29:b6:42:77:3d:19:62:a0:ec:a8:83: 50:ba:63:b4:2e:15:a0:00:d1:fd:e8:8e:b5:fc:f1: b9:e4:2f:3d:8a:80:e5:47:2c:75:7c:b9:be:84:36: d9:d4:12:81:22:b4:16:35:16:d7:d4:fb:ba:6a:1b: 1b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:33:C1:8B:89:04:0A:01:B2:89:06:15:E6:81:9D:27:40:D9:FE:68 X509v3 Authority Key Identifier: keyid:F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:e920::-2401:e920:bfff:ffff:ffff:ffff:ffff:ffff 2401:e920:c00c::/48 2401:e920:fffa::-2401:e920:fffc:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c0:3e:fe:e0:5e:e7:0b:6a:a7:7e:79:43:1c:a5:2c:0a:46:10: 33:8d:8f:eb:f1:b7:4f:3d:2c:4b:dc:f3:63:79:9d:27:c4:52: 0f:2c:08:89:01:82:16:8b:04:38:70:a8:47:00:c7:06:18:37: e5:d4:51:1b:17:2a:d8:5d:66:0b:b6:69:b5:eb:3a:6d:98:e7: e0:3e:d2:54:3e:72:98:f9:f8:82:11:fc:b1:92:f8:de:94:8d: 29:32:cc:39:71:e5:71:26:65:23:1d:ee:de:98:91:d3:86:0b: 87:d6:9d:4d:14:fb:69:18:7a:60:95:29:ca:2b:7b:da:9e:93: 57:e8:f5:1f:4e:83:84:42:1e:a6:8f:5e:c8:26:c4:ef:91:21: dd:2d:e7:ef:c7:fe:7f:c2:75:c1:cc:fb:8e:fa:d3:c0:ff:3e: 7e:3c:d1:9c:93:fa:53:f4:2c:32:ab:ff:ab:7a:13:7b:7f:1d: dc:a2:01:09:15:2e:ec:d3:a3:45:41:07:69:d1:60:2c:5b:8b: c2:f7:11:13:e1:21:a7:0b:91:04:f8:d8:74:43:04:c6:aa:f2: bc:df:62:07:40:a8:d0:98:fc:fd:f0:a6:9f:3f:4a:27:ca:28: 26:f1:03:d6:f7:89:0d:02:d5:a0:50:7f:91:52:fe:9c:95:16: dd:c2:93:58 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKEY2OThCNUI0N0EwNkQ1MzA3REVDNjA4OTY5MDYzMDc0 QjY4RkY1Q0EwHhcNMjYwMzAzMDY0MjEzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2ODJjNS0yZjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz92Zq8t6bGMjeOhFr9lHqD8hbmrygiA8u6MIxhbZzteUfh7cojZW/K70F57m 2pD2tQ8EKX3Z0bAlR40yK+wX2uN7o95bqzVbtVcrzlGodxVTowMHmn7P2UT4cnzV RHMzotv/f6MJzblmdck+W4BgFQ5a0RRSbDakMVsYnJm7c3BnQy3qcI2xwyFd7/cY K1f6DX+DHILGYSdtET/9mnMA9v3A0c91nB2FBX+VkA1z9wytPz3bcmSd/eZxZIqr 5VOfnWtjEbM8KbZCdz0ZYqDsqINQumO0LhWgANH96I61/PG55C89ioDlRyx1fLm+ hDbZ1BKBIrQWNRbX1Pu6ahsbuwIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFMAzwYuJ BAoBsokGFeaBnSdA2f5oMB8GA1UdIwQYMBaAFPaYtbR6BtUwfexgiWkGMHS2j/XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DOTI4MDQzQUQx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi85cGkxdEhvRzFUQjk3R0NKYVFZd2RMYVA5 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwaTF0SG9HMVRCOTdHQ0phUVl3ZExhUDljby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzkyODA0M0FEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvNUJFNjgzNkU1 MDFCMTFGMDkyOEFENzMwQzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjA0 BAIAAjAuMA8DBQUkAekgAwYGJAHpIIADBwAkAekgwAwwEgMHASQB6SD/+gMHACQB 6SD//DANBgkqhkiG9w0BAQsFAAOCAQEAwD7+4F7nC2qnfnlDHKUsCkYQM42P6/G3 Tz0sS9zzY3mdJ8RSDywIiQGCFosEOHCoRwDHBhg35dRRGxcq2F1mC7Zptes6bZjn 4D7SVD5ymPn4ghH8sZL43pSNKTLMOXHlcSZlIx3u3piR04YLh9adTRT7aRh6YJUp yit72p6TV+j1H06DhEIepo9eyCbE75Eh3S3n78f+f8J1wcz7jvrTwP8+fjzRnJP6 U/QsMqv/q3oTe38d3KIBCRUu7NOjRUEHadFgLFuLwvcRE+EhpwuRBPjYdEMExqry vN9iB0Co0Jj8/fCmnz9KJ8ooJvED1veJDQLVoFB/kVL+nJUW3cKTWA== -----END CERTIFICATE-----Generated at Thu Mar 26 16:25:53 2026 by rpki-client