$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/D0E4A1946AB211F0976F001AC4F9AE02.roa File: D0E4A1946AB211F0976F001AC4F9AE02.roa (raw, json) Hash identifier: Nl4kN6jm52cuyAkdi4em+9Vsp1W9ZdwhxrwVDXbPRaA= Subject key identifier: C4:AC:E3:A1:B4:0F:DC:26:89:AF:4A:8F:13:43:2B:CF:5A:77:2F:EA Certificate issuer: /CN=A91685E9/serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Certificate serial: 011D Authority key identifier: F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/D0E4A1946AB211F0976F001AC4F9AE02.roa Signing time: Tue 03 Mar 2026 06:42:12 +0000 ROA not before: Tue 03 Mar 2026 06:42:12 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 142419 IP address blocks: 2401:e920:fffd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Validity Not Before: Mar 3 06:42:12 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a682c4-3464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a3:62:f9:11:0d:66:f1:cd:df:92:59:ff:5e: f8:04:d3:9d:f9:b0:86:c1:3b:f2:fd:40:f1:fe:4d: 12:d0:39:50:fc:3a:51:6b:78:6a:dc:c3:f3:c8:c9: 11:19:81:29:7b:e5:14:e5:f8:ef:ed:26:26:7c:5c: 9e:ce:c1:50:54:81:cb:eb:50:d4:81:48:b6:11:d3: 68:15:40:74:5f:1b:cb:d7:ee:d3:ff:37:90:30:e7: c9:6b:6f:8c:0d:e1:f9:01:bb:d6:f7:b7:2e:91:48: 3c:2a:eb:40:4f:c7:07:6a:85:74:5e:00:f6:33:96: c6:fb:b8:73:92:6f:f5:a9:6f:95:21:b7:62:d6:e7: 5a:fd:cf:9d:60:dc:cb:b2:63:72:82:2b:53:b8:4a: 6d:4a:e4:33:66:f5:74:5a:45:fa:fa:ba:20:fb:e5: 6a:69:94:2c:be:e0:06:ba:f7:c1:24:1c:ff:85:66: 27:1f:9e:80:1e:1c:e9:59:46:7c:92:71:6f:69:a3: e7:e1:f9:5b:29:ec:a0:c4:68:24:f0:b1:a4:bc:e6: 3c:b4:76:7c:3b:6a:af:1d:23:9d:6e:12:fb:7e:c2: 15:1f:af:81:14:f5:21:10:99:5e:35:54:db:e5:a1: d7:e2:78:35:44:da:87:e9:59:92:f4:80:39:80:2e: fa:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:AC:E3:A1:B4:0F:DC:26:89:AF:4A:8F:13:43:2B:CF:5A:77:2F:EA X509v3 Authority Key Identifier: keyid:F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/D0E4A1946AB211F0976F001AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:e920:fffd::/48 Signature Algorithm: sha256WithRSAEncryption 8c:f3:a2:23:d5:d3:6e:51:a1:4b:be:00:af:c5:d4:c9:b6:7b: b7:42:0c:b6:80:59:a1:e5:1d:23:d4:cb:5b:7d:1f:f4:55:67: 85:af:11:2b:2d:f6:91:8e:94:9c:2e:aa:a6:21:d1:04:fa:01: fe:92:af:d3:44:53:97:0e:de:82:2c:2d:53:2a:91:11:6a:c1: 58:f5:0c:40:a3:98:9d:2d:34:93:57:2c:e7:a9:e3:d3:f7:79: 5f:fc:a4:bf:bb:d9:0e:0b:cf:b6:d7:23:d6:d2:19:38:fe:68: bd:75:cb:f6:cc:da:e7:1e:f4:62:26:ed:5c:da:c4:c8:df:33: 98:5e:24:6b:28:e9:48:61:3a:7c:7e:da:d3:a7:a1:64:52:46: 28:ad:64:47:b2:6e:bc:51:78:11:cb:e0:81:0a:8f:81:34:b1: 18:53:19:c7:b6:50:7b:14:4d:dd:e4:8e:cd:94:ff:a6:04:b0: 1f:bb:40:c4:ed:eb:09:35:f3:a9:84:e7:3e:55:d5:43:50:fb: 5b:de:f3:17:60:2d:d5:b5:6c:a2:0f:f8:c7:15:cd:ef:11:a9: 9e:a5:53:dc:b7:2d:b8:10:59:b8:52:ba:52:78:34:e6:1d:6c: 6e:91:ef:13:11:a4:72:9b:bb:13:d8:52:06:76:17:3e:bf:b2: 40:80:d5:0d -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKEY2OThCNUI0N0EwNkQ1MzA3REVDNjA4OTY5MDYzMDc0 QjY4RkY1Q0EwHhcNMjYwMzAzMDY0MjEyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2ODJjNC0zNDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaNi+RENZvHN35JZ/174BNOd+bCGwTvy/UDx/k0S0DlQ/DpRa3hq3MPzyMkR GYEpe+UU5fjv7SYmfFyezsFQVIHL61DUgUi2EdNoFUB0XxvL1+7T/zeQMOfJa2+M DeH5AbvW97cukUg8KutAT8cHaoV0XgD2M5bG+7hzkm/1qW+VIbdi1uda/c+dYNzL smNygitTuEptSuQzZvV0WkX6+rog++VqaZQsvuAGuvfBJBz/hWYnH56AHhzpWUZ8 knFvaaPn4flbKeygxGgk8LGkvOY8tHZ8O2qvHSOdbhL7fsIVH6+BFPUhEJleNVTb 5aHX4ng1RNqH6VmS9IA5gC76iwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFMSs46G0 D9wmia9KjxNDK89ady/qMB8GA1UdIwQYMBaAFPaYtbR6BtUwfexgiWkGMHS2j/XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DOTI4MDQzQUQx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi85cGkxdEhvRzFUQjk3R0NKYVFZd2RMYVA5 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwaTF0SG9HMVRCOTdHQ0phUVl3ZExhUDljby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzkyODA0M0FEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvRDBFNEExOTQ2 QUIyMTFGMDk3NkYwMDFBQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAHpIP/9MA0GCSqGSIb3DQEBCwUAA4IBAQCM86Ij1dNuUaFLvgCv xdTJtnu3Qgy2gFmh5R0j1MtbfR/0VWeFrxErLfaRjpScLqqmIdEE+gH+kq/TRFOX Dt6CLC1TKpERasFY9QxAo5idLTSTVyznqePT93lf/KS/u9kOC8+21yPW0hk4/mi9 dcv2zNrnHvRiJu1c2sTI3zOYXiRrKOlIYTp8ftrTp6FkUkYorWRHsm68UXgRy+CB Co+BNLEYUxnHtlB7FE3d5I7NlP+mBLAfu0DE7esJNfOphOc+VdVDUPtb3vMXYC3V tWyiD/jHFc3vEamepVPcty24EFm4UrpSeDTmHWxuke8TEaRym7sT2FIGdhc+v7JA gNUN -----END CERTIFICATE-----Generated at Fri Mar 27 08:11:16 2026 by rpki-client