$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/72EB65AAC96511EDB2A13779C4F9AE02.roa File: 72EB65AAC96511EDB2A13779C4F9AE02.roa (raw, json) Hash identifier: 3yEVjRC35ERIGd2waebGab6NNy9thlNVb+YoM5V4VX0= Subject key identifier: 49:C3:CF:86:EF:DF:96:03:4C:ED:DD:2C:51:13:E6:56:73:71:86:94 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0F1F Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/72EB65AAC96511EDB2A13779C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:38:31 +0000 ROA not before: Tue 02 Sep 2025 18:37:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 20473 IP address blocks: 2405:84c0:f110::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3871 (0xf1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:37:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a487a6-02f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:20:35:53:32:e6:a6:c1:25:6e:fd:42:a1:7a: f9:f0:86:11:50:10:eb:03:98:58:d0:2c:63:73:12: 4b:92:2c:19:9b:2e:d6:20:53:db:19:12:27:67:ed: bd:08:9d:fe:b1:45:13:19:87:3d:eb:9f:3d:51:d6: 04:13:b8:dc:02:f4:97:27:48:24:9b:3d:d3:ff:c1: 3a:4f:67:30:b4:8f:98:ce:08:bb:da:1b:5b:47:e3: d0:60:d2:c4:ea:fc:44:ca:fa:b1:ba:b1:4e:85:89: d4:63:c8:15:79:1f:f1:20:cb:96:72:49:34:7f:43: f8:42:1c:d3:2d:6f:00:03:ee:fe:ce:f3:0f:25:23: 8e:dc:25:be:fa:b8:aa:3d:c4:a9:86:0f:7e:3c:2d: 5e:cf:e2:81:c2:63:4f:fe:32:e6:99:c0:dc:39:26: e5:21:e8:c6:fe:77:50:46:37:a5:4f:0b:b5:97:06: 43:05:98:7f:ee:00:74:6f:8a:06:f6:43:e0:a9:8d: ad:ca:3a:46:48:fa:02:f2:e7:fd:cb:49:d3:1f:36: 6f:4b:3e:b3:7a:b8:a4:8a:c9:6f:1f:7c:a2:ff:65: 1d:b3:bb:42:a4:f8:78:5f:9e:af:e8:71:7b:b5:01: c5:1c:8e:91:d0:28:b3:5a:0d:a7:48:68:01:59:e1: 8a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C3:CF:86:EF:DF:96:03:4C:ED:DD:2C:51:13:E6:56:73:71:86:94 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/72EB65AAC96511EDB2A13779C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:84c0:f110::/48 Signature Algorithm: sha256WithRSAEncryption 48:1f:84:fe:cd:e0:55:6c:15:a0:88:6d:b8:db:4e:f9:31:03: 93:cc:c7:b1:fe:46:58:2b:80:ee:b0:42:ca:7c:56:ae:8a:7b: 70:a1:f5:be:ce:4f:a3:9a:2b:dc:d0:d5:46:fd:e7:5b:08:b9: ad:42:3d:a6:ea:ed:7b:c5:a7:58:18:bc:4e:b3:83:37:36:a2: f8:81:85:ae:f5:33:c2:e3:b2:e7:a3:e3:05:69:32:1e:d2:45: 5a:7b:51:fd:bf:98:43:59:6d:83:cf:a3:f8:0e:82:fa:e8:30: cf:8e:9a:96:a6:a9:13:69:a7:67:23:9b:71:3e:07:6d:7f:8c: 4c:0a:c3:04:b1:60:ef:0e:3b:dd:3a:84:ad:61:84:ed:2b:73: 8c:53:21:74:78:6a:44:c4:e5:78:6c:fc:30:1f:5a:43:ae:79: 0f:20:b9:ac:29:e7:f8:5f:d4:c8:25:d4:91:b0:74:fe:0a:38: 6c:c8:9e:fe:11:01:a2:37:fe:0f:fa:2a:f1:b8:e0:8e:d1:de: 8d:8a:7b:a1:8e:c8:9e:ab:a8:a3:41:40:6b:d4:14:46:54:2d: a4:44:29:42:be:d2:5e:c9:4b:44:7a:db:db:00:c5:67:e4:23: da:b8:78:8b:21:9f:42:1a:fa:ee:44:73:09:db:70:c7:34:fc: 8e:6b:63:32 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICDx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzNzU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdhNi0wMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyA1UzLmpsElbv1CoXr58IYRUBDrA5hY0CxjcxJLkiwZmy7WIFPbGRInZ+29 CJ3+sUUTGYc96589UdYEE7jcAvSXJ0gkmz3T/8E6T2cwtI+Yzgi72htbR+PQYNLE 6vxEyvqxurFOhYnUY8gVeR/xIMuWckk0f0P4QhzTLW8AA+7+zvMPJSOO3CW++riq PcSphg9+PC1ez+KBwmNP/jLmmcDcOSblIejG/ndQRjelTwu1lwZDBZh/7gB0b4oG 9kPgqY2tyjpGSPoC8uf9y0nTHzZvSz6zerikislvH3yi/2Uds7tCpPh4X56v6HF7 tQHFHI6R0CizWg2nSGgBWeGKgQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFEnDz4bv 35YDTO3dLFET5lZzcYaUMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNzJFQjY1QUFD OTY1MTFFREIyQTEzNzc5QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAWEwPEQMA0GCSqGSIb3DQEBCwUAA4IBAQBIH4T+zeBVbBWgiG24 2075MQOTzMex/kZYK4DusELKfFauintwofW+zk+jmivc0NVG/edbCLmtQj2m6u17 xadYGLxOs4M3NqL4gYWu9TPC47Lno+MFaTIe0kVae1H9v5hDWW2Dz6P4DoL66DDP jpqWpqkTaadnI5txPgdtf4xMCsMEsWDvDjvdOoStYYTtK3OMUyF0eGpExOV4bPww H1pDrnkPILmsKef4X9TIJdSRsHT+CjhsyJ7+EQGiN/4P+irxuOCO0d6Ninuhjsie q6ijQUBr1BRGVC2kRClCvtJeyUtEetvbAMVn5CPauHiLIZ9CGvruRHMJ23DHNPyO a2My -----END CERTIFICATE-----Generated at Thu Mar 26 17:51:20 2026 by rpki-client