$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/6C8EAC7A195F11F08408FA45C4F9AE02.roa File: 6C8EAC7A195F11F08408FA45C4F9AE02.roa (raw, json) Hash identifier: RZu/F57RJt2aMm+p1u1cRMeGtCqfHvXl2YILtNhUuB8= Subject key identifier: 0D:C0:3B:0B:61:2C:18:56:47:C1:36:14:B5:37:85:86:63:BF:9B:3D Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Certificate serial: 022D Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/6C8EAC7A195F11F08408FA45C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:55:51 +0000 ROA not before: Thu 14 Aug 2025 23:43:33 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 2400:7aa0:2701::/48 maxlen: 48 2400:7aa0:2702::/48 maxlen: 48 2400:7aa0:2703::/48 maxlen: 48 2400:7aa0:2704::/48 maxlen: 48 2400:7aa0:2705::/48 maxlen: 48 2400:7aa0:2706::/48 maxlen: 48 2400:7aa0:2707::/48 maxlen: 48 2400:7aa0:2708::/48 maxlen: 48 2400:7aa0:2709::/48 maxlen: 48 2400:7aa0:270a::/48 maxlen: 48 2400:7aa0:270b::/48 maxlen: 48 2400:7aa0:270c::/48 maxlen: 48 2400:7aa0:270d::/48 maxlen: 48 2400:7aa0:270e::/48 maxlen: 48 2400:7aa0:270f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:57:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Validity Not Before: Aug 14 23:43:33 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48bb7-4015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:04:e0:d5:fa:2c:f7:ea:fb:d6:2f:b5:3a:6e: 8d:f8:a5:2d:9c:c5:72:32:f8:fd:d2:c4:df:f7:7f: 28:53:4c:cb:df:a2:e2:5b:2c:9c:f9:23:9b:63:d6: 9c:e0:07:f6:14:29:d4:76:6f:50:c7:8d:be:15:2f: 68:00:b9:79:8e:11:f9:0d:da:b6:6e:24:57:2d:ee: 5d:fb:b3:67:af:6f:e8:f6:e0:d1:5e:ab:90:06:9a: 82:f3:6e:a4:4c:b0:91:7f:d2:20:9d:3f:3e:ff:ce: 6a:e6:ee:84:79:72:61:91:70:d2:4c:90:78:56:b7: bb:7b:2d:ed:13:ba:c3:23:dd:8d:a3:d9:24:3d:10: f8:22:26:0c:40:82:ea:c8:12:e5:6e:22:38:92:41: 9e:5c:80:74:6a:78:e5:a3:4b:88:d2:5e:41:f1:40: 49:b3:32:b2:a5:61:06:66:89:6d:56:00:b4:53:31: 02:e2:f9:91:2c:86:a3:4c:4d:33:05:54:11:42:a7: 2b:48:00:a9:fd:ff:e2:09:1e:94:51:0e:46:2f:4e: aa:71:c5:31:dd:98:37:19:dd:24:8d:21:7b:9a:07: 22:62:96:cc:c7:55:00:69:2c:92:3d:5a:6e:6a:b5: 4f:cd:83:09:9e:6a:3a:54:ed:43:32:5c:86:f5:89: 6f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C0:3B:0B:61:2C:18:56:47:C1:36:14:B5:37:85:86:63:BF:9B:3D X509v3 Authority Key Identifier: keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/6C8EAC7A195F11F08408FA45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:7aa0:2701::-2400:7aa0:270f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b0:4b:c8:10:c1:ea:15:e3:32:0d:96:1f:22:26:52:38:09:e4: f0:88:89:ee:7b:92:e9:3e:c8:d1:d1:8f:1f:2c:c6:3d:87:1a: 98:2c:17:e1:a7:29:dc:b6:a5:b9:ed:41:f3:08:dc:a5:56:d6: 49:3a:9c:02:cd:11:2a:8f:9d:8a:a2:d9:2a:8c:2d:4e:d2:7d: c5:71:fb:25:32:29:65:2a:a9:51:fb:c6:24:96:8f:2b:71:b3: 86:1b:13:50:fa:0f:7f:0b:5c:d6:49:de:dc:dc:d9:1c:88:ef: 0f:17:7c:6d:a5:38:62:96:1f:3d:32:21:96:e7:0e:ed:93:c6: 0a:d9:bc:64:2c:cc:d1:84:bf:a1:2f:c8:b7:c2:fa:d3:f4:e1: 40:e6:89:90:cc:cb:c3:a7:fd:28:16:40:ba:92:f1:0f:c3:e6: 13:94:96:6a:fd:e3:90:c4:2d:c5:00:21:90:ed:74:e6:eb:b0: a1:df:b1:48:85:d2:eb:7e:b1:6b:11:46:13:1a:57:67:14:01: 80:a3:3d:31:62:fa:5b:8c:16:ff:93:73:fc:c1:9b:6e:2d:05: a1:59:ad:40:a3:55:52:3c:fb:9a:0f:2c:81:f3:a6:35:44:10: c4:cb:75:35:44:05:c5:58:aa:89:2c:84:27:3b:8a:69:ef:8d: 9b:22:50:77 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1 M0NDMDgxMkUwHhcNMjUwODE0MjM0MzMzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGJiNy00MDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wTg1fos9+r71i+1Om6N+KUtnMVyMvj90sTf938oU0zL36LiWyyc+SObY9ac 4Af2FCnUdm9Qx42+FS9oALl5jhH5Ddq2biRXLe5d+7Nnr2/o9uDRXquQBpqC826k TLCRf9IgnT8+/85q5u6EeXJhkXDSTJB4Vre7ey3tE7rDI92No9kkPRD4IiYMQILq yBLlbiI4kkGeXIB0anjlo0uI0l5B8UBJszKypWEGZoltVgC0UzEC4vmRLIajTE0z BVQRQqcrSACp/f/iCR6UUQ5GL06qccUx3Zg3Gd0kjSF7mgciYpbMx1UAaSySPVpu arVPzYMJnmo6VO1DMlyG9YlvXQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFA3AOwth LBhWR8E2FLU3hYZjv5s9MB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNkI3Rjk5M0NFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvNkM4RUFDN0Ex OTVGMTFGMDg0MDhGQTQ1QzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAAjAUMBIDBwAkAHqgJwEDBwQkAHqgJwAwDQYJKoZIhvcNAQELBQADggEBALBL yBDB6hXjMg2WHyImUjgJ5PCIie57kuk+yNHRjx8sxj2HGpgsF+GnKdy2pbntQfMI 3KVW1kk6nALNESqPnYqi2SqMLU7SfcVx+yUyKWUqqVH7xiSWjytxs4YbE1D6D38L XNZJ3tzc2RyI7w8XfG2lOGKWHz0yIZbnDu2TxgrZvGQszNGEv6EvyLfC+tP04UDm iZDMy8On/SgWQLqS8Q/D5hOUlmr945DELcUAIZDtdObrsKHfsUiF0ut+sWsRRhMa V2cUAYCjPTFi+luMFv+Tc/zBm24tBaFZrUCjVVI8+5oPLIHzpjVEEMTLdTVEBcVY qokshCc7imnvjZsiUHc= -----END CERTIFICATE-----Generated at Thu Mar 26 01:54:45 2026 by rpki-client