$ rpki-client -vvf rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/2E82E686569E11F08015BC34C4F9AE02.roa File: 2E82E686569E11F08015BC34C4F9AE02.roa (raw, json) Hash identifier: uBxr7p6TwpA9INGB4KedC2EYtx+upfxJFxMsenv5Y3Q= Subject key identifier: 3D:DC:2B:89:48:BC:2D:DF:88:69:FC:5F:00:86:56:28:FD:3D:49:88 Certificate issuer: /CN=A91A83B4/serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Certificate serial: 0494 Authority key identifier: AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/2E82E686569E11F08015BC34C4F9AE02.roa Signing time: Fri 13 Mar 2026 00:32:32 +0000 ROA not before: Fri 13 Mar 2026 00:32:32 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 57025 IP address blocks: 2400:56a0:900::/40 maxlen: 40 2400:56a0:dc02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A83B4, serialNumber=AEB839CCBFAD5BD98A7A0DA9053BC2726F26904F Validity Not Before: Mar 13 00:32:32 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69b35b20-9d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:c4:6f:4a:ec:52:3a:17:fe:32:ac:78:32: 73:7b:3a:fb:00:59:ff:be:b8:84:dc:e4:ef:a3:de: 19:38:86:0c:f4:c9:69:44:81:a1:68:aa:ad:db:39: 5c:0a:e6:15:53:e3:5c:35:08:9c:a1:a0:a8:28:0b: 11:c0:86:a9:b0:d1:9e:b8:56:cc:64:ef:41:77:0f: 26:90:5f:c6:85:07:95:14:99:ec:3c:fb:b3:fe:70: c9:9c:7b:a2:bd:81:30:7f:e4:81:9b:26:8a:b4:41: 60:65:e1:92:d3:39:13:2f:18:db:6a:51:ad:9f:75: ea:0b:01:c6:23:f1:da:8b:0a:94:64:4e:3b:c8:64: bc:82:8a:68:25:ef:25:49:c8:0e:da:42:43:61:b6: db:01:8a:b7:9d:d5:96:76:4f:48:11:c1:2d:eb:84: 1b:c7:0e:aa:a4:33:f8:c6:e0:f5:62:76:f3:64:29: f6:0e:83:14:7c:fc:13:4d:9b:63:f6:81:1d:33:69: 18:ff:7b:31:ec:c9:ee:48:d0:66:ac:a8:d0:01:62: c9:38:41:9a:2c:fd:76:0e:6a:04:72:18:da:61:78: 1e:aa:d6:7f:75:3d:93:ed:c3:b5:84:24:08:b0:6d: 6b:44:f7:9b:c0:33:7b:48:38:ac:e2:cd:d3:df:f6: 1e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:DC:2B:89:48:BC:2D:DF:88:69:FC:5F:00:86:56:28:FD:3D:49:88 X509v3 Authority Key Identifier: keyid:AE:B8:39:CC:BF:AD:5B:D9:8A:7A:0D:A9:05:3B:C2:72:6F:26:90:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/rrg5zL-tW9mKeg2pBTvCcm8mkE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rrg5zL-tW9mKeg2pBTvCcm8mkE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A83B4/E79ED49083F711ECA47A6265C4F9AE02/2E82E686569E11F08015BC34C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:56a0:900::/40 2400:56a0:dc02::/48 Signature Algorithm: sha256WithRSAEncryption 51:fe:a5:3c:00:32:dd:94:11:f8:e6:64:a8:df:f0:21:4c:ac: 48:42:cc:44:1b:98:ac:18:8d:89:03:3a:bd:23:02:34:af:c6: 35:b7:0e:42:df:17:25:08:d1:a3:3c:61:bd:ca:01:c1:cc:eb: 2c:c7:a5:34:f2:42:4c:38:b6:4e:ce:f7:d4:76:8f:08:25:f6: 0a:c4:d0:ee:94:27:a1:54:ec:0f:33:11:6a:c0:15:45:48:b2: 0a:d0:36:38:28:19:1d:37:74:80:db:ca:f3:51:aa:16:41:2c: e5:b9:50:56:b3:31:2c:cb:0f:22:b4:dd:2b:02:09:6a:9b:3b: 47:e6:a3:82:eb:82:84:57:91:c9:77:03:be:1f:20:8c:63:d3: b9:9e:e2:17:a9:40:07:c1:21:42:5b:5c:c8:ac:56:e4:8e:24: a3:72:97:0f:75:23:1c:86:95:26:cb:3c:ea:b5:a3:06:2a:84: 50:74:86:aa:f9:e7:ed:cb:b9:06:3d:23:23:e0:d9:e4:b0:d7: 3e:ad:fc:98:da:e3:92:b5:a3:04:df:21:48:23:da:36:d9:c1: 34:ec:7e:2b:34:45:72:15:f8:4e:f8:b9:8c:fa:9d:7d:5d:4b: eb:4d:80:4d:aa:c4:d8:46:2f:bf:97:56:fa:39:a8:c8:e7:ae: 00:f6:80:1a -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgzQjQxMTAvBgNVBAUTKEFFQjgzOUNDQkZBRDVCRDk4QTdBMERBOTA1M0JDMjcy NkYyNjkwNEYwHhcNMjYwMzEzMDAzMjMyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzNWIyMC05ZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyvEb0rsUjoX/jKseDJzezr7AFn/vriE3OTvo94ZOIYM9MlpRIGhaKqt2zlc CuYVU+NcNQicoaCoKAsRwIapsNGeuFbMZO9Bdw8mkF/GhQeVFJnsPPuz/nDJnHui vYEwf+SBmyaKtEFgZeGS0zkTLxjbalGtn3XqCwHGI/HaiwqUZE47yGS8gopoJe8l ScgO2kJDYbbbAYq3ndWWdk9IEcEt64Qbxw6qpDP4xuD1YnbzZCn2DoMUfPwTTZtj 9oEdM2kY/3sx7MnuSNBmrKjQAWLJOEGaLP12DmoEchjaYXgeqtZ/dT2T7cO1hCQI sG1rRPebwDN7SDis4s3T3/Ye2wIDAQABo4ICazCCAmcwHQYDVR0OBBYEFD3cK4lI vC3fiGn8XwCGVij9PUmIMB8GA1UdIwQYMBaAFK64Ocy/rVvZinoNqQU7wnJvJpBP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODNCNC9FNzlFRDQ5MDgz RjcxMUVDQTQ3QTYyNjVDNEY5QUUwMi9ycmc1ekwtdFc5bUtlZzJwQlR2Q2NtOG1r RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JyZzV6TC10VzltS2VnMnBCVHZDY204bWtFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgzQjQvRTc5RUQ0OTA4M0Y3MTFFQ0E0N0E2MjY1QzRGOUFFMDIvMkU4MkU2ODY1 NjlFMTFGMDgwMTVCQzM0QzRGOUFFMDIucm9hMCoGCCsGAQUFBwEHAQH/BBswGTAX BAIAAjARAwYAJABWoAkDBwAkAFag3AIwDQYJKoZIhvcNAQELBQADggEBAFH+pTwA Mt2UEfjmZKjf8CFMrEhCzEQbmKwYjYkDOr0jAjSvxjW3DkLfFyUI0aM8Yb3KAcHM 6yzHpTTyQkw4tk7O99R2jwgl9grE0O6UJ6FU7A8zEWrAFUVIsgrQNjgoGR03dIDb yvNRqhZBLOW5UFazMSzLDyK03SsCCWqbO0fmo4LrgoRXkcl3A74fIIxj07me4hep QAfBIUJbXMisVuSOJKNylw91IxyGlSbLPOq1owYqhFB0hqr55+3LuQY9IyPg2eSw 1z6t/Jja45K1owTfIUgj2jbZwTTsfis0RXIV+E74uYz6nX1dS+tNgE2qxNhGL7+X Vvo5qMjnrgD2gBo= -----END CERTIFICATE-----Generated at Thu Mar 26 22:04:13 2026 by rpki-client