$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/8B0E94087E7711F0825F7E6BC4F9AE02.roa File: 8B0E94087E7711F0825F7E6BC4F9AE02.roa (raw, json) Hash identifier: tpEbntANqqH62uyg72ojsNyUatPaZSI32JfG1Q2fADg= Subject key identifier: 3C:9A:95:F7:3D:19:1D:FA:2A:7C:FA:A5:F8:F6:7F:DC:A3:96:20:B4 Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: 0173 Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/8B0E94087E7711F0825F7E6BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:09:06 +0000 ROA not before: Thu 21 Aug 2025 10:13:55 +0000 ROA not after: Thu 30 Dec 2027 00:00:00 +0000 asID: 16509 IP address blocks: 2407:7a80:104::/48 maxlen: 48 2407:7a80:105::/48 maxlen: 48 2407:7a80:106::/48 maxlen: 48 2407:7a80:107::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Aug 21 10:13:55 2025 GMT Not After : Dec 30 00:00:00 2027 GMT Subject: CN=69a59a02-b934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e6:a7:3a:1b:6c:ae:de:f1:f4:06:3c:fd:dd: c0:12:92:98:a1:67:c3:2b:b3:7d:03:bb:42:3c:2d: b9:e6:46:72:66:66:0f:4b:82:86:45:ee:d8:11:56: 3b:6c:0a:c7:dc:22:f9:87:13:0b:42:34:03:f8:00: d6:de:db:69:30:26:f9:cd:9e:f0:09:f5:07:b2:e8: 24:12:8e:0c:05:2a:bf:72:65:d1:61:c7:0f:c2:e9: 38:b5:4e:fb:c7:bd:96:5e:ac:08:2a:7d:93:cf:a6: ee:09:92:d4:f6:2d:ac:06:d2:2a:cd:1a:16:ee:94: b6:4a:d7:f4:09:db:04:a8:17:57:4f:64:26:dc:b2: 67:f0:02:cb:d2:da:0d:13:82:09:44:b5:56:0f:06: 45:2f:58:0a:86:21:f7:db:be:e3:fb:ca:99:cc:5b: 73:33:e6:b4:0e:cd:ac:c0:47:b9:86:5b:e7:62:b0: ff:c9:06:d5:1f:a8:55:45:60:04:a3:18:90:f4:80: b0:85:89:9a:61:46:f4:fd:f1:fd:ca:e6:aa:f2:e7: e9:7f:c7:e0:8f:86:c3:ad:6f:58:d1:8e:44:cb:33: 60:cc:44:0e:06:b4:f9:0f:5d:b4:44:93:cc:ff:a1: be:32:32:29:c8:f0:ac:73:07:7f:2c:05:6d:4a:ed: 5a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9A:95:F7:3D:19:1D:FA:2A:7C:FA:A5:F8:F6:7F:DC:A3:96:20:B4 X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/8B0E94087E7711F0825F7E6BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:7a80:104::/46 Signature Algorithm: sha256WithRSAEncryption 09:cc:ea:4e:93:32:08:f4:14:be:31:fc:48:f6:f0:d0:16:15: 55:77:c5:62:83:02:06:7b:89:ea:5d:30:eb:66:56:ef:5b:e7: 45:ae:a6:e5:2c:3f:6a:7e:50:85:7d:c0:97:95:9a:de:61:51: 97:41:cf:c2:f8:ba:91:f4:6b:a3:e2:43:96:c1:94:e0:a2:43: 0b:4d:8a:0d:6b:39:3c:d6:fa:5b:a6:b8:06:c3:f3:5b:63:3d: 2d:74:bd:47:0d:8d:43:af:96:0f:d2:25:f8:70:0f:72:db:81: dc:2a:8d:0e:6c:b5:0b:68:01:99:5c:98:b6:d2:68:12:18:28: 25:bf:32:c2:34:8f:f8:3f:32:ca:be:3d:77:14:f6:9f:fa:4b: df:c2:17:84:4f:7f:6c:48:f0:ef:8b:48:45:61:f2:a2:de:be: fe:c4:5a:36:46:8c:06:8b:1e:54:bc:02:14:44:af:ea:f4:e0: 83:14:f2:54:c8:5e:bb:9d:41:66:6c:0f:e9:59:8c:10:35:4d: bb:34:01:15:c4:e1:13:11:c4:2a:f7:45:60:0b:0e:8e:29:48: 67:4b:fc:7f:b2:1f:98:0d:f8:fc:a8:af:8a:fa:e8:fa:57:49: 56:92:ac:ec:1f:af:4e:9c:fd:c8:19:8a:f8:a2:c6:d3:e5:82: a2:5b:ec:35 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUwODIxMTAxMzU1WhcNMjcxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWEwMi1iOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAluanOhtsrt7x9AY8/d3AEpKYoWfDK7N9A7tCPC255kZyZmYPS4KGRe7YEVY7 bArH3CL5hxMLQjQD+ADW3ttpMCb5zZ7wCfUHsugkEo4MBSq/cmXRYccPwuk4tU77 x72WXqwIKn2Tz6buCZLU9i2sBtIqzRoW7pS2Stf0CdsEqBdXT2Qm3LJn8ALL0toN E4IJRLVWDwZFL1gKhiH3277j+8qZzFtzM+a0Ds2swEe5hlvnYrD/yQbVH6hVRWAE oxiQ9ICwhYmaYUb0/fH9yuaq8ufpf8fgj4bDrW9Y0Y5EyzNgzEQOBrT5D120RJPM /6G+MjIpyPCscwd/LAVtSu1akwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFDyalfc9 GR36Knz6pfj2f9yjliC0MB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURENjQvNTg0MEEwN0MxMzRCMTFFRjk0NDI0RDNEQzRGOUFFMDIvOEIwRTk0MDg3 RTc3MTFGMDgyNUY3RTZCQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAd6gAEEMA0GCSqGSIb3DQEBCwUAA4IBAQAJzOpOkzII9BS+MfxI 9vDQFhVVd8VigwIGe4nqXTDrZlbvW+dFrqblLD9qflCFfcCXlZreYVGXQc/C+LqR 9Guj4kOWwZTgokMLTYoNazk81vpbprgGw/NbYz0tdL1HDY1Dr5YP0iX4cA9y24Hc Ko0ObLULaAGZXJi20mgSGCglvzLCNI/4PzLKvj13FPaf+kvfwheET39sSPDvi0hF YfKi3r7+xFo2RowGix5UvAIURK/q9OCDFPJUyF67nUFmbA/pWYwQNU27NAEVxOET EcQq90VgCw6OKUhnS/x/sh+YDfj8qK+K+uj6V0lWkqzsH69OnP3IGYr4osbT5YKi W+w1 -----END CERTIFICATE-----Generated at Thu Mar 26 03:50:10 2026 by rpki-client