$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65F5/A5596C2C265E11F1AD6F1E02A7833773/A5F4101E265F11F1B94C1E8FA7833773.roa File: A5F4101E265F11F1B94C1E8FA7833773.roa (raw, json) Hash identifier: aVk5ZwfUy/pOCzqQnIGlE5CsRTH7ieZRP+rktUubD1Q= Subject key identifier: 21:E0:09:F2:2E:0D:34:E8:0C:37:7F:D8:FF:F3:3D:1F:73:2E:EF:3F Certificate issuer: /CN=A91B65F5/serialNumber=0C353F3550EDE13EA7E5F28D23A341614E69D8C7 Certificate serial: 02 Authority key identifier: 0C:35:3F:35:50:ED:E1:3E:A7:E5:F2:8D:23:A3:41:61:4E:69:D8:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDU_NVDt4T6n5fKNI6NBYU5p2Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65F5/A5596C2C265E11F1AD6F1E02A7833773/A5F4101E265F11F1B94C1E8FA7833773.roa Signing time: Mon 23 Mar 2026 02:26:08 +0000 ROA not before: Mon 23 Mar 2026 02:26:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 290 IP address blocks: 2001:3e8::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65F5/A5596C2C265E11F1AD6F1E02A7833773/DDU_NVDt4T6n5fKNI6NBYU5p2Mc.crl rsync://rpki.apnic.net/member_repository/A91B65F5/A5596C2C265E11F1AD6F1E02A7833773/DDU_NVDt4T6n5fKNI6NBYU5p2Mc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDU_NVDt4T6n5fKNI6NBYU5p2Mc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 08:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65F5, serialNumber=0C353F3550EDE13EA7E5F28D23A341614E69D8C7 Validity Not Before: Mar 23 02:26:07 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69c0a4bf-4c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:cf:b1:ed:72:3a:12:20:37:d2:b9:c8:37:16: 1e:81:92:ac:9b:c2:2a:61:2f:b7:b3:c1:05:f1:0f: ba:f0:1b:3c:b1:4b:a7:42:4f:80:d5:ff:f6:ec:5b: 85:f5:b4:a7:82:d6:9f:5e:60:63:85:34:8e:50:7f: 59:9b:57:83:82:e4:db:45:bb:f5:c7:95:ff:9d:a6: 39:40:bd:5b:5c:fd:e7:fe:05:c9:dc:15:3a:13:77: 7d:96:7a:2d:0a:42:94:54:d4:3e:ca:53:e2:3a:18: 8b:14:c9:2d:44:b9:99:85:24:31:2a:16:0f:61:da: 6a:0b:a0:d3:a3:49:c9:95:fa:61:cd:dd:a9:f0:80: 1c:32:1c:a4:32:a7:71:61:1d:bc:c7:72:87:c3:e0: e4:79:f2:76:98:9a:da:fe:80:8e:94:e7:c0:51:f0: 55:69:2d:dc:5c:6a:df:3a:d4:c0:e3:de:93:e6:d0: 45:a9:01:5c:13:7a:8f:6c:b9:47:01:d5:2d:6c:3a: 2f:c2:0d:3a:b6:c1:68:70:7b:51:c2:05:52:cc:1d: 93:ec:ba:27:1d:2b:3b:31:54:56:0e:d9:0d:98:ed: 3a:09:0d:02:39:75:23:9a:45:fb:a4:0d:01:38:f8: 5a:21:f6:a9:fb:73:f7:07:ca:7d:ac:00:89:63:8e: 29:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E0:09:F2:2E:0D:34:E8:0C:37:7F:D8:FF:F3:3D:1F:73:2E:EF:3F X509v3 Authority Key Identifier: keyid:0C:35:3F:35:50:ED:E1:3E:A7:E5:F2:8D:23:A3:41:61:4E:69:D8:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65F5/A5596C2C265E11F1AD6F1E02A7833773/DDU_NVDt4T6n5fKNI6NBYU5p2Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DDU_NVDt4T6n5fKNI6NBYU5p2Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65F5/A5596C2C265E11F1AD6F1E02A7833773/A5F4101E265F11F1B94C1E8FA7833773.roa sbgp-ipAddrBlock: critical IPv6: 2001:3e8::/32 Signature Algorithm: sha256WithRSAEncryption 97:83:ee:7b:d5:c3:2c:81:03:09:90:6d:9a:27:98:96:c1:13: e7:43:1f:e6:3b:b6:e6:9d:e3:83:c5:b1:f3:7c:9f:0f:9e:da: 40:de:79:63:36:ac:97:b9:bc:70:e1:ee:2a:d2:6d:e8:7b:0d: f5:4e:0d:c9:28:7f:6e:5a:fd:1b:af:5e:31:67:3c:81:c9:48: 84:6a:8e:6c:4f:42:22:ba:68:48:6e:5a:d2:31:7a:1a:ed:f0: 5e:bb:41:61:78:f5:c0:88:66:18:61:07:1e:eb:4c:8b:cd:49: 78:f3:06:18:04:36:c6:b2:dc:7c:8d:95:19:e0:37:5e:78:a0: 87:5f:c0:71:43:0d:be:26:c0:0f:c3:c5:f6:59:87:93:1c:e2: f2:3e:e5:4d:87:25:f9:25:76:ee:2a:3b:bf:02:aa:30:80:73: 9f:ef:5c:1d:19:1d:bd:6e:8c:8a:82:93:3f:e7:ac:35:27:f1: 95:65:db:fa:ca:df:eb:a1:22:3e:5c:2e:16:ac:02:20:4d:63: 4e:94:4b:e0:a1:db:ad:c3:61:d0:83:21:31:3e:14:7f:dc:fd: 56:e7:12:b0:9d:dd:6a:58:1a:f3:d5:05:f0:f5:e0:8f:9a:24: 86:ee:9a:a5:16:d2:19:04:1d:08:33:26:a2:9d:89:ac:24:f6: 1d:61:e6:54 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NjVGNTExMC8GA1UEBRMoMEMzNTNGMzU1MEVERTEzRUE3RTVGMjhEMjNBMzQxNjE0 RTY5RDhDNzAeFw0yNjAzMjMwMjI2MDdaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzBhNGJmLTRjMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCQz7HtcjoSIDfSucg3Fh6BkqybwiphL7ezwQXxD7rwGzyxS6dCT4DV//bsW4X1 tKeC1p9eYGOFNI5Qf1mbV4OC5NtFu/XHlf+dpjlAvVtc/ef+BcncFToTd32Wei0K QpRU1D7KU+I6GIsUyS1EuZmFJDEqFg9h2moLoNOjScmV+mHN3anwgBwyHKQyp3Fh HbzHcofD4OR58naYmtr+gI6U58BR8FVpLdxcat861MDj3pPm0EWpAVwTeo9suUcB 1S1sOi/CDTq2wWhwe1HCBVLMHZPsuicdKzsxVFYO2Q2Y7ToJDQI5dSOaRfukDQE4 +Foh9qn7c/cHyn2sAIljjilPAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUIeAJ8i4N NOgMN3/Y//M9H3Mu7z8wHwYDVR0jBBgwFoAUDDU/NVDt4T6n5fKNI6NBYU5p2Mcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2NUY1L0E1NTk2QzJDMjY1 RTExRjFBRDZGMUUwMkE3ODMzNzczL0REVV9OVkR0NFQ2bjVmS05JNk5CWVU1cDJN Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRERVX05WRHQ0VDZuNWZLTkk2TkJZVTVwMk1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVGNS9BNTU5NkMyQzI2NUUxMUYxQUQ2RjFFMDJBNzgzMzc3My9BNUY0MTAxRTI2 NUYxMUYxQjk0QzFFOEZBNzgzMzc3My5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAgAQPoMA0GCSqGSIb3DQEBCwUAA4IBAQCXg+571cMsgQMJkG2aJ5iW wRPnQx/mO7bmneODxbHzfJ8PntpA3nljNqyXubxw4e4q0m3oew31Tg3JKH9uWv0b r14xZzyByUiEao5sT0IiumhIblrSMXoa7fBeu0FhePXAiGYYYQce60yLzUl48wYY BDbGstx8jZUZ4DdeeKCHX8BxQw2+JsAPw8X2WYeTHOLyPuVNhyX5JXbuKju/Aqow gHOf71wdGR29boyKgpM/56w1J/GVZdv6yt/roSI+XC4WrAIgTWNOlEvgodutw2HQ gyExPhR/3P1W5xKwnd1qWBrz1QXw9eCPmiSG7pqlFtIZBB0IMyainYmsJPYdYeZU -----END CERTIFICATE-----Generated at Sat Mar 28 16:32:42 2026 by rpki-client