$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/2FC3DE84B15B11EB8CCCD624C4F9AE02.roa File: 2FC3DE84B15B11EB8CCCD624C4F9AE02.roa (raw, json) Hash identifier: q+D1BaF/+szKNtZtYNZBG95tRE4wHMX208TqLnCcHHk= Subject key identifier: F3:19:A7:C8:B7:BD:7F:32:C8:C5:FF:84:BC:49:B3:DC:F1:30:13:B1 Certificate issuer: /CN=A91BBA80/serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Certificate serial: 0D68 Authority key identifier: 06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/2FC3DE84B15B11EB8CCCD624C4F9AE02.roa Signing time: Wed 06 May 2026 18:22:26 +0000 ROA not before: Wed 06 May 2026 18:22:26 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 132458 IP address blocks: 2001:df1:b401::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 18:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3432 (0xd68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA80, serialNumber=060F7E77C00ACBE0868DC0B8FCA23D4A5F07D77A Validity Not Before: May 6 18:22:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69fb86e2-82a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:aa:8f:a9:2d:ed:6d:9f:91:25:0b:cc:28:75: 19:7c:59:a9:d3:e9:8b:f3:c7:62:ba:42:bc:b2:fe: 91:a3:49:ed:68:d7:62:f7:1b:21:58:12:33:0a:5d: a8:53:71:57:4b:60:82:85:2e:cc:4b:42:c8:83:2a: de:0d:2d:44:66:a3:ab:10:08:7f:fe:d5:fd:5a:0d: a1:51:95:52:98:56:f9:bc:db:d8:39:10:20:44:e5: a0:f5:f6:50:ea:0e:74:d5:12:05:63:48:2a:07:d1: 28:1e:65:8f:f5:33:a8:f9:df:b7:7c:ab:a5:a6:88: 05:c9:96:da:ea:9c:a5:3a:e6:e6:a2:5a:e0:52:76: 5d:9f:eb:0d:db:07:06:b7:6e:c2:4d:d9:ef:ce:df: a2:40:d8:7a:51:8e:f8:be:8e:a1:4a:51:f9:69:c2: 2a:d9:53:4e:99:78:03:b7:7f:53:6e:8b:ea:5a:19: 04:20:03:40:73:85:13:23:af:cf:57:35:dd:b1:56: 18:69:f2:19:07:f1:8f:4b:51:51:b7:75:28:a9:d7: 25:10:2c:5d:14:49:1f:a9:b7:ca:c5:4e:5f:fa:c9: 9c:28:9a:3d:11:8f:53:33:d6:a6:7b:6e:45:08:04: a4:06:a9:8e:16:09:aa:2f:49:9a:bb:d0:8a:4b:e1: af:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:19:A7:C8:B7:BD:7F:32:C8:C5:FF:84:BC:49:B3:DC:F1:30:13:B1 X509v3 Authority Key Identifier: keyid:06:0F:7E:77:C0:0A:CB:E0:86:8D:C0:B8:FC:A2:3D:4A:5F:07:D7:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bg9-d8AKy-CGjcC4_KI9Sl8H13o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA80/B98E81D605B911EA8208996EC4F9AE02/2FC3DE84B15B11EB8CCCD624C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df1:b401::/48 Signature Algorithm: sha256WithRSAEncryption 7e:9c:78:2a:ab:89:ad:e5:28:1b:0d:b6:cd:2f:8e:da:71:c8: 0f:82:c8:98:ea:02:09:5a:26:85:31:67:f3:de:f8:3a:78:57: aa:4e:8b:76:b2:11:ba:5d:35:54:3a:f3:94:a4:a4:f0:8d:67: 4d:de:5a:1d:30:63:7a:42:39:a9:e0:43:f1:92:25:fe:7b:d0: 1f:cd:0d:cd:25:f8:cb:b2:94:41:23:67:90:57:ba:97:4d:26: 0e:41:b6:a7:64:74:ec:0e:68:7e:73:d6:e8:48:4d:1f:49:51: 33:e0:ae:3a:ed:da:de:0d:e4:be:33:1d:88:d8:c4:1b:a8:ba: 47:17:25:2c:b8:27:3f:2c:3b:51:68:a8:c5:e7:4e:e2:6a:dc: 7b:c8:64:4c:2d:5d:9b:1c:d7:6d:c2:82:61:08:f0:09:54:81: b3:ee:26:89:89:b6:9b:50:87:4c:b9:05:7d:2d:05:d7:0a:61: 48:00:ea:bf:b9:fb:5b:41:64:5c:31:b8:2a:7f:a4:eb:1c:ab: f5:ff:ce:73:e2:69:48:f1:df:1f:6c:f9:47:69:94:89:2b:50: ae:73:3c:57:e5:cb:07:32:4c:0e:b9:a3:1c:b5:95:2d:ed:64: 09:89:dc:af:d4:92:54:5c:59:b0:91:24:76:1d:f3:d7:7f:8a: 29:d8:2b:94 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICDWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJBODAxMTAvBgNVBAUTKDA2MEY3RTc3QzAwQUNCRTA4NjhEQzBCOEZDQTIzRDRB NUYwN0Q3N0EwHhcNMjYwNTA2MTgyMjI2WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiODZlMi04MmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6qPqS3tbZ+RJQvMKHUZfFmp0+mL88diukK8sv6Ro0ntaNdi9xshWBIzCl2o U3FXS2CChS7MS0LIgyreDS1EZqOrEAh//tX9Wg2hUZVSmFb5vNvYORAgROWg9fZQ 6g501RIFY0gqB9EoHmWP9TOo+d+3fKulpogFyZba6pylOubmolrgUnZdn+sN2wcG t27CTdnvzt+iQNh6UY74vo6hSlH5acIq2VNOmXgDt39TbovqWhkEIANAc4UTI6/P VzXdsVYYafIZB/GPS1FRt3UoqdclECxdFEkfqbfKxU5f+smcKJo9EY9TM9ame25F CASkBqmOFgmqL0mau9CKS+GvrwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFPMZp8i3 vX8yyMX/hLxJs9zxMBOxMB8GA1UdIwQYMBaAFAYPfnfACsvgho3AuPyiPUpfB9d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkE4MC9COThFODFENjA1 QjkxMUVBODIwODk5NkVDNEY5QUUwMi9CZzktZDhBS3ktQ0dqY0M0X0tJOVNsOEgx M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JnOS1kOEFLeS1DR2pjQzRfS0k5U2w4SDEzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkJBODAvQjk4RTgxRDYwNUI5MTFFQTgyMDg5OTZFQzRGOUFFMDIvMkZDM0RFODRC MTVCMTFFQjhDQ0NENjI0QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8bQBMA0GCSqGSIb3DQEBCwUAA4IBAQB+nHgqq4mt5SgbDbbN L47accgPgsiY6gIJWiaFMWfz3vg6eFeqTot2shG6XTVUOvOUpKTwjWdN3lodMGN6 Qjmp4EPxkiX+e9AfzQ3NJfjLspRBI2eQV7qXTSYOQbanZHTsDmh+c9boSE0fSVEz 4K467dreDeS+Mx2I2MQbqLpHFyUsuCc/LDtRaKjF507iatx7yGRMLV2bHNdtwoJh CPAJVIGz7iaJibabUIdMuQV9LQXXCmFIAOq/uftbQWRcMbgqf6TrHKv1/85z4mlI 8d8fbPlHaZSJK1CuczxX5csHMkwOuaMctZUt7WQJidyv1JJUXFmwkSR2HfPXf4op 2CuU -----END CERTIFICATE-----Generated at Wed May 13 13:52:14 2026 by rpki-client