$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2EFFC95471DC11F0B648E61EC4F9AE02.roa File: 2EFFC95471DC11F0B648E61EC4F9AE02.roa (raw, json) Hash identifier: 1hrK2Bwewpt3jrZg8tzld9vT7Z8nHw5euqbUeqhmK6U= Subject key identifier: F4:BE:EC:B7:24:AC:A6:67:7F:5A:20:D0:86:40:FE:D4:41:D5:B7:0B Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 1097 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2EFFC95471DC11F0B648E61EC4F9AE02.roa Signing time: Mon 20 Apr 2026 18:21:37 +0000 ROA not before: Mon 20 Apr 2026 18:21:37 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2401:df00:301::/48 maxlen: 48 2401:df00:331::/48 maxlen: 48 2401:df00:341::/48 maxlen: 48 2401:df00:351::/48 maxlen: 48 2401:df00:421::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4247 (0x1097) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Apr 20 18:21:37 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e66eb1-66e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:84:3e:70:be:93:cc:c6:f6:ed:cf:75:4a: e8:20:53:3e:9e:b4:9d:f0:2b:f5:ea:8a:1d:df:9c: db:26:cf:83:2d:23:66:13:ae:3a:a6:1a:3e:e3:23: b6:be:18:c0:65:19:83:b0:1d:d4:f7:9c:56:c1:48: d5:2d:20:6f:fb:be:ce:2f:04:cc:d5:43:65:97:3c: a8:e7:d3:a3:19:99:67:c2:4b:b3:b3:42:e0:72:36: 90:ca:72:0b:a3:93:9d:7c:cf:86:b9:8d:c4:59:1d: 43:b5:4a:ce:49:ee:77:65:2c:e4:dd:8d:4b:16:6a: a2:c3:00:b3:3f:21:d3:d2:83:7b:1c:f6:e1:55:c0: b7:b3:13:8f:bb:c3:eb:77:73:51:cc:35:0e:79:58: 43:b8:74:50:e4:16:a7:ec:f5:0f:b5:45:1d:b2:d8: 08:de:d1:50:e6:7b:20:7d:e6:71:6a:e1:04:8f:b4: 5d:39:c7:58:af:52:67:1d:e3:36:27:f6:e1:5c:5c: 75:f2:4f:ba:91:bb:d2:0b:ca:6e:45:ce:32:9d:b1: 86:03:08:e8:e6:cf:9c:46:6c:ec:bb:cd:f4:f3:d9: 1c:12:37:f3:f0:0b:75:e6:0b:01:f5:ce:9f:70:85: 9a:c4:44:c2:cb:ae:d5:4c:8d:75:59:2c:86:a6:19: f0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:BE:EC:B7:24:AC:A6:67:7F:5A:20:D0:86:40:FE:D4:41:D5:B7:0B X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2EFFC95471DC11F0B648E61EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:df00:301::/48 2401:df00:331::/48 2401:df00:341::/48 2401:df00:351::/48 2401:df00:421::/48 Signature Algorithm: sha256WithRSAEncryption 06:d2:86:23:ee:33:14:da:15:c3:0d:e9:9c:7a:cb:37:90:f8: dc:b9:f7:f2:8d:ed:45:ae:2a:00:f7:41:d9:d8:54:e0:d7:d9: a4:02:6b:fa:49:cb:ed:a5:6b:63:04:97:16:3b:42:3e:a1:8e: e2:7e:e6:18:6f:e1:66:02:11:d7:16:93:7a:4f:a4:7c:77:f5: 42:6a:7d:f8:89:62:f9:90:cb:b8:33:71:7c:a1:2c:29:99:f5: 6d:65:84:55:29:3b:77:6f:7b:e4:41:3a:b3:59:dd:92:22:48: cd:2d:1a:77:48:96:f1:c8:2c:d1:42:7c:57:6b:d9:4f:6a:eb: c5:b6:3e:2f:b4:7f:88:0c:cb:ee:45:6f:90:d8:32:cb:1a:e3: d8:d7:59:28:45:fc:93:03:ca:1d:d2:f5:7f:29:3b:44:72:12: 37:68:ac:67:f5:26:cb:1f:6e:b6:1d:05:46:87:fc:c1:53:41: 87:78:cf:c1:3a:ee:0f:22:7d:7d:a6:82:4a:6f:13:5b:4e:17: 7d:dc:f2:05:c7:5c:ca:dc:4c:6a:f4:ab:fd:2f:fa:10:4a:b3: ef:02:0d:99:83:63:e2:98:32:29:04:b9:d2:b5:59:ec:58:14: 14:7f:8f:42:f2:61:7c:24:81:f7:f8:c8:9b:b4:c3:00:8f:33: 26:b2:27:9d -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICEJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjYwNDIwMTgyMTM3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2NmViMS02NmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI2EPnC+k8zG9u3PdUroIFM+nrSd8Cv16ood35zbJs+DLSNmE646pho+4yO2 vhjAZRmDsB3U95xWwUjVLSBv+77OLwTM1UNllzyo59OjGZlnwkuzs0LgcjaQynIL o5OdfM+GuY3EWR1DtUrOSe53ZSzk3Y1LFmqiwwCzPyHT0oN7HPbhVcC3sxOPu8Pr d3NRzDUOeVhDuHRQ5Ban7PUPtUUdstgI3tFQ5nsgfeZxauEEj7RdOcdYr1JnHeM2 J/bhXFx18k+6kbvSC8puRc4ynbGGAwjo5s+cRmzsu83089kcEjfz8At15gsB9c6f cIWaxETCy67VTI11WSyGphnwSwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFPS+7Lck rKZnf1og0IZA/tRB1bcLMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDQzcvNzkxQzZBMzQ3QjM4MTFFOUJDMEQzQjMyQzRGOUFFMDIvMkVGRkM5NTQ3 MURDMTFGMEI2NDhFNjFFQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAz BAIAAjAtAwcAJAHfAAMBAwcAJAHfAAMxAwcAJAHfAANBAwcAJAHfAANRAwcAJAHf AAQhMA0GCSqGSIb3DQEBCwUAA4IBAQAG0oYj7jMU2hXDDemcess3kPjcuffyje1F rioA90HZ2FTg19mkAmv6ScvtpWtjBJcWO0I+oY7ifuYYb+FmAhHXFpN6T6R8d/VC an34iWL5kMu4M3F8oSwpmfVtZYRVKTt3b3vkQTqzWd2SIkjNLRp3SJbxyCzRQnxX a9lPauvFtj4vtH+IDMvuRW+Q2DLLGuPY11koRfyTA8od0vV/KTtEchI3aKxn9SbL H262HQVGh/zBU0GHeM/BOu4PIn19poJKbxNbThd93PIFx1zK3Exq9Kv9L/oQSrPv Ag2Zg2PimDIpBLnStVnsWBQUf49C8mF8JIH3+MibtMMAjzMmsied -----END CERTIFICATE-----Generated at Wed May 13 01:20:34 2026 by rpki-client