$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa File: 2F787ACA71DC11F0B648E61EC4F9AE02.roa (raw, json) Hash identifier: Sd3bOmBjQUjJSEaaagRS6KbmxYRr1S/mpgHzlYj8vVc= Subject key identifier: 8A:1E:5A:1C:A4:6A:73:7D:B5:6D:78:29:D4:91:23:AA:2B:FE:9A:57 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 1098 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa Signing time: Mon 20 Apr 2026 18:21:40 +0000 ROA not before: Mon 20 Apr 2026 18:21:40 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 16509 IP address blocks: 2401:df00:301::/48 maxlen: 48 2401:df00:331::/48 maxlen: 48 2401:df00:341::/48 maxlen: 48 2401:df00:351::/48 maxlen: 48 2401:df00:421::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 17:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4248 (0x1098) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Apr 20 18:21:40 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69e66eb4-04ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7b:bc:6b:fc:e2:f8:4d:c9:d9:ef:44:57:d9: 14:0b:ac:a5:3d:f5:f2:1c:54:d9:e3:c8:33:5c:01: ea:f8:10:17:c6:f2:7a:1c:2f:8e:bf:14:ea:97:dd: 47:e5:f5:30:be:13:3e:25:28:39:26:a4:a1:f0:90: c5:cd:e8:94:19:9c:fb:10:8b:17:d9:c0:c0:d2:97: 51:a9:e1:09:a6:ec:42:30:81:f9:5a:6a:ce:ab:ec: 83:8c:e1:b5:fe:02:64:14:be:69:61:58:31:67:fa: f7:a5:5a:bc:4c:2f:8f:b0:67:b5:b8:37:86:f0:ea: 30:f1:6b:0e:aa:84:a1:3b:7d:30:07:3c:65:bc:28: b8:e1:fb:b1:c1:9c:65:78:8c:d6:24:54:a9:13:41: 01:66:6c:76:1e:bd:99:2d:5b:8d:1f:3d:17:d9:a4: 28:85:b0:6f:53:06:a4:20:ba:de:c1:55:c9:28:6d: b2:a7:12:fd:fb:ba:db:56:2f:11:5b:08:0b:77:b7: b6:2e:0b:3c:f0:ff:a1:5a:65:86:3a:36:5b:c5:11: 82:24:4d:83:37:44:62:9d:1a:bf:1b:3c:fd:0d:68: 50:fe:f0:8f:f1:c0:95:ec:b9:82:6c:f4:3c:24:4a: d0:31:28:da:4e:a2:b3:d0:98:44:a6:e3:ac:1e:f0: 2e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1E:5A:1C:A4:6A:73:7D:B5:6D:78:29:D4:91:23:AA:2B:FE:9A:57 X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:df00:301::/48 2401:df00:331::/48 2401:df00:341::/48 2401:df00:351::/48 2401:df00:421::/48 Signature Algorithm: sha256WithRSAEncryption 6c:33:42:7e:48:b4:0c:48:a3:1f:60:07:77:cb:1f:87:bc:e4: ff:86:01:9f:a1:71:a6:d4:c6:7a:d9:51:12:2a:dc:fa:4c:3e: d2:48:46:fd:8b:0a:a2:2d:18:9a:9c:c8:98:0c:8f:25:6f:67: 25:7b:ec:1c:37:53:4a:f8:63:08:c9:74:aa:e3:41:de:d8:b7: 7d:ec:77:70:bc:eb:32:b3:ca:fa:f8:00:60:be:4e:21:ad:f3: 9f:79:1a:df:e1:62:39:a3:81:bc:9a:fc:f2:a9:c8:27:27:d6: c0:52:04:21:30:03:a8:84:b1:22:8a:a3:96:be:93:f7:d8:b9: d7:a2:a1:58:77:49:d7:f0:de:8f:ea:dc:3a:f4:54:d4:6c:0b: 35:c0:be:b8:38:eb:e3:3d:ba:3a:60:c8:88:64:a5:ad:08:f8: 0f:77:20:d5:bd:27:be:80:e1:10:8a:62:e0:81:b5:c1:b0:62: bd:c2:50:a3:6c:a7:e7:95:39:8d:ff:28:ad:ad:ad:8a:3a:c4: b0:4b:4f:9c:1c:aa:59:9f:38:3c:f9:f6:3c:07:d8:eb:30:9c: 1d:22:79:2d:3e:a5:38:eb:9b:0b:4f:9e:fd:6e:28:7b:a3:5b: 7f:6b:2c:d3:b4:a2:a2:5b:ec:75:cb:c2:0e:45:69:4a:fa:16: 21:f7:1f:e5 -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICEJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjYwNDIwMTgyMTQwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWU2NmViNC0wNGVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmnu8a/zi+E3J2e9EV9kUC6ylPfXyHFTZ48gzXAHq+BAXxvJ6HC+OvxTql91H 5fUwvhM+JSg5JqSh8JDFzeiUGZz7EIsX2cDA0pdRqeEJpuxCMIH5WmrOq+yDjOG1 /gJkFL5pYVgxZ/r3pVq8TC+PsGe1uDeG8Oow8WsOqoShO30wBzxlvCi44fuxwZxl eIzWJFSpE0EBZmx2Hr2ZLVuNHz0X2aQohbBvUwakILrewVXJKG2ypxL9+7rbVi8R WwgLd7e2Lgs88P+hWmWGOjZbxRGCJE2DN0RinRq/Gzz9DWhQ/vCP8cCV7LmCbPQ8 JErQMSjaTqKz0JhEpuOsHvAuyQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFIoeWhyk anN9tW14KdSRI6or/ppXMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDQzcvNzkxQzZBMzQ3QjM4MTFFOUJDMEQzQjMyQzRGOUFFMDIvMkY3ODdBQ0E3 MURDMTFGMEI2NDhFNjFFQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAz BAIAAjAtAwcAJAHfAAMBAwcAJAHfAAMxAwcAJAHfAANBAwcAJAHfAANRAwcAJAHf AAQhMA0GCSqGSIb3DQEBCwUAA4IBAQBsM0J+SLQMSKMfYAd3yx+HvOT/hgGfoXGm 1MZ62VESKtz6TD7SSEb9iwqiLRianMiYDI8lb2cle+wcN1NK+GMIyXSq40He2Ld9 7HdwvOsys8r6+ABgvk4hrfOfeRrf4WI5o4G8mvzyqcgnJ9bAUgQhMAOohLEiiqOW vpP32LnXoqFYd0nX8N6P6tw69FTUbAs1wL64OOvjPbo6YMiIZKWtCPgPdyDVvSe+ gOEQimLggbXBsGK9wlCjbKfnlTmN/yitra2KOsSwS0+cHKpZnzg8+fY8B9jrMJwd InktPqU465sLT579bih7o1t/ayzTtKKiW+x1y8IORWlK+hYh9x/l -----END CERTIFICATE-----Generated at Wed May 13 19:45:59 2026 by rpki-client