$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa File: 2F787ACA71DC11F0B648E61EC4F9AE02.roa (raw, json) Hash identifier: eAns+FZkAHBk1mAiuYMr/116oRI3l4XLKkm5ctbEEec= Subject key identifier: D0:BA:72:83:35:F6:56:AD:FF:85:DF:9B:B2:50:74:B0:EF:97:67:EC Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 1075 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:39:32 +0000 ROA not before: Tue 05 Aug 2025 15:55:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2401:df00:301::/48 maxlen: 48 2401:df00:331::/48 maxlen: 48 2401:df00:341::/48 maxlen: 48 2401:df00:351::/48 maxlen: 48 2401:df00:421::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4213 (0x1075) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Aug 5 15:55:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a479d4-57fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:8e:5d:9c:a4:a3:87:23:d4:de:43:7c:37:47: 8e:f1:4e:39:b0:62:96:5a:3f:12:12:2b:2a:29:ab: ea:bb:ad:1a:a9:fa:c2:bf:3d:26:01:68:29:de:f1: 3f:a2:b7:ea:09:be:6d:b0:b9:9a:98:de:fe:70:36: bf:55:fd:7f:c0:38:a2:bb:19:f6:a3:78:75:18:05: 4a:2b:c2:17:02:42:80:b6:26:98:e7:2e:b1:17:01: 39:d1:f8:85:9b:f6:7c:89:95:ec:68:8e:1d:97:e0: 9c:b5:1b:89:31:fe:31:f4:f2:1c:9f:7f:de:87:b8: e5:07:cf:db:ed:22:4d:40:bd:1f:89:de:0b:13:7b: 95:82:05:87:25:47:58:69:63:81:20:15:cc:c1:e9: 5b:ad:40:27:b6:d3:be:ad:fc:78:03:bc:12:70:87: fb:82:22:6f:59:39:a3:98:20:d0:b3:62:b0:34:4f: 2c:b0:55:da:62:53:c9:a4:eb:90:28:8f:2e:6f:30: 45:d7:94:63:55:30:a9:b4:6f:23:70:2d:6c:16:c4: 49:62:ce:0b:d2:47:18:76:84:79:3c:93:1a:6b:3e: 84:4f:9e:91:7a:ea:7d:c7:f1:ce:55:f6:6d:8e:27: 6f:ed:93:ce:aa:58:8c:1b:55:9b:01:d4:0d:a4:ab: c7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:BA:72:83:35:F6:56:AD:FF:85:DF:9B:B2:50:74:B0:EF:97:67:EC X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:df00:301::/48 2401:df00:331::/48 2401:df00:341::/48 2401:df00:351::/48 2401:df00:421::/48 Signature Algorithm: sha256WithRSAEncryption 1f:b5:3c:30:6c:7b:69:91:af:5e:8d:7c:ce:c2:97:f3:87:6f: fd:62:6a:0a:c8:41:ab:cd:48:48:80:fb:6c:ff:e2:c0:f6:0a: 48:1e:4d:36:78:5f:75:f0:1b:81:75:ac:6a:a5:8b:51:0f:79: 68:ac:68:fe:15:b0:7f:03:6f:51:0f:8a:dd:54:f9:0d:f1:4f: 32:80:b3:b7:c6:be:f1:dc:0a:39:39:cb:5e:c8:93:dd:18:bd: 53:b1:be:c4:bc:52:ca:de:6b:9c:27:7a:41:86:02:c6:57:c2: 65:57:75:6c:34:ca:7f:2c:f6:76:e8:55:d9:f9:97:89:8e:61: 74:5b:90:d8:45:c7:49:90:3b:c0:2d:6f:96:f3:b8:db:04:17: 3a:48:ab:4d:72:60:b3:c5:88:15:4b:c0:f3:ad:50:46:e5:64: 56:72:e1:08:05:dc:eb:c0:45:25:c6:30:12:0c:7c:7f:79:aa: 1e:bc:96:73:dd:51:72:67:a8:49:c9:0f:38:33:29:28:c8:2a: 9f:df:6b:f6:17:09:bd:b6:98:69:08:27:58:6f:53:23:e0:40: 0f:5f:e9:7d:06:72:50:3b:f3:8b:cf:a3:97:e9:90:f2:fd:db: b9:6e:87:e9:bc:43:49:b5:ae:c5:88:30:bd:d8:44:ba:c6:48: 81:51:c5:5f -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICEHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUwODA1MTU1NTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzlkNC01N2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnY5dnKSjhyPU3kN8N0eO8U45sGKWWj8SEisqKavqu60aqfrCvz0mAWgp3vE/ orfqCb5tsLmamN7+cDa/Vf1/wDiiuxn2o3h1GAVKK8IXAkKAtiaY5y6xFwE50fiF m/Z8iZXsaI4dl+CctRuJMf4x9PIcn3/eh7jlB8/b7SJNQL0fid4LE3uVggWHJUdY aWOBIBXMwelbrUAnttO+rfx4A7wScIf7giJvWTmjmCDQs2KwNE8ssFXaYlPJpOuQ KI8ubzBF15RjVTCptG8jcC1sFsRJYs4L0kcYdoR5PJMaaz6ET56Reup9x/HOVfZt jidv7ZPOqliMG1WbAdQNpKvHfwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFNC6coM1 9lat/4Xfm7JQdLDvl2fsMB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDQzcvNzkxQzZBMzQ3QjM4MTFFOUJDMEQzQjMyQzRGOUFFMDIvMkY3ODdBQ0E3 MURDMTFGMEI2NDhFNjFFQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAz BAIAAjAtAwcAJAHfAAMBAwcAJAHfAAMxAwcAJAHfAANBAwcAJAHfAANRAwcAJAHf AAQhMA0GCSqGSIb3DQEBCwUAA4IBAQAftTwwbHtpka9ejXzOwpfzh2/9YmoKyEGr zUhIgPts/+LA9gpIHk02eF918BuBdaxqpYtRD3lorGj+FbB/A29RD4rdVPkN8U8y gLO3xr7x3Ao5OcteyJPdGL1Tsb7EvFLK3mucJ3pBhgLGV8JlV3VsNMp/LPZ26FXZ +ZeJjmF0W5DYRcdJkDvALW+W87jbBBc6SKtNcmCzxYgVS8DzrVBG5WRWcuEIBdzr wEUlxjASDHx/eaoevJZz3VFyZ6hJyQ84MykoyCqf32v2Fwm9tphpCCdYb1Mj4EAP X+l9BnJQO/OLz6OX6ZDy/du5bofpvENJta7FiDC92ES6xkiBUcVf -----END CERTIFICATE-----Generated at Thu Mar 26 04:18:50 2026 by rpki-client