$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa File: 2AB990CAF0A911ED80D2CB35C4F9AE02.roa (raw, json) Hash identifier: vqGdVaaDYf6gNLNH5VIBJ2NRjMzmVVMM9ASsA3cNz2A= Subject key identifier: A2:B0:5D:39:B9:4E:23:A9:BF:E6:1F:D4:02:9F:79:E7:44:B2:FE:E9 Certificate issuer: /CN=A91CC1E9/serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Certificate serial: 0231 Authority key identifier: 72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:18:41 +0000 ROA not before: Sat 07 Feb 2026 02:22:20 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 135391 IP address blocks: 2404:2480::/32 maxlen: 32 2404:2480::/33 maxlen: 35 2404:2480::/34 maxlen: 40 2404:2480:4000::/35 maxlen: 40 2404:2480:6000::/36 maxlen: 40 2404:2480:6500::/48 maxlen: 48 2404:2480:8000::/33 maxlen: 33 2404:2480:8000::/34 maxlen: 34 2404:2480:8000::/35 maxlen: 36 2404:2480:8000::/36 maxlen: 40 2404:2480:9000::/37 maxlen: 37 2404:2480:9000::/38 maxlen: 39 2404:2480:9000::/39 maxlen: 40 2404:2480:9200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC1E9, serialNumber=72D15743F59C83A5C195A5E6DB1EA4647634BEF7 Validity Not Before: Feb 7 02:22:20 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a458d1-a941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:ea:7d:74:76:8c:50:e9:88:ba:35:a8:6b: b0:b0:de:d4:f7:94:d3:46:5c:35:12:7e:86:59:8d: da:ca:10:9b:06:56:7e:75:b2:f4:75:49:7e:83:e2: 70:d6:2c:31:15:56:94:6f:ef:24:9e:75:01:8b:d4: fc:d2:2e:88:5c:b4:6e:f8:3e:e3:da:b7:ed:e0:f8: 23:8f:b7:36:23:5e:25:59:d4:54:d6:50:ae:45:e9: 7a:2e:71:ef:62:9e:73:7a:97:e8:95:28:ec:9e:0e: c5:d2:23:93:70:41:c5:da:ad:8b:24:16:32:ea:c1: c6:f6:15:de:b7:88:f5:85:df:0b:2b:e8:9e:0c:57: 37:37:38:96:7e:9a:eb:88:dd:76:4b:7c:f5:9e:b5: 8f:db:6f:bc:fd:c9:3f:aa:ba:da:a5:d7:c0:e8:e9: 63:bc:a1:7f:74:7c:40:a0:05:59:b2:b1:13:24:b3: 33:24:62:00:4c:05:2c:42:f7:f2:52:97:18:19:a7: ac:ed:c4:e4:b4:cd:9e:0f:ca:b1:8c:1c:e7:96:ab: dc:90:b3:d9:f6:eb:55:0d:39:83:12:5d:ab:49:bd: 85:f5:ef:bc:ab:01:ed:d7:bf:40:71:ed:c1:f9:20: a4:5f:e6:df:41:14:3e:c1:49:72:65:ae:9e:8d:98: 5a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B0:5D:39:B9:4E:23:A9:BF:E6:1F:D4:02:9F:79:E7:44:B2:FE:E9 X509v3 Authority Key Identifier: keyid:72:D1:57:43:F5:9C:83:A5:C1:95:A5:E6:DB:1E:A4:64:76:34:BE:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctFXQ_Wcg6XBlaXm2x6kZHY0vvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC1E9/BBCD5D2CEFCC11EDB29BB06CC4F9AE02/2AB990CAF0A911ED80D2CB35C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:2480::/32 Signature Algorithm: sha256WithRSAEncryption 30:5f:f8:63:51:aa:ce:83:a7:68:5c:ee:c7:7a:43:f4:a3:ba: 09:8d:c3:44:db:6a:29:31:2c:36:b1:bd:ac:c9:24:d9:d4:c5: f3:60:85:c9:cd:03:e0:d0:79:b0:42:ec:26:56:46:8f:8e:64: 11:e9:d7:b8:f6:a9:0c:71:a7:a5:22:02:19:e5:87:db:6e:2f: 86:bc:ea:f2:b3:24:b6:3c:7e:c6:d1:dc:69:c0:c1:0b:8d:94: b2:41:37:8c:f6:f2:72:88:ac:07:48:a6:30:27:97:7a:2f:2f: c8:98:1f:85:cd:1a:06:b4:8d:e3:d3:9c:07:05:87:f2:1a:d6: e2:6c:e1:32:9a:e8:ad:b8:2a:4b:75:1f:90:6b:9c:23:82:9e: 12:31:03:69:9d:41:dc:7a:ff:8a:f7:e0:00:4b:b5:25:3f:ee: 40:ad:f3:ee:a2:33:3a:bc:dc:29:da:46:b7:7f:9d:d4:2e:e4: 76:8b:2a:22:3c:80:19:d2:02:a5:24:cd:20:b9:1a:1d:9b:4d: 29:94:ac:20:dd:ce:75:5a:53:0e:73:84:60:00:f5:b7:85:73: b5:9e:eb:30:a0:29:de:bf:9f:b4:30:0e:2f:06:4e:e3:78:6f: 4b:c9:24:b8:54:ff:26:41:41:90:77:95:f9:a8:f1:1a:f9:a1: 68:f1:46:70 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0MxRTkxMTAvBgNVBAUTKDcyRDE1NzQzRjU5QzgzQTVDMTk1QTVFNkRCMUVBNDY0 NzYzNEJFRjcwHhcNMjYwMjA3MDIyMjIwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NThkMS1hOTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfPqfXR2jFDpiLo1qGuwsN7U95TTRlw1En6GWY3ayhCbBlZ+dbL0dUl+g+Jw 1iwxFVaUb+8knnUBi9T80i6IXLRu+D7j2rft4Pgjj7c2I14lWdRU1lCuRel6LnHv Yp5zepfolSjsng7F0iOTcEHF2q2LJBYy6sHG9hXet4j1hd8LK+ieDFc3NziWfprr iN12S3z1nrWP22+8/ck/qrrapdfA6OljvKF/dHxAoAVZsrETJLMzJGIATAUsQvfy UpcYGaes7cTktM2eD8qxjBznlqvckLPZ9utVDTmDEl2rSb2F9e+8qwHt179Ace3B +SCkX+bfQRQ+wUlyZa6ejZhadQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFKKwXTm5 TiOpv+Yf1AKfeedEsv7pMB8GA1UdIwQYMBaAFHLRV0P1nIOlwZWl5tsepGR2NL73 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzFFOS9CQkNENUQyQ0VG Q0MxMUVEQjI5QkIwNkNDNEY5QUUwMi9jdEZYUV9XY2c2WEJsYVhtMng2a1pIWTB2 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0RlhRX1djZzZYQmxhWG0yeDZrWkhZMHZ2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0MxRTkvQkJDRDVEMkNFRkNDMTFFREIyOUJCMDZDQzRGOUFFMDIvMkFCOTkwQ0FG MEE5MTFFRDgwRDJDQjM1QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAQkgDANBgkqhkiG9w0BAQsFAAOCAQEAMF/4Y1GqzoOnaFzux3pD 9KO6CY3DRNtqKTEsNrG9rMkk2dTF82CFyc0D4NB5sELsJlZGj45kEenXuPapDHGn pSICGeWH224vhrzq8rMktjx+xtHcacDBC42UskE3jPbycoisB0imMCeXei8vyJgf hc0aBrSN49OcBwWH8hrW4mzhMprorbgqS3UfkGucI4KeEjEDaZ1B3Hr/ivfgAEu1 JT/uQK3z7qIzOrzcKdpGt3+d1C7kdosqIjyAGdICpSTNILkaHZtNKZSsIN3OdVpT DnOEYAD1t4VztZ7rMKAp3r+ftDAOLwZO43hvS8kkuFT/JkFBkHeV+ajxGvmhaPFG cA== -----END CERTIFICATE-----Generated at Thu Mar 26 08:32:12 2026 by rpki-client