$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/A0A9D60C807511EFAD8C4257C4F9AE02.roa File: A0A9D60C807511EFAD8C4257C4F9AE02.roa (raw, json) Hash identifier: eHxVtr7CaVRUMmuegbvUTVOQCFKL9zTAYfh/hkVVLRo= Subject key identifier: F3:4A:38:9A:BE:7C:C3:92:0E:65:D5:02:BC:96:31:04:93:F1:70:F8 Certificate issuer: /CN=A91D0B0E/serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Certificate serial: 0114 Authority key identifier: 95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/A0A9D60C807511EFAD8C4257C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:02:14 +0000 ROA not before: Tue 15 Jul 2025 06:43:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153055 IP address blocks: 2401:afe0::/32 maxlen: 33 2401:afe0::/34 maxlen: 36 2401:afe0:4000::/35 maxlen: 36 2401:afe0:6000::/35 maxlen: 35 2401:afe0:6000::/36 maxlen: 36 2401:afe0:8000::/33 maxlen: 34 2401:afe0:8000::/36 maxlen: 36 2401:afe0:9000::/36 maxlen: 36 2401:afe0:a000::/35 maxlen: 35 2401:afe0:b000::/36 maxlen: 36 2401:afe0:c000::/34 maxlen: 35 2401:afe0:c000::/36 maxlen: 36 2401:afe0:e000::/35 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=957E50A75FBE502F38E3EDBF3F4AAAE665AE148B Validity Not Before: Jul 15 06:43:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58a56-cb71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d4:04:3b:c4:a9:50:a3:b2:89:ac:69:41:bc: a3:03:24:a3:6c:b2:22:aa:52:c5:3d:0a:db:d0:8d: 7d:c4:91:80:b3:98:1c:b7:f0:88:6e:eb:87:ad:c1: d1:1a:8b:f1:e0:c8:0e:4f:a8:14:b9:ea:11:6b:f5: e2:72:c8:63:4d:41:17:44:5d:2e:45:0c:65:be:82: 59:1e:c6:92:86:27:b6:c9:64:0c:90:c9:88:08:21: df:97:67:2a:31:90:7f:38:7d:16:05:10:a6:4a:09: c0:5c:5f:b3:5d:3a:38:aa:b4:23:6d:39:cb:7a:1f: 3e:f5:48:92:5f:6c:1b:f3:08:1b:11:02:e5:2c:1f: 8e:ef:31:34:4f:62:1d:da:22:4e:96:d8:11:ca:7a: c4:a0:4a:d7:9b:51:0b:64:ef:0d:b3:88:b8:3c:c2: f0:45:dc:c4:b9:a1:31:b4:06:34:5d:39:26:19:10: 83:04:c0:5c:00:d1:0b:f0:0f:1c:4a:d7:aa:15:bc: b1:63:2c:3e:cb:13:b0:29:a2:64:ea:b7:c6:b4:76: 98:07:7b:87:5b:1d:56:09:c4:6e:fa:a2:ec:b0:24: 5a:16:c2:e1:d7:22:0b:30:02:6c:1c:65:dd:cd:19: ae:1a:2a:38:0c:5f:f7:b1:12:93:af:2b:18:f0:7d: 93:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:4A:38:9A:BE:7C:C3:92:0E:65:D5:02:BC:96:31:04:93:F1:70:F8 X509v3 Authority Key Identifier: keyid:95:7E:50:A7:5F:BE:50:2F:38:E3:ED:BF:3F:4A:AA:E6:65:AE:14:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/lX5Qp1--UC844-2_P0qq5mWuFIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lX5Qp1--UC844-2_P0qq5mWuFIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/4E6CB4F6806911EF887B703CC4F9AE02/A0A9D60C807511EFAD8C4257C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:afe0::/32 Signature Algorithm: sha256WithRSAEncryption 01:98:c3:1b:e2:c6:41:68:5c:93:18:f8:86:2b:4d:a9:7c:61: 14:b5:2c:8d:01:4c:cb:ca:01:4d:45:58:d0:e9:12:5f:96:cc: 78:cb:07:35:09:f6:b7:87:84:f3:48:a0:e3:04:84:c8:4c:43: 85:47:a1:16:6a:43:f9:f0:3c:7f:63:37:96:fc:cd:b9:1a:2a: ca:cb:b3:d1:9a:49:f2:2a:e8:e7:40:30:a2:4c:4c:51:7f:c9: 01:71:2c:5b:3f:5b:9f:c2:a4:ab:2e:a9:e5:01:12:77:de:12: a0:f5:aa:bc:75:7c:de:16:ca:ee:33:30:29:94:1a:1f:40:3c: 0c:af:f1:31:b9:c9:86:f2:53:c2:4f:7a:6a:fb:18:58:0f:91: fe:52:86:18:8a:dd:6d:ab:4c:53:9c:c6:f0:ff:1a:1e:d0:2b: b6:d2:bf:3e:60:00:59:e9:94:7e:33:f8:10:15:17:8c:04:6d: 98:b8:cd:f9:42:8c:42:81:67:55:ee:b0:bf:f9:e5:a2:f9:68: cd:14:e1:19:b7:ad:f9:b6:c0:92:15:b9:f3:e3:6b:f4:88:1a: f6:e6:f2:52:3d:4d:42:0d:5d:a3:c1:68:e0:9b:08:dc:f0:28: 94:36:13:2d:20:7f:79:d4:e3:39:0d:31:40:fd:a2:51:f8:5c: fe:f3:b8:97 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDk1N0U1MEE3NUZCRTUwMkYzOEUzRURCRjNGNEFBQUU2 NjVBRTE0OEIwHhcNMjUwNzE1MDY0MzQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGE1Ni1jYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudQEO8SpUKOyiaxpQbyjAySjbLIiqlLFPQrb0I19xJGAs5gct/CIbuuHrcHR Govx4MgOT6gUueoRa/XicshjTUEXRF0uRQxlvoJZHsaShie2yWQMkMmICCHfl2cq MZB/OH0WBRCmSgnAXF+zXTo4qrQjbTnLeh8+9UiSX2wb8wgbEQLlLB+O7zE0T2Id 2iJOltgRynrEoErXm1ELZO8Ns4i4PMLwRdzEuaExtAY0XTkmGRCDBMBcANEL8A8c SteqFbyxYyw+yxOwKaJk6rfGtHaYB3uHWx1WCcRu+qLssCRaFsLh1yILMAJsHGXd zRmuGio4DF/3sRKTrysY8H2TvwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFPNKOJq+ fMOSDmXVAryWMQST8XD4MB8GA1UdIwQYMBaAFJV+UKdfvlAvOOPtvz9KquZlrhSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80RTZDQjRGNjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9sWDVRcDEtLVVDODQ0LTJfUDBxcTVtV3VG SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xYNVFwMS0tVUM4NDQtMl9QMHFxNW1XdUZJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDBCMEUvNEU2Q0I0RjY4MDY5MTFFRjg4N0I3MDNDQzRGOUFFMDIvQTBBOUQ2MEM4 MDc1MTFFRkFEOEM0MjU3QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAGv4DANBgkqhkiG9w0BAQsFAAOCAQEAAZjDG+LGQWhckxj4hitN qXxhFLUsjQFMy8oBTUVY0OkSX5bMeMsHNQn2t4eE80ig4wSEyExDhUehFmpD+fA8 f2M3lvzNuRoqysuz0ZpJ8iro50AwokxMUX/JAXEsWz9bn8Kkqy6p5QESd94SoPWq vHV83hbK7jMwKZQaH0A8DK/xMbnJhvJTwk96avsYWA+R/lKGGIrdbatMU5zG8P8a HtArttK/PmAAWemUfjP4EBUXjARtmLjN+UKMQoFnVe6wv/nlovlozRThGbet+bbA khW58+Nr9Iga9ubyUj1NQg1do8Fo4JsI3PAolDYTLSB/edTjOQ0xQP2iUfhc/vO4 lw== -----END CERTIFICATE-----Generated at Thu Mar 26 08:54:38 2026 by rpki-client