$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa File: CB1303A4A28F11EBA97D6163C4F9AE02.roa (raw, json) Hash identifier: B394cI0VrI1/IQFY1x3i0QaoEW2OuwCSpXnoIJQqOZA= Subject key identifier: AC:98:43:3A:EB:DE:AE:0F:C3:D1:AF:EA:A4:CB:13:DB:5E:D2:3A:02 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 11DB Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:34:15 +0000 ROA not before: Wed 02 Apr 2025 17:46:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24124 IP address blocks: 2404:7ac0:200::/48 maxlen: 48 2404:7ac0:206::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 17:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4571 (0x11db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3, serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Apr 2 17:46:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47897-b488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d4:37:cf:ee:d5:b2:7a:e3:ec:6f:30:40:a6: 86:d9:79:99:a3:c5:d2:28:96:b1:d9:66:ff:00:7d: e9:77:32:7f:b9:9e:86:fc:5e:2d:f2:cf:e7:23:0a: a0:88:bf:bf:5f:3f:84:38:73:0b:82:f2:ce:b2:78: 74:54:e4:74:87:3c:92:de:0d:bb:62:31:d6:ec:3a: 92:b1:a8:75:0b:d2:4d:83:b8:d2:32:ce:be:bc:cb: 5d:e9:1b:e8:0e:9a:46:17:94:b8:ff:0d:dc:2d:e5: 2a:1e:59:64:32:b4:cc:c9:95:65:01:3e:cf:8b:75: 85:88:5c:c4:3e:14:2a:5b:56:56:26:d0:31:09:ed: 20:1f:d0:e2:92:52:5c:83:46:b8:13:a0:d1:06:07: 3c:79:e8:13:d1:c3:7e:15:a5:33:8c:1a:cf:5f:ec: d4:43:32:01:a2:f1:ee:20:14:13:06:ef:d4:72:b2: b5:b0:8f:5c:c5:f8:8c:b0:ee:05:17:03:b4:e8:63: ad:c1:30:22:d6:53:52:ec:3a:16:95:a1:c8:01:fa: 83:7c:a9:ca:13:fa:ce:34:f2:9e:d5:bd:db:f2:64: 94:33:5e:60:a4:fc:d5:d1:1f:4b:bf:57:40:2c:75: 3e:c4:ab:05:c6:77:56:86:28:ed:f6:e2:e1:b3:f4: 00:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:98:43:3A:EB:DE:AE:0F:C3:D1:AF:EA:A4:CB:13:DB:5E:D2:3A:02 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/CB1303A4A28F11EBA97D6163C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:200::/48 2404:7ac0:206::/47 Signature Algorithm: sha256WithRSAEncryption 87:f3:6c:6b:d4:de:97:ca:b6:57:99:de:69:75:02:f1:0a:a9: 2d:1a:48:48:0d:be:47:f7:2f:52:5c:ae:d1:eb:13:e7:36:49: 56:89:3a:e5:91:7c:01:6b:12:83:51:ac:f4:52:94:3d:fd:95: 9d:a1:cd:4c:2a:1d:5c:2a:da:05:02:c4:97:07:4e:3f:16:30: 1a:cd:8b:3c:28:fa:22:40:4c:0f:fc:80:43:b8:71:27:74:dc: 20:c2:e7:32:ea:20:89:3e:a7:dd:c0:95:92:a6:46:44:d4:20: b3:3b:1d:2b:e5:67:ac:bf:9e:ae:f9:6a:67:00:47:cc:80:c5: 41:66:1a:1b:8f:f2:a9:1c:25:a5:61:2a:15:fc:c9:5e:58:49: 48:af:f4:79:85:a1:f5:9f:fd:94:9b:3b:8b:52:e7:6d:27:49: 3f:5d:be:08:13:7e:ce:63:75:bf:89:27:d8:c4:85:0c:49:92: a7:37:82:0f:e4:66:a2:34:c5:a8:01:4d:eb:44:ab:91:dd:e8: ad:9a:51:cb:d2:19:60:79:4e:a8:a9:7c:7a:d3:66:b0:5d:81: a6:37:e7:36:9c:b7:3f:25:99:db:39:f4:a6:60:e0:a5:08:5a: 58:b9:7b:81:a8:92:f8:17:5b:19:cd:37:18:d3:cc:aa:cd:6f: 41:11:2b:96 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjUwNDAyMTc0NjM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzg5Ny1iNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtQ3z+7Vsnrj7G8wQKaG2XmZo8XSKJax2Wb/AH3pdzJ/uZ6G/F4t8s/nIwqg iL+/Xz+EOHMLgvLOsnh0VOR0hzyS3g27YjHW7DqSsah1C9JNg7jSMs6+vMtd6Rvo DppGF5S4/w3cLeUqHllkMrTMyZVlAT7Pi3WFiFzEPhQqW1ZWJtAxCe0gH9DiklJc g0a4E6DRBgc8eegT0cN+FaUzjBrPX+zUQzIBovHuIBQTBu/UcrK1sI9cxfiMsO4F FwO06GOtwTAi1lNS7DoWlaHIAfqDfKnKE/rONPKe1b3b8mSUM15gpPzV0R9Lv1dA LHU+xKsFxndWhijt9uLhs/QA5wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFKyYQzrr 3q4Pw9Gv6qTLE9te0joCMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQ0IxMzAzQTRB MjhGMTFFQkE5N0Q2MTYzQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcAJAR6wAIAAwcBJAR6wAIGMA0GCSqGSIb3DQEBCwUAA4IBAQCH82xr 1N6XyrZXmd5pdQLxCqktGkhIDb5H9y9SXK7R6xPnNklWiTrlkXwBaxKDUaz0UpQ9 /ZWdoc1MKh1cKtoFAsSXB04/FjAazYs8KPoiQEwP/IBDuHEndNwgwucy6iCJPqfd wJWSpkZE1CCzOx0r5Wesv56u+WpnAEfMgMVBZhobj/KpHCWlYSoV/MleWElIr/R5 haH1n/2UmzuLUudtJ0k/Xb4IE37OY3W/iSfYxIUMSZKnN4IP5GaiNMWoAU3rRKuR 3eitmlHL0hlgeU6oqXx602awXYGmN+c2nLc/JZnbOfSmYOClCFpYuXuBqJL4F1sZ zTcY08yqzW9BESuW -----END CERTIFICATE-----Generated at Thu Mar 26 11:35:59 2026 by rpki-client