$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/2D89110A9A5311EE9CB13140C4F9AE02.roa File: 2D89110A9A5311EE9CB13140C4F9AE02.roa (raw, json) Hash identifier: lYpkRD/vPCqBa7Vd4N6W0BGqOH9jxtp9EJocrqn7xs0= Subject key identifier: 7F:A5:20:51:B5:65:50:47:AF:5C:97:FF:96:FD:73:EC:B9:E7:FA:0C Certificate issuer: /CN=A91DCAE8/serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Certificate serial: 358F Authority key identifier: AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/2D89110A9A5311EE9CB13140C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:40:09 +0000 ROA not before: Sat 20 Sep 2025 15:00:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 131203 IP address blocks: 2001:df2:a980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13711 (0x358f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCAE8, serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Validity Not Before: Sep 20 15:00:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58529-dabf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f6:fa:b9:6d:9b:f7:1b:b5:33:b7:f4:66:73: 2c:84:ca:20:f2:65:b0:fb:1d:48:d5:04:47:3c:1a: ed:4b:05:07:39:b5:24:35:55:43:8f:ac:ce:e2:b3: 8b:7c:21:ef:b3:79:04:25:49:32:15:07:f6:0c:a5: a0:bf:cd:50:9b:5a:51:c0:97:33:63:fb:05:a4:8c: 60:87:95:24:cd:16:30:3f:7a:47:36:4e:b9:06:64: 17:d6:0c:51:59:b5:3a:50:a7:ca:0a:95:3d:dc:01: 28:5f:10:46:cd:e2:98:bf:5f:1b:a9:03:8b:10:3f: 95:21:a9:ae:d1:39:2f:1b:58:76:1b:f9:f4:d7:96: 34:b5:c7:50:3c:94:2d:23:d9:76:3c:d3:2a:45:35: 74:97:f1:30:58:fd:38:3c:11:13:11:2a:9b:cb:1d: 2d:8c:be:a4:8a:70:76:b5:2a:e5:dd:77:2e:65:02: 8c:ee:a9:87:af:5e:97:5a:45:eb:c0:f6:25:64:ce: 9b:47:f4:58:87:96:57:db:d7:fc:c1:df:14:f0:e0: 0c:a1:02:f1:f1:3d:79:63:03:0c:41:0b:1d:f0:b3: 07:97:2c:f8:44:a3:85:ef:8a:8e:15:a0:1c:4c:04: cf:ee:92:e0:e1:81:e8:74:35:8c:cd:b3:9a:e1:d4: 49:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A5:20:51:B5:65:50:47:AF:5C:97:FF:96:FD:73:EC:B9:E7:FA:0C X509v3 Authority Key Identifier: keyid:AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/2D89110A9A5311EE9CB13140C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df2:a980::/48 Signature Algorithm: sha256WithRSAEncryption 59:92:a8:a8:5d:9e:f8:f8:d7:3e:33:4d:e7:85:89:8c:01:89: e7:46:1c:fb:f3:d9:db:49:d4:04:e7:92:c0:5c:92:2a:07:1e: f7:e6:a5:1d:16:24:91:4d:2f:40:d0:00:a8:0d:03:6a:81:68: 7d:4f:7d:1c:75:c9:7d:55:9a:fa:e8:9d:0b:ea:eb:aa:a8:36: 96:1e:91:03:b0:92:b1:b8:bf:54:64:fd:00:27:d5:07:74:a5: fa:b3:25:8a:07:cd:f6:b6:13:4e:b7:86:b0:63:66:c7:17:f4: 3f:c2:01:12:c3:f4:01:a4:1f:1e:52:2e:e7:51:49:bf:16:e3: e6:45:6c:2d:b0:42:8f:28:bf:24:e7:6f:b1:44:93:ec:fc:5c: ba:72:f7:60:b2:05:39:0d:9a:a5:fe:d7:1e:50:53:38:bc:48: 2a:6a:dc:6a:1d:71:12:af:75:01:05:de:f0:be:ca:06:77:84: 83:39:d8:d4:36:28:6a:7b:6b:9e:8d:e1:5f:39:87:e7:12:47: fc:27:64:73:4a:89:d2:88:17:46:19:de:e0:be:8e:87:4a:fa: f9:ad:da:97:69:0d:0e:3a:10:3f:4f:51:ea:ce:b6:4d:18:8d: c0:15:f0:3f:f2:d3:2e:62:41:4b:87:b5:c3:14:4e:ac:7f:ad: 34:05:d7:cd -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICNY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENBRTgxMTAvBgNVBAUTKEFBQjBFMkI2MkY2MzQzODk1NzMwQzA1NDg4RTdGQzRF MjZDNTFBNkMwHhcNMjUwOTIwMTUwMDU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODUyOS1kYWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPb6uW2b9xu1M7f0ZnMshMog8mWw+x1I1QRHPBrtSwUHObUkNVVDj6zO4rOL fCHvs3kEJUkyFQf2DKWgv81Qm1pRwJczY/sFpIxgh5UkzRYwP3pHNk65BmQX1gxR WbU6UKfKCpU93AEoXxBGzeKYv18bqQOLED+VIamu0TkvG1h2G/n015Y0tcdQPJQt I9l2PNMqRTV0l/EwWP04PBETESqbyx0tjL6kinB2tSrl3XcuZQKM7qmHr16XWkXr wPYlZM6bR/RYh5ZX29f8wd8U8OAMoQLx8T15YwMMQQsd8LMHlyz4RKOF74qOFaAc TATP7pLg4YHodDWMzbOa4dRJyQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFH+lIFG1 ZVBHr1yX/5b9c+y55/oMMB8GA1UdIwQYMBaAFKqw4rYvY0OJVzDAVIjn/E4mxRps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0FFOC84QjZBREUxNDFE OTMxMUUyOTJDQjIzRjcwOEIwMkNEMi9xckRpdGk5alE0bFhNTUJVaU9mOFRpYkZH bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyRGl0aTlqUTRsWE1NQlVpT2Y4VGliRkdtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENBRTgvOEI2QURFMTQxRDkzMTFFMjkyQ0IyM0Y3MDhCMDJDRDIvMkQ4OTExMEE5 QTUzMTFFRTlDQjEzMTQwQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8qmAMA0GCSqGSIb3DQEBCwUAA4IBAQBZkqioXZ74+Nc+M03n hYmMAYnnRhz789nbSdQE55LAXJIqBx735qUdFiSRTS9A0ACoDQNqgWh9T30cdcl9 VZr66J0L6uuqqDaWHpEDsJKxuL9UZP0AJ9UHdKX6syWKB832thNOt4awY2bHF/Q/ wgESw/QBpB8eUi7nUUm/FuPmRWwtsEKPKL8k52+xRJPs/Fy6cvdgsgU5DZql/tce UFM4vEgqatxqHXESr3UBBd7wvsoGd4SDOdjUNihqe2uejeFfOYfnEkf8J2RzSonS iBdGGd7gvo6HSvr5rdqXaQ0OOhA/T1HqzrZNGI3AFfA/8tMuYkFLh7XDFE6sf600 BdfN -----END CERTIFICATE-----Generated at Thu Mar 26 15:18:13 2026 by rpki-client