$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/D522C16CBAEB11F09547BA51C4F9AE02.roa File: D522C16CBAEB11F09547BA51C4F9AE02.roa (raw, json) Hash identifier: RnihpSJKxhqk9WNkps/6xGJCCbveQoqTufTmq79Au24= Subject key identifier: 52:E6:F5:DD:D8:2B:DC:C9:BE:DB:2A:5C:64:25:23:BA:92:A6:CE:A7 Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: B0 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/D522C16CBAEB11F09547BA51C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:19:47 +0000 ROA not before: Tue 03 Feb 2026 06:29:33 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 400618 IP address blocks: 2400:cca0:100::/40 maxlen: 48 2400:cca0:200::/40 maxlen: 48 2400:cca0:300::/40 maxlen: 48 2400:cca0:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Feb 3 06:29:33 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46723-8e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f4:66:fc:a5:89:28:0a:1d:d8:db:3c:57:7a: e8:8d:73:96:c0:8b:80:7f:f9:b3:97:a3:a7:b9:c8: 43:25:16:26:fd:88:45:8b:32:37:d7:ef:17:56:e2: ec:e6:c6:44:53:97:f2:07:f3:12:8f:57:5d:d1:b5: bb:2a:09:a2:f4:3c:87:d6:3b:3c:86:55:b4:62:d9: aa:e0:5b:53:12:62:1a:ce:29:a0:c9:ae:46:0c:c5: dd:f1:69:ad:56:18:83:5a:20:36:19:84:40:cd:32: c3:1e:95:12:e0:6c:93:60:87:ab:bf:ad:5b:02:4b: 0b:7a:66:e5:84:88:fd:db:22:d2:2e:7f:53:b6:06: 82:66:72:51:04:b7:9f:f0:f4:08:07:3b:10:84:4b: 8d:60:b9:05:23:6f:87:52:85:ad:bf:4b:ad:13:2c: 6d:0b:1d:d1:4d:ac:68:a1:91:5d:3d:92:8f:c6:ae: 60:e6:14:ec:79:4e:46:13:a8:b1:bd:bd:b9:8b:52: 7e:2f:36:23:06:57:4a:e1:3e:2a:9a:f3:9e:d1:d1: 31:2b:bb:61:85:5f:a6:f7:ab:53:e6:9e:c1:8a:00: 89:de:a8:1e:07:0e:f6:49:eb:75:67:a5:d1:eb:b3: 81:0e:69:04:e2:e0:92:c2:9c:eb:57:b0:73:5d:b0: 7f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E6:F5:DD:D8:2B:DC:C9:BE:DB:2A:5C:64:25:23:BA:92:A6:CE:A7 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/D522C16CBAEB11F09547BA51C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:cca0:100::-2400:cca0:4ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption ce:67:7f:2c:45:12:bb:f7:30:93:90:39:0d:f2:66:69:db:23: bd:cf:b8:47:c2:2b:6e:91:70:f2:84:c2:b0:44:86:50:f1:e4: b4:d6:6a:83:a6:dd:bd:76:95:84:92:4e:b6:0a:9e:4b:99:c1: 61:1c:5d:ad:fe:10:fd:ef:d3:e8:0e:65:76:14:4b:7c:4d:c9: d0:c0:a4:de:ed:65:c6:bd:e6:7a:08:44:9b:c5:49:10:9a:4d: 73:00:50:22:cd:e9:2c:40:b5:ab:cc:55:6e:2e:59:a8:ae:d4: f2:30:b0:aa:db:e6:c4:eb:f4:78:36:44:cd:13:e5:27:92:77: 4b:1f:03:89:7d:f9:c7:63:d0:a0:63:13:94:9a:b0:9f:12:db: a2:96:e6:fe:d0:c6:39:d1:65:63:0e:28:51:7f:c6:a5:d0:b2: a1:85:9a:2b:a6:0b:14:98:a2:2f:f7:88:b4:a2:97:15:5d:cc: 78:79:7b:08:a4:4d:90:39:50:94:70:a5:14:0c:bc:95:93:2d: ce:0c:ab:c9:c0:b0:6b:61:40:25:aa:0e:62:5c:21:42:75:30: 10:d9:1d:1d:2d:88:e4:26:45:40:80:e4:60:b7:f0:6b:41:89: ea:44:9f:89:3c:78:2c:ba:ec:7f:0a:99:38:c6:74:37:39:22: 66:3f:47:20 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NTYxMTAvBgNVBAUTKDVGNjk5MTg2QTJFQkNENDVCMUZGNkEwQTRBRjYwNjA2 RjNCM0QwOEQwHhcNMjYwMjAzMDYyOTMzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjcyMy04ZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAovRm/KWJKAod2Ns8V3rojXOWwIuAf/mzl6OnuchDJRYm/YhFizI31+8XVuLs 5sZEU5fyB/MSj1dd0bW7Kgmi9DyH1js8hlW0Ytmq4FtTEmIazimgya5GDMXd8Wmt VhiDWiA2GYRAzTLDHpUS4GyTYIerv61bAksLemblhIj92yLSLn9TtgaCZnJRBLef 8PQIBzsQhEuNYLkFI2+HUoWtv0utEyxtCx3RTaxooZFdPZKPxq5g5hTseU5GE6ix vb25i1J+LzYjBldK4T4qmvOe0dExK7thhV+m96tT5p7BigCJ3qgeBw72Set1Z6XR 67OBDmkE4uCSwpzrV7BzXbB/UQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFFLm9d3Y K9zJvtsqXGQlI7qSps6nMB8GA1UdIwQYMBaAFF9pkYai681Fsf9qCkr2Bgbzs9CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Ni9FRkYyQTBBMDFD NDExMUYwQTk4MjFGM0VDNEY5QUUwMi9YMm1SaHFMcnpVV3hfMm9LU3ZZR0J2T3ow STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NTYvRUZGMkEwQTAxQzQxMTFGMEE5ODIxRjNFQzRGOUFFMDIvRDUyMkMxNkNC QUVCMTFGMDk1NDdCQTUxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASMBADBgAkAMygAQMGACQAzKAEMA0GCSqGSIb3DQEBCwUAA4IBAQDOZ38s RRK79zCTkDkN8mZp2yO9z7hHwitukXDyhMKwRIZQ8eS01mqDpt29dpWEkk62Cp5L mcFhHF2t/hD979PoDmV2FEt8TcnQwKTe7WXGveZ6CESbxUkQmk1zAFAizeksQLWr zFVuLlmortTyMLCq2+bE6/R4NkTNE+UnkndLHwOJffnHY9CgYxOUmrCfEtuilub+ 0MY50WVjDihRf8al0LKhhZorpgsUmKIv94i0opcVXcx4eXsIpE2QOVCUcKUUDLyV ky3ODKvJwLBrYUAlqg5iXCFCdTAQ2R0dLYjkJkVAgORgt/BrQYnqRJ+JPHgsuux/ Cpk4xnQ3OSJmP0cg -----END CERTIFICATE-----Generated at Thu Mar 26 05:32:40 2026 by rpki-client