$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa File: 6E44CE88597B11EDB603273AC4F9AE02.roa (raw, json) Hash identifier: PvtMMvRNMPGCgPjUomYAzBPP82pQ3wtSPc9J0LkkG3o= Subject key identifier: 13:0E:32:EF:DF:DB:8C:52:AE:D6:35:F2:3F:00:7F:53:85:0F:1F:D2 Certificate issuer: /CN=A91EB077/serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Certificate serial: 1B1C Authority key identifier: 38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:29:25 +0000 ROA not before: Wed 06 Aug 2025 16:54:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2401:1d80:3000::/40 maxlen: 48 2401:1d80:3100::/40 maxlen: 46 2401:1d80:3200::/40 maxlen: 46 2401:1d80:3300::/40 maxlen: 46 2401:1d80:4000::/40 maxlen: 46 2401:1d80:4100::/40 maxlen: 46 2401:1d80:4200::/40 maxlen: 46 2401:1d80:4300::/40 maxlen: 46 2401:1d80:5000::/40 maxlen: 46 2401:1d80:5100::/40 maxlen: 46 2401:1d80:5200::/40 maxlen: 46 2401:1d80:5300::/40 maxlen: 46 2401:1d80:5800::/40 maxlen: 46 2401:1d80:5900::/40 maxlen: 46 2401:1d80:5a00::/40 maxlen: 46 2401:1d80:5b00::/40 maxlen: 46 2401:1d80:6000::/40 maxlen: 46 2401:1d80:6100::/40 maxlen: 46 2401:1d80:6200::/40 maxlen: 46 2401:1d80:6300::/40 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6940 (0x1b1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB077, serialNumber=386F6F8AA1E66C5254EA1E47888C103F4536222A Validity Not Before: Aug 6 16:54:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a45b55-c94a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:da:9a:dd:4b:8f:de:6a:10:8b:ee:63:e4:a3: 53:34:b8:31:06:9e:56:55:78:21:5f:6e:02:91:61: ba:85:ed:18:b0:3c:af:67:94:90:d2:10:74:90:6c: 78:25:5e:ad:f5:7a:09:09:2e:93:e3:aa:1c:66:ea: 47:b6:7c:50:cf:c4:c1:16:47:1f:7d:5e:a3:5b:af: fe:a1:72:1d:b3:40:31:8a:3a:7e:f9:72:e6:57:25: 01:1d:15:2b:c1:a7:0c:a2:6b:a5:5e:cf:34:44:65: 48:c0:05:13:35:ff:d9:fa:ae:97:1c:a4:6a:3a:bc: ed:7a:1a:24:3c:5c:64:b3:d3:d2:0b:09:93:96:3f: fe:86:b5:cb:67:e8:32:a4:9f:7c:4f:ee:d1:e2:a6: 4b:41:a2:27:c4:9f:cd:dd:99:cb:74:73:23:a1:c6: 98:2f:5b:6c:9c:ec:d4:da:f8:12:43:20:24:0e:18: e2:1e:f8:0c:1e:5f:37:02:52:90:1f:5c:8f:9f:30: d6:89:35:08:81:d7:80:40:41:27:8c:9f:69:7e:84: 94:32:c8:6f:ae:ed:ed:54:86:7a:71:2d:3c:19:1c: e4:c7:74:ad:c9:6b:66:68:2d:b1:ac:ff:46:25:e5: 5c:cd:e7:30:a7:df:64:f3:70:9b:5b:94:15:f2:24: d7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0E:32:EF:DF:DB:8C:52:AE:D6:35:F2:3F:00:7F:53:85:0F:1F:D2 X509v3 Authority Key Identifier: keyid:38:6F:6F:8A:A1:E6:6C:52:54:EA:1E:47:88:8C:10:3F:45:36:22:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/OG9viqHmbFJU6h5HiIwQP0U2Iio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OG9viqHmbFJU6h5HiIwQP0U2Iio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB077/DB7B7006482411E794041D2DC4F9AE02/6E44CE88597B11EDB603273AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:1d80:3000::/38 2401:1d80:4000::/38 2401:1d80:5000::/38 2401:1d80:5800::/38 2401:1d80:6000::/38 Signature Algorithm: sha256WithRSAEncryption 6f:cd:a0:dc:4a:bd:e8:19:db:a1:20:0c:50:d7:64:e5:75:1d: 13:3c:6a:89:aa:67:ce:a2:d2:82:00:78:3c:07:9c:ba:4c:c5: a5:1a:bb:48:22:5f:20:44:42:c7:78:e8:05:cf:54:1e:6f:1b: 4f:9f:87:cc:24:19:82:f5:f2:12:b2:8a:54:13:eb:d8:15:24: 6b:77:95:b7:9d:51:b7:1b:ef:6c:2b:56:53:94:27:14:3d:c7: 1f:b8:03:af:e5:34:c2:e6:14:d7:c2:2d:89:86:62:3b:51:1e: 10:06:53:d7:bb:70:27:c8:bf:16:0b:fb:a6:61:18:69:8f:87: 3d:46:92:3e:c8:7b:37:49:87:2c:5c:a0:4b:24:f8:62:c0:43: 23:ba:1f:56:28:46:b5:61:a1:38:6a:7e:cd:0e:ab:e4:33:f3: d7:4a:14:34:06:f5:94:46:30:d3:fe:92:c5:6a:1d:70:79:f3: 5d:55:79:d0:6b:ed:cf:eb:61:f3:fb:63:fc:bf:0c:7a:b6:4e: 8b:5a:f3:50:97:b3:71:e3:a5:fb:d3:08:1c:0f:1a:04:44:ff: 4e:c2:40:fd:c5:63:06:f9:03:9a:57:0f:8b:9d:9e:2b:90:eb: 56:d6:55:37:01:69:47:5f:e0:ee:58:8e:b2:7c:80:cf:56:a6: b3:47:90:5b -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICGxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwNzcxMTAvBgNVBAUTKDM4NkY2RjhBQTFFNjZDNTI1NEVBMUU0Nzg4OEMxMDNG NDUzNjIyMkEwHhcNMjUwODA2MTY1NDMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWI1NS1jOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49qa3UuP3moQi+5j5KNTNLgxBp5WVXghX24CkWG6he0YsDyvZ5SQ0hB0kGx4 JV6t9XoJCS6T46ocZupHtnxQz8TBFkcffV6jW6/+oXIds0Axijp++XLmVyUBHRUr wacMomulXs80RGVIwAUTNf/Z+q6XHKRqOrztehokPFxks9PSCwmTlj/+hrXLZ+gy pJ98T+7R4qZLQaInxJ/N3ZnLdHMjocaYL1tsnOzU2vgSQyAkDhjiHvgMHl83AlKQ H1yPnzDWiTUIgdeAQEEnjJ9pfoSUMshvru3tVIZ6cS08GRzkx3StyWtmaC2xrP9G JeVczecwp99k83CbW5QV8iTXjwIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFBMOMu/f 24xSrtY18j8Af1OFDx/SMB8GA1UdIwQYMBaAFDhvb4qh5mxSVOoeR4iMED9FNiIq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA3Ny9EQjdCNzAwNjQ4 MjQxMUU3OTQwNDFEMkRDNEY5QUUwMi9PRzl2aXFIbWJGSlU2aDVIaUl3UVAwVTJJ aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HOXZpcUhtYkZKVTZoNUhpSXdRUDBVMklpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIwNzcvREI3QjcwMDY0ODI0MTFFNzk0MDQxRDJEQzRGOUFFMDIvNkU0NENFODg1 OTdCMTFFREI2MDMyNzNBQzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAu BAIAAjAoAwYCJAEdgDADBgIkAR2AQAMGAiQBHYBQAwYCJAEdgFgDBgIkAR2AYDAN BgkqhkiG9w0BAQsFAAOCAQEAb82g3Eq96BnboSAMUNdk5XUdEzxqiapnzqLSggB4 PAecukzFpRq7SCJfIERCx3joBc9UHm8bT5+HzCQZgvXyErKKVBPr2BUka3eVt51R txvvbCtWU5QnFD3HH7gDr+U0wuYU18ItiYZiO1EeEAZT17twJ8i/Fgv7pmEYaY+H PUaSPsh7N0mHLFygSyT4YsBDI7ofVihGtWGhOGp+zQ6r5DPz10oUNAb1lEYw0/6S xWodcHnzXVV50Gvtz+th8/tj/L8MerZOi1rzUJezceOl+9MIHA8aBET/TsJA/cVj BvkDmlcPi52eK5DrVtZVNwFpR1/g7liOsnyAz1ams0eQWw== -----END CERTIFICATE-----Generated at Thu Mar 26 01:52:11 2026 by rpki-client