$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa File: 9D003F28621711E9B8C69E15C4F9AE02.roa (raw, json) Hash identifier: Q8GHoeHbmqW7M4R7JqdbouyG47lAXEk2l5ZINQlZhUw= Subject key identifier: BA:04:4A:E9:0B:2F:49:2D:42:F7:70:39:F1:BE:4F:C5:A9:4D:3A:0F Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1271 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:26:20 +0000 ROA not before: Tue 14 Oct 2025 18:16:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 13335 IP address blocks: 2405:8100:57::/48 maxlen: 48 2405:8100:8001::/48 maxlen: 48 2405:8100:8002::/48 maxlen: 48 2405:8100:8003::/48 maxlen: 48 2405:8100:8004::/48 maxlen: 48 2405:8100:8005::/48 maxlen: 48 2405:8100:c000::/38 maxlen: 38 2405:8100:c400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4721 (0x1271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 14 18:16:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a468ac-10e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ab:c3:30:5b:0e:70:d7:a5:c4:c5:d1:f5:08: c3:88:c6:20:3e:78:49:6e:71:36:0b:82:94:23:9e: 04:79:67:2b:41:8e:a0:93:6b:3c:a2:8e:5c:a0:63: 43:c9:1b:e0:ad:25:96:ee:0a:5b:c9:f2:64:49:29: 9a:d3:91:30:91:8a:dd:d4:25:31:1f:42:8a:14:f9: 98:98:99:7a:fe:37:c5:3b:a4:64:b2:2a:47:10:67: c7:0f:c2:57:e5:04:01:cb:41:dc:7e:e6:2d:ba:b2: f8:21:6a:9a:d0:e0:28:98:e7:3b:33:45:84:01:4d: 74:b0:2d:a6:e3:d1:2d:f0:2f:d6:bd:d9:fa:55:5e: 4d:64:6e:3b:94:df:4c:d9:4e:f0:d0:93:14:42:cf: 65:12:0b:67:b3:ce:d3:cb:24:f4:8a:15:9a:a2:57: 48:43:3d:98:a5:62:27:3c:e6:30:9f:27:42:92:38: a1:c4:ca:6d:6b:65:b0:55:bf:d2:ba:bd:34:d1:9f: 03:0d:d5:6a:4b:f4:a2:a5:13:e2:bb:8a:ed:77:f4: 14:f2:19:d4:9d:f4:7c:bc:8a:fb:09:4b:0d:e8:d5: c8:72:91:af:4b:ed:74:5c:67:ea:ca:34:c5:f4:af: 88:99:c1:43:90:63:b7:87:2b:cb:7a:7f:28:14:6f: cd:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:04:4A:E9:0B:2F:49:2D:42:F7:70:39:F1:BE:4F:C5:A9:4D:3A:0F X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:8100:57::/48 2405:8100:8001::-2405:8100:8005:ffff:ffff:ffff:ffff:ffff 2405:8100:c000::-2405:8100:c400:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 03:e7:31:77:36:e9:16:62:e1:80:6c:1d:9a:08:ec:53:d9:55: c4:46:f7:63:db:55:12:15:b8:e8:9c:a3:5f:bb:1e:45:24:3c: b7:93:79:d1:3d:62:fe:18:b2:e2:63:17:1c:dc:d8:4d:ee:09: 98:1a:70:cb:cc:4b:0e:d1:5b:6f:ec:55:e6:c7:d6:5e:35:26: cc:55:77:dc:7c:df:b8:39:6e:f9:02:ac:4b:a5:33:64:fd:1b: ab:e6:5c:6b:6e:64:ec:ac:74:3e:67:b7:16:66:04:b9:01:a3: 70:39:bc:77:8d:69:4c:31:fe:b5:e7:41:a8:5c:87:68:ef:00: 83:4a:6e:5f:58:09:c3:4d:62:14:e2:f5:cb:cc:34:3d:00:19: 49:b1:57:04:19:81:1e:2e:ca:fa:78:0a:9e:df:1f:3d:28:8c: bc:8a:7f:fe:00:70:91:e2:ee:f6:ac:07:2b:29:31:6a:09:3d: 34:93:cc:1b:db:0e:57:3b:43:be:64:d7:96:a0:59:99:2e:79: 60:e8:08:c6:9c:a7:83:3a:58:98:c8:9a:69:4a:c8:d9:79:82: 76:cc:43:04:d8:8c:51:68:6c:71:c9:f7:e2:2b:0f:22:17:b3: 66:94:70:18:3e:3b:78:46:ec:6d:aa:b9:9c:64:33:04:d7:7c: 71:7a:5c:cf -----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgICEnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMDE0MTgxNjE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjhhYy0xMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA56vDMFsOcNelxMXR9QjDiMYgPnhJbnE2C4KUI54EeWcrQY6gk2s8oo5coGND yRvgrSWW7gpbyfJkSSma05EwkYrd1CUxH0KKFPmYmJl6/jfFO6RksipHEGfHD8JX 5QQBy0HcfuYturL4IWqa0OAomOc7M0WEAU10sC2m49Et8C/Wvdn6VV5NZG47lN9M 2U7w0JMUQs9lEgtns87TyyT0ihWaoldIQz2YpWInPOYwnydCkjihxMpta2WwVb/S ur000Z8DDdVqS/SipRPiu4rtd/QU8hnUnfR8vIr7CUsN6NXIcpGvS+10XGfqyjTF 9K+ImcFDkGO3hyvLen8oFG/NCQIDAQABo4ICijCCAoYwHQYDVR0OBBYEFLoESukL L0ktQvdwOfG+T8WpTToPMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvOUQwMDNGMjg2 MjE3MTFFOUI4QzY5RTE1QzRGOUFFMDIucm9hMEkGCCsGAQUFBwEHAQH/BDowODA2 BAIAAjAwAwcAJAWBAABXMBIDBwAkBYEAgAEDBwEkBYEAgAQwEQMGBiQFgQDAAwcA JAWBAMQAMA0GCSqGSIb3DQEBCwUAA4IBAQAD5zF3NukWYuGAbB2aCOxT2VXERvdj 21USFbjonKNfux5FJDy3k3nRPWL+GLLiYxcc3NhN7gmYGnDLzEsO0Vtv7FXmx9Ze NSbMVXfcfN+4OW75AqxLpTNk/Rur5lxrbmTsrHQ+Z7cWZgS5AaNwObx3jWlMMf61 50GoXIdo7wCDSm5fWAnDTWIU4vXLzDQ9ABlJsVcEGYEeLsr6eAqe3x89KIy8in/+ AHCR4u72rAcrKTFqCT00k8wb2w5XO0O+ZNeWoFmZLnlg6AjGnKeDOliYyJppSsjZ eYJ2zEME2IxRaGxxyffiKw8iF7NmlHAYPjt4RuxtqrmcZDME13xxelzP -----END CERTIFICATE-----Generated at Thu Mar 26 10:14:51 2026 by rpki-client