$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/1597CAC6B00711EF863A582EC4F9AE02.roa File: 1597CAC6B00711EF863A582EC4F9AE02.roa (raw, json) Hash identifier: Pjr/Al+ZFffNus+aH+TIpueq22icnlUqNTg+gkHkCcw= Subject key identifier: B4:8C:F7:BA:3B:DD:64:01:1C:3D:11:74:6F:CD:D6:E4:76:FD:B2:01 Certificate issuer: /CN=A91EE5E5/serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Certificate serial: F3 Authority key identifier: A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/1597CAC6B00711EF863A582EC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:14:49 +0000 ROA not before: Mon 15 Dec 2025 05:25:02 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 399861 IP address blocks: 2401:d320::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=A00E02DC783F9084021DF94F7586264EC47D3438 Validity Not Before: Dec 15 05:25:02 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43bc9-c841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:8b:7b:f8:fb:04:6d:18:5d:7c:3a:69:3d:42: 35:c4:81:95:35:31:5b:94:e5:ac:02:3f:2a:d5:e8: c2:27:32:6c:a1:7e:7f:fa:c5:7f:29:b8:c2:10:fb: b7:27:e4:e9:b4:fa:f4:27:36:35:b1:3b:e3:6a:47: e4:10:e5:9d:35:11:90:0a:82:ea:5b:33:fc:f0:c2: c4:5a:e4:60:8a:15:eb:55:31:cc:da:48:a9:de:db: d3:98:03:b6:76:69:1b:62:aa:09:7d:df:a7:14:f1: 11:1b:24:cb:19:b9:07:2c:cf:9c:79:38:79:e3:8f: 34:cb:e1:06:45:24:cb:eb:10:30:46:0e:27:7e:71: e6:dc:1f:fc:01:a7:a7:32:a1:f2:b9:1b:2e:06:c5: 9c:a1:96:70:9e:97:e4:9b:41:56:f3:e2:5d:08:c3: 27:ba:74:2d:f6:e4:9d:72:cd:9a:ce:51:59:36:95: 51:d5:b7:8f:d8:a4:17:ca:7b:5c:64:9b:24:95:16: 5d:f9:5d:04:fd:43:28:ea:2b:74:2a:d2:3f:13:b7: 6d:a7:89:2e:35:67:2a:9a:84:61:51:10:e2:e6:31: b2:98:75:2b:8d:49:cf:d8:1f:7b:e3:58:58:68:0c: 1d:0c:9a:ec:35:2c:d9:4e:86:5c:b4:9f:0b:c9:85: 3c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:8C:F7:BA:3B:DD:64:01:1C:3D:11:74:6F:CD:D6:E4:76:FD:B2:01 X509v3 Authority Key Identifier: keyid:A0:0E:02:DC:78:3F:90:84:02:1D:F9:4F:75:86:26:4E:C4:7D:34:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/oA4C3Hg_kIQCHflPdYYmTsR9NDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oA4C3Hg_kIQCHflPdYYmTsR9NDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F97BC302AFBF11EFA28A3654C4F9AE02/1597CAC6B00711EF863A582EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:d320::/32 Signature Algorithm: sha256WithRSAEncryption a1:b9:ac:21:51:76:2f:ce:9e:1b:c5:26:e0:0b:81:cc:df:ba: 50:7a:99:d9:fc:2a:ce:b9:d4:73:79:42:75:d1:2c:12:be:a9: 63:b0:f4:59:cc:97:e8:50:d6:e7:3c:a4:f7:ba:17:36:7f:27: 97:d9:cf:02:ca:e7:28:f8:76:4d:cd:04:5f:0e:44:22:59:5c: 04:e5:9a:f3:b2:d7:5a:f6:98:be:56:14:80:c6:9e:0d:9f:68: b5:75:03:01:45:bd:91:b4:25:b7:ee:d1:29:d4:a5:77:c1:d8: 42:5d:4b:d6:52:27:f0:a3:59:f6:5b:a6:d4:6d:66:10:1a:92: 3a:39:e6:80:30:7e:b0:2a:25:ca:71:5d:46:fc:14:b1:e3:d7: 44:0a:2f:e5:a5:05:2e:74:0b:44:da:49:d0:e0:e8:c5:ff:3d: 00:8b:ad:8d:2e:8f:d2:0a:b2:36:61:70:37:94:60:39:62:ea: 34:6d:ea:78:13:68:56:94:4f:cb:a8:fb:2a:44:8e:c9:67:f6: 26:29:18:da:71:00:f3:08:b9:70:c9:b2:d3:a4:8a:91:b2:53: fd:f8:6f:05:83:cc:de:46:38:28:c0:f7:c0:be:a0:b9:93:7f: cc:55:a3:a0:75:3d:35:7d:39:23:33:e1:5e:2e:ad:48:ae:0e: 63:23:bb:50 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU1RTUxMTAvBgNVBAUTKEEwMEUwMkRDNzgzRjkwODQwMjFERjk0Rjc1ODYyNjRF QzQ3RDM0MzgwHhcNMjUxMjE1MDUyNTAyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2JjOS1jODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54t7+PsEbRhdfDppPUI1xIGVNTFblOWsAj8q1ejCJzJsoX5/+sV/KbjCEPu3 J+TptPr0JzY1sTvjakfkEOWdNRGQCoLqWzP88MLEWuRgihXrVTHM2kip3tvTmAO2 dmkbYqoJfd+nFPERGyTLGbkHLM+ceTh54480y+EGRSTL6xAwRg4nfnHm3B/8Aaen MqHyuRsuBsWcoZZwnpfkm0FW8+JdCMMnunQt9uSdcs2azlFZNpVR1beP2KQXyntc ZJsklRZd+V0E/UMo6it0KtI/E7dtp4kuNWcqmoRhURDi5jGymHUrjUnP2B9741hY aAwdDJrsNSzZToZctJ8LyYU8cwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFLSM97o7 3WQBHD0RdG/N1uR2/bIBMB8GA1UdIwQYMBaAFKAOAtx4P5CEAh35T3WGJk7EfTQ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTVFNS9GOTdCQzMwMkFG QkYxMUVGQTI4QTM2NTRDNEY5QUUwMi9vQTRDM0hnX2tJUUNIZmxQZFlZbVRzUjlO RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29BNEMzSGdfa0lRQ0hmbFBkWVltVHNSOU5EZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUU1RTUvRjk3QkMzMDJBRkJGMTFFRkEyOEEzNjU0QzRGOUFFMDIvMTU5N0NBQzZC MDA3MTFFRjg2M0E1ODJFQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAHTIDANBgkqhkiG9w0BAQsFAAOCAQEAobmsIVF2L86eG8Um4AuB zN+6UHqZ2fwqzrnUc3lCddEsEr6pY7D0WcyX6FDW5zyk97oXNn8nl9nPAsrnKPh2 Tc0EXw5EIllcBOWa87LXWvaYvlYUgMaeDZ9otXUDAUW9kbQlt+7RKdSld8HYQl1L 1lIn8KNZ9lum1G1mEBqSOjnmgDB+sColynFdRvwUsePXRAov5aUFLnQLRNpJ0ODo xf89AIutjS6P0gqyNmFwN5RgOWLqNG3qeBNoVpRPy6j7KkSOyWf2JikY2nEA8wi5 cMmy06SKkbJT/fhvBYPM3kY4KMD3wL6guZN/zFWjoHU9NX05IzPhXi6tSK4OYyO7 UA== -----END CERTIFICATE-----Generated at Thu Mar 26 12:54:10 2026 by rpki-client