$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/1101B5C01CEC11EFA7CDC085C4F9AE02.roa File: 1101B5C01CEC11EFA7CDC085C4F9AE02.roa (raw, json) Hash identifier: P9IZK1ovU783CyWJnT8g69cd8sfR6u3xdDmab8jhoBs= Subject key identifier: 5B:DE:01:66:49:B3:EE:BF:EF:18:67:34:F8:79:F7:D0:8C:0A:2A:7A Certificate issuer: /CN=A91FC5BD/serialNumber=E977A9226220E8C78A1D1B3BE04D60CDCC8A2188 Certificate serial: 015F Authority key identifier: E9:77:A9:22:62:20:E8:C7:8A:1D:1B:3B:E0:4D:60:CD:CC:8A:21:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/1101B5C01CEC11EFA7CDC085C4F9AE02.roa Signing time: Sat 07 Mar 2026 04:40:55 +0000 ROA not before: Sat 07 Mar 2026 04:40:55 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 140403 IP address blocks: 2401:3d20:26::/48 maxlen: 48 2401:3d20:27::/48 maxlen: 48 2401:3d20:28::/48 maxlen: 48 2401:3d20:32::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.crl rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:15:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC5BD, serialNumber=E977A9226220E8C78A1D1B3BE04D60CDCC8A2188 Validity Not Before: Mar 7 04:40:55 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69abac57-1dde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:8e:a4:eb:f7:51:cf:30:74:3b:f7:22:59:01: 9d:ca:98:5b:1f:4e:24:74:99:27:f7:c9:46:74:dd: 19:8c:6b:00:66:65:f7:a0:15:b1:03:62:17:8e:b4: 28:21:57:33:db:a1:f3:10:66:15:15:ea:47:c8:f2: a3:66:96:eb:a9:6a:6f:72:f1:1c:0a:1e:37:f5:ef: 1a:bd:f9:34:2e:45:9f:8e:92:7f:70:30:08:5c:81: 99:c5:da:22:2b:e0:28:c0:77:81:ab:88:50:2e:70: 40:32:64:59:3a:f5:2a:2e:30:2b:26:58:a5:a8:5c: 14:e6:e1:6c:ec:05:ff:7f:ec:eb:18:4a:48:28:28: 21:a6:e8:53:a6:64:5b:b1:6f:39:2c:2a:9b:09:4b: 35:d5:88:2e:e5:fc:68:d1:46:44:e9:6b:da:45:98: 48:0e:ef:0e:c9:66:9e:0f:34:74:32:7a:dd:ac:e5: c5:4e:e0:61:65:b3:9c:d7:af:63:fa:29:ef:03:77: 5d:3b:61:f2:be:36:c4:1d:45:23:11:31:f0:98:a8: ed:d2:f5:a4:ba:dd:75:1a:4c:33:b9:bd:ea:a5:4b: ff:61:fc:dc:2f:da:45:41:68:29:7d:bb:ed:67:2d: bf:0a:d0:ed:ff:28:f7:3b:dd:2e:4a:eb:1e:33:e4: 6a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:DE:01:66:49:B3:EE:BF:EF:18:67:34:F8:79:F7:D0:8C:0A:2A:7A X509v3 Authority Key Identifier: keyid:E9:77:A9:22:62:20:E8:C7:8A:1D:1B:3B:E0:4D:60:CD:CC:8A:21:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/6XepImIg6MeKHRs74E1gzcyKIYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6XepImIg6MeKHRs74E1gzcyKIYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC5BD/76C2C72E1CEB11EF85DFD776C4F9AE02/1101B5C01CEC11EFA7CDC085C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:3d20:26::-2401:3d20:28:ffff:ffff:ffff:ffff:ffff 2401:3d20:32::/48 Signature Algorithm: sha256WithRSAEncryption 4b:57:bb:88:6a:e0:b4:6d:97:db:86:0e:6a:c9:4f:2b:93:10: 1a:0f:82:f7:55:51:89:2d:45:2c:8e:42:5b:8d:8f:44:7c:74: 26:43:f8:0f:16:36:4a:7f:d5:e4:a7:6c:e1:6e:d5:53:ec:fc: 8a:7b:ed:99:9f:a7:6d:6c:29:c1:85:6a:a8:63:dd:d6:a5:9d: ef:3d:41:8b:de:e0:ea:90:13:5b:97:25:3c:d0:a8:9c:f2:e7: 17:bb:d8:9d:47:ce:14:6b:3d:34:ac:6b:03:19:17:67:08:b7: aa:30:6e:50:a7:b4:c6:11:ea:06:74:f2:86:50:17:d0:4a:f1: 45:e8:b4:3b:ee:99:6d:c3:6e:ec:1b:cb:1e:15:04:72:19:0d: 96:1e:33:c7:64:ee:be:a3:32:7f:95:9a:2d:1a:e2:2a:3d:8b: e4:8f:47:81:e3:c3:61:c8:b1:a3:ca:82:b1:48:bd:c3:c1:c5: b2:83:02:40:a4:fe:53:bf:ba:f2:5a:30:a1:a5:09:51:3f:cf: cc:ce:d2:22:67:fd:6d:fd:15:af:b2:b6:02:5f:5e:ec:e1:ab: 31:c1:78:80:ab:48:9f:6e:0a:13:f8:47:d5:96:44:5c:31:65: 09:c9:65:93:d5:28:b9:74:4e:6a:fd:4e:cb:04:48:2d:ef:ad: 69:64:74:51 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM1QkQxMTAvBgNVBAUTKEU5NzdBOTIyNjIyMEU4Qzc4QTFEMUIzQkUwNEQ2MENE Q0M4QTIxODgwHhcNMjYwMzA3MDQ0MDU1WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiYWM1Ny0xZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/I6k6/dRzzB0O/ciWQGdyphbH04kdJkn98lGdN0ZjGsAZmX3oBWxA2IXjrQo IVcz26HzEGYVFepHyPKjZpbrqWpvcvEcCh439e8avfk0LkWfjpJ/cDAIXIGZxdoi K+AowHeBq4hQLnBAMmRZOvUqLjArJlilqFwU5uFs7AX/f+zrGEpIKCghpuhTpmRb sW85LCqbCUs11Ygu5fxo0UZE6WvaRZhIDu8OyWaeDzR0MnrdrOXFTuBhZbOc169j +invA3ddO2HyvjbEHUUjETHwmKjt0vWkut11Gkwzub3qpUv/YfzcL9pFQWgpfbvt Zy2/CtDt/yj3O90uSuseM+RqGQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFFveAWZJ s+6/7xhnNPh599CMCip6MB8GA1UdIwQYMBaAFOl3qSJiIOjHih0bO+BNYM3MiiGI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzVCRC83NkMyQzcyRTFD RUIxMUVGODVERkQ3NzZDNEY5QUUwMi82WGVwSW1JZzZNZUtIUnM3NEUxZ3pjeUtJ WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZYZXBJbUlnNk1lS0hSczc0RTFnemN5S0lZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM1QkQvNzZDMkM3MkUxQ0VCMTFFRjg1REZENzc2QzRGOUFFMDIvMTEwMUI1QzAx Q0VDMTFFRkE3Q0RDMDg1QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAj BAIAAjAdMBIDBwEkAT0gACYDBwAkAT0gACgDBwAkAT0gADIwDQYJKoZIhvcNAQEL BQADggEBAEtXu4hq4LRtl9uGDmrJTyuTEBoPgvdVUYktRSyOQluNj0R8dCZD+A8W Nkp/1eSnbOFu1VPs/Ip77Zmfp21sKcGFaqhj3dalne89QYve4OqQE1uXJTzQqJzy 5xe72J1HzhRrPTSsawMZF2cIt6owblCntMYR6gZ08oZQF9BK8UXotDvumW3Dbuwb yx4VBHIZDZYeM8dk7r6jMn+Vmi0a4io9i+SPR4Hjw2HIsaPKgrFIvcPBxbKDAkCk /lO/uvJaMKGlCVE/z8zO0iJn/W39Fa+ytgJfXuzhqzHBeICrSJ9uChP4R9WWRFwx ZQnJZZPVKLl0Tmr9TssESC3vrWlkdFE= -----END CERTIFICATE-----Generated at Thu Mar 26 14:06:32 2026 by rpki-client