$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa File: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (raw, json) Hash identifier: aTa0Ex+ed/6RoAGLJRjFgmZUYz8uz7xIClALbDUey8s= Subject key identifier: 1C:45:66:10:07:B9:A1:34:03:FC:1B:82:49:3A:72:2B:21:C9:65:0C Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 022F Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa Signing time: Fri 01 May 2026 03:35:03 +0000 ROA not before: Fri 01 May 2026 03:35:03 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 13981 IP address blocks: 2400:ef20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 02:44:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: May 1 03:35:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f41f66-8966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5b:f8:5e:35:06:0e:e6:86:c8:39:71:59:ca: aa:8c:a4:15:f5:46:c3:eb:a3:6f:8c:2e:af:30:7d: 9e:be:ad:46:37:58:0d:b9:6a:88:22:c8:2b:36:9c: 2c:23:0b:ab:4c:67:54:23:df:cf:1d:27:a2:fd:81: 32:ec:be:83:90:1e:a4:c7:e1:9f:d9:5f:ee:65:d6: 0e:8b:8a:2d:36:ed:da:c9:ed:a0:c4:e9:fb:fc:7b: 9c:19:6f:a3:ae:bc:19:4a:a5:6b:d7:97:11:07:72: 9b:47:eb:ba:81:5b:aa:09:02:d4:60:ad:42:85:be: 87:43:62:f8:9f:20:64:ce:28:d0:96:9e:0a:38:08: d5:bc:7f:4f:a9:39:dd:c9:a3:23:42:ce:44:03:46: 25:b5:bf:73:d0:e3:86:11:0b:b4:8b:57:82:24:64: db:1d:8c:07:c4:45:91:f1:ab:1e:9b:fb:ee:f1:21: 89:05:6b:ad:7e:e3:34:35:5e:e5:1d:c2:d6:a3:3c: f2:37:14:75:77:a2:67:5e:82:ab:78:4b:37:83:05: e6:0d:7e:4e:ca:75:24:cd:29:bd:15:59:41:28:35: ef:32:f2:1d:8c:94:3e:2e:c1:89:02:7b:e5:7e:c3: 4e:e7:47:c2:27:23:4b:f9:56:c1:a5:a3:9c:a7:b4: 1b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:45:66:10:07:B9:A1:34:03:FC:1B:82:49:3A:72:2B:21:C9:65:0C X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:ef20::/32 Signature Algorithm: sha256WithRSAEncryption 64:c9:69:70:b1:00:88:e0:6f:49:94:48:45:3b:78:b3:1f:0e: 35:da:25:a9:94:b2:76:c1:ae:c4:f7:a3:98:86:6a:d5:d3:c7: 2b:59:90:9d:6d:c2:9a:ce:fb:59:75:47:4d:09:17:32:ae:05: 9b:1b:9f:2e:50:9c:bb:f3:1c:e2:e8:41:14:99:21:bd:c8:5a: 13:f9:84:50:ab:9c:be:50:c3:01:5b:eb:5c:e2:68:6a:e5:46: 6b:fd:f7:c5:3c:ea:b8:3f:e9:5e:67:69:0f:c2:c6:9a:05:1a: 67:60:15:f4:93:72:5f:b6:74:e5:12:93:04:0a:da:d7:7b:4b: 59:33:b7:a4:68:f5:e1:80:6c:e3:c1:2e:9b:a4:f6:5a:4d:0b: 36:06:72:92:34:a3:18:41:05:05:f3:ef:14:2d:35:0b:af:91: da:02:7a:58:23:65:85:4f:37:1e:61:8f:4a:ff:d3:9d:96:d6: 0c:6b:61:b7:df:e6:3c:05:bd:bd:10:7e:bb:b2:21:99:d6:68: b9:99:d1:2f:c1:20:c5:24:f6:3d:c1:cd:58:b9:9e:33:6c:1f: 33:29:65:49:84:f2:e8:24:a2:60:3e:65:12:e7:ac:76:ba:37: b0:ee:ea:ee:2f:4d:fd:b6:86:91:14:6f:f7:ba:47:8f:9f:57: 9e:51:f4:fc -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjYwNTAxMDMzNTAzWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY0MWY2Ni04OTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlv4XjUGDuaGyDlxWcqqjKQV9UbD66NvjC6vMH2evq1GN1gNuWqIIsgrNpws IwurTGdUI9/PHSei/YEy7L6DkB6kx+Gf2V/uZdYOi4otNu3aye2gxOn7/HucGW+j rrwZSqVr15cRB3KbR+u6gVuqCQLUYK1Chb6HQ2L4nyBkzijQlp4KOAjVvH9PqTnd yaMjQs5EA0Yltb9z0OOGEQu0i1eCJGTbHYwHxEWR8asem/vu8SGJBWutfuM0NV7l HcLWozzyNxR1d6JnXoKreEs3gwXmDX5OynUkzSm9FVlBKDXvMvIdjJQ+LsGJAnvl fsNO50fCJyNL+VbBpaOcp7QbjwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFBxFZhAH uaE0A/wbgkk6cishyWUMMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM5RkUvNTNDQjY5MENGREUyMTFFRDlEMkQxRjY4QzRGOUFFMDIvQzVDRDMyQUFF NURDMTFFRTg2N0M2RjIxQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJADvIDANBgkqhkiG9w0BAQsFAAOCAQEAZMlpcLEAiOBvSZRIRTt4 sx8ONdolqZSydsGuxPejmIZq1dPHK1mQnW3Cms77WXVHTQkXMq4FmxufLlCcu/Mc 4uhBFJkhvchaE/mEUKucvlDDAVvrXOJoauVGa/33xTzquD/pXmdpD8LGmgUaZ2AV 9JNyX7Z05RKTBAra13tLWTO3pGj14YBs48Eum6T2Wk0LNgZykjSjGEEFBfPvFC01 C6+R2gJ6WCNlhU83HmGPSv/TnZbWDGtht9/mPAW9vRB+u7IhmdZouZnRL8EgxST2 PcHNWLmeM2wfMyllSYTy6CSiYD5lEuesdro3sO7q7i9N/baGkRRv97pHj59XnlH0 /A== -----END CERTIFICATE-----Generated at Wed May 13 06:30:34 2026 by rpki-client