$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/40EAC2C0685111F0A688505EC4F9AE02.roa File: 40EAC2C0685111F0A688505EC4F9AE02.roa (raw, json) Hash identifier: SMMdB5FfbHvQ8XxRMRHHqZDp8nFnCc1tqnhGm5C6OOg= Subject key identifier: 69:73:BE:AA:43:11:31:8C:0C:1E:96:ED:AB:25:6D:79:D3:B0:A5:14 Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1D74 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/40EAC2C0685111F0A688505EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:41:48 +0000 ROA not before: Fri 02 Jan 2026 16:15:07 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 38478 IP address blocks: 2001:df7:6600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 16:03:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7540 (0x1d74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E, serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Validity Not Before: Jan 2 16:15:07 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46c4c-8256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:66:61:d1:c9:b1:db:13:ad:70:1d:bf:53:9b: 44:7a:83:97:1c:a5:49:a8:ae:3d:da:36:74:b3:8b: 3c:62:93:12:40:d9:0e:b9:ae:d6:2a:ab:59:fb:07: c9:ad:05:6e:22:d8:55:75:9d:65:a7:da:1d:7b:fc: 14:f2:e2:75:f0:57:a4:92:db:b1:15:48:39:e3:48: 9a:02:b7:2c:44:af:42:89:49:0e:d3:ee:2f:8a:02: 1b:6c:87:bd:47:3a:3b:e8:73:5b:fd:c3:4a:51:8d: 4f:12:d8:96:ab:48:96:ff:27:a3:bc:eb:16:a2:31: 9e:9a:3e:a7:9e:5d:50:a3:64:58:ad:b4:f8:7a:06: 71:a7:03:63:d9:74:72:6c:fc:10:20:fb:62:b4:9a: a8:45:64:e2:98:f8:c4:be:6e:e2:5d:da:07:37:1c: 61:07:2b:0c:1e:1b:12:a4:ee:fe:09:d2:cf:f9:89: 13:14:32:f0:ef:c3:d0:11:cb:5d:8e:fb:d7:4d:2c: bd:83:08:df:a6:74:fb:5c:16:4e:2b:f0:36:4c:7f: e7:ad:a3:ec:da:f5:72:fd:9e:80:42:d0:e4:86:91: 72:d9:9f:f4:67:da:79:ee:75:60:de:89:c3:87:db: 63:bf:b8:49:d2:50:5f:55:c0:9b:58:74:80:12:96: 8f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:73:BE:AA:43:11:31:8C:0C:1E:96:ED:AB:25:6D:79:D3:B0:A5:14 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/40EAC2C0685111F0A688505EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df7:6600::/48 Signature Algorithm: sha256WithRSAEncryption 09:91:af:ba:88:a0:68:1e:c8:c9:2a:99:2b:5e:2e:48:88:88: 2e:25:0b:20:c5:34:51:aa:dd:30:8b:f2:ad:56:a9:e6:2c:8c: 9d:5b:ff:00:88:e1:bd:ce:01:29:c1:ca:3b:57:88:e0:07:e9: d7:04:1a:fa:cf:a2:cb:5a:b7:d1:4a:4e:1a:10:c0:68:f9:46: 0c:01:32:fc:bf:60:0f:a4:e7:28:73:da:50:40:b8:f4:68:32: 23:7a:d5:b3:26:ce:bd:5f:5c:a5:16:c9:d8:07:0d:f9:a1:98: 00:53:cc:94:2d:0b:77:05:4e:a4:4a:86:87:45:36:95:3a:9a: b4:0c:1d:be:61:aa:8f:76:f2:9e:cc:aa:91:65:4b:09:ff:d6: 57:f7:00:82:e4:af:86:d2:d6:66:6a:e8:29:d0:c9:21:b5:6d: 4f:8a:e3:b3:5e:e8:53:8a:db:15:1b:66:f3:11:d3:63:7e:82: 01:f5:c9:04:4f:54:0f:19:a6:3b:a5:db:3d:15:b6:fe:d0:89: c3:d1:11:d4:37:d0:c6:51:13:b8:e4:6a:c6:05:82:7d:9f:73: c5:17:ef:f1:03:15:97:c6:d5:53:12:ac:92:3e:2c:71:7b:31: 64:92:52:72:04:27:bd:84:f4:de:47:b3:da:43:f1:7a:48:fb: da:5c:cd:7d -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICHXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjYwMTAyMTYxNTA3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmM0Yy04MjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2Zh0cmx2xOtcB2/U5tEeoOXHKVJqK492jZ0s4s8YpMSQNkOua7WKqtZ+wfJ rQVuIthVdZ1lp9ode/wU8uJ18FekktuxFUg540iaArcsRK9CiUkO0+4vigIbbIe9 Rzo76HNb/cNKUY1PEtiWq0iW/yejvOsWojGemj6nnl1Qo2RYrbT4egZxpwNj2XRy bPwQIPtitJqoRWTimPjEvm7iXdoHNxxhBysMHhsSpO7+CdLP+YkTFDLw78PQEctd jvvXTSy9gwjfpnT7XBZOK/A2TH/nraPs2vVy/Z6AQtDkhpFy2Z/0Z9p57nVg3onD h9tjv7hJ0lBfVcCbWHSAEpaPvwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFGlzvqpD ETGMDB6W7aslbXnTsKUUMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkUyNkUvODdCNUNENTBDODVEMTFFNjg3MDU2OTI3QzRGOUFFMDIvNDBFQUMyQzA2 ODUxMTFGMEE2ODg1MDVFQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN92YAMA0GCSqGSIb3DQEBCwUAA4IBAQAJka+6iKBoHsjJKpkr Xi5IiIguJQsgxTRRqt0wi/KtVqnmLIydW/8AiOG9zgEpwco7V4jgB+nXBBr6z6LL WrfRSk4aEMBo+UYMATL8v2APpOcoc9pQQLj0aDIjetWzJs69X1ylFsnYBw35oZgA U8yULQt3BU6kSoaHRTaVOpq0DB2+YaqPdvKezKqRZUsJ/9ZX9wCC5K+G0tZmaugp 0MkhtW1PiuOzXuhTitsVG2bzEdNjfoIB9ckET1QPGaY7pds9Fbb+0InD0RHUN9DG URO45GrGBYJ9n3PFF+/xAxWXxtVTEqySPixxezFkklJyBCe9hPTeR7PaQ/F6SPva XM19 -----END CERTIFICATE-----Generated at Thu Mar 26 12:17:39 2026 by rpki-client