$ rpki-client -vvf rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/2F70E1E0D4C711EB84791C0BC4F9AE02.roa File: 2F70E1E0D4C711EB84791C0BC4F9AE02.roa (raw, json) Hash identifier: mi5Z8QiyFyePXfXFb5bmVuyq1rksFrDBMyBn1iuDnTA= Subject key identifier: 91:BC:E0:44:25:8D:F1:18:2A:41:10:02:93:F9:62:3E:F7:E7:99:39 Certificate issuer: /CN=A91620ED/serialNumber=AF6AE325B4F880E362051E7C3DFDF1B8B2A5A815 Certificate serial: 2AD1 Authority key identifier: AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/2F70E1E0D4C711EB84791C0BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:53:03 +0000 ROA not before: Wed 28 Jan 2026 16:12:56 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9731 IP address blocks: 2407:6300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.crl rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10961 (0x2ad1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620ED, serialNumber=AF6AE325B4F880E362051E7C3DFDF1B8B2A5A815 Validity Not Before: Jan 28 16:12:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a460df-b362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:98:9a:e4:6c:da:b0:c2:6e:d9:f1:8f:af:9a: 34:06:13:81:8b:1c:c3:2d:ef:7f:b6:a6:7f:29:c4: 43:95:aa:95:66:99:56:0b:88:c4:00:a4:ae:1f:5c: fa:96:63:e2:86:78:db:ce:88:01:59:28:e4:0f:63: dc:83:3a:f0:97:07:86:71:5a:0a:f1:1c:3a:dd:58: 0a:12:18:2c:40:8f:27:2a:94:66:60:c7:0f:dc:a6: 06:b0:e0:44:ba:02:45:e2:0b:13:09:d9:b4:17:8e: ed:bb:86:64:ed:9c:f7:ac:8b:b5:9d:b5:eb:3b:b9: f0:2f:11:17:30:49:aa:e6:0c:3b:ad:9e:5d:c1:67: d6:6a:8e:3c:c4:7f:f3:66:be:ee:4d:b8:8c:3c:28: c2:a8:7c:6f:bd:40:50:ec:8d:a8:ba:88:6c:aa:bc: 0f:7e:ce:75:54:98:5f:9b:10:54:34:28:29:b8:0b: ee:40:ad:a6:d1:4c:c8:f4:92:68:e5:2a:ed:6c:72: b3:9b:47:87:50:e1:4a:9b:86:77:e4:2f:9a:b3:a3: 46:28:30:37:68:f1:e1:51:3e:6d:f4:a0:81:7a:91: 4e:50:f6:48:75:ab:fc:3e:7c:f8:bc:9a:95:c7:a3: 6f:a6:4d:a0:88:9f:3d:1f:7d:27:16:1a:16:0e:21: 7f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:BC:E0:44:25:8D:F1:18:2A:41:10:02:93:F9:62:3E:F7:E7:99:39 X509v3 Authority Key Identifier: keyid:AF:6A:E3:25:B4:F8:80:E3:62:05:1E:7C:3D:FD:F1:B8:B2:A5:A8:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/r2rjJbT4gONiBR58Pf3xuLKlqBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2rjJbT4gONiBR58Pf3xuLKlqBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620ED/E7E231E6370011E4B32BD06BC4F9AE02/2F70E1E0D4C711EB84791C0BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:6300::/32 Signature Algorithm: sha256WithRSAEncryption 6c:cb:70:33:d9:20:ae:b9:5a:93:e0:c7:22:0b:25:17:a9:25: c5:ff:2c:53:b7:93:66:f8:02:a2:e4:7f:57:1b:5f:b1:5d:4a: 73:4a:da:db:ee:bd:9f:c3:de:3d:84:e7:54:ac:0a:c8:40:97: 48:36:e1:c9:55:13:e9:ba:4b:db:c7:07:32:2f:7a:cc:4b:b9: 38:d6:24:4f:21:e5:65:77:19:ad:65:4a:2d:f6:6a:da:d4:58: ab:7e:5f:5f:1f:d9:22:75:f3:f3:9c:65:a6:7a:d5:fe:7c:ab: 8f:ee:57:d1:d8:31:57:1a:ba:c3:6d:16:1d:bd:f0:5c:e0:a1: 61:c9:d5:b3:17:fc:21:9f:7c:af:8d:e3:2d:b6:7c:db:32:fe: 06:a9:7e:2c:45:8f:1c:9b:ae:3f:ce:75:e0:d8:e3:d1:74:b9: 2e:c3:65:ff:27:1b:b0:03:3d:10:16:b5:85:e9:76:53:6c:84: 73:b4:62:7c:28:f5:66:fb:4f:e9:1c:27:9b:df:92:ac:1e:47: 28:61:e8:c3:41:44:d9:4b:a3:9b:0e:08:3e:33:10:d6:c3:63: ab:24:5e:8a:62:76:ea:d0:0f:4d:34:ec:83:5d:93:75:ed:e9: 33:7f:09:0e:cc:0d:d6:0d:6b:f6:8c:db:dd:c8:fc:bf:57:f5: ec:c2:3d:7a -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICKtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRUQxMTAvBgNVBAUTKEFGNkFFMzI1QjRGODgwRTM2MjA1MUU3QzNERkRGMUI4 QjJBNUE4MTUwHhcNMjYwMTI4MTYxMjU2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjBkZi1iMzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZia5GzasMJu2fGPr5o0BhOBixzDLe9/tqZ/KcRDlaqVZplWC4jEAKSuH1z6 lmPihnjbzogBWSjkD2PcgzrwlweGcVoK8Rw63VgKEhgsQI8nKpRmYMcP3KYGsOBE ugJF4gsTCdm0F47tu4Zk7Zz3rIu1nbXrO7nwLxEXMEmq5gw7rZ5dwWfWao48xH/z Zr7uTbiMPCjCqHxvvUBQ7I2ouohsqrwPfs51VJhfmxBUNCgpuAvuQK2m0UzI9JJo 5SrtbHKzm0eHUOFKm4Z35C+as6NGKDA3aPHhUT5t9KCBepFOUPZIdav8Pnz4vJqV x6Nvpk2giJ89H30nFhoWDiF/7QIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFJG84EQl jfEYKkEQApP5Yj7355k5MB8GA1UdIwQYMBaAFK9q4yW0+IDjYgUefD398biypagV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFRC9FN0UyMzFFNjM3 MDAxMUU0QjMyQkQwNkJDNEY5QUUwMi9yMnJqSmJUNGdPTmlCUjU4UGYzeHVMS2xx QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IycmpKYlQ0Z09OaUJSNThQZjN4dUxLbHFCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIwRUQvRTdFMjMxRTYzNzAwMTFFNEIzMkJEMDZCQzRGOUFFMDIvMkY3MEUxRTBE NEM3MTFFQjg0NzkxQzBCQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAdjADANBgkqhkiG9w0BAQsFAAOCAQEAbMtwM9kgrrlak+DHIgsl F6klxf8sU7eTZvgCouR/VxtfsV1Kc0ra2+69n8PePYTnVKwKyECXSDbhyVUT6bpL 28cHMi96zEu5ONYkTyHlZXcZrWVKLfZq2tRYq35fXx/ZInXz85xlpnrV/nyrj+5X 0dgxVxq6w20WHb3wXOChYcnVsxf8IZ98r43jLbZ82zL+Bql+LEWPHJuuP8514Njj 0XS5LsNl/ycbsAM9EBa1hel2U2yEc7RifCj1ZvtP6Rwnm9+SrB5HKGHow0FE2Uuj mw4IPjMQ1sNjqyReimJ26tAPTTTsg12Tde3pM38JDswN1g1r9ozb3cj8v1f17MI9 eg== -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:11 2026 by rpki-client