$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa File: 500DFDA8578611EA8CC3B124C4F9AE02.roa (raw, json) Hash identifier: 5LNSq5pdKybofu1UpxkFVG9Ohf/hU7Yt5u2ontP0MD0= Subject key identifier: 3F:48:CD:13:11:85:63:67:27:9C:6C:DB:0D:01:DB:FC:20:DB:DE:42 Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1FB3 Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:41:28 +0000 ROA not before: Wed 24 Sep 2025 16:04:38 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 17501 IP address blocks: 2407:6200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8115 (0x1fb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Sep 24 16:04:38 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46c38-eba4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:23:ca:f2:8b:83:36:e6:12:3c:57:8e:3f:00: cc:38:39:ea:5a:d4:61:92:66:50:92:42:7e:f4:20: d8:3f:39:df:c5:e1:ed:7a:77:81:d9:ef:20:22:78: 22:95:0a:2c:35:f0:d9:2c:6b:57:7f:da:b4:5d:3c: 2d:63:dd:3f:25:a6:2d:e3:18:6d:f8:3a:29:cc:d7: 25:57:0e:bb:1d:81:ce:1d:cc:39:31:b5:8f:f8:7e: e9:d2:55:db:4b:09:e9:48:d9:6f:eb:82:d7:04:e1: 3e:dc:25:3b:8a:28:15:fa:67:e7:d2:04:07:33:04: a1:9f:e0:dd:1d:72:e1:90:ce:c5:4f:7d:1e:18:e1: ed:2d:59:d1:b8:ba:d6:aa:91:4e:56:b1:bf:2a:e4: 25:c7:b6:0d:f6:4b:f8:2e:70:9b:22:2f:0e:1d:e2: 99:fd:14:c9:37:44:6c:5a:fd:da:66:9b:1d:06:c4: e5:4d:bd:d5:b7:55:91:b4:5d:38:99:73:e2:51:cc: 11:f4:56:da:ba:c0:3a:f8:65:d8:4c:eb:15:48:1d: 3f:27:c2:55:37:d4:b4:07:b7:bd:eb:32:ae:74:1e: 5e:95:5c:98:65:4b:20:84:ca:98:76:34:f7:ce:94: e9:61:d5:b2:db:75:e4:61:67:12:48:09:73:dd:cc: b2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:48:CD:13:11:85:63:67:27:9C:6C:DB:0D:01:DB:FC:20:DB:DE:42 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:6200::/32 Signature Algorithm: sha256WithRSAEncryption 82:92:f6:d5:70:99:47:7c:a9:c4:98:26:c0:db:5c:6d:a1:e3: 87:3d:e7:59:66:b4:18:e2:e9:4a:eb:57:34:b9:7d:af:49:f7: 23:f4:09:c7:f5:4e:90:52:ae:f8:fb:e8:83:65:51:bb:bf:c1: 4e:a8:91:95:ef:d3:55:19:13:25:4f:0d:d0:3a:bd:a8:99:f2: 5f:06:32:38:dc:6a:31:eb:70:95:e1:47:f0:5d:c8:2b:04:e2: 8c:80:64:dd:65:1d:13:2e:88:89:a7:e9:da:d9:95:d7:e8:28: 0b:ee:15:4b:95:3e:a8:5a:b4:92:9a:92:d1:20:7b:2b:18:d2: 21:29:17:92:f5:67:31:ef:35:ac:cb:32:4d:b2:4a:e3:91:13: 62:b6:a2:26:3a:92:45:0f:3d:b8:a1:66:12:f0:c5:4e:0c:bc: 51:50:b2:fb:06:57:73:f5:45:f3:c9:12:fc:9c:8e:9b:54:34: b7:86:86:be:af:2a:48:30:56:04:f2:29:3c:92:4a:2a:7f:b0: ad:14:e2:7d:41:de:e9:3a:94:60:23:e4:fc:23:3d:fc:bf:a2: 0e:43:15:01:d3:46:56:86:4d:2e:a7:09:ad:d3:6d:34:5b:a9: b8:2d:cc:41:75:d3:a3:b0:b1:4f:1b:7c:37:c4:c2:45:0a:27: b7:8b:a5:68 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICH7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjUwOTI0MTYwNDM4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmMzOC1lYmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiPK8ouDNuYSPFeOPwDMODnqWtRhkmZQkkJ+9CDYPznfxeHteneB2e8gIngi lQosNfDZLGtXf9q0XTwtY90/JaYt4xht+DopzNclVw67HYHOHcw5MbWP+H7p0lXb SwnpSNlv64LXBOE+3CU7iigV+mfn0gQHMwShn+DdHXLhkM7FT30eGOHtLVnRuLrW qpFOVrG/KuQlx7YN9kv4LnCbIi8OHeKZ/RTJN0RsWv3aZpsdBsTlTb3Vt1WRtF04 mXPiUcwR9FbausA6+GXYTOsVSB0/J8JVN9S0B7e96zKudB5elVyYZUsghMqYdjT3 zpTpYdWy23XkYWcSSAlz3cyyjQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFD9IzRMR hWNnJ5xs2w0B2/wg295CMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxRUEvOUFGM0VEMjg1RUVDMTFFNjg4NkVDNTFCQzRGOUFFMDIvNTAwREZEQTg1 Nzg2MTFFQThDQzNCMTI0QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAdiADANBgkqhkiG9w0BAQsFAAOCAQEAgpL21XCZR3ypxJgmwNtc baHjhz3nWWa0GOLpSutXNLl9r0n3I/QJx/VOkFKu+Pvog2VRu7/BTqiRle/TVRkT JU8N0Dq9qJnyXwYyONxqMetwleFH8F3IKwTijIBk3WUdEy6Iiafp2tmV1+goC+4V S5U+qFq0kpqS0SB7KxjSISkXkvVnMe81rMsyTbJK45ETYraiJjqSRQ89uKFmEvDF Tgy8UVCy+wZXc/VF88kS/JyOm1Q0t4aGvq8qSDBWBPIpPJJKKn+wrRTifUHe6TqU YCPk/CM9/L+iDkMVAdNGVoZNLqcJrdNtNFupuC3MQXXTo7CxTxt8N8TCRQont4ul aA== -----END CERTIFICATE-----Generated at Mon Mar 2 07:38:58 2026 by rpki-client