$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/71043990C4D811EA88E6B21FC4F9AE02.roa File: 71043990C4D811EA88E6B21FC4F9AE02.roa (raw, json) Hash identifier: SwqLx1ykNlWfnGxIgnnplctUN2Uh69BTnr1sDfxJRlM= Subject key identifier: 16:0B:B7:A1:FE:7D:FF:E7:A3:33:83:7F:44:81:4A:FB:B2:E4:03:21 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 11ED Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/71043990C4D811EA88E6B21FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:16:57 +0000 ROA not before: Wed 20 Aug 2025 17:57:32 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 22944 IP address blocks: 2404:f4c0:1009::/48 maxlen: 48 2404:f4c0:10b8::/45 maxlen: 48 2404:f4c0:10c0::/42 maxlen: 48 2404:f4c0:10c2::/47 maxlen: 48 2404:f4c0:10c4::/46 maxlen: 48 2404:f4c0:10c8::/45 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4589 (0x11ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 20 17:57:32 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48299-c772 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cc:14:d0:7c:dc:61:13:fe:1c:2d:21:1d:56: 05:8c:5e:a3:81:f4:dc:ed:37:06:c7:b0:18:d9:5c: 6c:8a:7e:90:0c:f3:00:14:87:01:e0:0d:2a:22:63: d9:09:b9:f2:6f:db:66:85:ec:56:17:20:be:ab:03: ef:2d:28:80:f8:b9:86:4c:76:e7:21:d8:79:e1:85: b7:c4:79:88:68:54:3d:33:d1:c1:19:e5:9c:c8:49: 9b:17:c6:cf:89:20:e5:a2:97:e2:85:65:44:86:43: 2a:91:38:c9:5c:b5:6e:7b:7d:2a:d4:37:1c:72:32: da:2b:7e:dd:e7:06:45:d5:5b:e9:a0:57:29:0d:91: a7:20:5f:e0:cd:e3:52:88:e9:83:3a:df:f4:32:de: 68:78:8d:b9:04:e2:5a:9c:ab:24:f5:c9:c0:c7:95: 2d:4b:28:94:6a:74:ea:0e:63:59:89:ff:f6:9c:24: 3d:eb:82:16:32:25:34:e7:f9:43:90:86:1b:43:d3: 24:3e:cd:b2:fc:d6:51:9c:4e:66:ed:6e:3b:d5:46: 17:38:f2:a7:c4:71:7c:f6:22:5d:f4:f7:e7:1f:62: 4d:e9:b6:8c:0a:bc:7a:5f:7f:ac:02:d3:60:ee:74: 3c:58:4f:65:0b:58:22:b7:83:7b:67:34:45:a1:1a: db:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0B:B7:A1:FE:7D:FF:E7:A3:33:83:7F:44:81:4A:FB:B2:E4:03:21 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/71043990C4D811EA88E6B21FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:1009::/48 2404:f4c0:10b8::-2404:f4c0:10ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1e:4d:66:f4:55:52:8b:eb:58:65:f3:be:e2:3a:86:79:09:3b: 78:fb:ac:03:00:5d:6c:2e:ae:06:71:67:e0:6b:0d:57:54:8c: 3d:55:c6:34:5f:1f:7c:d3:d2:40:7a:c7:9e:af:52:c9:0b:2a: fe:30:02:c8:44:68:6c:94:48:37:d2:df:4e:b9:7d:93:72:4b: f0:a7:97:d0:82:e7:d4:f8:a5:ba:41:15:e4:46:c6:6c:70:45: a0:52:85:68:2d:3c:06:16:01:85:d7:0b:75:e4:b6:50:e5:f6: 1a:76:1a:17:fe:cd:b5:ca:bc:3b:d4:ba:ab:47:07:cc:40:5f: c1:7b:e2:07:ac:26:ff:71:fe:1f:7a:d7:77:35:f2:89:e7:e0: 0a:1f:6b:e0:b9:50:d4:7e:14:41:cf:1c:5f:d0:1f:5f:bb:c8: 19:fb:50:3b:20:53:c6:6c:d1:00:07:f5:bf:28:36:6e:fa:85: b8:9e:92:6d:96:93:34:3d:b2:8c:e9:b0:78:7c:9e:b7:de:f5: 24:b4:f4:9b:1a:a3:d8:b2:4f:0b:51:48:2b:9f:73:f7:7a:20: 1d:cf:d6:14:8f:47:d8:63:ef:53:f8:fb:c2:6c:70:68:44:45: c4:6e:74:0b:92:32:a7:84:ea:f0:26:7b:a3:c9:43:5d:f5:6c: 02:cf:45:79 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgICEe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwODIwMTc1NzMyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODI5OS1jNzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5cwU0HzcYRP+HC0hHVYFjF6jgfTc7TcGx7AY2Vxsin6QDPMAFIcB4A0qImPZ Cbnyb9tmhexWFyC+qwPvLSiA+LmGTHbnIdh54YW3xHmIaFQ9M9HBGeWcyEmbF8bP iSDlopfihWVEhkMqkTjJXLVue30q1DcccjLaK37d5wZF1VvpoFcpDZGnIF/gzeNS iOmDOt/0Mt5oeI25BOJanKsk9cnAx5UtSyiUanTqDmNZif/2nCQ964IWMiU05/lD kIYbQ9MkPs2y/NZRnE5m7W471UYXOPKnxHF89iJd9PfnH2JN6baMCrx6X3+sAtNg 7nQ8WE9lC1git4N7ZzRFoRrb8QIDAQABo4ICdjCCAnIwHQYDVR0OBBYEFBYLt6H+ ff/nozODf0SBSvuy5AMhMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvNzEwNDM5OTBD NEQ4MTFFQTg4RTZCMjFGQzRGOUFFMDIucm9hMDUGCCsGAQUFBwEHAQH/BCYwJDAi BAIAAjAcAwcAJAT0wBAJMBEDBwMkBPTAELgDBgAkBPTAEDANBgkqhkiG9w0BAQsF AAOCAQEAHk1m9FVSi+tYZfO+4jqGeQk7ePusAwBdbC6uBnFn4GsNV1SMPVXGNF8f fNPSQHrHnq9SyQsq/jACyERobJRIN9LfTrl9k3JL8KeX0ILn1PilukEV5EbGbHBF oFKFaC08BhYBhdcLdeS2UOX2GnYaF/7Ntcq8O9S6q0cHzEBfwXviB6wm/3H+H3rX dzXyiefgCh9r4LlQ1H4UQc8cX9AfX7vIGftQOyBTxmzRAAf1vyg2bvqFuJ6SbZaT ND2yjOmweHyet971JLT0mxqj2LJPC1FIK59z93ogHc/WFI9H2GPvU/j7wmxwaERF xG50C5Iyp4Tq8CZ7o8lDXfVsAs9FeQ== -----END CERTIFICATE-----Generated at Mon Mar 2 08:31:07 2026 by rpki-client