$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa File: 538172167F5211ED8A16EF81C4F9AE02.roa (raw, json) Hash identifier: KIKf8R0HDmyLNLiZYE65M+EAfNwk/uckevwRRUo2IAI= Subject key identifier: 02:20:C6:48:65:38:16:14:EF:18:05:21:97:EE:EF:FE:46:4D:77:29 Certificate issuer: /CN=A91A3E3F/serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Certificate serial: 0283 Authority key identifier: 59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:16:05 +0000 ROA not before: Wed 17 Dec 2025 02:21:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45139 IP address blocks: 2404:f801:8020::/48 maxlen: 48 2404:f801:802c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 643 (0x283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=59DDC3969B9863CFB5A15528AA4A391AF2337F43 Validity Not Before: Dec 17 02:21:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46645-addb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ce:0d:ce:a3:73:51:22:2d:95:18:ea:f6:58: 60:3b:86:a3:3f:63:2f:43:f9:fe:e0:ab:aa:3e:f8: 74:db:d8:97:76:1c:54:96:fd:9f:af:98:59:4e:eb: 71:c0:96:ed:32:10:ab:0f:20:e5:b4:c3:22:ca:c6: 79:fd:20:8f:60:32:5d:e9:fa:76:d4:56:f9:5e:42: d0:c8:a6:97:74:95:e3:41:65:ec:4c:45:2c:4f:38: 31:14:66:e7:5b:86:8c:1d:fe:d3:36:44:9e:73:85: 68:99:ca:be:c7:5b:a8:59:7c:ff:63:63:bb:ad:7a: d8:16:1a:02:36:70:b5:2b:fa:e7:fe:9d:ee:e4:6a: 33:7e:a5:1c:7b:4e:9b:89:df:bd:dc:75:95:f0:fe: 39:68:9b:35:a7:85:e6:ce:b7:f1:63:19:ce:1e:66: 82:98:44:90:db:1a:37:75:2c:c8:72:f4:3f:00:80: 7d:bc:5d:a4:4c:e5:f2:ee:ef:d1:ae:f5:e1:04:e8: 9e:f8:8f:83:62:51:1f:ff:d4:75:a8:33:58:fa:3b: 71:54:a4:b6:1c:27:fb:f0:55:ec:97:17:d9:eb:a2: c2:c6:f8:f6:7f:d6:b8:7b:78:aa:00:d9:37:14:24: 39:c1:13:42:c7:b1:a1:d2:16:44:9e:b9:75:c4:19: b1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:20:C6:48:65:38:16:14:EF:18:05:21:97:EE:EF:FE:46:4D:77:29 X509v3 Authority Key Identifier: keyid:59:DD:C3:96:9B:98:63:CF:B5:A1:55:28:AA:4A:39:1A:F2:33:7F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/Wd3DlpuYY8-1oVUoqko5GvIzf0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wd3DlpuYY8-1oVUoqko5GvIzf0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/FBDFFEC0768611EDA6CB3F41C4F9AE02/538172167F5211ED8A16EF81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:f801:8020::/48 2404:f801:802c::/48 Signature Algorithm: sha256WithRSAEncryption b1:f6:fe:93:fb:4d:5a:59:94:cc:76:68:94:b8:d5:31:a1:cb: 78:50:8b:21:c0:30:97:d7:22:fc:42:62:6a:57:33:63:2b:e3: 77:9b:63:65:4e:5c:a4:5d:51:62:ea:f0:e4:f9:fe:df:5e:d3: 12:1c:93:e7:b1:b8:be:5a:02:ea:14:3d:d1:ca:d5:62:bc:ac: 53:90:48:b3:8a:a7:d5:a7:98:f2:c5:58:66:2f:28:d3:0d:f7: bd:3c:41:50:cb:70:e5:25:8f:0c:98:84:3b:bb:f3:ee:e3:7d: c1:ea:ac:75:95:68:da:60:df:51:fc:17:ed:f2:ac:b6:83:66: 25:99:bc:58:f1:08:18:2a:db:82:36:02:be:3c:65:0d:6e:37: e8:34:5d:c7:6e:02:2f:ee:af:88:ed:4a:e9:a1:da:84:bb:c1: 47:ab:59:3f:1c:0a:76:4b:93:08:ec:0d:fe:43:85:92:4f:16: c5:ce:ff:d5:a3:39:4c:33:7c:5f:90:93:fe:96:76:ff:aa:b4: f9:6d:33:a4:8e:22:fb:10:8b:c0:27:14:d9:e1:89:51:49:a5: 0f:bc:38:00:19:07:41:38:97:b8:0c:a9:23:c0:c8:6a:e1:35: 95:68:c3:ef:d6:ce:2e:3d:e8:5d:4d:3b:3b:92:ba:eb:c9:61: c2:16:77:aa -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDU5RERDMzk2OUI5ODYzQ0ZCNUExNTUyOEFBNEEzOTFB RjIzMzdGNDMwHhcNMjUxMjE3MDIyMTE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjY0NS1hZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3M4NzqNzUSItlRjq9lhgO4ajP2MvQ/n+4KuqPvh029iXdhxUlv2fr5hZTutx wJbtMhCrDyDltMMiysZ5/SCPYDJd6fp21Fb5XkLQyKaXdJXjQWXsTEUsTzgxFGbn W4aMHf7TNkSec4Vomcq+x1uoWXz/Y2O7rXrYFhoCNnC1K/rn/p3u5GozfqUce06b id+93HWV8P45aJs1p4XmzrfxYxnOHmaCmESQ2xo3dSzIcvQ/AIB9vF2kTOXy7u/R rvXhBOie+I+DYlEf/9R1qDNY+jtxVKS2HCf78FXslxfZ66LCxvj2f9a4e3iqANk3 FCQ5wRNCx7Gh0hZEnrl1xBmxiwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFAIgxkhl OBYU7xgFIZfu7/5GTXcpMB8GA1UdIwQYMBaAFFndw5abmGPPtaFVKKpKORryM39D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi9GQkRGRkVDMDc2 ODYxMUVEQTZDQjNGNDFDNEY5QUUwMi9XZDNEbHB1WVk4LTFvVlVvcWtvNUd2SXpm ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkM0RscHVZWTgtMW9WVW9xa281R3ZJemYwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvRkJERkZFQzA3Njg2MTFFREE2Q0IzRjQxQzRGOUFFMDIvNTM4MTcyMTY3 RjUyMTFFRDhBMTZFRjgxQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcAJAT4AYAgAwcAJAT4AYAsMA0GCSqGSIb3DQEBCwUAA4IBAQCx9v6T +01aWZTMdmiUuNUxoct4UIshwDCX1yL8QmJqVzNjK+N3m2NlTlykXVFi6vDk+f7f XtMSHJPnsbi+WgLqFD3RytVivKxTkEiziqfVp5jyxVhmLyjTDfe9PEFQy3DlJY8M mIQ7u/Pu433B6qx1lWjaYN9R/Bft8qy2g2YlmbxY8QgYKtuCNgK+PGUNbjfoNF3H bgIv7q+I7UrpodqEu8FHq1k/HAp2S5MI7A3+Q4WSTxbFzv/VozlMM3xfkJP+lnb/ qrT5bTOkjiL7EIvAJxTZ4YlRSaUPvDgAGQdBOJe4DKkjwMhq4TWVaMPv1s4uPehd TTs7krrryWHCFneq -----END CERTIFICATE-----Generated at Mon Mar 2 04:15:54 2026 by rpki-client