$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa File: B066E5B6C5C111F0BD9B1831C4F9AE02.roa (raw, json) Hash identifier: js2e7gSxOJ1ck5eETx5mjuA11BS43UgULv+itxLVvkY= Subject key identifier: CE:80:59:D7:EA:A3:50:86:2A:44:2B:2E:AA:85:44:71:79:49:DD:18 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0F64 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa Signing time: Fri 12 Jun 2026 06:12:19 +0000 ROA not before: Fri 12 Jun 2026 06:12:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 209554 IP address blocks: 2001:df1:4580::/48 maxlen: 48 2405:84c0::/32 maxlen: 32 2405:84c0::/48 maxlen: 48 2405:84c0:2000::/36 maxlen: 40 2405:84c0:4000::/36 maxlen: 40 2405:84c0:5000::/36 maxlen: 40 2405:84c0:6800::/40 maxlen: 44 2405:84c0:6f00::/40 maxlen: 44 2405:84c0:8000::/44 maxlen: 48 2405:84c0:8010::/44 maxlen: 48 2405:84c0:8020::/44 maxlen: 48 2405:84c0:8030::/44 maxlen: 48 2405:84c0:8040::/44 maxlen: 48 2405:84c0:8050::/44 maxlen: 48 2405:84c0:a000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 17:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3940 (0xf64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Jun 12 06:12:19 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6a2ba343-92ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:c1:57:fa:c9:44:0b:02:7d:5b:a9:cb:7b: 7c:bb:1d:17:e2:cf:ce:10:e1:42:b0:4d:34:32:e4: 8e:e5:9b:a2:39:21:c0:f2:57:0e:4b:7b:37:ac:a5: df:fe:0e:58:63:44:53:10:23:b8:8a:51:b7:7f:15: bf:d6:fa:e6:e9:4c:77:9f:ba:1c:ea:53:92:a1:14: b8:a2:02:65:6d:e8:5b:9d:c2:ad:53:75:50:7c:e7: d3:67:f5:50:aa:47:b1:61:c3:5f:42:03:ba:04:b5: 7e:86:df:24:b1:83:9a:b8:e4:36:63:13:4f:a2:47: 85:36:e5:b3:9d:0c:f1:8c:00:65:84:ae:03:89:9a: 60:1f:66:67:01:eb:f2:15:db:a9:82:b0:31:05:e4: ea:46:65:d1:da:58:37:80:b6:c3:ff:57:24:f8:ed: 74:43:36:bd:8d:38:b5:99:08:3b:20:04:1a:45:79: a2:6c:c9:8b:41:0b:fc:dc:80:47:ad:6d:f0:02:33: 88:4c:4c:81:0b:e7:be:39:4e:84:26:54:2b:f7:85: be:a4:2d:79:b3:df:ae:cd:68:dd:06:1e:f2:f8:45: 7e:12:24:ae:c3:e9:9d:bd:8e:eb:fa:40:41:02:95: c5:aa:56:93:d1:3f:ac:3e:ca:ce:ae:79:be:49:71: af:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:80:59:D7:EA:A3:50:86:2A:44:2B:2E:AA:85:44:71:79:49:DD:18 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df1:4580::/48 2405:84c0::/32 Signature Algorithm: sha256WithRSAEncryption 86:16:90:30:fc:30:6b:46:79:57:ce:6c:37:28:0d:0f:50:4f: 6f:2a:0c:13:8c:eb:6b:ed:69:60:64:16:be:64:8d:1c:92:3a: 1e:ed:64:36:9e:ad:02:fd:96:26:8d:77:12:12:59:59:97:85: 7b:3c:17:69:9a:a5:4b:75:36:e5:db:a8:fb:a9:30:1e:12:0c: d0:e1:21:da:ef:84:0f:26:53:89:1d:48:b4:6a:64:6b:77:8a: aa:ce:3b:5b:9f:ed:ec:d8:d5:0c:65:f3:03:39:04:10:cd:bf: 07:12:bb:b7:26:3f:40:c8:98:f1:bc:32:de:c9:bf:73:15:39: 7b:ea:2f:47:8c:4a:00:5d:75:2d:bd:29:6e:2c:90:dc:a9:f0: 57:c3:73:2a:da:87:cb:f1:93:60:29:c5:8c:64:ce:06:32:5b: 72:e9:34:62:b5:d9:d5:d1:50:e2:13:81:14:fa:0a:07:66:fa: 32:57:a2:df:98:7a:dd:c6:fa:54:1c:41:80:c7:e8:80:f1:92: f7:c0:c5:e9:91:ac:50:f5:c4:bd:33:3a:36:8d:48:4b:19:b9: e7:b2:1c:4b:14:d3:e2:55:83:6c:16:60:2b:87:0d:5e:c3:cc: 01:3b:e7:15:ed:de:3e:88:d2:33:8b:97:8d:83:f7:a5:89:97: be:56:b2:ac -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgICD2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjYwNjEyMDYxMjE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTJiYTM0My05MmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlnBV/rJRAsCfVupy3t8ux0X4s/OEOFCsE00MuSO5ZuiOSHA8lcOS3s3rKXf /g5YY0RTECO4ilG3fxW/1vrm6Ux3n7oc6lOSoRS4ogJlbehbncKtU3VQfOfTZ/VQ qkexYcNfQgO6BLV+ht8ksYOauOQ2YxNPokeFNuWznQzxjABlhK4DiZpgH2ZnAevy FdupgrAxBeTqRmXR2lg3gLbD/1ck+O10Qza9jTi1mQg7IAQaRXmibMmLQQv83IBH rW3wAjOITEyBC+e+OU6EJlQr94W+pC15s9+uzWjdBh7y+EV+EiSuw+mdvY7r+kBB ApXFqlaT0T+sPsrOrnm+SXGvmQIDAQABo4ICajCCAmYwHQYDVR0OBBYEFM6AWdfq o1CGKkQrLqqFRHF5Sd0YMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvQjA2NkU1QjZD NUMxMTFGMEJEOUIxODMxQzRGOUFFMDIucm9hMCkGCCsGAQUFBwEHAQH/BBowGDAW BAIAAjAQAwcAIAEN8UWAAwUAJAWEwDANBgkqhkiG9w0BAQsFAAOCAQEAhhaQMPww a0Z5V85sNygND1BPbyoME4zra+1pYGQWvmSNHJI6Hu1kNp6tAv2WJo13EhJZWZeF ezwXaZqlS3U25duo+6kwHhIM0OEh2u+EDyZTiR1ItGpka3eKqs47W5/t7NjVDGXz AzkEEM2/BxK7tyY/QMiY8bwy3sm/cxU5e+ovR4xKAF11Lb0pbiyQ3KnwV8NzKtqH y/GTYCnFjGTOBjJbcuk0YrXZ1dFQ4hOBFPoKB2b6Mlei35h63cb6VBxBgMfogPGS 98DF6ZGsUPXEvTM6No1ISxm557IcSxTT4lWDbBZgK4cNXsPMATvnFe3ePojSM4uX jYP3pYmXvlayrA== -----END CERTIFICATE-----Generated at Sat Jun 13 22:04:51 2026 by rpki-client