$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa File: B066E5B6C5C111F0BD9B1831C4F9AE02.roa (raw, json) Hash identifier: NLsiXFMZwTtb+eoIe6Og+OMNL5LmJCAQY9wq0T4heUo= Subject key identifier: 25:52:0C:86:D4:11:F9:64:88:1C:A1:6E:E3:40:6C:BA:C9:A8:30:BF Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0F2A Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:38:40 +0000 ROA not before: Thu 20 Nov 2025 03:35:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 209554 IP address blocks: 2001:df1:4580::/48 maxlen: 48 2405:84c0::/48 maxlen: 48 2405:84c0:2000::/36 maxlen: 40 2405:84c0:4000::/36 maxlen: 40 2405:84c0:5000::/36 maxlen: 40 2405:84c0:6800::/40 maxlen: 44 2405:84c0:6f00::/40 maxlen: 44 2405:84c0:8000::/44 maxlen: 48 2405:84c0:8010::/44 maxlen: 48 2405:84c0:8020::/44 maxlen: 48 2405:84c0:8030::/44 maxlen: 48 2405:84c0:8040::/44 maxlen: 48 2405:84c0:8050::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3882 (0xf2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Nov 20 03:35:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a487b0-e136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3c:16:90:8e:75:6a:fe:b6:b1:32:61:fc:7d: 20:a1:d1:6d:10:7f:c8:1a:d1:d1:64:02:c2:aa:cd: dc:89:b1:95:b6:63:a6:cb:f7:c6:f3:d3:5e:4f:a5: e2:b8:d8:75:ed:f4:3d:a5:e7:35:93:d9:f6:d7:64: ec:c0:c8:a2:40:46:97:aa:5b:51:a9:67:36:55:63: 8c:ea:ad:77:8c:49:f3:28:a4:bb:a1:86:61:fb:40: c7:8e:e3:fa:66:79:b7:c3:cd:c9:6f:d2:a9:43:a2: 56:61:9d:5f:a3:6b:a3:a3:79:96:2d:9f:75:22:65: e4:95:e8:62:13:6d:65:85:31:fd:bd:18:a6:54:ce: cc:a2:d2:b1:05:9e:fa:14:80:38:7f:8c:b9:12:2a: 00:af:e7:45:a3:96:09:be:0b:bc:d3:fd:cf:67:0b: 75:f1:20:e2:d6:e0:f0:45:43:b0:e3:86:9d:37:39: 44:a3:6a:6f:46:04:1a:c8:9f:2e:ee:4f:9f:40:3c: bd:e2:13:42:ee:aa:17:43:52:d9:68:b7:74:17:4b: 98:0f:17:ce:57:04:93:d6:bd:2f:b3:41:7a:e0:c4: 4c:7e:7c:2e:57:d3:dc:cf:38:dd:c5:a6:6d:98:fd: 6f:59:3f:34:ab:7c:1d:54:87:60:cd:69:59:08:16: 66:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:52:0C:86:D4:11:F9:64:88:1C:A1:6E:E3:40:6C:BA:C9:A8:30:BF X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/B066E5B6C5C111F0BD9B1831C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df1:4580::/48 2405:84c0::/48 2405:84c0:2000::/36 2405:84c0:4000::/35 2405:84c0:6800::/40 2405:84c0:6f00::/40 2405:84c0:8000::-2405:84c0:805f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption af:1e:56:50:6c:4c:ec:55:10:8f:8a:9b:40:3a:94:c2:a1:6c: ea:dc:b4:8a:26:45:3d:ba:1e:45:24:d8:0e:ef:07:d5:ba:c6: 06:94:74:d1:25:68:85:93:cd:36:63:57:ab:4e:85:09:89:df: fa:96:e9:e0:b6:00:d8:b6:ac:58:41:05:fc:6d:05:80:07:5e: 02:e6:00:0a:ff:f0:fc:15:5e:fc:a5:92:5f:6d:15:fe:f9:86: 58:1c:20:72:60:26:0c:17:1f:ab:be:c9:29:98:42:7b:40:2f: ff:4d:c5:36:cb:f0:98:f9:eb:c2:d2:18:73:93:4b:7f:e6:c6: fe:a2:f1:36:22:59:da:a1:2b:0b:00:dd:a4:e3:6b:82:05:0e: 91:7b:36:c0:17:40:5d:7d:67:a2:7c:ee:09:fb:5a:c2:21:8e: a4:f7:01:f2:fc:20:e6:bf:03:36:c7:6b:5f:bc:b3:c4:7b:a9: 9c:fd:99:e8:41:f9:87:90:c0:62:1b:18:43:14:07:78:cd:35: 4e:41:71:b0:9a:65:80:23:2c:a9:5a:93:ae:3f:7e:3d:ac:89: 21:ed:ce:57:cd:ce:5c:67:80:d5:54:11:e0:77:0c:90:9e:1f: 4e:97:e2:33:b0:5a:b9:e6:9c:ca:ea:9a:10:f7:a6:4f:e6:78: 65:bd:0c:77 -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgICDyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUxMTIwMDMzNTUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdiMC1lMTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DwWkI51av62sTJh/H0godFtEH/IGtHRZALCqs3cibGVtmOmy/fG89NeT6Xi uNh17fQ9pec1k9n212TswMiiQEaXqltRqWc2VWOM6q13jEnzKKS7oYZh+0DHjuP6 Znm3w83Jb9KpQ6JWYZ1fo2ujo3mWLZ91ImXklehiE21lhTH9vRimVM7MotKxBZ76 FIA4f4y5EioAr+dFo5YJvgu80/3PZwt18SDi1uDwRUOw44adNzlEo2pvRgQayJ8u 7k+fQDy94hNC7qoXQ1LZaLd0F0uYDxfOVwST1r0vs0F64MRMfnwuV9PczzjdxaZt mP1vWT80q3wdVIdgzWlZCBZmrQIDAQABo4ICnzCCApswHQYDVR0OBBYEFCVSDIbU EflkiByhbuNAbLrJqDC/MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvQjA2NkU1QjZD NUMxMTFGMEJEOUIxODMxQzRGOUFFMDIucm9hMF4GCCsGAQUFBwEHAQH/BE8wTTBL BAIAAjBFAwcAIAEN8UWAAwcAJAWEwAAAAwYEJAWEwCADBgUkBYTAQAMGACQFhMBo AwYAJAWEwG8wEQMGByQFhMCAAwcFJAWEwIBAMA0GCSqGSIb3DQEBCwUAA4IBAQCv HlZQbEzsVRCPiptAOpTCoWzq3LSKJkU9uh5FJNgO7wfVusYGlHTRJWiFk802Y1er ToUJid/6lungtgDYtqxYQQX8bQWAB14C5gAK//D8FV78pZJfbRX++YZYHCByYCYM Fx+rvskpmEJ7QC//TcU2y/CY+evC0hhzk0t/5sb+ovE2IlnaoSsLAN2k42uCBQ6R ezbAF0BdfWeifO4J+1rCIY6k9wHy/CDmvwM2x2tfvLPEe6mc/ZnoQfmHkMBiGxhD FAd4zTVOQXGwmmWAIyypWpOuP349rIkh7c5Xzc5cZ4DVVBHgdwyQnh9Ol+IzsFq5 5pzK6poQ96ZP5nhlvQx3 -----END CERTIFICATE-----Generated at Mon Mar 2 12:20:00 2026 by rpki-client