$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/CF7CE212796211F08A60430EC4F9AE02.roa File: CF7CE212796211F08A60430EC4F9AE02.roa (raw, json) Hash identifier: iCujPDKfMHxsjgadL7W4x0ZyZlePIoox9Hapd4u+p9s= Subject key identifier: 63:9F:E8:AA:7D:F1:82:ED:BC:58:CA:7B:AD:03:37:11:03:E7:10:75 Certificate issuer: /CN=A91A7169/serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Certificate serial: 022B Authority key identifier: E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/CF7CE212796211F08A60430EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:55:50 +0000 ROA not before: Thu 14 Aug 2025 23:08:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 396982 IP address blocks: 2400:7aa0:2a01::/48 maxlen: 48 2400:7aa0:2a02::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=E50CB250BFAD0863E85C2902EA0219D53CC0812E Validity Not Before: Aug 14 23:08:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48bb5-c0c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:70:a6:ed:86:4e:14:fe:9b:4f:86:9b:6d:e2: 3b:d6:14:0e:af:59:ff:63:72:ad:3c:28:86:1c:e6: b1:34:93:d4:33:d9:7f:34:ab:05:bd:57:82:66:33: de:91:8f:db:99:6a:ff:d8:9a:56:37:e4:04:b9:cf: b9:75:23:2c:86:c2:49:66:01:12:ed:42:e4:a5:11: 37:50:9b:29:8e:53:b7:1c:ec:58:86:56:ba:9c:71: 97:59:e0:74:75:1f:f7:52:a0:74:0b:11:7d:13:e0: d3:fd:44:24:b5:3a:27:52:03:20:3e:63:52:b7:32: d7:0d:c4:02:2c:ad:ba:a5:ca:ba:0d:b8:41:3d:41: cb:9b:3c:2d:ac:a3:8c:76:9a:4f:6f:52:0a:0c:28: c8:0d:2f:45:c0:72:6f:2d:57:3c:13:da:f6:2b:71: 67:20:19:8e:d4:f3:7f:e9:bf:85:09:58:e9:9f:2b: 67:d7:b8:f8:2f:f0:01:24:12:5d:1e:b5:b3:93:6b: 43:4a:ab:01:ab:5e:77:1f:72:ba:0a:ee:39:4d:c1: 87:6e:3d:9e:78:f9:79:9b:6b:eb:ff:bf:77:8d:f3: bd:c7:71:61:84:67:c0:4a:6c:87:db:b4:71:de:c4: 08:af:2a:94:69:99:3c:f3:dd:df:4c:96:1c:b4:dd: 3d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:9F:E8:AA:7D:F1:82:ED:BC:58:CA:7B:AD:03:37:11:03:E7:10:75 X509v3 Authority Key Identifier: keyid:E5:0C:B2:50:BF:AD:08:63:E8:5C:29:02:EA:02:19:D5:3C:C0:81:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QyyUL-tCGPoXCkC6gIZ1TzAgS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6B7F993CEBAE11EE8A0ED964C4F9AE02/CF7CE212796211F08A60430EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:7aa0:2a01::-2400:7aa0:2a02:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption bb:c5:69:f0:ce:45:02:a9:cb:90:2a:7a:e3:e3:4f:ba:dc:34: 83:4c:36:f0:23:fe:a1:dc:f9:56:84:87:f4:4d:12:b7:79:f5: 4a:d7:6d:ad:d4:fa:11:46:04:6f:23:c7:cd:9e:db:41:83:29: cf:44:49:c7:46:7b:67:5f:19:b7:04:50:7d:b0:e7:4d:d1:53: 67:a6:a1:46:f7:65:07:86:85:90:d6:32:ef:e1:00:e5:ce:3a: 1f:c3:e0:41:9d:62:44:d2:38:00:c3:e8:a3:ed:c1:b0:29:33: ba:b4:47:fd:ca:5f:ee:e0:d9:93:c3:79:63:37:11:a9:dd:c9: 2e:20:f6:59:04:2b:83:ad:c9:d2:f5:48:8b:69:2c:8f:fe:8e: 0b:1f:ad:e7:d7:de:2c:7b:bf:43:50:fe:dc:a8:12:48:ab:0e: 9a:6f:a0:1d:3f:84:6d:5f:11:ec:9f:46:e4:ad:39:94:78:a3: 03:b5:db:9c:60:22:d9:46:67:db:9d:46:b6:b4:44:cb:1e:6f: 28:d3:5a:4c:47:67:af:20:53:3f:b7:fb:24:f0:bf:9f:5e:3b: a8:3f:5d:44:4a:b2:91:a2:39:70:32:0e:dd:5c:9d:8f:31:bc: 20:0d:f2:98:d3:a8:c3:6a:bc:0e:92:41:a2:d0:9f:0a:bd:64: fc:c9:7f:45 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKEU1MENCMjUwQkZBRDA4NjNFODVDMjkwMkVBMDIxOUQ1 M0NDMDgxMkUwHhcNMjUwODE0MjMwODIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGJiNS1jMGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXCm7YZOFP6bT4abbeI71hQOr1n/Y3KtPCiGHOaxNJPUM9l/NKsFvVeCZjPe kY/bmWr/2JpWN+QEuc+5dSMshsJJZgES7ULkpRE3UJspjlO3HOxYhla6nHGXWeB0 dR/3UqB0CxF9E+DT/UQktTonUgMgPmNStzLXDcQCLK26pcq6DbhBPUHLmzwtrKOM dppPb1IKDCjIDS9FwHJvLVc8E9r2K3FnIBmO1PN/6b+FCVjpnytn17j4L/ABJBJd HrWzk2tDSqsBq153H3K6Cu45TcGHbj2eePl5m2vr/793jfO9x3FhhGfASmyH27Rx 3sQIryqUaZk8893fTJYctN09EwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFGOf6Kp9 8YLtvFjKe60DNxED5xB1MB8GA1UdIwQYMBaAFOUMslC/rQhj6FwpAuoCGdU8wIEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82QjdGOTkzQ0VC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi81UXl5VUwtdENHUG9YQ2tDNmdJWjFUekFn UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVReXlVTC10Q0dQb1hDa0M2Z0laMVR6QWdTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcxNjkvNkI3Rjk5M0NFQkFFMTFFRThBMEVEOTY0QzRGOUFFMDIvQ0Y3Q0UyMTI3 OTYyMTFGMDhBNjA0MzBFQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAAjAUMBIDBwAkAHqgKgEDBwAkAHqgKgIwDQYJKoZIhvcNAQELBQADggEBALvF afDORQKpy5AqeuPjT7rcNINMNvAj/qHc+VaEh/RNErd59UrXba3U+hFGBG8jx82e 20GDKc9EScdGe2dfGbcEUH2w503RU2emoUb3ZQeGhZDWMu/hAOXOOh/D4EGdYkTS OADD6KPtwbApM7q0R/3KX+7g2ZPDeWM3EandyS4g9lkEK4OtydL1SItpLI/+jgsf refX3ix7v0NQ/tyoEkirDppvoB0/hG1fEeyfRuStOZR4owO125xgItlGZ9udRra0 RMsebyjTWkxHZ68gUz+3+yTwv59eO6g/XURKspGiOXAyDt1cnY8xvCAN8pjTqMNq vA6SQaLQnwq9ZPzJf0U= -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:06 2026 by rpki-client