$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/24992E62E0FC11F0B50D6A7D5F6F56BC.roa File: 24992E62E0FC11F0B50D6A7D5F6F56BC.roa (raw, json) Hash identifier: eAx7dd7W8IzFugozPftJzHrtY4Ej4f42CnK31HLLaRE= Subject key identifier: 63:1D:23:D2:55:CC:31:8F:AE:2B:60:27:0E:6F:F1:FF:6B:B7:2D:A4 Certificate issuer: /CN=A91AB1C2/serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Certificate serial: 30 Authority key identifier: 5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/24992E62E0FC11F0B50D6A7D5F6F56BC.roa Signing time: Sun 01 Mar 2026 05:56:05 +0000 ROA not before: Wed 24 Dec 2025 19:10:00 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 154450 IP address blocks: 2402:4220::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB1C2, serialNumber=5D30EEBF11E4178D623BE1BDE4DBB4CB59CC8437 Validity Not Before: Dec 24 19:10:00 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d4f5-92cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:80:c6:f7:6a:4d:c5:d0:55:59:8f:9d:d9:fb: 69:21:60:c0:92:43:ec:a6:b4:0f:46:97:7c:0f:5c: 6d:ab:2b:48:e8:fb:5e:85:c5:63:24:94:82:10:ba: 1a:15:f4:44:e3:64:66:4f:e7:ce:03:65:79:f7:09: ac:9e:da:3f:c5:f1:eb:0a:b2:8b:7e:cc:f3:77:24: 0c:66:f2:45:71:16:43:b9:c2:db:ad:07:28:55:f6: dc:d4:0a:bb:00:83:a6:1a:78:9d:61:49:a3:1a:71: 3e:e9:b6:aa:d8:55:75:af:0d:d3:14:6e:b0:31:6a: 11:19:35:85:c1:57:9e:39:0a:ac:d3:28:8f:b8:5f: c9:ab:62:2b:8b:cd:25:97:38:d5:a0:b5:64:54:5f: 4f:c0:8d:1a:5a:68:78:18:33:e3:e5:e7:13:45:2b: 12:b0:8b:e0:91:f9:06:0c:9c:0b:6a:f9:a8:7c:8b: ea:51:47:c0:b6:71:26:4e:73:05:13:75:07:3b:67: fa:84:a0:35:6e:92:21:05:d1:68:7a:5b:49:b3:ce: 76:10:c9:50:9c:af:f4:35:42:93:83:ce:12:e0:fe: 46:83:33:a8:f2:80:87:6a:06:3c:c5:d4:bf:87:59: 49:28:bd:b3:fe:b1:fb:e2:64:02:07:48:21:0e:45: f4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:1D:23:D2:55:CC:31:8F:AE:2B:60:27:0E:6F:F1:FF:6B:B7:2D:A4 X509v3 Authority Key Identifier: keyid:5D:30:EE:BF:11:E4:17:8D:62:3B:E1:BD:E4:DB:B4:CB:59:CC:84:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/XTDuvxHkF41iO-G95Nu0y1nMhDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTDuvxHkF41iO-G95Nu0y1nMhDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB1C2/0F910754DCA311F085D6F15B436F56BC/24992E62E0FC11F0B50D6A7D5F6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2402:4220::/40 Signature Algorithm: sha256WithRSAEncryption 9f:8a:b3:35:51:26:cd:f2:f6:b8:ff:3d:93:49:85:49:b9:af: 18:e8:c3:bc:15:68:81:32:30:09:ae:70:0a:7f:5c:87:32:c4: cf:29:39:09:cc:36:2b:66:bf:42:96:fe:4c:82:17:60:84:13: eb:64:ce:1d:c7:83:a1:5b:f6:12:bf:7c:15:bd:f4:f0:f9:24: c0:17:15:11:7a:d4:2f:25:c7:c8:68:9c:5a:d3:5f:7f:88:67: 99:1d:20:d8:be:e6:e5:c5:c1:aa:a7:29:bf:4d:75:b3:a1:5b: 2e:44:00:22:2f:be:dd:ce:a4:9c:ab:17:37:03:db:c3:23:b5: 98:e2:bf:68:f1:32:0d:90:7e:8f:64:63:cf:a6:04:ff:93:f5: 6a:a4:c7:3c:5a:a9:56:7e:52:bf:a2:75:40:2f:ee:b2:32:58: 01:7b:ba:63:78:b6:82:b1:ad:08:aa:fb:ee:1d:78:ef:24:11: ee:ef:c1:32:1d:45:e8:24:09:1f:94:ab:13:d9:b9:60:b4:64: 0e:4f:32:6e:b2:f3:69:61:96:91:de:40:af:77:ee:e9:b6:c0: d5:02:bd:aa:e2:fd:0c:f5:c6:15:cf:7c:15:d7:06:26:ef:f7: 0b:db:92:db:c7:de:04:4d:5f:49:f1:aa:2a:ca:ff:30:a4:03: d9:7b:fb:6c -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjFDMjExMC8GA1UEBRMoNUQzMEVFQkYxMUU0MTc4RDYyM0JFMUJERTREQkI0Q0I1 OUNDODQzNzAeFw0yNTEyMjQxOTEwMDBaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNGY1LTkyY2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVgMb3ak3F0FVZj53Z+2khYMCSQ+ymtA9Gl3wPXG2rK0jo+16FxWMklIIQuhoV 9ETjZGZP584DZXn3Caye2j/F8esKsot+zPN3JAxm8kVxFkO5wtutByhV9tzUCrsA g6YaeJ1hSaMacT7ptqrYVXWvDdMUbrAxahEZNYXBV545CqzTKI+4X8mrYiuLzSWX ONWgtWRUX0/AjRpaaHgYM+Pl5xNFKxKwi+CR+QYMnAtq+ah8i+pRR8C2cSZOcwUT dQc7Z/qEoDVukiEF0Wh6W0mzznYQyVCcr/Q1QpODzhLg/kaDM6jygIdqBjzF1L+H WUkovbP+sfviZAIHSCEORfQlAgMBAAGjggJiMIICXjAdBgNVHQ4EFgQUYx0j0lXM MY+uK2AnDm/x/2u3LaQwHwYDVR0jBBgwFoAUXTDuvxHkF41iO+G95Nu0y1nMhDcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMUMyLzBGOTEwNzU0RENB MzExRjA4NUQ2RjE1QjQzNkY1NkJDL1hURHV2eEhrRjQxaU8tRzk1TnUweTFuTWhE Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWFREdXZ4SGtGNDFpTy1HOTVOdTB5MW5NaERjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjFDMi8wRjkxMDc1NERDQTMxMUYwODVENkYxNUI0MzZGNTZCQy8yNDk5MkU2MkUw RkMxMUYwQjUwRDZBN0Q1RjZGNTZCQy5yb2EwIQYIKwYBBQUHAQcBAf8EEjAQMA4E AgACMAgDBgAkAkIgADANBgkqhkiG9w0BAQsFAAOCAQEAn4qzNVEmzfL2uP89k0mF SbmvGOjDvBVogTIwCa5wCn9chzLEzyk5Ccw2K2a/Qpb+TIIXYIQT62TOHceDoVv2 Er98Fb308PkkwBcVEXrULyXHyGicWtNff4hnmR0g2L7m5cXBqqcpv011s6FbLkQA Ii++3c6knKsXNwPbwyO1mOK/aPEyDZB+j2Rjz6YE/5P1aqTHPFqpVn5Sv6J1QC/u sjJYAXu6Y3i2grGtCKr77h147yQR7u/BMh1F6CQJH5SrE9m5YLRkDk8ybrLzaWGW kd5Ar3fu6bbA1QK9quL9DPXGFc98FdcGJu/3C9uS28feBE1fSfGqKsr/MKQD2Xv7 bA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:49:56 2026 by rpki-client