$ rpki-client -vvf rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/86CD7C2E72B011EB9FC4FE4EC4F9AE02.roa File: 86CD7C2E72B011EB9FC4FE4EC4F9AE02.roa (raw, json) Hash identifier: OMXUb6Lx3/4kaa1T15ov60ZpldaZCJFTzLaLw/ElCUo= Subject key identifier: 9E:F8:78:93:4E:C3:EB:2A:42:58:CE:DB:93:6D:AE:55:7A:E3:05:FC Certificate issuer: /CN=A91B625F/serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Certificate serial: 08CE Authority key identifier: E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/86CD7C2E72B011EB9FC4FE4EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:03:39 +0000 ROA not before: Tue 16 Dec 2025 21:17:30 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38173 IP address blocks: 2406:9dc0:1000::/44 maxlen: 48 2406:9dc0:6660::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2254 (0x8ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B625F, serialNumber=E155B82A87D28E877602F994F8FFD3E744AAF480 Validity Not Before: Dec 16 21:17:30 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a47f7a-b737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f7:8d:b9:8a:f4:f7:9a:2b:90:e4:00:14:6c: 55:28:8b:13:c6:e7:3d:27:55:51:26:67:08:bd:ae: bd:c9:68:45:d4:f4:85:e4:d8:50:95:22:3c:83:f1: 0e:c2:94:4f:ed:8a:16:f3:84:3a:98:ec:66:da:6b: f2:80:d2:0f:5b:2c:19:1c:87:96:3e:09:3b:e2:6b: 4d:b5:7f:53:e8:f5:63:2e:e1:dd:22:a9:1a:7d:a6: 19:d8:24:44:ca:5d:18:b9:e1:70:d9:a6:82:f1:fb: 84:8b:0f:d5:61:dd:89:66:fa:c6:09:f5:ab:5e:cf: 30:1f:db:1b:4d:a5:74:b6:c7:09:ed:89:d6:16:5e: 5d:a8:d4:57:fe:9e:32:99:a9:d1:47:4d:2c:ad:ae: 3a:99:d5:93:31:7a:28:2a:45:26:6f:79:c3:ff:42: fa:cc:df:04:67:d4:96:3e:8d:71:b4:82:31:ed:c7: 19:e0:b0:e2:05:3d:d5:99:32:9e:42:fe:23:0e:ef: 21:39:07:9a:f1:d7:c7:89:0a:f2:0d:16:0d:14:de: 39:6a:a4:e1:d5:18:e8:1e:ab:fa:a7:7d:87:98:a9: c6:89:47:12:3d:86:fc:e1:5e:17:b3:fb:1b:70:4a: a9:df:b3:f3:4c:d7:c6:42:ac:8a:3e:1c:92:40:b6: 71:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F8:78:93:4E:C3:EB:2A:42:58:CE:DB:93:6D:AE:55:7A:E3:05:FC X509v3 Authority Key Identifier: keyid:E1:55:B8:2A:87:D2:8E:87:76:02:F9:94:F8:FF:D3:E7:44:AA:F4:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/4VW4KofSjod2AvmU-P_T50Sq9IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4VW4KofSjod2AvmU-P_T50Sq9IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B625F/22D91F7211CE11EB8AD05A2BC4F9AE02/86CD7C2E72B011EB9FC4FE4EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:9dc0:1000::/44 2406:9dc0:6660::/44 Signature Algorithm: sha256WithRSAEncryption 5e:95:26:cc:65:78:6f:a8:c7:a2:e9:be:68:8f:e3:f5:28:c3: 80:89:b7:52:c9:20:d7:a2:d0:54:50:bb:3b:0b:3f:9c:de:32: b6:b2:c0:b2:32:e1:13:2c:e2:39:fa:b3:5b:c9:ed:db:b4:60: 14:04:30:46:2c:c0:56:a5:01:fd:f8:2c:95:c3:99:d1:81:6c: a6:43:dd:a3:73:b2:1f:c2:ff:01:52:d2:6d:dc:ec:94:7b:7e: e6:f5:a2:20:4f:3e:2d:76:86:c1:e7:4c:4c:43:8c:68:f0:8c: 9c:39:9b:cc:4b:c8:85:ba:79:b1:85:0d:6c:d0:f8:f9:f2:80: 97:ec:78:11:a1:58:0d:01:df:6c:80:ec:46:2a:7a:2e:51:78: 05:05:ac:e8:4e:2c:06:3f:a7:8c:a9:e4:4c:f6:a3:d7:a9:41: d2:2c:f9:ad:ae:e1:17:91:43:cc:7d:60:12:fd:6b:d7:cb:b9: 66:25:53:bd:8e:83:88:8b:8d:7f:09:df:4e:4b:14:b8:d6:0e: bb:9c:a3:24:dd:44:1a:d2:71:f8:da:15:a0:87:86:b8:b2:aa: 9d:8a:2e:cc:89:1b:96:37:b6:5c:17:99:c9:3a:5e:cd:2e:c6: f9:e8:d5:b0:a8:5a:0d:3d:f0:8b:16:e2:5b:a1:f8:be:b0:9e: 2e:01:11:a5 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYyNUYxMTAvBgNVBAUTKEUxNTVCODJBODdEMjhFODc3NjAyRjk5NEY4RkZEM0U3 NDRBQUY0ODAwHhcNMjUxMjE2MjExNzMwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2Y3YS1iNzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtveNuYr095orkOQAFGxVKIsTxuc9J1VRJmcIva69yWhF1PSF5NhQlSI8g/EO wpRP7YoW84Q6mOxm2mvygNIPWywZHIeWPgk74mtNtX9T6PVjLuHdIqkafaYZ2CRE yl0YueFw2aaC8fuEiw/VYd2JZvrGCfWrXs8wH9sbTaV0tscJ7YnWFl5dqNRX/p4y manRR00sra46mdWTMXooKkUmb3nD/0L6zN8EZ9SWPo1xtIIx7ccZ4LDiBT3VmTKe Qv4jDu8hOQea8dfHiQryDRYNFN45aqTh1RjoHqv6p32HmKnGiUcSPYb84V4Xs/sb cEqp37PzTNfGQqyKPhySQLZxCQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFJ74eJNO w+sqQljO25NtrlV64wX8MB8GA1UdIwQYMBaAFOFVuCqH0o6HdgL5lPj/0+dEqvSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjI1Ri8yMkQ5MUY3MjEx Q0UxMUVCOEFEMDVBMkJDNEY5QUUwMi80Vlc0S29mU2pvZDJBdm1VLVBfVDUwU3E5 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRWVzRLb2ZTam9kMkF2bVUtUF9UNTBTcTlJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYyNUYvMjJEOTFGNzIxMUNFMTFFQjhBRDA1QTJCQzRGOUFFMDIvODZDRDdDMkU3 MkIwMTFFQjlGQzRGRTRFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcEJAadwBAAAwcEJAadwGZgMA0GCSqGSIb3DQEBCwUAA4IBAQBelSbM ZXhvqMei6b5oj+P1KMOAibdSySDXotBUULs7Cz+c3jK2ssCyMuETLOI5+rNbye3b tGAUBDBGLMBWpQH9+CyVw5nRgWymQ92jc7Ifwv8BUtJt3OyUe37m9aIgTz4tdobB 50xMQ4xo8IycOZvMS8iFunmxhQ1s0Pj58oCX7HgRoVgNAd9sgOxGKnouUXgFBazo TiwGP6eMqeRM9qPXqUHSLPmtruEXkUPMfWAS/WvXy7lmJVO9joOIi41/Cd9OSxS4 1g67nKMk3UQa0nH42hWgh4a4sqqdii7MiRuWN7ZcF5nJOl7NLsb56NWwqFoNPfCL FuJbofi+sJ4uARGl -----END CERTIFICATE-----Generated at Mon Mar 2 07:21:32 2026 by rpki-client