$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C37CCA126FE611EA9D9F5E67C4F9AE02.roa File: C37CCA126FE611EA9D9F5E67C4F9AE02.roa (raw, json) Hash identifier: MziFt9QpNnpHXoqMSLQHM5S6PwdHDmXlfAVFhDMjdwQ= Subject key identifier: F7:E6:03:AD:A3:4C:C5:64:84:90:32:C5:17:A8:FB:56:07:C8:4D:8E Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 12C8 Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C37CCA126FE611EA9D9F5E67C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:08:45 +0000 ROA not before: Thu 04 Dec 2025 16:46:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 64087 IP address blocks: 2403:a280:1000::/48 maxlen: 48 2403:a280:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4808 (0x12c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73, serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Validity Not Before: Dec 4 16:46:55 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a480ad-dbd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:97:fc:72:af:f0:cf:a0:2a:cd:84:60:fa: 5a:fb:ee:b0:2c:65:40:0e:13:54:02:60:76:f6:2d: 1e:5e:7b:30:38:82:69:17:0f:b3:90:6e:7b:f4:96: 9e:89:e5:34:03:02:02:45:a2:5c:36:26:6c:d6:e5: 1c:f9:ac:c1:df:38:e3:7f:a0:68:7c:9a:60:4f:97: 0b:2e:60:24:fb:09:b8:40:81:75:60:2e:37:89:92: 59:55:c0:de:fa:8e:3d:ac:82:40:d8:29:c9:e9:00: 0d:3b:d4:f0:4f:7e:10:54:c2:56:46:27:2d:c5:83: d6:fe:43:46:61:ac:ae:6c:b1:b8:ab:c7:87:36:a0: fa:8d:1e:7a:82:4a:2e:38:e7:bc:c9:87:f8:9e:0c: 43:4a:e0:ab:a4:a1:b4:27:dd:21:e8:18:62:d2:09: 2e:3c:8e:1b:b1:f2:77:47:f0:d1:c9:df:31:28:1e: 1c:5d:48:7f:1d:51:fc:2b:7c:f2:eb:63:6d:09:47: 0d:fe:78:45:df:61:b0:2b:f8:78:3a:41:93:34:aa: c7:83:5a:87:41:fd:c4:7a:a9:a6:c6:49:66:55:f9: 1e:b6:0c:37:7f:8e:c9:c9:ca:b2:a4:d9:4e:32:2e: 35:79:f7:26:0e:a2:7c:27:f8:e9:05:42:1f:6a:7a: 2e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E6:03:AD:A3:4C:C5:64:84:90:32:C5:17:A8:FB:56:07:C8:4D:8E X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C37CCA126FE611EA9D9F5E67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:a280:1000::/48 2403:a280:3000::/48 Signature Algorithm: sha256WithRSAEncryption 5e:ac:f9:0c:e3:22:44:e2:19:8e:5d:12:5d:45:23:ed:0e:41: 8d:1d:c0:e7:79:5a:c7:83:a6:65:70:8d:fc:23:de:3f:fb:08: c7:ce:b4:2c:9a:5a:e6:1d:0d:ae:4f:15:4e:78:b7:4d:f1:0e: eb:cf:e0:e7:84:e1:42:1e:2b:3f:45:26:c2:06:dc:1c:94:b3: d6:3e:db:e7:31:1b:e1:a3:b0:b6:b9:b3:7f:8d:f3:0f:28:bc: 05:5e:6f:b3:6d:7c:dd:30:8e:8b:bf:b0:84:f0:d8:a0:01:0f: a6:c0:63:70:64:c5:3b:d9:1f:98:fd:85:44:22:86:13:0a:aa: cd:99:ae:c8:50:1b:47:f7:08:86:8f:32:39:b5:5b:a9:d4:88: ab:be:e2:4a:dc:35:05:75:05:6d:de:69:32:c8:bd:ef:fb:03: 3f:a4:3b:07:38:d1:f5:70:70:20:02:71:ae:a5:f1:1d:57:96: 6c:64:e6:32:df:a0:45:57:fc:20:7e:d5:40:2b:8b:fb:94:fa: 16:af:c9:c6:8d:05:07:89:eb:2d:8e:92:be:c1:a8:6c:3d:50: e2:65:81:c7:55:e6:5e:d2:2b:ee:0a:ec:90:be:be:30:67:95: 71:12:5f:7a:2d:46:82:99:06:3b:5e:2b:b6:32:69:7c:eb:b2: 46:cb:b0:de -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICEsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjUxMjA0MTY0NjU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODBhZC1kYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJeX/HKv8M+gKs2EYPpa++6wLGVADhNUAmB29i0eXnswOIJpFw+zkG579Jae ieU0AwICRaJcNiZs1uUc+azB3zjjf6BofJpgT5cLLmAk+wm4QIF1YC43iZJZVcDe +o49rIJA2CnJ6QANO9TwT34QVMJWRictxYPW/kNGYayubLG4q8eHNqD6jR56gkou OOe8yYf4ngxDSuCrpKG0J90h6Bhi0gkuPI4bsfJ3R/DRyd8xKB4cXUh/HVH8K3zy 62NtCUcN/nhF32GwK/h4OkGTNKrHg1qHQf3EeqmmxklmVfketgw3f47JycqypNlO Mi41efcmDqJ8J/jpBUIfanou9QIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFPfmA62j TMVkhJAyxReo+1YHyE2OMB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvQzM3Q0NBMTI2 RkU2MTFFQTlEOUY1RTY3QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcAJAOigBAAAwcAJAOigDAAMA0GCSqGSIb3DQEBCwUAA4IBAQBerPkM 4yJE4hmOXRJdRSPtDkGNHcDneVrHg6ZlcI38I94/+wjHzrQsmlrmHQ2uTxVOeLdN 8Q7rz+DnhOFCHis/RSbCBtwclLPWPtvnMRvho7C2ubN/jfMPKLwFXm+zbXzdMI6L v7CE8NigAQ+mwGNwZMU72R+Y/YVEIoYTCqrNma7IUBtH9wiGjzI5tVup1IirvuJK 3DUFdQVt3mkyyL3v+wM/pDsHONH1cHAgAnGupfEdV5ZsZOYy36BFV/wgftVAK4v7 lPoWr8nGjQUHiestjpK+wahsPVDiZYHHVeZe0ivuCuyQvr4wZ5VxEl96LUaCmQY7 Xiu2Mml867JGy7De -----END CERTIFICATE-----Generated at Mon Mar 2 05:44:56 2026 by rpki-client