$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/69BA51482C9C11EBB49A3A32C4F9AE02.roa File: 69BA51482C9C11EBB49A3A32C4F9AE02.roa (raw, json) Hash identifier: NkodzUK51I9jvksSG/1uKEQ3m1fd5o0QzyXqd3QjzfM= Subject key identifier: 2C:75:57:83:7F:20:7C:AF:FC:B4:5C:E1:DF:85:60:4D:D3:D6:77:3F Certificate issuer: /CN=A91B6F87/serialNumber=7ED17AFD7370A6A908D8262B86DABC7EED3D6140 Certificate serial: 081E Authority key identifier: 7E:D1:7A:FD:73:70:A6:A9:08:D8:26:2B:86:DA:BC:7E:ED:3D:61:40 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ftF6_XNwpqkI2CYrhtq8fu09YUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/69BA51482C9C11EBB49A3A32C4F9AE02.roa Signing time: Sun 31 May 2026 22:26:05 +0000 ROA not before: Sun 31 May 2026 22:26:04 +0000 ROA not after: Thu 01 Oct 2026 00:00:00 +0000 asID: 45178 IP address blocks: 64.207.208.0/21 maxlen: 21 64.207.208.0/22 maxlen: 22 64.207.208.0/23 maxlen: 23 64.207.208.0/24 maxlen: 24 64.207.209.0/24 maxlen: 24 64.207.210.0/23 maxlen: 23 64.207.210.0/24 maxlen: 24 64.207.211.0/24 maxlen: 24 64.207.212.0/23 maxlen: 23 64.207.212.0/24 maxlen: 24 64.207.213.0/24 maxlen: 24 64.207.214.0/23 maxlen: 23 64.207.214.0/24 maxlen: 24 64.207.215.0/24 maxlen: 24 74.118.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/ftF6_XNwpqkI2CYrhtq8fu09YUA.crl rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/ftF6_XNwpqkI2CYrhtq8fu09YUA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ftF6_XNwpqkI2CYrhtq8fu09YUA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 21:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F87, serialNumber=7ED17AFD7370A6A908D8262B86DABC7EED3D6140 Validity Not Before: May 31 22:26:04 2026 GMT Not After : Oct 1 00:00:00 2026 GMT Subject: CN=6a1cb57c-f7c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f4:e2:5b:50:fb:28:29:ae:a5:8f:bd:a4:91: 0b:c0:6b:a7:9d:22:09:7e:04:52:6c:b2:47:08:8f: 83:ed:b4:96:71:68:94:cc:1b:aa:4c:d0:af:85:e3: fb:c6:33:1a:f3:fd:10:f0:d0:aa:ab:2d:37:92:2a: 90:7e:58:6f:24:f0:c5:19:ae:1f:f8:37:c1:92:3b: ea:75:fa:e3:99:6b:9a:49:15:8a:af:4c:6e:a1:9b: 2e:f9:c7:20:61:f1:6e:7e:e5:c5:40:87:c7:71:17: 9a:e9:39:67:c2:da:d7:40:ce:f1:e9:63:11:43:a9: ae:fd:a8:25:62:32:29:7b:49:ae:21:57:73:cc:7c: 2b:3e:06:24:5f:34:42:36:63:f3:e2:95:49:1f:b4: 67:1a:d3:06:cd:68:68:aa:a5:4b:c6:0c:8d:6b:eb: b6:e7:56:5e:e7:07:c1:ba:aa:f6:32:91:3d:45:c6: 94:3c:c9:2a:b3:ab:6e:58:57:c6:7b:76:0b:e4:f1: 73:f9:ab:7a:b5:f6:35:a4:cb:1d:bb:48:8b:0d:9a: dd:af:7b:4d:24:00:a2:9a:88:27:b4:2f:1f:c3:1a: c9:e0:29:d4:1b:a8:1f:2c:0b:46:8f:a3:8f:d5:87: fc:7d:1a:11:3f:94:d4:4e:75:42:4d:2d:2c:7e:e5: 12:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:75:57:83:7F:20:7C:AF:FC:B4:5C:E1:DF:85:60:4D:D3:D6:77:3F X509v3 Authority Key Identifier: keyid:7E:D1:7A:FD:73:70:A6:A9:08:D8:26:2B:86:DA:BC:7E:ED:3D:61:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/ftF6_XNwpqkI2CYrhtq8fu09YUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ftF6_XNwpqkI2CYrhtq8fu09YUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F87/A7EA755C268811EBBE7C682BC4F9AE02/69BA51482C9C11EBB49A3A32C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 64.207.208.0/21 74.118.80.0/22 Signature Algorithm: sha256WithRSAEncryption 31:55:03:3f:14:2c:d3:54:e3:59:dc:92:6a:55:f3:05:d4:02: 99:b1:27:6c:e9:e4:4f:b4:11:70:de:6d:ab:38:53:89:f5:c4: 68:20:79:b9:07:35:a0:c2:2a:7a:4c:1a:74:41:54:31:0e:ad: d5:17:0b:39:a8:07:2d:bc:b4:cc:2b:39:56:21:09:50:50:3d: ee:c6:3a:c4:d0:37:f1:da:c8:81:f2:8b:cb:1a:cb:d6:80:0e: be:ed:ca:09:7e:c0:d8:67:d2:e3:be:ea:fe:99:50:cd:74:0c: 58:18:46:4f:82:80:f6:e6:53:e4:55:20:f9:d9:e9:ac:f2:2c: c8:07:f4:cc:cf:cd:04:61:97:ba:04:44:72:dc:76:fb:e6:83: 2e:4f:0b:c0:e7:43:c3:72:e0:7b:20:be:93:09:0e:28:db:24: 19:9b:08:c5:d9:60:5f:a0:cb:7a:72:f3:ce:55:39:1a:ef:c6: 07:d5:94:81:a4:81:51:c1:13:ea:18:cc:a1:bf:9f:8b:b1:da: 57:30:79:b2:28:55:bb:bf:b8:fb:42:06:2d:04:3b:b4:58:ca: e5:2a:4f:6d:eb:6d:e2:f1:38:de:53:f0:3b:b6:e2:2d:b4:8f: 39:8e:b3:af:09:43:57:11:e0:fc:dd:00:ad:51:0f:b5:5b:82: 34:db:2b:1d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGODcxMTAvBgNVBAUTKDdFRDE3QUZENzM3MEE2QTkwOEQ4MjYyQjg2REFCQzdF RUQzRDYxNDAwHhcNMjYwNTMxMjIyNjA0WhcNMjYxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjYjU3Yy1mN2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvTiW1D7KCmupY+9pJELwGunnSIJfgRSbLJHCI+D7bSWcWiUzBuqTNCvheP7 xjMa8/0Q8NCqqy03kiqQflhvJPDFGa4f+DfBkjvqdfrjmWuaSRWKr0xuoZsu+ccg YfFufuXFQIfHcRea6TlnwtrXQM7x6WMRQ6mu/aglYjIpe0muIVdzzHwrPgYkXzRC NmPz4pVJH7RnGtMGzWhoqqVLxgyNa+u251Ze5wfBuqr2MpE9RcaUPMkqs6tuWFfG e3YL5PFz+at6tfY1pMsdu0iLDZrdr3tNJACimogntC8fwxrJ4CnUG6gfLAtGj6OP 1Yf8fRoRP5TUTnVCTS0sfuUS/wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCx1V4N/ IHyv/LRc4d+FYE3T1nc/MB8GA1UdIwQYMBaAFH7Rev1zcKapCNgmK4bavH7tPWFA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY4Ny9BN0VBNzU1QzI2 ODgxMUVCQkU3QzY4MkJDNEY5QUUwMi9mdEY2X1hOd3Bxa0kyQ1lyaHRxOGZ1MDlZ VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2Z0RjZfWE53cHFrSTJDWXJodHE4ZnUwOVlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGODcvQTdFQTc1NUMyNjg4MTFFQkJFN0M2ODJCQzRGOUFFMDIvNjlCQTUxNDgy QzlDMTFFQkI0OUEzQTMyQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDQM/QAwQCSnZQMA0GCSqGSIb3DQEBCwUAA4IBAQAxVQM/FCzTVONZ 3JJqVfMF1AKZsSds6eRPtBFw3m2rOFOJ9cRoIHm5BzWgwip6TBp0QVQxDq3VFws5 qActvLTMKzlWIQlQUD3uxjrE0Dfx2siB8ovLGsvWgA6+7coJfsDYZ9Ljvur+mVDN dAxYGEZPgoD25lPkVSD52ems8izIB/TMz80EYZe6BERy3Hb75oMuTwvA50PDcuB7 IL6TCQ4o2yQZmwjF2WBfoMt6cvPOVTka78YH1ZSBpIFRwRPqGMyhv5+LsdpXMHmy KFW7v7j7QgYtBDu0WMrlKk9t623i8TjeU/A7tuIttI85jrOvCUNXEeD83QCtUQ+1 W4I02ysd -----END CERTIFICATE-----Generated at Sun Jun 14 00:06:34 2026 by rpki-client