$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa File: 280D2770EBB011EA8AF6012DC4F9AE02.roa (raw, json) Hash identifier: 1aYucsJJizOrJGwERLeDG0d5XIi/bHOIooEKsMrUEo8= Subject key identifier: 99:6B:77:8D:A5:0B:4B:75:60:83:8C:C8:DE:74:CA:2D:20:28:E7:13 Certificate issuer: /CN=A91B8CA6/serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Certificate serial: 0C0E Authority key identifier: 96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:37:14 +0000 ROA not before: Fri 14 Nov 2025 18:38:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 0 IP address blocks: 2001:def:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:38:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3086 (0xc0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8CA6, serialNumber=96F817BD4070B5CC19A0B5393D55BE773980A810 Validity Not Before: Nov 14 18:38:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45d2a-2130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:ae:9a:70:38:af:b7:8b:87:bf:a8:17:2c: a7:c1:4b:74:d0:30:1f:6e:e7:80:8e:63:b7:75:35: 64:b0:fa:a2:73:5a:2a:75:5a:13:2f:59:c4:9d:51: c9:53:41:32:67:88:35:2f:6f:93:e6:da:28:59:48: 37:08:27:b7:f2:d6:43:cf:72:43:7d:42:ee:4b:b3: ca:04:8a:fd:ff:eb:1e:e8:bd:67:8f:17:69:4b:0f: 15:c7:ee:48:a1:c5:e6:80:9e:83:f5:52:b2:2b:4f: 55:10:3c:85:cc:c3:3c:d8:97:14:97:8a:99:32:9b: e6:d1:f5:c8:69:5f:83:94:ea:e9:c0:da:dc:74:03: 15:64:99:22:8b:ab:78:fe:76:08:50:16:18:0e:c1: 0e:b7:e1:62:98:97:1c:60:11:63:9e:f2:fd:c6:a0: 4d:b8:e8:95:bb:2a:8a:30:a9:19:d5:57:46:d9:aa: af:ae:9e:c8:e2:74:e7:0c:af:e1:41:7e:6c:42:44: 76:89:75:ba:a3:43:3a:c6:b6:e9:93:f3:2a:b9:9d: 42:1b:cd:9f:12:aa:4b:97:e6:04:db:4c:a6:56:4c: 44:e6:de:10:35:55:43:11:40:62:c6:c1:a5:ec:d3: 04:6f:b9:ae:10:66:af:00:45:79:c2:dc:ab:09:79: fe:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:6B:77:8D:A5:0B:4B:75:60:83:8C:C8:DE:74:CA:2D:20:28:E7:13 X509v3 Authority Key Identifier: keyid:96:F8:17:BD:40:70:B5:CC:19:A0:B5:39:3D:55:BE:77:39:80:A8:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/lvgXvUBwtcwZoLU5PVW-dzmAqBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvgXvUBwtcwZoLU5PVW-dzmAqBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8CA6/9BD64056320611EAA2F6B332C4F9AE02/280D2770EBB011EA8AF6012DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:def:8000::/48 Signature Algorithm: sha256WithRSAEncryption 41:a4:ae:9f:6e:54:f1:6c:26:a8:8e:f5:d8:9f:4a:7a:ea:4d: 10:e5:b4:37:d2:31:56:d2:d1:e9:a7:f0:c6:7c:e6:9d:6b:3e: 4d:ea:7c:e1:33:3f:b6:4d:0a:ee:e6:f1:4d:62:de:c4:41:f0: c5:55:9e:17:b3:20:b6:d4:4c:30:eb:6a:e0:3f:80:5b:97:da: 8c:68:0a:9b:d8:57:d9:03:8d:3b:8d:26:4c:68:a1:e6:a7:6b: 7f:28:fd:45:5e:b1:08:97:e1:ee:06:a8:b0:d0:0a:e2:40:9b: 52:48:22:fa:23:77:f5:53:e7:0d:2f:8f:39:a1:b0:16:a8:5c: 3c:95:0c:3d:75:3a:ae:d0:40:37:6d:aa:b7:b4:7e:01:1b:02: 37:f9:ac:6b:dd:66:53:11:91:48:fb:3e:51:fc:c9:f7:f7:6f: be:c4:ce:21:c3:c5:00:f2:8d:0f:b8:7a:4a:4f:9e:1b:3d:bf: 80:a0:50:26:c9:50:22:3d:46:18:4d:24:3c:68:11:2d:9d:ca: 2f:43:d0:df:5d:4b:9c:97:f3:dd:c6:04:0f:a0:6e:e6:67:7d: 0d:93:18:2b:29:5c:34:e0:46:05:38:5c:bf:40:6e:7d:e6:87: 47:ad:57:d6:75:a0:83:87:6f:4b:e2:f4:49:73:62:66:4b:65: 4a:c4:39:02 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICDA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDQTYxMTAvBgNVBAUTKDk2RjgxN0JENDA3MEI1Q0MxOUEwQjUzOTNENTVCRTc3 Mzk4MEE4MTAwHhcNMjUxMTE0MTgzODE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWQyYS0yMTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoyumnA4r7eLh7+oFyynwUt00DAfbueAjmO3dTVksPqic1oqdVoTL1nEnVHJ U0EyZ4g1L2+T5tooWUg3CCe38tZDz3JDfULuS7PKBIr9/+se6L1njxdpSw8Vx+5I ocXmgJ6D9VKyK09VEDyFzMM82JcUl4qZMpvm0fXIaV+DlOrpwNrcdAMVZJkii6t4 /nYIUBYYDsEOt+FimJccYBFjnvL9xqBNuOiVuyqKMKkZ1VdG2aqvrp7I4nTnDK/h QX5sQkR2iXW6o0M6xrbpk/MquZ1CG82fEqpLl+YE20ymVkxE5t4QNVVDEUBixsGl 7NMEb7muEGavAEV5wtyrCXn++wIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFJlrd42l C0t1YIOMyN50yi0gKOcTMB8GA1UdIwQYMBaAFJb4F71AcLXMGaC1OT1Vvnc5gKgQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOENBNi85QkQ2NDA1NjMy MDYxMUVBQTJGNkIzMzJDNEY5QUUwMi9sdmdYdlVCd3Rjd1pvTFU1UFZXLWR6bUFx QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2Z1h2VUJ3dGN3Wm9MVTVQVlctZHptQXFCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhDQTYvOUJENjQwNTYzMjA2MTFFQUEyRjZCMzMyQzRGOUFFMDIvMjgwRDI3NzBF QkIwMTFFQThBRjYwMTJEQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN74AAMA0GCSqGSIb3DQEBCwUAA4IBAQBBpK6fblTxbCaojvXY n0p66k0Q5bQ30jFW0tHpp/DGfOadaz5N6nzhMz+2TQru5vFNYt7EQfDFVZ4XsyC2 1Eww62rgP4Bbl9qMaAqb2FfZA407jSZMaKHmp2t/KP1FXrEIl+HuBqiw0AriQJtS SCL6I3f1U+cNL485obAWqFw8lQw9dTqu0EA3baq3tH4BGwI3+axr3WZTEZFI+z5R /Mn392++xM4hw8UA8o0PuHpKT54bPb+AoFAmyVAiPUYYTSQ8aBEtncovQ9DfXUuc l/PdxgQPoG7mZ30NkxgrKVw04EYFOFy/QG595odHrVfWdaCDh29L4vRJc2JmS2VK xDkC -----END CERTIFICATE-----Generated at Mon Mar 2 15:16:13 2026 by rpki-client