$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/98F8A43C9D2611F0951DD30BC4F9AE02.roa File: 98F8A43C9D2611F0951DD30BC4F9AE02.roa (raw, json) Hash identifier: 1KJtvHLYngoP+8r1UhG8albB+7arFBcFljE2p+6yMsE= Subject key identifier: 5B:D2:68:65:0B:A7:DE:DF:D4:85:13:44:3E:82:95:E1:D0:D9:EE:65 Certificate issuer: /CN=A91BB000/serialNumber=47B8543685D301FEEF90CD12E5158F740D6B6CB1 Certificate serial: 51 Authority key identifier: 47:B8:54:36:85:D3:01:FE:EF:90:CD:12:E5:15:8F:74:0D:6B:6C:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7hUNoXTAf7vkM0S5RWPdA1rbLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/98F8A43C9D2611F0951DD30BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:16:14 +0000 ROA not before: Mon 29 Sep 2025 11:22:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133484 IP address blocks: 2001:df4:26c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/R7hUNoXTAf7vkM0S5RWPdA1rbLE.crl rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/R7hUNoXTAf7vkM0S5RWPdA1rbLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7hUNoXTAf7vkM0S5RWPdA1rbLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:38:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB000, serialNumber=47B8543685D301FEEF90CD12E5158F740D6B6CB1 Validity Not Before: Sep 29 11:22:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3d9ae-1e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fc:81:aa:07:0a:2e:85:20:d7:6a:44:7b:b9: e0:44:7c:af:a9:21:9c:ec:3a:48:e3:04:83:21:16: 93:73:35:84:6e:9b:8e:f9:c2:65:7c:66:88:36:66: c4:9d:eb:80:17:b7:36:2f:4f:cb:59:18:65:ce:c6: 7a:42:d9:6f:76:7d:59:b3:06:1d:71:4d:49:9c:a9: 1f:37:42:96:a2:e8:dd:04:52:b4:58:2f:16:1d:21: 08:67:dd:b7:26:cb:09:0d:fe:92:8d:c3:57:17:5e: 03:e1:17:54:74:b4:c0:46:0c:4a:27:0d:3e:c5:21: 4e:03:fd:51:9a:7e:2b:4b:c3:fd:47:17:d1:21:65: 62:bd:1a:dc:03:a9:f3:46:4d:21:c2:8a:73:52:90: 5c:c4:06:66:04:5f:bf:ce:66:37:dc:45:56:3c:4a: b1:2b:63:2b:0a:44:15:df:e7:d4:ab:61:d4:4e:98: de:73:af:d2:52:14:a8:d1:a7:ad:99:12:6e:ec:89: 6f:5d:a5:d7:bc:b7:d8:cf:59:cc:4a:c4:8a:93:93: 3f:e9:8c:f9:5c:3d:97:02:79:38:19:39:fc:72:d5: 52:8b:f8:48:38:70:0f:85:44:6e:97:d7:f7:48:c8: 60:44:3f:bb:61:86:d1:80:ec:05:0a:7d:c1:b1:86: 36:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D2:68:65:0B:A7:DE:DF:D4:85:13:44:3E:82:95:E1:D0:D9:EE:65 X509v3 Authority Key Identifier: keyid:47:B8:54:36:85:D3:01:FE:EF:90:CD:12:E5:15:8F:74:0D:6B:6C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/R7hUNoXTAf7vkM0S5RWPdA1rbLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7hUNoXTAf7vkM0S5RWPdA1rbLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/98F8A43C9D2611F0951DD30BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:26c0::/48 Signature Algorithm: sha256WithRSAEncryption bd:d8:ab:76:4f:3e:95:d1:d1:06:c5:da:85:4b:e8:c1:2c:c5: 80:11:34:12:5c:3f:c7:8f:9d:b0:71:d9:36:c0:39:d1:d1:3d: 4d:f1:ad:e9:bc:95:ed:5e:2a:d8:1e:88:47:ac:f2:fc:9c:cd: 87:77:bf:d1:d6:5b:c4:6d:19:a4:32:b4:ca:3f:ea:28:12:41: 12:80:ad:e0:31:ec:c8:f9:55:f3:a4:15:70:af:27:5e:dc:c0: e5:26:3b:c1:52:bd:94:9e:2d:9f:e1:4f:ee:f4:78:17:b9:e1: 0a:21:22:e3:f7:e9:d4:71:14:8d:32:8f:cc:87:23:e6:76:db: 5c:06:71:8a:89:5f:57:c5:38:b6:a7:97:0a:70:e1:5b:4a:31: cb:b7:03:52:84:4b:1f:7d:f8:b0:df:cc:d7:79:8c:03:2b:96: 10:e8:0a:0a:14:78:30:1c:d7:49:7d:c6:96:ac:a9:27:9e:ea: e0:ad:e6:1f:67:82:0e:c0:ab:ba:af:50:e7:86:ed:23:15:d5: 84:47:56:6e:87:7a:a6:af:2d:0d:52:93:de:38:13:6b:af:18: 23:6a:a6:a3:4f:37:12:2d:18:b9:49:b1:ef:22:09:de:6b:14: 8d:c0:ff:9d:91:c5:73:e3:7b:5c:ec:83:ed:2c:2a:cf:03:34: 06:d6:a9:9c -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjAwMDExMC8GA1UEBRMoNDdCODU0MzY4NUQzMDFGRUVGOTBDRDEyRTUxNThGNzQw RDZCNkNCMTAeFw0yNTA5MjkxMTIyMzVaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOWFlLTFlNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp/IGqBwouhSDXakR7ueBEfK+pIZzsOkjjBIMhFpNzNYRum475wmV8Zog2ZsSd 64AXtzYvT8tZGGXOxnpC2W92fVmzBh1xTUmcqR83Qpai6N0EUrRYLxYdIQhn3bcm ywkN/pKNw1cXXgPhF1R0tMBGDEonDT7FIU4D/VGafitLw/1HF9EhZWK9GtwDqfNG TSHCinNSkFzEBmYEX7/OZjfcRVY8SrErYysKRBXf59SrYdROmN5zr9JSFKjRp62Z Em7siW9dpde8t9jPWcxKxIqTkz/pjPlcPZcCeTgZOfxy1VKL+Eg4cA+FRG6X1/dI yGBEP7thhtGA7AUKfcGxhja7AgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUW9JoZQun 3t/UhRNEPoKV4dDZ7mUwHwYDVR0jBBgwFoAUR7hUNoXTAf7vkM0S5RWPdA1rbLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMDAwL0VFQjgwOEI4OUQx NzExRjBCNDJFRjAzNEM0RjlBRTAyL1I3aFVOb1hUQWY3dmtNMFM1UldQZEExcmJM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjdoVU5vWFRBZjd2a00wUzVSV1BkQTFyYkxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjAwMC9FRUI4MDhCODlEMTcxMUYwQjQyRUYwMzRDNEY5QUUwMi85OEY4QTQzQzlE MjYxMUYwOTUxREQzMEJDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ30JsAwDQYJKoZIhvcNAQELBQADggEBAL3Yq3ZPPpXR0QbF2oVL 6MEsxYARNBJcP8ePnbBx2TbAOdHRPU3xrem8le1eKtgeiEes8vyczYd3v9HWW8Rt GaQytMo/6igSQRKAreAx7Mj5VfOkFXCvJ17cwOUmO8FSvZSeLZ/hT+70eBe54Qoh IuP36dRxFI0yj8yHI+Z221wGcYqJX1fFOLanlwpw4VtKMcu3A1KESx99+LDfzNd5 jAMrlhDoCgoUeDAc10l9xpasqSee6uCt5h9ngg7Aq7qvUOeG7SMV1YRHVm6Heqav LQ1Sk944E2uvGCNqpqNPNxItGLlJse8iCd5rFI3A/52RxXPje1zsg+0sKs8DNAbW qZw= -----END CERTIFICATE-----Generated at Mon Mar 2 11:59:06 2026 by rpki-client