$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa File: 07CD68A213AD11EFADED003DC4F9AE02.roa (raw, json) Hash identifier: vpflnylg4u69h4p+T+Zu8l+UhKj8oqOycxNU/87Vm54= Subject key identifier: 03:08:3A:06:76:8B:79:10:2B:34:46:D8:E6:FC:C4:AA:F6:6B:C7:8B Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0B48 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa Signing time: Thu 26 Mar 2026 19:25:08 +0000 ROA not before: Thu 26 Mar 2026 19:25:08 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 55569 IP address blocks: 2001:218:2000:11::/64 maxlen: 64 2001:218:2000:21::/64 maxlen: 64 2001:218:4001:1::/64 maxlen: 64 2001:218:4001:2::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 19:25:08 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c58814-33f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:10:09:f4:48:a7:0e:4a:7f:31:a6:da:eb:bd: a7:ab:f7:9a:be:f7:fb:90:e5:56:f1:13:9e:5e:25: 63:e7:29:17:85:78:23:87:95:df:ec:c0:3f:e5:fa: dd:34:35:14:96:4c:a1:57:6a:6d:71:3e:ac:08:a6: 78:d3:65:3f:2e:f0:14:19:57:71:80:19:94:ef:7e: 25:19:41:00:7d:03:41:02:ab:c2:97:ea:4e:1d:7b: d4:9f:75:20:c0:3a:38:6f:d0:fe:46:8a:f3:dc:cf: 9a:e6:29:f3:c5:e3:66:db:86:ef:cc:eb:44:ec:86: b6:90:25:0f:77:d0:bd:57:db:f8:93:30:1d:78:03: 4e:36:e9:02:85:6c:8b:60:1b:36:b3:a7:5c:f1:49: ee:3c:cb:59:5b:af:6a:19:3d:3a:c7:27:db:c5:76: 0d:4c:51:7d:8d:13:d5:8f:fd:6a:48:b9:75:f6:c3: 9f:1a:14:95:61:32:65:9f:c3:f6:95:ca:7e:8a:7e: 7f:90:20:5c:f1:1b:23:de:bd:3f:dd:1e:34:20:0a: ee:8a:7f:6b:d6:6e:ab:92:62:95:8b:d8:79:e7:d5: 37:22:14:e8:8e:74:61:06:82:a6:16:bb:a7:1e:d8: b5:db:00:27:b6:db:24:d8:88:59:44:51:7d:be:3c: 02:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:08:3A:06:76:8B:79:10:2B:34:46:D8:E6:FC:C4:AA:F6:6B:C7:8B X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:218:2000:11::/64 2001:218:2000:21::/64 2001:218:4001:1::-2001:218:4001:2:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 78:d0:74:98:7f:12:07:c3:b1:bd:8d:e7:38:9a:0f:d3:fc:04: 48:c2:1c:f0:3c:f9:06:58:a6:87:f3:93:c1:c3:a1:87:e1:a5: a6:8b:6e:b4:f0:27:a2:d4:71:46:b5:58:d1:7f:21:a5:62:c6: 54:cb:a1:c3:d7:60:e3:46:af:4e:66:00:4b:6b:a5:fa:b0:2b: f1:da:e8:3b:2c:13:b4:15:7a:d3:63:2b:9d:30:16:d7:cf:bf: 44:02:11:26:09:31:fc:40:8f:bb:fc:07:16:01:d2:c7:fb:06: d0:97:32:e4:99:ed:4b:6e:65:1a:02:5b:1c:f7:de:5d:4b:76: 3d:ce:73:4c:78:65:6d:df:39:e2:46:32:41:4c:8b:ef:6a:9b: 87:22:3f:42:c9:3c:2b:6c:ed:5b:42:47:fd:cc:43:b0:fe:bd: c9:41:e8:95:96:fb:05:00:31:2d:25:eb:24:10:97:aa:03:ed: 82:3c:18:5c:a9:b1:25:8b:87:f4:19:84:ba:3e:a6:4e:a8:c0: 49:0a:b7:eb:20:7b:87:3f:fb:b4:b6:79:fc:dc:59:ce:27:8f: 64:d4:0f:b1:cd:ce:d7:27:1b:af:11:13:90:d7:7c:f4:0a:78: 30:94:c1:7a:08:67:9e:f5:48:e4:66:af:1f:18:d8:26:8b:5e: 20:4c:92:8e -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjYwMzI2MTkyNTA4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1ODgxNC0zM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxAJ9EinDkp/Maba672nq/eavvf7kOVW8ROeXiVj5ykXhXgjh5Xf7MA/5frd NDUUlkyhV2ptcT6sCKZ402U/LvAUGVdxgBmU734lGUEAfQNBAqvCl+pOHXvUn3Ug wDo4b9D+Rorz3M+a5inzxeNm24bvzOtE7Ia2kCUPd9C9V9v4kzAdeANONukChWyL YBs2s6dc8UnuPMtZW69qGT06xyfbxXYNTFF9jRPVj/1qSLl19sOfGhSVYTJln8P2 lcp+in5/kCBc8Rsj3r0/3R40IAruin9r1m6rkmKVi9h559U3IhTojnRhBoKmFrun Hti12wAnttsk2IhZRFF9vjwCpQIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFAMIOgZ2 i3kQKzRG2Ob8xKr2a8eLMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvMDdDRDY4QTIx M0FEMTFFRkFERUQwMDNEQzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjA0 BAIAAjAuAwkAIAECGCAAABEDCQAgAQIYIAAAITAWAwkAIAECGEABAAEDCQAgAQIY QAEAAjANBgkqhkiG9w0BAQsFAAOCAQEAeNB0mH8SB8OxvY3nOJoP0/wESMIc8Dz5 Blimh/OTwcOhh+GlpotutPAnotRxRrVY0X8hpWLGVMuhw9dg40avTmYAS2ul+rAr 8droOywTtBV602MrnTAW18+/RAIRJgkx/ECPu/wHFgHSx/sG0Jcy5JntS25lGgJb HPfeXUt2Pc5zTHhlbd854kYyQUyL72qbhyI/Qsk8K2ztW0JH/cxDsP69yUHolZb7 BQAxLSXrJBCXqgPtgjwYXKmxJYuH9BmEuj6mTqjASQq36yB7hz/7tLZ5/NxZzieP ZNQPsc3O1ycbrxETkNd89Ap4MJTBeghnnvVI5GavHxjYJoteIEySjg== -----END CERTIFICATE-----Generated at Sat Apr 18 02:30:24 2026 by rpki-client