$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa File: 07CD68A213AD11EFADED003DC4F9AE02.roa (raw, json) Hash identifier: fvHEuQxM7QtSBpohLsHjlXFRVApMH4LnofLEq5KCpls= Subject key identifier: C3:1B:43:20:B7:D9:F0:25:08:B3:9F:92:45:42:AF:14:9B:01:C7:E1 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0B2A Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:50:39 +0000 ROA not before: Wed 26 Mar 2025 20:00:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55569 IP address blocks: 2001:218:2000:11::/64 maxlen: 64 2001:218:2000:21::/64 maxlen: 64 2001:218:4001:1::/64 maxlen: 64 2001:218:4001:2::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2858 (0xb2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 20:00:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47c6e-df3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:02:72:f4:bd:93:a1:04:3c:83:56:32:0b:f0: cb:e8:f5:1f:f5:0d:a8:b7:b8:48:6c:5b:13:53:86: 43:06:8f:84:71:55:30:c4:6e:09:d9:78:ad:d1:5d: e2:54:b9:c9:f3:47:51:56:53:62:52:45:86:e0:7c: bc:ec:b4:72:d4:3d:01:4d:29:38:5b:a2:12:c7:1c: 14:67:44:07:dd:41:30:09:8d:3a:01:c7:59:9a:eb: 68:1c:3d:b7:1e:d4:4e:9c:8a:e5:72:55:97:9d:11: 58:90:73:8b:53:af:6b:79:f9:1b:d2:84:fc:da:9d: 9f:fa:7a:c0:c0:38:55:19:5e:5f:bb:49:46:60:c6: c4:b5:2d:14:8c:63:62:ed:16:18:11:86:1e:2e:58: 46:93:bd:da:78:70:85:41:24:df:96:c2:36:72:a7: e0:f3:1c:39:98:57:97:a4:36:7f:5e:df:27:aa:2e: 9d:c5:dd:9d:10:72:12:7d:7b:86:96:7f:55:d7:09: 6e:77:92:36:53:0b:ed:ef:2c:ff:c8:5e:7e:d6:f6: 02:1f:79:25:34:96:c4:39:ae:ca:6f:d6:79:35:2e: 37:5c:4b:63:3b:f1:dd:aa:83:cc:ed:f1:95:5d:74: d6:e8:cb:fc:1d:17:a7:01:d4:21:a0:71:d5:be:d7: 83:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:1B:43:20:B7:D9:F0:25:08:B3:9F:92:45:42:AF:14:9B:01:C7:E1 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/07CD68A213AD11EFADED003DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:218:2000:11::/64 2001:218:2000:21::/64 2001:218:4001:1::-2001:218:4001:2:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3e:2e:d3:fe:e6:12:52:f2:16:16:52:06:cf:c9:24:1f:83:f1: 1f:b7:18:72:79:ec:8b:44:19:38:56:07:75:3b:b5:e9:7e:74: 5f:19:41:d4:ae:99:7b:4f:c5:04:63:8a:4b:cb:52:8b:45:15: 12:51:f6:1d:0c:9b:e4:92:34:38:47:57:b8:09:09:f7:3d:3c: cb:ef:78:35:ca:44:d1:7c:54:c5:5b:9f:ca:94:4a:b4:02:05: a2:b2:b0:ad:f4:c2:45:76:ce:e7:11:e9:d9:89:84:02:1e:4b: c2:f7:86:7b:d8:44:1b:04:83:d7:4b:c9:00:e9:41:2a:c5:1a: 8e:f0:37:fd:73:eb:23:2c:7b:8f:6a:1e:76:31:59:f5:a7:b7: 44:d7:9a:01:7a:e4:98:7b:d1:a5:98:23:9a:98:66:26:3a:9d: 72:4f:df:f2:91:a3:e9:71:fc:ea:c3:68:29:5b:47:10:63:9b: 6f:17:1a:90:64:78:e8:cb:03:1d:b3:dc:15:b0:1e:45:0f:bd: d1:6c:80:cb:db:d7:d0:7c:aa:5e:5b:0c:56:52:ce:e8:e9:e2: 5f:64:54:3b:92:25:f7:f6:bb:a6:cf:75:76:b8:2e:ff:2d:f1: e4:a2:7a:90:12:7d:62:e6:b9:26:d1:9b:cf:65:d8:cf:63:d0: e6:81:63:0f -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICCyowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUwMzI2MjAwMDAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M2ZS1kZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0AJy9L2ToQQ8g1YyC/DL6PUf9Q2ot7hIbFsTU4ZDBo+EcVUwxG4J2Xit0V3i VLnJ80dRVlNiUkWG4Hy87LRy1D0BTSk4W6ISxxwUZ0QH3UEwCY06AcdZmutoHD23 HtROnIrlclWXnRFYkHOLU69refkb0oT82p2f+nrAwDhVGV5fu0lGYMbEtS0UjGNi 7RYYEYYeLlhGk73aeHCFQSTflsI2cqfg8xw5mFeXpDZ/Xt8nqi6dxd2dEHISfXuG ln9V1wlud5I2Uwvt7yz/yF5+1vYCH3klNJbEOa7Kb9Z5NS43XEtjO/HdqoPM7fGV XXTW6Mv8HRenAdQhoHHVvteDZQIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFMMbQyC3 2fAlCLOfkkVCrxSbAcfhMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvMDdDRDY4QTIx M0FEMTFFRkFERUQwMDNEQzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjA0 BAIAAjAuAwkAIAECGCAAABEDCQAgAQIYIAAAITAWAwkAIAECGEABAAEDCQAgAQIY QAEAAjANBgkqhkiG9w0BAQsFAAOCAQEAPi7T/uYSUvIWFlIGz8kkH4PxH7cYcnns i0QZOFYHdTu16X50XxlB1K6Ze0/FBGOKS8tSi0UVElH2HQyb5JI0OEdXuAkJ9z08 y+94NcpE0XxUxVufypRKtAIForKwrfTCRXbO5xHp2YmEAh5LwveGe9hEGwSD10vJ AOlBKsUajvA3/XPrIyx7j2oedjFZ9ae3RNeaAXrkmHvRpZgjmphmJjqdck/f8pGj 6XH86sNoKVtHEGObbxcakGR46MsDHbPcFbAeRQ+90WyAy9vX0HyqXlsMVlLO6Oni X2RUO5Il9/a7ps91drgu/y3x5KJ6kBJ9Yua5JtGbz2XYz2PQ5oFjDw== -----END CERTIFICATE-----Generated at Mon Mar 2 02:11:16 2026 by rpki-client