$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa File: 8C0868D0C9DC11EE8B24C55EC4F9AE02.roa (raw, json) Hash identifier: MJ4t9mNOzArFswvJlj8ONWt12fku2oXbHOQN2lvyrzo= Subject key identifier: D0:99:19:F0:B3:53:27:E0:1F:12:29:E0:0C:0D:2E:89:0E:71:10:05 Certificate issuer: /CN=A91BB493/serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Certificate serial: 0B27 Authority key identifier: 9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:50:36 +0000 ROA not before: Wed 26 Mar 2025 19:59:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 3949 IP address blocks: 2001:218:2008::/48 maxlen: 48 2001:218:3001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2855 (0xb27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB493, serialNumber=9A3FE54122A5096D3EDD88060ED4D9183CBE1867 Validity Not Before: Mar 26 19:59:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47c6c-fe07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:27:93:66:42:1b:75:37:30:e6:8d:cd:a2:51: a6:67:8b:c8:d1:4f:72:1b:e5:1f:ef:39:e5:25:7b: 55:3a:a6:ba:db:4e:5c:e6:8c:f3:24:1d:82:4a:f0: e9:d5:09:f0:13:d5:41:e9:21:7d:cc:6a:a3:b8:c1: 32:87:e8:bd:08:9b:2b:62:03:b4:ab:d3:41:01:02: cd:46:3d:0c:c6:f5:88:ab:28:bb:71:11:ce:26:bc: 4f:67:54:3f:f4:52:73:6b:ab:41:d5:3e:f0:bb:e5: 62:5b:33:49:63:90:ba:9c:fd:68:c6:6c:0e:c0:61: e3:c9:e8:0f:24:e3:43:18:7e:48:ee:4a:bf:f6:73: b9:09:ef:ac:7b:19:85:4f:94:05:e6:ac:b5:ab:e9: 57:c0:b3:2f:11:83:c4:bd:d0:25:b2:db:3d:27:f9: 69:d6:49:c5:c3:e8:ec:5f:38:62:1c:87:89:64:57: 3f:22:50:77:9e:e1:71:02:3c:94:7f:6a:70:37:22: f9:71:72:1a:76:10:07:50:71:67:94:16:1b:0d:61: a8:c4:81:48:4c:2c:9f:68:41:fc:00:f7:9a:ce:23: 7d:d5:21:e9:b7:7f:09:78:74:1b:67:52:d9:b2:50: 3b:91:b9:50:ba:d6:b9:21:db:92:5f:fb:06:72:b5: af:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:99:19:F0:B3:53:27:E0:1F:12:29:E0:0C:0D:2E:89:0E:71:10:05 X509v3 Authority Key Identifier: keyid:9A:3F:E5:41:22:A5:09:6D:3E:DD:88:06:0E:D4:D9:18:3C:BE:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/mj_lQSKlCW0-3YgGDtTZGDy-GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mj_lQSKlCW0-3YgGDtTZGDy-GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB493/5FCAB67268F311EA832DDB37C4F9AE02/8C0868D0C9DC11EE8B24C55EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:218:2008::/48 2001:218:3001::/48 Signature Algorithm: sha256WithRSAEncryption b8:8c:d6:87:92:76:46:28:6b:7a:29:c6:8e:60:86:a7:be:4f: 15:b2:88:fb:15:9f:42:f6:7d:d1:21:b7:e8:4c:c8:c9:c2:20: 20:a5:59:6c:c6:ab:ed:39:0c:a6:32:d2:d7:96:2f:3b:09:58: db:db:48:4c:24:16:63:0f:8a:f6:c2:88:d2:7a:8a:05:69:08: b8:1d:a5:26:b0:4a:a4:20:87:3e:d6:c7:7e:17:7a:67:79:8f: f0:3c:c5:49:cd:d4:ba:7c:59:10:8b:fd:a4:04:16:91:af:8c: 3d:0f:0f:fe:f8:c6:3e:c7:b0:fd:7b:82:ea:be:d4:9c:84:37: 7d:13:dc:9b:97:dd:8b:59:f7:3f:3b:93:d6:5e:20:88:a8:cd: 99:49:a9:57:c2:82:4f:07:21:85:b5:95:12:4b:07:7e:be:23: ac:8c:05:e1:4e:87:71:cb:91:92:aa:6c:81:0e:7f:14:ab:af: 8f:22:09:c7:56:7c:c5:ba:2a:80:80:bf:fe:7b:b7:9b:48:37: b5:c2:4d:0f:84:b0:57:7a:58:b5:28:ba:99:a2:31:d6:82:dd: b6:d5:a1:cb:a9:47:f0:13:5e:db:e7:5b:94:8d:ad:28:14:25: 95:d3:54:fc:b0:a7:fa:5a:d7:9f:c1:af:41:ff:89:13:11:bf: fa:78:6b:f9 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICCycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0OTMxMTAvBgNVBAUTKDlBM0ZFNTQxMjJBNTA5NkQzRUREODgwNjBFRDREOTE4 M0NCRTE4NjcwHhcNMjUwMzI2MTk1OTU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2M2Yy1mZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyeTZkIbdTcw5o3NolGmZ4vI0U9yG+Uf7znlJXtVOqa6205c5ozzJB2CSvDp 1QnwE9VB6SF9zGqjuMEyh+i9CJsrYgO0q9NBAQLNRj0MxvWIqyi7cRHOJrxPZ1Q/ 9FJza6tB1T7wu+ViWzNJY5C6nP1oxmwOwGHjyegPJONDGH5I7kq/9nO5Ce+sexmF T5QF5qy1q+lXwLMvEYPEvdAlsts9J/lp1knFw+jsXzhiHIeJZFc/IlB3nuFxAjyU f2pwNyL5cXIadhAHUHFnlBYbDWGoxIFITCyfaEH8APeaziN91SHpt38JeHQbZ1LZ slA7kblQuta5IduSX/sGcrWvUQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFNCZGfCz UyfgHxIp4AwNLokOcRAFMB8GA1UdIwQYMBaAFJo/5UEipQltPt2IBg7U2Rg8vhhn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjQ5My81RkNBQjY3MjY4 RjMxMUVBODMyRERCMzdDNEY5QUUwMi9tal9sUVNLbENXMC0zWWdHRHRUWkdEeS1H R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21qX2xRU0tsQ1cwLTNZZ0dEdFRaR0R5LUdHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI0OTMvNUZDQUI2NzI2OEYzMTFFQTgzMkREQjM3QzRGOUFFMDIvOEMwODY4RDBD OURDMTFFRThCMjRDNTVFQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcAIAECGCAIAwcAIAECGDABMA0GCSqGSIb3DQEBCwUAA4IBAQC4jNaH knZGKGt6KcaOYIanvk8Vsoj7FZ9C9n3RIbfoTMjJwiAgpVlsxqvtOQymMtLXli87 CVjb20hMJBZjD4r2wojSeooFaQi4HaUmsEqkIIc+1sd+F3pneY/wPMVJzdS6fFkQ i/2kBBaRr4w9Dw/++MY+x7D9e4LqvtSchDd9E9ybl92LWfc/O5PWXiCIqM2ZSalX woJPByGFtZUSSwd+viOsjAXhTodxy5GSqmyBDn8Uq6+PIgnHVnzFuiqAgL/+e7eb SDe1wk0PhLBXeli1KLqZojHWgt221aHLqUfwE17b51uUja0oFCWV01T8sKf6Wtef wa9B/4kTEb/6eGv5 -----END CERTIFICATE-----Generated at Mon Mar 2 06:17:01 2026 by rpki-client