$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D1FD204C43B911EDB6AA2D5FC4F9AE02.roa File: D1FD204C43B911EDB6AA2D5FC4F9AE02.roa (raw, json) Hash identifier: ZQQmEapOEB8hbnYD2748C5/tVDyFBuYad9v0XjI6Mok= Subject key identifier: C6:2F:CF:CB:29:FE:2A:C6:AF:FF:FF:86:C8:A0:6B:CA:3A:06:25:A4 Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 02A3 Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D1FD204C43B911EDB6AA2D5FC4F9AE02.roa Signing time: Wed 15 Apr 2026 01:33:23 +0000 ROA not before: Wed 15 Apr 2026 01:33:23 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 16509 IP address blocks: 2403:8300:a4e0::/48 maxlen: 48 2403:8300:a4e1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 01:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Apr 15 01:33:23 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69deeae3-50cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:24:31:32:de:d5:21:49:6f:0d:92:ce:83: 66:dc:83:53:77:12:f3:82:fe:fb:a9:f3:cc:d6:76: 99:47:70:62:62:35:b0:2d:2c:12:dd:84:27:12:61: a5:48:73:b0:25:4c:eb:4c:ff:90:42:c5:d8:26:5b: d2:d5:43:e9:fc:d1:70:0d:f4:c5:74:c6:28:ee:bd: 9b:b1:2b:c8:e8:49:79:61:83:7a:50:3a:e8:19:92: ce:31:30:1e:c6:b1:fa:00:de:e6:52:20:63:44:70: 33:db:83:a4:fc:54:1f:d2:fc:24:ff:61:6f:bf:ca: 50:76:1e:f2:72:dc:3c:ad:64:c2:84:2b:c3:48:81: 5b:7b:f6:d8:9d:31:c5:93:19:e1:8b:cb:12:eb:3b: 0e:04:59:30:02:84:d6:20:45:98:c6:61:7d:4b:7f: 38:34:9a:cf:09:eb:f0:01:5e:4b:f0:30:d7:6b:e1: a7:3e:11:b3:16:e4:a6:d6:5b:b1:c5:bb:c7:eb:08: 49:5d:a9:a4:ac:54:f8:80:22:25:ce:6a:f5:5d:78: b1:1d:b6:9d:e2:be:5e:6e:63:af:14:3a:27:27:0f: 22:ad:13:73:72:4e:36:f4:a0:ac:8b:39:a9:c1:0e: 45:7b:2d:ac:ac:87:48:41:da:24:b3:65:8a:fe:e3: 55:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2F:CF:CB:29:FE:2A:C6:AF:FF:FF:86:C8:A0:6B:CA:3A:06:25:A4 X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D1FD204C43B911EDB6AA2D5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:8300:a4e0::/47 Signature Algorithm: sha256WithRSAEncryption af:9a:2d:a5:35:ed:d3:d4:4f:a4:f0:04:7f:0a:8e:fc:ee:31: 3d:e9:f7:24:eb:8b:6d:cc:68:cf:83:47:73:99:90:42:8d:8b: d9:65:2a:7d:90:d8:91:b0:10:be:f7:d5:67:a2:a4:e4:5c:30: e6:14:f3:dd:f1:af:92:ab:f9:e7:a1:c5:9a:f5:5d:e9:a6:2c: 89:ae:b0:4d:b6:a0:be:e4:66:31:a0:0c:5d:df:e9:1c:06:94: 70:05:b1:92:db:a8:e3:eb:d3:dc:55:27:ac:d3:ec:04:0e:eb: ef:1d:c1:d2:61:80:23:31:36:49:f0:52:86:2d:88:0d:b6:52: ad:be:56:98:ae:2f:91:31:44:82:12:a3:2c:28:3b:1a:6e:c7: 3e:64:21:ec:c9:a0:de:f2:e0:89:77:0b:a7:c8:24:48:39:7a: ed:da:8a:e1:4d:67:ef:c2:55:43:49:64:ba:11:02:e8:b8:65: 5d:4c:ab:bc:97:d7:c2:99:58:54:3c:25:b5:bb:53:01:04:5d: 69:37:8a:3a:9d:c7:4a:89:9a:bd:c4:34:b6:19:6c:d6:72:97: 2a:10:8a:f6:6d:72:4d:99:af:a0:b3:b6:93:b4:50:2c:e0:0d: 7c:40:0c:77:b0:68:91:43:69:a1:40:75:8b:60:23:7d:bb:f3: de:47:c4:db -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjYwNDE1MDEzMzIzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWRlZWFlMy01MGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8UkMTLe1SFJbw2SzoNm3INTdxLzgv77qfPM1naZR3BiYjWwLSwS3YQnEmGl SHOwJUzrTP+QQsXYJlvS1UPp/NFwDfTFdMYo7r2bsSvI6El5YYN6UDroGZLOMTAe xrH6AN7mUiBjRHAz24Ok/FQf0vwk/2Fvv8pQdh7yctw8rWTChCvDSIFbe/bYnTHF kxnhi8sS6zsOBFkwAoTWIEWYxmF9S384NJrPCevwAV5L8DDXa+GnPhGzFuSm1lux xbvH6whJXamkrFT4gCIlzmr1XXixHbad4r5ebmOvFDonJw8irRNzck429KCsizmp wQ5Fey2srIdIQdoks2WK/uNVEQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFMYvz8sp /irGr///hsiga8o6BiWkMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI1RjIvNEFFRUQ5MUM0M0I3MTFFRDk4RkY0NTVFQzRGOUFFMDIvRDFGRDIwNEM0 M0I5MTFFREI2QUEyRDVGQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcBJAODAKTgMA0GCSqGSIb3DQEBCwUAA4IBAQCvmi2lNe3T1E+k8AR/ Co787jE96fck64ttzGjPg0dzmZBCjYvZZSp9kNiRsBC+99VnoqTkXDDmFPPd8a+S q/nnocWa9V3ppiyJrrBNtqC+5GYxoAxd3+kcBpRwBbGS26jj69PcVSes0+wEDuvv HcHSYYAjMTZJ8FKGLYgNtlKtvlaYri+RMUSCEqMsKDsabsc+ZCHsyaDe8uCJdwun yCRIOXrt2orhTWfvwlVDSWS6EQLouGVdTKu8l9fCmVhUPCW1u1MBBF1pN4o6ncdK iZq9xDS2GWzWcpcqEIr2bXJNma+gs7aTtFAs4A18QAx3sGiRQ2mhQHWLYCN9u/Pe R8Tb -----END CERTIFICATE-----Generated at Fri Apr 17 06:35:27 2026 by rpki-client