$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa File: 8610B9DCF33F11EEB412F210C4F9AE02.roa (raw, json) Hash identifier: FPfgp7Al/sAnJcpnbzxEl6750GjZ2NbI2QBuF/gjvuI= Subject key identifier: BB:D5:8E:61:D5:9B:30:6B:82:3A:4E:F9:CA:0D:85:C8:8B:CA:66:4E Certificate issuer: /CN=A91C1A4E/serialNumber=A921635C7493F21CD26093D5903510802F4E3586 Certificate serial: 0C07 Authority key identifier: A9:21:63:5C:74:93:F2:1C:D2:60:93:D5:90:35:10:80:2F:4E:35:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:25:50 +0000 ROA not before: Wed 02 Apr 2025 19:19:13 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138585 IP address blocks: 2404:53c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.crl rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A4E, serialNumber=A921635C7493F21CD26093D5903510802F4E3586 Validity Not Before: Apr 2 19:19:13 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a4061e-9280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:38:55:5a:45:32:a0:b2:85:30:59:f7:26:38: 13:ea:c5:51:00:9c:75:c6:f3:7a:3a:49:4a:7f:e6: 8d:d2:80:b5:7f:2f:11:e1:2b:a0:ab:f4:26:18:ad: ba:0a:2f:e0:75:dd:7b:33:8f:c4:71:cb:a3:ca:ac: 34:0b:e2:a9:46:ec:8a:ef:2e:15:88:24:67:5c:c7: c9:86:f6:de:32:75:37:c7:56:da:c5:34:5c:0c:94: 3a:8f:d8:34:d9:2b:00:49:66:63:24:c7:b4:3c:95: 90:41:12:a0:7c:1f:7b:fa:6f:22:8e:6e:c6:c0:a6: e3:56:dc:db:68:e6:19:b4:7d:c3:20:2b:62:d6:87: f0:7c:a4:65:de:ab:92:e7:71:c4:90:bc:b2:99:5b: 82:28:5b:e9:d8:42:3b:56:33:9f:a1:15:d1:37:2d: 7c:1f:82:93:e5:4e:c3:90:81:b8:cd:5a:10:1a:fc: 01:3a:e6:f0:0b:35:62:7a:03:57:ab:a2:07:5b:63: fb:07:99:c3:d5:53:0f:b4:51:58:a7:44:50:50:b7: de:00:07:7b:e6:89:f0:0d:f6:88:3e:d8:fb:42:67: b6:64:35:c0:5a:58:63:48:20:5f:13:a4:4e:fb:40: fc:d0:0c:6b:ed:84:d8:18:02:b5:7c:fe:cd:b2:cc: 1e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D5:8E:61:D5:9B:30:6B:82:3A:4E:F9:CA:0D:85:C8:8B:CA:66:4E X509v3 Authority Key Identifier: keyid:A9:21:63:5C:74:93:F2:1C:D2:60:93:D5:90:35:10:80:2F:4E:35:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/qSFjXHST8hzSYJPVkDUQgC9ONYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFjXHST8hzSYJPVkDUQgC9ONYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A4E/A49B4D7437C611EA9D96AE51C4F9AE02/8610B9DCF33F11EEB412F210C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:53c0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:03:83:d2:bc:e0:c1:4d:41:9e:0e:f8:0b:c3:8a:8a:b9:03: 56:48:60:71:6d:d2:cb:8a:a4:fe:67:9c:16:9e:bd:c1:66:46: b9:79:4d:57:c3:91:88:49:47:dd:20:51:d1:19:dd:9d:fe:49: cf:49:2d:df:e7:83:b9:86:18:66:62:0a:8d:aa:67:35:a5:6c: 93:c8:4c:25:18:13:84:30:a6:4f:60:51:3f:98:37:32:ca:46: 80:77:b7:ff:db:b0:ae:90:24:32:5f:6d:b2:4d:c0:61:d0:00: b4:58:e4:33:02:39:d8:c1:bc:44:f0:e5:dd:c6:69:47:f2:37: 38:3c:37:e6:7a:8d:09:28:3d:ea:b5:1a:74:7c:5c:25:d3:d9: f9:95:fa:a3:1b:9f:be:52:63:35:dd:0e:a2:8c:96:9a:d1:76: 76:2d:ff:61:56:e8:dc:0d:93:6a:cd:9d:3e:fd:57:3e:b6:20: 38:81:11:92:d0:89:24:3e:eb:a3:73:f8:33:a7:2c:42:2c:43: a4:f4:eb:26:6d:3a:e5:b7:0d:bd:49:f8:d2:6c:4a:97:5e:5f: b5:2a:6d:15:00:ed:6b:c5:65:1d:0f:ae:da:44:76:e4:fd:12: e8:67:9d:0a:4b:70:44:d4:5e:8c:e8:55:e7:bc:49:5f:67:26: 3a:4a:f4:a5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBNEUxMTAvBgNVBAUTKEE5MjE2MzVDNzQ5M0YyMUNEMjYwOTNENTkwMzUxMDgw MkY0RTM1ODYwHhcNMjUwNDAyMTkxOTEzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDYxZS05MjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAijhVWkUyoLKFMFn3JjgT6sVRAJx1xvN6OklKf+aN0oC1fy8R4Sugq/QmGK26 Ci/gdd17M4/Eccujyqw0C+KpRuyK7y4ViCRnXMfJhvbeMnU3x1baxTRcDJQ6j9g0 2SsASWZjJMe0PJWQQRKgfB97+m8ijm7GwKbjVtzbaOYZtH3DICti1ofwfKRl3quS 53HEkLyymVuCKFvp2EI7VjOfoRXRNy18H4KT5U7DkIG4zVoQGvwBOubwCzViegNX q6IHW2P7B5nD1VMPtFFYp0RQULfeAAd75onwDfaIPtj7Qme2ZDXAWlhjSCBfE6RO +0D80Axr7YTYGAK1fP7NsswefwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFLvVjmHV mzBrgjpO+coNhciLymZOMB8GA1UdIwQYMBaAFKkhY1x0k/Ic0mCT1ZA1EIAvTjWG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUE0RS9BNDlCNEQ3NDM3 QzYxMUVBOUQ5NkFFNTFDNEY5QUUwMi9xU0ZqWEhTVDhoelNZSlBWa0RVUWdDOU9O WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRmpYSFNUOGh6U1lKUFZrRFVRZ0M5T05ZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBNEUvQTQ5QjRENzQzN0M2MTFFQTlEOTZBRTUxQzRGOUFFMDIvODYxMEI5RENG MzNGMTFFRUI0MTJGMjEwQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJARTwDANBgkqhkiG9w0BAQsFAAOCAQEAbAOD0rzgwU1Bng74C8OK irkDVkhgcW3Sy4qk/mecFp69wWZGuXlNV8ORiElH3SBR0Rndnf5Jz0kt3+eDuYYY ZmIKjapnNaVsk8hMJRgThDCmT2BRP5g3MspGgHe3/9uwrpAkMl9tsk3AYdAAtFjk MwI52MG8RPDl3cZpR/I3ODw35nqNCSg96rUadHxcJdPZ+ZX6oxufvlJjNd0OooyW mtF2di3/YVbo3A2Tas2dPv1XPrYgOIERktCJJD7ro3P4M6csQixDpPTrJm065bcN vUn40mxKl15ftSptFQDta8VlHQ+u2kR25P0S6GedCktwRNRejOhV57xJX2cmOkr0 pQ== -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:13 2026 by rpki-client