$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/7EBD7FAA6DFD11F09A43321EC4F9AE02.roa File: 7EBD7FAA6DFD11F09A43321EC4F9AE02.roa (raw, json) Hash identifier: mrvsb1yUmpT+TPzg/icn7UEU7fIbAnYkrcZJuJgVboM= Subject key identifier: EA:4A:4B:47:31:62:A1:F0:42:B7:BF:85:11:F7:8D:16:75:E8:4A:0C Certificate issuer: /CN=A91C9B37/serialNumber=8DE9D074FF3C8D515415EBF0F0E56AC03EEADD3A Certificate serial: 90 Authority key identifier: 8D:E9:D0:74:FF:3C:8D:51:54:15:EB:F0:F0:E5:6A:C0:3E:EA:DD:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jenQdP88jVFUFevw8OVqwD7q3To.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/7EBD7FAA6DFD11F09A43321EC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:07:10 +0000 ROA not before: Thu 31 Jul 2025 10:59:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153912 IP address blocks: 2402:da0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/jenQdP88jVFUFevw8OVqwD7q3To.crl rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/jenQdP88jVFUFevw8OVqwD7q3To.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jenQdP88jVFUFevw8OVqwD7q3To.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B37, serialNumber=8DE9D074FF3C8D515415EBF0F0E56AC03EEADD3A Validity Not Before: Jul 31 10:59:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3e59e-0b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1d:43:f1:95:f0:94:ca:76:5a:1b:66:ff:a7: 77:47:15:1f:74:1d:12:ee:a6:63:9c:be:9d:a9:f0: 5d:b7:cd:31:08:7e:10:93:a0:bb:33:45:34:76:04: 8b:a6:16:a8:58:03:a4:0f:fd:71:27:b2:2a:01:85: 2d:85:7e:26:4c:16:53:47:1f:6b:e6:63:9e:a4:97: 8f:ee:de:72:60:e0:04:0d:09:0c:9e:e7:42:7d:9f: 8b:1e:5b:39:f8:f0:89:2f:33:1b:6e:b0:db:03:9f: 98:fb:03:73:0b:1e:11:bf:89:f4:3e:10:05:d0:5b: d4:3c:ec:fc:2c:4e:5c:10:ed:52:81:72:96:a4:7c: 8c:1c:37:14:c9:66:ad:eb:01:68:ef:7c:c6:93:9c: c5:88:e8:1f:b6:84:71:83:01:4f:4f:b1:01:13:5e: 45:11:28:c2:25:13:63:4c:a6:f6:f4:fa:13:41:5f: ef:85:cb:91:d8:2a:fb:75:6b:53:90:04:50:a2:c4: 12:c7:3a:3c:ca:5f:c1:6a:9e:0a:74:b7:12:67:ec: 37:11:d4:b4:44:dc:c3:dd:92:a2:30:75:a7:97:fc: 31:9c:ba:12:b9:52:43:02:ae:06:1e:29:81:a0:29: 54:c3:f8:cd:9f:7e:08:4f:65:fb:25:c7:09:c7:6a: a1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:4A:4B:47:31:62:A1:F0:42:B7:BF:85:11:F7:8D:16:75:E8:4A:0C X509v3 Authority Key Identifier: keyid:8D:E9:D0:74:FF:3C:8D:51:54:15:EB:F0:F0:E5:6A:C0:3E:EA:DD:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/jenQdP88jVFUFevw8OVqwD7q3To.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jenQdP88jVFUFevw8OVqwD7q3To.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/7EBD7FAA6DFD11F09A43321EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:da0::/32 Signature Algorithm: sha256WithRSAEncryption 4b:c6:4c:c6:c2:23:7e:aa:42:cb:ed:23:16:26:5e:d1:ee:5e: dd:4b:aa:02:3b:0e:b6:98:22:a3:f8:f4:7b:d4:ee:98:aa:17: c9:d1:f5:38:d7:9a:1c:e3:e2:3d:7a:b7:4f:30:48:a6:dc:16: 6a:70:b7:2b:8f:6c:2c:7f:b8:e7:92:24:a1:45:c5:55:71:57: a5:12:96:8a:82:fa:38:5a:69:4a:ef:f7:2d:43:93:69:af:d9: 04:6e:4a:dc:ab:ca:bc:4e:30:e8:93:6a:3a:2f:df:6f:1d:41: a6:c7:4a:38:a8:14:8e:d9:ef:ec:28:72:55:86:71:4b:49:81: a0:df:5c:dd:21:37:48:1f:3e:00:6c:51:92:bf:5e:77:33:1f: ce:df:80:7b:5a:bd:03:b1:97:48:28:b1:7d:3b:5e:08:b5:47: 81:c2:bb:2c:8a:d4:70:14:54:ef:83:46:ef:da:56:a1:94:31: 4b:a7:6b:53:09:99:b9:8f:b7:d8:ff:80:6d:63:63:1d:6f:e2: 17:40:8b:c1:de:54:a9:50:14:b1:ee:d7:f7:9f:8c:de:2a:b1: 0e:c6:c7:77:d5:fd:87:72:1c:99:09:98:b9:f1:b1:e3:87:df: 3f:0b:09:de:5b:00:b5:e4:a1:17:e9:57:39:0b:1d:c4:31:ca: c1:0d:c3:38 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzcxMTAvBgNVBAUTKDhERTlEMDc0RkYzQzhENTE1NDE1RUJGMEYwRTU2QUMw M0VFQUREM0EwHhcNMjUwNzMxMTA1OTU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTU5ZS0wYjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzB1D8ZXwlMp2Whtm/6d3RxUfdB0S7qZjnL6dqfBdt80xCH4Qk6C7M0U0dgSL phaoWAOkD/1xJ7IqAYUthX4mTBZTRx9r5mOepJeP7t5yYOAEDQkMnudCfZ+LHls5 +PCJLzMbbrDbA5+Y+wNzCx4Rv4n0PhAF0FvUPOz8LE5cEO1SgXKWpHyMHDcUyWat 6wFo73zGk5zFiOgftoRxgwFPT7EBE15FESjCJRNjTKb29PoTQV/vhcuR2Cr7dWtT kARQosQSxzo8yl/Bap4KdLcSZ+w3EdS0RNzD3ZKiMHWnl/wxnLoSuVJDAq4GHimB oClUw/jNn34IT2X7JccJx2qhmQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFOpKS0cx YqHwQre/hRH3jRZ16EoMMB8GA1UdIwQYMBaAFI3p0HT/PI1RVBXr8PDlasA+6t06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzNy8zRDhBQzU0NjND QTMxMUYwOEE0OTVDMkZDNEY5QUUwMi9qZW5RZFA4OGpWRlVGZXZ3OE9WcXdEN3Ez VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2plblFkUDg4alZGVUZldnc4T1Zxd0Q3cTNUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlCMzcvM0Q4QUM1NDYzQ0EzMTFGMDhBNDk1QzJGQzRGOUFFMDIvN0VCRDdGQUE2 REZEMTFGMDlBNDMzMjFFQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAINoDANBgkqhkiG9w0BAQsFAAOCAQEAS8ZMxsIjfqpCy+0jFiZe 0e5e3UuqAjsOtpgio/j0e9TumKoXydH1ONeaHOPiPXq3TzBIptwWanC3K49sLH+4 55IkoUXFVXFXpRKWioL6OFppSu/3LUOTaa/ZBG5K3KvKvE4w6JNqOi/fbx1BpsdK OKgUjtnv7ChyVYZxS0mBoN9c3SE3SB8+AGxRkr9edzMfzt+Ae1q9A7GXSCixfTte CLVHgcK7LIrUcBRU74NG79pWoZQxS6drUwmZuY+32P+AbWNjHW/iF0CLwd5UqVAU se7X95+M3iqxDsbHd9X9h3IcmQmYufGx44ffPwsJ3lsAteShF+lXOQsdxDHKwQ3D OA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:02:21 2026 by rpki-client