$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa File: B8F67148DC6611ED89F0804EC4F9AE02.roa (raw, json) Hash identifier: +VAYiRJdwp7AIJFptknUoX/WQ06mNIU7bXi85wbu8IY= Subject key identifier: 85:0D:31:32:B4:EC:49:2E:DC:E2:DA:59:31:E8:FC:11:20:A4:B6:78 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 11DC Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:34:16 +0000 ROA not before: Wed 02 Apr 2025 17:46:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4842 IP address blocks: 2404:7ac0:660::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4572 (0x11dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3, serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Apr 2 17:46:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a47898-6d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4d:43:4a:b1:60:a4:22:ee:f7:67:b6:0e:5d: 0b:b1:c3:d8:a5:b9:c0:52:74:83:f1:4d:48:94:5d: 24:ab:2e:9b:ab:16:b3:cd:b2:eb:24:b3:bc:b0:b4: 81:9b:4b:91:09:a9:51:85:3f:2f:5a:ea:86:07:af: ba:e3:25:18:68:dc:20:b4:5d:83:3d:e2:1e:7d:40: dd:8f:cb:21:58:31:cc:9c:b7:08:12:e2:60:89:75: 9e:5f:0b:a1:34:d6:aa:9d:a4:af:42:4c:cb:f6:5c: 42:3f:85:14:c7:8d:2d:77:d7:46:89:2d:f3:4d:0c: 73:f4:92:69:59:1b:8c:a3:cc:5a:ef:c5:6e:ed:ac: 91:ff:0a:e6:ee:cf:16:28:3d:b9:10:92:d0:cb:9e: 7d:96:7e:4d:f6:29:0f:3a:6c:ce:90:f0:71:12:d4: 73:8a:6f:5a:2d:7f:f3:73:34:ae:cf:d4:cd:d4:ea: 31:9c:61:fe:2b:7b:30:cb:73:32:1d:17:7f:ad:9f: ba:71:b5:6c:88:b1:1b:c3:f3:c1:fe:1d:5e:61:35: db:ce:3c:56:8a:e5:32:17:1c:eb:b0:2c:51:b5:34: d2:c0:8e:2c:d0:c4:2c:41:31:f9:ed:b9:50:ca:1b: 75:f1:8d:5c:59:29:d1:8c:5d:65:f0:97:ff:40:c9: cc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0D:31:32:B4:EC:49:2E:DC:E2:DA:59:31:E8:FC:11:20:A4:B6:78 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/B8F67148DC6611ED89F0804EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:660::/44 Signature Algorithm: sha256WithRSAEncryption 21:ac:f1:34:94:10:37:bc:17:96:16:d9:2b:60:3b:aa:2f:0b: 8a:bb:e1:2d:d3:e8:92:19:14:2f:a3:5d:3b:6a:b5:5d:b7:68: 74:8a:1d:44:c4:55:06:19:40:60:12:f8:b2:01:d5:6e:c7:36: 52:d6:da:2e:f7:a4:f9:f7:29:f2:69:4b:08:8f:93:13:35:99: 97:50:bc:87:56:5c:0d:76:ba:ce:42:0b:89:ed:38:52:d6:11: 88:69:53:ae:74:9c:d8:f2:e4:d1:22:3f:c2:16:10:9d:55:fd: e9:70:fc:fd:8c:14:bc:37:ca:cd:70:4f:ec:93:54:16:b5:ed: 80:54:df:aa:11:42:0c:27:bc:eb:bc:e1:f2:8d:89:45:a6:e5: 8e:b9:c6:d0:42:2d:74:ef:e7:d1:3f:11:a4:a0:03:d2:cb:0b: 31:67:10:f2:49:80:94:ba:90:ee:8a:d1:89:a0:82:d6:70:d9: 2a:4e:78:29:32:05:51:07:01:82:b5:52:3d:a1:9b:4e:5c:23: ed:fa:83:0a:dc:a2:e3:17:f6:43:f2:11:4c:dc:f3:5a:a5:40: 1e:fc:f5:19:c7:69:c8:73:26:ac:bf:96:9a:f9:22:ca:c4:cf: 49:0d:6e:e1:3a:89:c7:e8:7d:9e:94:86:44:73:02:80:0c:21: 4f:95:93:99 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICEdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjUwNDAyMTc0NjM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzg5OC02ZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqU1DSrFgpCLu92e2Dl0LscPYpbnAUnSD8U1IlF0kqy6bqxazzbLrJLO8sLSB m0uRCalRhT8vWuqGB6+64yUYaNwgtF2DPeIefUDdj8shWDHMnLcIEuJgiXWeXwuh NNaqnaSvQkzL9lxCP4UUx40td9dGiS3zTQxz9JJpWRuMo8xa78Vu7ayR/wrm7s8W KD25EJLQy559ln5N9ikPOmzOkPBxEtRzim9aLX/zczSuz9TN1OoxnGH+K3swy3My HRd/rZ+6cbVsiLEbw/PB/h1eYTXbzjxWiuUyFxzrsCxRtTTSwI4s0MQsQTH57blQ yht18Y1cWSnRjF1l8Jf/QMnMZwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFIUNMTK0 7Eku3OLaWTHo/BEgpLZ4MB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvQjhGNjcxNDhE QzY2MTFFRDg5RjA4MDRFQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcEJAR6wAZgMA0GCSqGSIb3DQEBCwUAA4IBAQAhrPE0lBA3vBeWFtkr YDuqLwuKu+Et0+iSGRQvo107arVdt2h0ih1ExFUGGUBgEviyAdVuxzZS1tou96T5 9ynyaUsIj5MTNZmXULyHVlwNdrrOQguJ7ThS1hGIaVOudJzY8uTRIj/CFhCdVf3p cPz9jBS8N8rNcE/sk1QWte2AVN+qEUIMJ7zrvOHyjYlFpuWOucbQQi107+fRPxGk oAPSywsxZxDySYCUupDuitGJoILWcNkqTngpMgVRBwGCtVI9oZtOXCPt+oMK3KLj F/ZD8hFM3PNapUAe/PUZx2nIcyasv5aa+SLKxM9JDW7hOonH6H2elIZEcwKADCFP lZOZ -----END CERTIFICATE-----Generated at Mon Mar 2 05:39:20 2026 by rpki-client