$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/75431F44F12311F09E054F8D4F6F56BC.roa File: 75431F44F12311F09E054F8D4F6F56BC.roa (raw, json) Hash identifier: dSpl28NojgoPbGTH9IFDprulOgPwqOMWIzrfbBeiOaI= Subject key identifier: D0:A6:6D:0F:FB:BD:A7:8F:DD:EA:40:F1:81:36:E3:4E:27:D3:2B:A2 Certificate issuer: /CN=A91D2B9A/serialNumber=890268FD25C779E36FBB872F6013F30415FFA2DD Certificate serial: 21 Authority key identifier: 89:02:68:FD:25:C7:79:E3:6F:BB:87:2F:60:13:F3:04:15:FF:A2:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/75431F44F12311F09E054F8D4F6F56BC.roa Signing time: Mon 02 Mar 2026 05:23:00 +0000 ROA not before: Wed 14 Jan 2026 08:31:44 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 142207 IP address blocks: 2402:4820::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B9A, serialNumber=890268FD25C779E36FBB872F6013F30415FFA2DD Validity Not Before: Jan 14 08:31:44 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a51eb4-da7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:86:d0:a7:ad:3b:86:f3:df:3f:70:be:aa:4b: 01:1d:ee:ab:53:d4:4a:ad:7b:bd:86:f6:5e:42:6f: 64:72:cf:76:7a:8c:b3:bf:bd:f1:4b:42:5a:77:ba: 77:df:48:b9:af:80:fe:67:85:b8:37:66:71:1a:f9: 38:75:96:ee:55:7a:bf:bc:fe:9b:75:b3:a7:d2:1c: 28:5c:86:6e:ae:4d:c7:6a:8c:fc:2f:a0:dd:7f:a7: 21:17:f5:9c:37:c8:97:55:be:ba:71:1b:e3:c2:22: 94:d5:6f:54:e8:e3:20:30:b4:2f:6b:c9:af:61:28: cc:1d:cc:7d:b1:fb:8a:e7:50:9f:27:9d:04:1c:37: 40:f0:d2:c3:72:61:37:06:2e:24:71:76:f3:63:c1: 2d:77:e5:5a:bc:3b:32:44:f0:be:12:af:bb:68:4c: 9d:87:25:a8:da:2f:45:80:b9:de:73:9b:e4:f6:96: a8:b7:18:74:16:5d:23:62:7b:b1:09:93:6e:38:7a: eb:2c:8c:21:9d:06:a3:75:72:30:38:af:c6:98:e7: 73:af:56:13:96:85:1c:6b:41:46:af:ea:1d:ba:3d: 7a:32:84:e9:81:39:5e:a6:51:51:c6:bb:49:41:b0: 85:3f:9e:8b:89:7b:4c:0e:7c:87:ed:64:cd:3f:31: 46:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:A6:6D:0F:FB:BD:A7:8F:DD:EA:40:F1:81:36:E3:4E:27:D3:2B:A2 X509v3 Authority Key Identifier: keyid:89:02:68:FD:25:C7:79:E3:6F:BB:87:2F:60:13:F3:04:15:FF:A2:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/iQJo_SXHeeNvu4cvYBPzBBX_ot0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJo_SXHeeNvu4cvYBPzBBX_ot0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B9A/5EA3462AF12211F0AC5CDA7E4E6F56BC/75431F44F12311F09E054F8D4F6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2402:4820::/32 Signature Algorithm: sha256WithRSAEncryption 11:b9:39:19:b0:26:88:cb:ea:15:51:51:d0:80:84:cf:ac:7c: 55:67:54:9a:95:9e:30:5e:f6:eb:17:c6:d0:de:5b:69:90:75: 08:fb:0c:6d:11:10:a7:7f:79:fd:60:a2:32:78:6a:99:23:1a: 87:f6:24:ce:7a:48:36:a2:1d:cb:64:0e:18:05:49:7c:7e:69: 6d:45:09:31:7c:7d:c7:42:27:f7:6d:a6:cc:69:dd:4d:5b:ec: 4c:63:31:e0:a5:c4:c1:63:d8:30:95:e5:cc:fb:ec:b4:9c:14: 75:02:73:c5:22:27:5e:ec:d2:4e:0a:25:05:a5:5c:5a:37:06: 87:05:a4:22:92:85:83:bc:72:88:50:26:46:96:15:a0:dd:70: b1:62:77:a9:df:46:6a:81:fa:06:7e:32:28:5b:d9:01:e5:33: 3d:c9:84:ca:a6:6c:b7:1a:b7:00:0c:a0:0d:61:84:ae:84:69: 26:d7:ea:38:f1:7e:d8:c9:ae:57:1e:c4:a9:8f:7c:bf:37:1f: b4:9c:a2:a6:78:25:53:76:11:7d:38:f6:a7:7d:51:94:d3:48: 10:d6:d1:db:69:2a:36:62:28:bd:1e:17:ff:eb:00:93:c6:85: fd:55:c5:91:69:f2:1d:a5:7d:bc:6d:e1:78:8b:b4:fa:3c:aa: 41:be:19:06 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkI5QTExMC8GA1UEBRMoODkwMjY4RkQyNUM3NzlFMzZGQkI4NzJGNjAxM0YzMDQx NUZGQTJERDAeFw0yNjAxMTQwODMxNDRaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTUxZWI0LWRhN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkhtCnrTuG898/cL6qSwEd7qtT1Eqte72G9l5Cb2Ryz3Z6jLO/vfFLQlp3unff SLmvgP5nhbg3ZnEa+Th1lu5Ver+8/pt1s6fSHChchm6uTcdqjPwvoN1/pyEX9Zw3 yJdVvrpxG+PCIpTVb1To4yAwtC9rya9hKMwdzH2x+4rnUJ8nnQQcN0Dw0sNyYTcG LiRxdvNjwS135Vq8OzJE8L4Sr7toTJ2HJajaL0WAud5zm+T2lqi3GHQWXSNie7EJ k244eussjCGdBqN1cjA4r8aY53OvVhOWhRxrQUav6h26PXoyhOmBOV6mUVHGu0lB sIU/nouJe0wOfIftZM0/MUYDAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQU0KZtD/u9 p4/d6kDxgTbjTifTK6IwHwYDVR0jBBgwFoAUiQJo/SXHeeNvu4cvYBPzBBX/ot0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjlBLzVFQTM0NjJBRjEy MjExRjBBQzVDREE3RTRFNkY1NkJDL2lRSm9fU1hIZWVOdnU0Y3ZZQlB6QkJYX290 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVFKb19TWEhlZU52dTRjdllCUHpCQlhfb3QwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI5QS81RUEzNDYyQUYxMjIxMUYwQUM1Q0RBN0U0RTZGNTZCQy83NTQzMUY0NEYx MjMxMUYwOUUwNTRGOEQ0RjZGNTZCQy5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAkggMA0GCSqGSIb3DQEBCwUAA4IBAQARuTkZsCaIy+oVUVHQgITP rHxVZ1SalZ4wXvbrF8bQ3ltpkHUI+wxtERCnf3n9YKIyeGqZIxqH9iTOekg2oh3L ZA4YBUl8fmltRQkxfH3HQif3babMad1NW+xMYzHgpcTBY9gwleXM++y0nBR1AnPF Iide7NJOCiUFpVxaNwaHBaQikoWDvHKIUCZGlhWg3XCxYnep30ZqgfoGfjIoW9kB 5TM9yYTKpmy3GrcADKANYYSuhGkm1+o48X7Yya5XHsSpj3y/Nx+0nKKmeCVTdhF9 OPanfVGU00gQ1tHbaSo2Yii9Hhf/6wCTxoX9VcWRafIdpX28beF4i7T6PKpBvhkG -----END CERTIFICATE-----Generated at Mon Mar 2 20:04:43 2026 by rpki-client