$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/96862188486111E8AA9B1B45C4F9AE02.roa File: 96862188486111E8AA9B1B45C4F9AE02.roa (raw, json) Hash identifier: qsZSEb0rwpplo93FKHewQ04M4ljPiZCm7esCnmdbdyk= Subject key identifier: 69:3A:8A:5A:64:70:F0:B2:A6:15:B1:CF:05:CE:CA:EE:EC:84:C5:C5 Certificate issuer: /CN=A91D3794/serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Certificate serial: 2242 Authority key identifier: 30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/96862188486111E8AA9B1B45C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:16:36 +0000 ROA not before: Fri 30 Jan 2026 16:13:46 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 58621 IP address blocks: 2400:6d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:11:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8770 (0x2242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3794, serialNumber=30E589288EB65002510C877B466ABE19753BDBCE Validity Not Before: Jan 30 16:13:46 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a48284-ba8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f9:db:74:c1:ef:a0:04:65:49:1a:4d:70:5c: a2:73:e2:5d:34:ee:fa:ca:ab:83:82:4f:a2:33:e5: f7:40:3a:65:bc:19:d4:f9:30:3c:5d:09:be:76:42: f4:e6:26:41:06:57:37:ef:b1:10:08:8a:6a:e3:a0: 0e:ce:56:35:e6:8c:8b:ae:d0:55:7b:67:a4:5e:06: f7:e8:c3:df:c3:94:3d:20:cc:5c:ac:39:88:a1:c2: 6f:ef:70:6a:5e:17:d6:5b:c4:9c:a4:d2:93:52:1f: 65:fb:75:af:2b:c3:e1:d0:6a:4c:41:d0:98:13:65: b7:e5:aa:1c:e2:4e:b9:77:38:52:29:51:d3:d8:7e: a6:60:60:18:ba:b7:32:6a:63:4b:39:ba:e3:a3:84: 90:60:6f:9b:3e:e1:8b:73:ef:76:45:b2:90:bd:59: 8d:9f:b5:2c:67:10:a4:0e:39:07:89:fa:6d:f3:f7: c7:99:07:42:38:5e:b5:a9:2d:f5:a6:b0:ad:89:8c: a3:7a:98:de:05:2b:ac:d6:dc:29:77:40:e8:05:b4: 8d:ec:e6:88:10:cb:40:c1:c4:2e:26:d1:de:4b:06: a7:1f:63:6c:33:95:c1:a0:cf:6e:25:f7:e9:40:7c: 86:05:65:94:08:e9:08:cb:8a:e8:ce:5e:b6:f3:3c: b8:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3A:8A:5A:64:70:F0:B2:A6:15:B1:CF:05:CE:CA:EE:EC:84:C5:C5 X509v3 Authority Key Identifier: keyid:30:E5:89:28:8E:B6:50:02:51:0C:87:7B:46:6A:BE:19:75:3B:DB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/MOWJKI62UAJRDId7Rmq-GXU7284.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOWJKI62UAJRDId7Rmq-GXU7284.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3794/20FE5616E98F11E5A3DDDC66C4F9AE02/96862188486111E8AA9B1B45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:6d80::/32 Signature Algorithm: sha256WithRSAEncryption 31:aa:bb:1f:ce:05:e1:2f:67:41:fc:43:cb:bf:28:29:d5:b0: 41:7d:db:4e:37:57:a7:1e:59:ee:ae:7b:86:14:24:29:a5:03: fe:d5:2f:4a:4b:e9:29:82:db:e2:e8:10:94:6e:bd:2a:44:10: 3b:9b:1a:40:31:55:33:bb:06:34:95:48:42:f3:13:81:61:96: c7:86:08:6d:fa:07:1e:95:49:cb:a6:4f:96:a4:60:12:69:4e: 4e:a8:78:f8:48:89:84:0c:05:fe:6f:38:88:e2:2c:93:70:06: 1d:2c:29:45:59:c2:5d:8a:19:c2:81:bb:74:da:68:c2:52:f1: 0b:01:16:04:bb:0d:9c:a3:04:06:9e:83:88:7d:bd:93:df:35: 4a:eb:d0:97:c9:3f:b2:eb:8d:dd:31:1f:00:dc:6a:df:69:91: 90:5f:74:67:2d:67:15:3a:ba:df:c5:36:5e:8b:e8:34:3f:eb: 50:c3:24:5b:9a:b7:a6:0a:42:76:5f:8f:bd:66:cc:9f:17:bd: 3b:49:8d:26:5b:c3:2a:7e:ae:ed:66:35:21:6d:70:fd:ee:f8: 4f:84:6c:cf:df:a9:61:a7:b7:60:31:96:5f:a3:f1:ae:ab:3a: fc:0c:0f:48:e6:67:d3:4d:99:7d:dd:64:0c:23:ba:48:b1:39: 0b:cd:8e:d3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICIkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3OTQxMTAvBgNVBAUTKDMwRTU4OTI4OEVCNjUwMDI1MTBDODc3QjQ2NkFCRTE5 NzUzQkRCQ0UwHhcNMjYwMTMwMTYxMzQ2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODI4NC1iYThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPnbdMHvoARlSRpNcFyic+JdNO76yquDgk+iM+X3QDplvBnU+TA8XQm+dkL0 5iZBBlc377EQCIpq46AOzlY15oyLrtBVe2ekXgb36MPfw5Q9IMxcrDmIocJv73Bq XhfWW8ScpNKTUh9l+3WvK8Ph0GpMQdCYE2W35aoc4k65dzhSKVHT2H6mYGAYurcy amNLObrjo4SQYG+bPuGLc+92RbKQvVmNn7UsZxCkDjkHifpt8/fHmQdCOF61qS31 prCtiYyjepjeBSus1twpd0DoBbSN7OaIEMtAwcQuJtHeSwanH2NsM5XBoM9uJffp QHyGBWWUCOkIy4rozl628zy4+QIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFGk6ilpk cPCyphWxzwXOyu7shMXFMB8GA1UdIwQYMBaAFDDliSiOtlACUQyHe0Zqvhl1O9vO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzc5NC8yMEZFNTYxNkU5 OEYxMUU1QTNERERDNjZDNEY5QUUwMi9NT1dKS0k2MlVBSlJESWQ3Um1xLUdYVTcy ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PV0pLSTYyVUFKUkRJZDdSbXEtR1hVNzI4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3OTQvMjBGRTU2MTZFOThGMTFFNUEzREREQzY2QzRGOUFFMDIvOTY4NjIxODg0 ODYxMTFFOEFBOUIxQjQ1QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJABtgDANBgkqhkiG9w0BAQsFAAOCAQEAMaq7H84F4S9nQfxDy78o KdWwQX3bTjdXpx5Z7q57hhQkKaUD/tUvSkvpKYLb4ugQlG69KkQQO5saQDFVM7sG NJVIQvMTgWGWx4YIbfoHHpVJy6ZPlqRgEmlOTqh4+EiJhAwF/m84iOIsk3AGHSwp RVnCXYoZwoG7dNpowlLxCwEWBLsNnKMEBp6DiH29k981SuvQl8k/suuN3TEfANxq 32mRkF90Zy1nFTq638U2XovoND/rUMMkW5q3pgpCdl+PvWbMnxe9O0mNJlvDKn6u 7WY1IW1w/e74T4Rsz9+pYae3YDGWX6Pxrqs6/AwPSOZn002Zfd1kDCO6SLE5C82O 0w== -----END CERTIFICATE-----Generated at Mon Mar 2 18:12:39 2026 by rpki-client