$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa File: 2BFE357EF06211F08763644E5C6F56BC.roa (raw, json) Hash identifier: T7iFd2LrB33SLomhhE8G/jtsnMR7YugAZQJC0RPLigw= Subject key identifier: 25:D4:30:A8:04:88:21:52:0B:A5:CD:D3:8A:0F:A9:4A:C3:85:4C:A9 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 099C Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa Signing time: Sun 01 Mar 2026 17:23:02 +0000 ROA not before: Tue 13 Jan 2026 09:28:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20773 IP address blocks: 2407:1c00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2460 (0x99c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Jan 13 09:28:08 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a475f6-fdd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:bb:89:72:2b:c7:d3:db:15:6d:cd:67:35:29: 44:f9:ba:1d:30:eb:67:90:74:ee:45:75:fb:c9:62: b1:44:96:88:51:c8:6b:d8:61:c2:09:25:0f:03:27: c8:24:b2:6a:22:86:ee:e6:4d:16:79:33:7b:ac:91: 63:45:59:e3:46:ec:c6:fc:61:5d:2c:43:fe:b2:dd: c1:c4:d1:d7:2c:ae:ca:01:22:e6:8c:f9:d5:be:c6: 99:f8:87:45:18:ed:a4:3c:2e:2d:06:1d:3d:19:b8: 8f:3c:8b:a2:88:91:f0:2e:47:1a:15:72:7b:98:07: 61:d7:d0:49:5c:fe:0b:0a:8c:32:79:84:77:f7:6a: 56:c9:ff:c3:90:a3:05:92:b7:99:24:e5:c9:8c:22: a4:ef:20:eb:ca:3b:ba:7f:cf:50:9b:b0:22:ca:72: ff:56:30:c5:77:82:ce:23:ce:20:df:65:d0:d1:00: 00:44:54:a5:07:2b:cd:ce:fe:df:c2:fe:a7:3a:1b: bc:b2:e0:6a:b6:3f:35:72:29:0a:c5:41:29:61:e4: 48:48:26:cb:65:1c:8b:3f:33:40:a1:b5:af:79:64: b2:22:55:29:ba:e8:9b:f2:a7:9e:aa:c8:78:b7:13: 42:c6:4d:21:16:35:f4:39:e9:d1:47:fc:1b:23:ed: 15:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D4:30:A8:04:88:21:52:0B:A5:CD:D3:8A:0F:A9:4A:C3:85:4C:A9 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2407:1c00::/32 Signature Algorithm: sha256WithRSAEncryption 4a:57:a5:5e:eb:69:6d:c5:5b:7e:6f:be:04:41:81:b6:1e:ec: de:75:ae:7c:e7:29:bc:df:44:92:c8:39:c5:12:78:b9:9e:18: 3e:94:71:ff:22:69:80:4b:0b:72:5a:70:df:db:17:32:ae:79: ed:45:a8:1d:ae:f8:8c:ac:42:27:6c:6c:bd:fc:8f:f5:89:86: ac:6b:3b:66:cc:88:c4:7c:c2:a4:d8:47:5a:dd:ea:bd:e7:8f: e6:d3:7f:92:da:6c:dd:1c:68:90:a2:0e:3d:0a:6e:24:7f:21: 10:2e:35:64:65:a4:08:c8:ee:2f:66:43:85:af:fd:6a:73:60: a3:48:9e:9d:c5:7c:ff:12:d8:94:a3:2a:ca:7b:76:7a:a4:ef: 67:0c:d8:ec:50:b3:3c:38:2c:d9:4e:da:79:e5:4f:a9:94:75: f7:71:b4:fb:0b:8c:03:bc:8f:d8:a6:60:3b:b1:bf:41:3d:2e: 20:52:97:0b:ed:35:7a:41:48:4b:e2:5e:cb:fa:04:b3:11:ec: d5:bb:95:c7:94:ba:4e:17:61:3a:9e:dc:68:d4:83:5f:c2:f0: f3:3f:ac:0e:e0:d9:a8:ba:66:48:fb:f8:5c:1c:3f:ec:17:1b: 40:8d:cc:f3:ab:07:45:ad:5f:cb:3b:3e:84:17:ec:01:e3:cf: 5c:cb:c1:8e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjYwMTEzMDkyODA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzVmNi1mZGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk7uJcivH09sVbc1nNSlE+bodMOtnkHTuRXX7yWKxRJaIUchr2GHCCSUPAyfI JLJqIobu5k0WeTN7rJFjRVnjRuzG/GFdLEP+st3BxNHXLK7KASLmjPnVvsaZ+IdF GO2kPC4tBh09GbiPPIuiiJHwLkcaFXJ7mAdh19BJXP4LCowyeYR392pWyf/DkKMF kreZJOXJjCKk7yDryju6f89Qm7AiynL/VjDFd4LOI84g32XQ0QAARFSlByvNzv7f wv6nOhu8suBqtj81cikKxUEpYeRISCbLZRyLPzNAobWveWSyIlUpuuib8qeeqsh4 txNCxk0hFjX0OenRR/wbI+0VIQIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFCXUMKgE iCFSC6XN04oPqUrDhUypMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvMkJGRTM1N0VG MDYyMTFGMDg3NjM2NDRFNUM2RjU2QkMucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAccADANBgkqhkiG9w0BAQsFAAOCAQEASlelXutpbcVbfm++BEGB th7s3nWufOcpvN9Eksg5xRJ4uZ4YPpRx/yJpgEsLclpw39sXMq557UWoHa74jKxC J2xsvfyP9YmGrGs7ZsyIxHzCpNhHWt3qveeP5tN/ktps3RxokKIOPQpuJH8hEC41 ZGWkCMjuL2ZDha/9anNgo0iencV8/xLYlKMqynt2eqTvZwzY7FCzPDgs2U7aeeVP qZR193G0+wuMA7yP2KZgO7G/QT0uIFKXC+01ekFIS+Jey/oEsxHs1buVx5S6Thdh Op7caNSDX8Lw8z+sDuDZqLpmSPv4XBw/7BcbQI3M86sHRa1fyzs+hBfsAePPXMvB jg== -----END CERTIFICATE-----Generated at Mon Mar 2 17:19:35 2026 by rpki-client