$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa File: 2BFE357EF06211F08763644E5C6F56BC.roa (raw, json) Hash identifier: 7NcbnhD/HJ8NBFUu7bu5fda+cHjTW1crabfldM6QJwo= Subject key identifier: AB:3D:41:16:AB:21:C9:20:59:26:1C:26:D7:42:C3:14:30:79:3C:C3 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 09B7 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa Signing time: Wed 08 Apr 2026 20:25:21 +0000 ROA not before: Wed 08 Apr 2026 20:25:21 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 20773 IP address blocks: 2407:1c00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:57:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2487 (0x9b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Apr 8 20:25:21 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d6b9b1-e018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a2:8b:d1:22:3c:cc:42:89:1b:d0:8c:5f:a3: f6:d4:40:f5:04:19:5b:3c:9f:c6:28:8f:5a:53:9b: 6d:3d:83:41:0d:e2:f6:25:54:7a:25:33:5d:63:5e: a9:df:9e:63:3a:c6:09:be:3f:ff:64:61:31:ff:3c: d2:6d:e8:8f:c3:62:14:df:3c:6c:fb:98:f9:f3:9c: 89:c6:0a:82:f1:c0:bc:61:ee:e0:66:14:c3:94:8e: c9:dd:cf:33:67:d4:5c:69:95:c9:af:6a:e5:06:5e: ff:ae:26:fd:b3:17:0f:78:55:fc:d9:ca:f9:39:ba: 5b:a1:aa:30:a6:41:5d:94:2f:ec:e1:39:ed:2e:8a: 16:91:a9:c3:37:26:b5:1a:12:0e:35:93:06:c7:87: 4d:a0:f4:e6:3e:11:1d:d6:64:a4:18:17:ab:5a:11: b1:c7:ed:5d:3a:74:2f:ce:a7:ef:e0:3e:d3:83:ab: 7d:1b:a5:4f:ef:6e:0e:6d:9f:5a:a9:32:62:0a:2c: bd:dd:c5:4e:91:06:9f:c7:5d:74:42:de:c4:ca:5a: e3:42:87:a3:6f:ba:59:97:6c:99:c8:e4:9a:01:fd: 10:b0:3c:9a:9c:49:24:c1:99:90:95:af:cb:33:88: 5e:eb:07:56:80:fb:d8:4d:f8:79:0a:8f:14:da:9d: 41:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:3D:41:16:AB:21:C9:20:59:26:1C:26:D7:42:C3:14:30:79:3C:C3 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/2BFE357EF06211F08763644E5C6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2407:1c00::/32 Signature Algorithm: sha256WithRSAEncryption 29:6a:f4:d5:cd:29:5d:23:0c:78:51:5b:9f:34:71:63:53:85: b9:21:ab:1d:de:5c:46:2f:4a:e3:bd:b4:f7:e6:8d:55:e0:c1: d6:ed:e9:1b:f3:3a:8d:bf:0f:be:3f:b0:58:b1:82:44:7b:15: 61:57:8c:65:a6:d5:86:44:c3:54:00:96:ed:64:d9:4d:69:69: 09:85:3a:28:4b:9e:ad:a5:5b:44:cc:34:b2:66:10:6d:8f:36: 9c:f1:84:68:54:fa:05:6e:3b:b1:37:12:86:3b:87:74:7a:bb: c4:f3:f2:d0:6e:7c:cb:9a:a4:0e:bf:61:8a:0a:82:1a:64:50: 2b:20:e6:be:b8:2b:92:4b:5b:53:65:c3:be:ab:af:4e:23:62: 9a:5e:7c:89:1a:13:f9:43:f6:2c:e5:cf:9e:05:50:66:ef:b2: 94:95:08:b1:35:cc:9a:02:d5:b5:4c:4a:98:7a:86:1c:48:8b: 2d:f4:9f:b9:75:56:53:30:4a:49:f1:05:42:ce:12:54:84:f4: 3a:7c:61:5f:97:8e:d2:93:50:1e:5a:30:59:d9:1a:1d:09:bd: d4:67:3c:3c:3d:4f:84:ba:32:9d:d2:c9:9f:23:0c:88:fa:2c: 99:49:3c:00:a1:b3:ce:6f:5c:99:5d:b1:8b:e6:c7:49:00:f6: 9b:dd:98:c3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjYwNDA4MjAyNTIxWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2YjliMS1lMDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKKL0SI8zEKJG9CMX6P21ED1BBlbPJ/GKI9aU5ttPYNBDeL2JVR6JTNdY16p 355jOsYJvj//ZGEx/zzSbeiPw2IU3zxs+5j585yJxgqC8cC8Ye7gZhTDlI7J3c8z Z9RcaZXJr2rlBl7/rib9sxcPeFX82cr5ObpboaowpkFdlC/s4TntLooWkanDNya1 GhIONZMGx4dNoPTmPhEd1mSkGBerWhGxx+1dOnQvzqfv4D7Tg6t9G6VP724ObZ9a qTJiCiy93cVOkQafx110Qt7EylrjQoejb7pZl2yZyOSaAf0QsDyanEkkwZmQla/L M4he6wdWgPvYTfh5Co8U2p1BfwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFKs9QRar IckgWSYcJtdCwxQweTzDMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvMkJGRTM1N0VG MDYyMTFGMDg3NjM2NDRFNUM2RjU2QkMucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAccADANBgkqhkiG9w0BAQsFAAOCAQEAKWr01c0pXSMMeFFbnzRx Y1OFuSGrHd5cRi9K47209+aNVeDB1u3pG/M6jb8Pvj+wWLGCRHsVYVeMZabVhkTD VACW7WTZTWlpCYU6KEueraVbRMw0smYQbY82nPGEaFT6BW47sTcShjuHdHq7xPPy 0G58y5qkDr9higqCGmRQKyDmvrgrkktbU2XDvquvTiNiml58iRoT+UP2LOXPngVQ Zu+ylJUIsTXMmgLVtUxKmHqGHEiLLfSfuXVWUzBKSfEFQs4SVIT0OnxhX5eO0pNQ HlowWdkaHQm91Gc8PD1PhLoyndLJnyMMiPosmUk8AKGzzm9cmV2xi+bHSQD2m92Y ww== -----END CERTIFICATE-----Generated at Fri Apr 17 18:03:48 2026 by rpki-client