$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa File: 863670328FD011EEB6FFC636C4F9AE02.roa (raw, json) Hash identifier: WwltnaTPtmW0+YRs/lUQRQVdWPG/Y8JmtvUfshNHISo= Subject key identifier: 71:38:AC:0D:4C:BA:9E:26:9D:25:77:B8:55:AB:65:F1:E3:91:EC:E7 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 099A Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:23:00 +0000 ROA not before: Fri 28 Mar 2025 21:13:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 398791 IP address blocks: 2407:1c00:6200::/40 maxlen: 40 2407:1c00:6300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Mar 28 21:13:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a475f4-93b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b4:a6:79:6a:80:7a:9c:3e:c7:c9:6b:c1:65: b9:03:41:ac:f3:6e:2d:1f:64:de:ba:da:69:4a:c4: 98:a2:83:9f:ac:c4:76:cd:4c:58:b4:dc:f9:24:cc: 0a:33:32:3b:9c:55:6b:6f:25:82:56:31:c5:e4:a4: a0:05:b4:08:ef:a2:5e:fe:a3:aa:bc:d3:0f:20:76: 17:4d:93:7a:86:65:92:47:c8:d9:21:0a:72:4a:32: 5e:70:53:f9:86:e8:ff:94:de:4a:bb:72:e6:cb:86: 9f:47:20:13:8c:50:84:eb:56:00:72:da:85:3a:65: 48:60:47:e3:93:cb:24:41:96:68:2f:b9:10:07:6b: de:6a:b1:0d:ca:a9:52:ee:9f:e5:75:d9:42:ae:e1: 9e:74:99:5e:04:bc:f0:ec:6c:90:8c:cc:3c:d9:a8: 38:87:2e:24:de:a2:7a:16:86:9f:dc:f8:04:0d:94: d6:e3:48:e4:44:8f:b2:d1:dd:6f:f8:30:0d:97:03: 26:84:a3:63:a1:f0:19:9e:e7:6b:cf:c2:57:b2:67: 32:a5:5b:49:86:be:40:e9:92:9f:7c:c0:cc:99:14: 79:7c:10:e4:bf:7f:2b:e4:09:6e:0c:ff:08:e0:76: 62:05:77:a8:9a:26:c7:bf:70:ad:58:8f:53:cd:21: 07:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:38:AC:0D:4C:BA:9E:26:9D:25:77:B8:55:AB:65:F1:E3:91:EC:E7 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/863670328FD011EEB6FFC636C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:1c00:6200::/39 Signature Algorithm: sha256WithRSAEncryption 98:7c:68:10:69:c3:ff:da:71:99:9b:a3:44:ee:d1:f1:22:c5: 1a:fc:3b:31:6a:bc:3d:d2:ce:db:8a:9d:45:ac:de:ac:51:85: 9c:cc:8a:b0:1b:0a:ec:2a:22:78:8c:fb:c3:4e:c4:48:0b:9f: 3c:21:d4:9b:b8:3c:69:36:08:54:2c:52:39:81:36:55:8f:64: 94:f8:3b:7c:fb:4b:29:62:fa:47:c5:1e:5f:11:27:ec:34:7b: dc:49:46:e7:34:ac:df:df:3b:6b:9b:86:4e:46:c6:4a:3f:12: 28:1f:3c:3d:5d:e8:c7:7a:12:1c:0c:2c:b8:74:eb:1b:dc:4b: 06:e6:88:16:f0:b6:d9:bb:a8:87:62:29:db:bc:1d:fd:29:47: f0:c4:88:8c:81:27:c9:11:7a:06:32:02:ca:33:51:dc:73:2b: 76:c5:87:77:57:ba:98:e0:99:25:a0:6e:c0:91:7d:c9:9a:96: 70:10:f7:eb:7f:00:ab:1a:08:17:9a:1f:00:9b:61:ff:3a:24: f3:67:e0:19:44:1d:70:11:13:8a:12:e2:df:99:b9:92:9d:30: 92:8c:6e:dd:54:d8:08:96:21:0f:06:93:66:b2:4d:c8:4d:9c: f6:57:ae:4c:fe:d7:7f:24:f4:2b:ae:e9:3c:5a:36:61:45:04: df:f5:2f:b9 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwMzI4MjExMzUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzVmNC05M2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrSmeWqAepw+x8lrwWW5A0Gs824tH2TeutppSsSYooOfrMR2zUxYtNz5JMwK MzI7nFVrbyWCVjHF5KSgBbQI76Je/qOqvNMPIHYXTZN6hmWSR8jZIQpySjJecFP5 huj/lN5Ku3Lmy4afRyATjFCE61YActqFOmVIYEfjk8skQZZoL7kQB2vearENyqlS 7p/lddlCruGedJleBLzw7GyQjMw82ag4hy4k3qJ6Foaf3PgEDZTW40jkRI+y0d1v +DANlwMmhKNjofAZnudrz8JXsmcypVtJhr5A6ZKffMDMmRR5fBDkv38r5AluDP8I 4HZiBXeomibHv3CtWI9TzSEHqwIDAQABo4ICYjCCAl4wHQYDVR0OBBYEFHE4rA1M up4mnSV3uFWrZfHjkeznMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvODYzNjcwMzI4 RkQwMTFFRUI2RkZDNjM2QzRGOUFFMDIucm9hMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYBJAccAGIwDQYJKoZIhvcNAQELBQADggEBAJh8aBBpw//acZmbo0Tu 0fEixRr8OzFqvD3SztuKnUWs3qxRhZzMirAbCuwqIniM+8NOxEgLnzwh1Ju4PGk2 CFQsUjmBNlWPZJT4O3z7Syli+kfFHl8RJ+w0e9xJRuc0rN/fO2ubhk5Gxko/Eigf PD1d6Md6EhwMLLh06xvcSwbmiBbwttm7qIdiKdu8Hf0pR/DEiIyBJ8kRegYyAsoz UdxzK3bFh3dXupjgmSWgbsCRfcmalnAQ9+t/AKsaCBeaHwCbYf86JPNn4BlEHXAR E4oS4t+ZuZKdMJKMbt1U2AiWIQ8Gk2ayTchNnPZXrkz+138k9Cuu6TxaNmFFBN/1 L7k= -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:36 2026 by rpki-client