$ rpki-client -vvf rpki.apnic.net/member_repository/A91DABAA/4C4CADA8D19D11F0BDC54170C4F9AE02/EF7ACD02D19D11F0B7EBD972C4F9AE02.roa File: EF7ACD02D19D11F0B7EBD972C4F9AE02.roa (raw, json) Hash identifier: n7mxRLHf+OoO7/6cNs++NJsQTzj4AvvR2XuxwLHJ8V4= Subject key identifier: A9:CE:8B:AF:B5:A5:20:38:5C:11:55:33:05:72:E7:40:EB:4D:E5:48 Certificate issuer: /CN=A91DABAA/serialNumber=A4E8EBC3A7397599904DA6C7694895BBC9E913EE Certificate serial: 2F Authority key identifier: A4:E8:EB:C3:A7:39:75:99:90:4D:A6:C7:69:48:95:BB:C9:E9:13:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pOjrw6c5dZmQTabHaUiVu8npE-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DABAA/4C4CADA8D19D11F0BDC54170C4F9AE02/EF7ACD02D19D11F0B7EBD972C4F9AE02.roa Signing time: Sun 01 Mar 2026 05:54:34 +0000 ROA not before: Fri 05 Dec 2025 05:47:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154404 IP address blocks: 2402:3d60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DABAA/4C4CADA8D19D11F0BDC54170C4F9AE02/pOjrw6c5dZmQTabHaUiVu8npE-4.crl rsync://rpki.apnic.net/member_repository/A91DABAA/4C4CADA8D19D11F0BDC54170C4F9AE02/pOjrw6c5dZmQTabHaUiVu8npE-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pOjrw6c5dZmQTabHaUiVu8npE-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DABAA, serialNumber=A4E8EBC3A7397599904DA6C7694895BBC9E913EE Validity Not Before: Dec 5 05:47:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d49a-b44a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d3:ee:ee:80:81:ff:f5:64:56:21:17:2d:09: b6:bd:6c:c2:f2:bf:c0:1c:50:99:a6:96:18:9b:f1: a3:f3:9b:28:1a:1d:f9:21:96:c4:6f:7d:47:a9:2d: 9e:c7:3d:c7:00:8a:e9:90:86:00:f5:49:e8:74:59: 45:ee:43:a0:d4:58:df:85:b7:36:3e:90:7f:51:eb: 81:62:af:27:eb:6e:d8:ab:f6:56:92:62:ae:6b:17: f0:04:44:17:9c:ff:9b:eb:6c:7a:94:ae:17:5b:9e: e3:20:c1:47:59:8d:3f:67:ab:d5:4f:98:d4:1e:8f: c3:f0:32:39:5e:22:fc:16:dc:6b:0a:cc:4b:cc:60: 6d:0b:8e:92:78:04:87:21:1e:40:a5:2f:3c:9a:5a: fd:89:c7:6a:3d:9a:e8:8b:69:16:bb:4e:0f:a5:31: eb:67:87:93:b3:f8:4e:79:a7:17:0e:32:3f:04:76: 68:86:c2:69:cd:d9:47:73:42:a7:62:9b:72:5d:01: 3d:9d:44:83:91:11:a3:40:40:e8:58:b0:0b:f6:7d: 21:ba:e1:de:58:6e:5c:af:88:bd:44:31:2c:65:d6: 5b:10:70:06:eb:ab:1c:f4:aa:51:1f:5f:35:10:4f: 42:12:6c:c5:81:41:dc:eb:bb:e9:47:cc:47:85:0a: 3d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:CE:8B:AF:B5:A5:20:38:5C:11:55:33:05:72:E7:40:EB:4D:E5:48 X509v3 Authority Key Identifier: keyid:A4:E8:EB:C3:A7:39:75:99:90:4D:A6:C7:69:48:95:BB:C9:E9:13:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DABAA/4C4CADA8D19D11F0BDC54170C4F9AE02/pOjrw6c5dZmQTabHaUiVu8npE-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pOjrw6c5dZmQTabHaUiVu8npE-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DABAA/4C4CADA8D19D11F0BDC54170C4F9AE02/EF7ACD02D19D11F0B7EBD972C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2402:3d60::/32 Signature Algorithm: sha256WithRSAEncryption c9:7f:1a:d6:92:d5:e1:63:98:65:40:47:38:4a:21:6d:ef:a4: a1:22:76:f5:70:04:88:d3:f3:4a:6b:84:1e:c6:22:cd:92:41: 71:41:01:7b:6b:46:ae:58:b3:28:eb:81:db:f7:11:db:b2:13: 8d:ff:3e:23:a5:a8:94:a7:a5:82:55:02:17:da:c7:18:b8:ab: bb:25:4f:bb:e9:29:12:7b:19:a8:6f:6a:cb:e0:0a:39:a4:d9: 87:0f:48:a0:e2:9d:6d:dc:3f:32:bc:9c:a9:1f:ff:85:3b:0d: 3e:98:c1:6a:32:fb:cb:0e:ea:25:a3:ef:74:e2:a6:2d:c0:b8: f8:60:6a:6f:a8:98:8d:99:31:f6:e8:63:89:fb:06:d8:85:f1: 0c:9f:74:82:10:d0:0e:10:56:8a:67:5f:81:b3:61:4d:b8:9b: a0:fc:ba:05:d8:8e:ad:bc:3e:77:06:f3:de:bc:02:9f:9e:30: 29:0e:a8:c0:30:9a:83:d5:c5:35:a9:a3:c2:a3:04:ab:73:56: 24:e8:5d:ac:10:4f:b2:04:76:73:be:2c:af:dc:93:b1:e5:13: 81:c6:08:f2:91:87:69:c1:fd:60:5a:86:0d:35:cd:81:7c:51: 5b:db:f0:3e:7f:9c:33:ce:5a:b0:ae:29:9d:a3:70:90:27:73: e2:8e:f2:99 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QUJBQTExMC8GA1UEBRMoQTRFOEVCQzNBNzM5NzU5OTkwNERBNkM3Njk0ODk1QkJD OUU5MTNFRTAeFw0yNTEyMDUwNTQ3NTFaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNDlhLWI0NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC00+7ugIH/9WRWIRctCba9bMLyv8AcUJmmlhib8aPzmygaHfkhlsRvfUepLZ7H PccAiumQhgD1Seh0WUXuQ6DUWN+FtzY+kH9R64Firyfrbtir9laSYq5rF/AERBec /5vrbHqUrhdbnuMgwUdZjT9nq9VPmNQej8PwMjleIvwW3GsKzEvMYG0LjpJ4BIch HkClLzyaWv2Jx2o9muiLaRa7Tg+lMetnh5Oz+E55pxcOMj8EdmiGwmnN2UdzQqdi m3JdAT2dRIOREaNAQOhYsAv2fSG64d5YblyviL1EMSxl1lsQcAbrqxz0qlEfXzUQ T0ISbMWBQdzru+lHzEeFCj1fAgMBAAGjggJhMIICXTAdBgNVHQ4EFgQUqc6Lr7Wl IDhcEVUzBXLnQOtN5UgwHwYDVR0jBBgwFoAUpOjrw6c5dZmQTabHaUiVu8npE+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBQkFBLzRDNENBREE4RDE5 RDExRjBCREM1NDE3MEM0RjlBRTAyL3BPanJ3NmM1ZFptUVRhYkhhVWlWdThucEUt NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcE9qcnc2YzVkWm1RVGFiSGFVaVZ1OG5wRS00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QUJBQS80QzRDQURBOEQxOUQxMUYwQkRDNTQxNzBDNEY5QUUwMi9FRjdBQ0QwMkQx OUQxMUYwQjdFQkQ5NzJDNEY5QUUwMi5yb2EwIAYIKwYBBQUHAQcBAf8EETAPMA0E AgACMAcDBQAkAj1gMA0GCSqGSIb3DQEBCwUAA4IBAQDJfxrWktXhY5hlQEc4SiFt 76ShInb1cASI0/NKa4QexiLNkkFxQQF7a0auWLMo64Hb9xHbshON/z4jpaiUp6WC VQIX2scYuKu7JU+76SkSexmob2rL4Ao5pNmHD0ig4p1t3D8yvJypH/+FOw0+mMFq MvvLDuolo+904qYtwLj4YGpvqJiNmTH26GOJ+wbYhfEMn3SCENAOEFaKZ1+Bs2FN uJug/LoF2I6tvD53BvPevAKfnjApDqjAMJqD1cU1qaPCowSrc1Yk6F2sEE+yBHZz viyv3JOx5ROBxgjykYdpwf1gWoYNNc2BfFFb2/A+f5wzzlqwrimdo3CQJ3PijvKZ -----END CERTIFICATE-----Generated at Sun Mar 1 22:37:37 2026 by rpki-client