$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/6687BE468B9F11EA97BB8046C4F9AE02.roa File: 6687BE468B9F11EA97BB8046C4F9AE02.roa (raw, json) Hash identifier: ICs1TEIOpnxVUHj987EsWwjf3g4Xq+0ePZB44Mwwr1U= Subject key identifier: 1E:69:70:37:BA:83:F7:52:79:CB:DD:A6:B8:24:9C:9B:AD:62:48:FD Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 19CE Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/6687BE468B9F11EA97BB8046C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:50:42 +0000 ROA not before: Fri 20 Feb 2026 17:14:49 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138928 IP address blocks: 49.255.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6606 (0x19ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:14:49 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48a82-1f56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cb:a8:97:48:56:0c:ce:33:e5:0c:44:60:f9: 43:cf:d1:4d:cb:1c:a3:d7:e9:fe:18:ae:4b:3d:74: cd:17:d1:19:88:d1:5a:43:30:dc:58:4e:4b:bb:96: af:65:51:6e:04:4b:9b:d3:cf:c1:bc:6b:80:e4:be: 86:35:d2:9e:59:b0:ae:00:08:0b:2f:fc:ca:20:08: ba:10:81:d9:e8:ed:31:04:29:18:72:02:2c:56:22: c6:87:6e:ce:0e:42:25:70:a7:72:1f:7d:4c:a5:e5: f9:d2:c8:1d:75:cd:fd:fe:55:d2:f4:3a:c4:6e:7a: 05:bd:32:52:09:b3:3d:72:91:70:97:eb:6d:ed:af: b8:b5:58:c4:92:aa:92:81:e4:d9:0d:f7:2d:8a:c8: 87:a2:94:42:d0:5e:8d:0d:d0:9d:6d:5f:58:af:09: 7d:b4:a2:a8:4c:24:d5:b5:fa:ce:60:09:23:d3:97: ca:7d:72:74:59:f5:4c:2e:51:0c:26:6b:37:07:db: 3a:d0:e9:cd:86:66:42:ad:08:d6:22:0c:b7:66:77: 2e:a5:8a:71:5a:16:f6:6e:2a:af:06:5e:40:e5:23: f4:3a:eb:e9:bd:6a:bd:3a:2d:16:d0:0d:a1:ae:c5: f6:81:c2:e6:90:56:4a:04:25:9a:4c:6e:72:dc:c1: 8c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:69:70:37:BA:83:F7:52:79:CB:DD:A6:B8:24:9C:9B:AD:62:48:FD X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/6687BE468B9F11EA97BB8046C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.255.9.0/24 Signature Algorithm: sha256WithRSAEncryption 34:a6:93:aa:0c:9e:4f:27:46:88:36:75:5d:ef:30:84:07:7a: 74:f1:15:fb:f4:e1:1a:b1:41:95:31:90:7d:fd:ea:a9:06:6e: 99:0a:0b:36:63:7b:12:d4:39:bd:46:96:cf:61:fe:b7:47:22: 4d:00:cd:20:1f:52:00:49:55:ba:e7:03:6b:5d:48:1f:1e:36: fb:2e:1d:16:f9:e2:3b:91:14:cb:b0:f4:3d:18:b8:a8:aa:cd: 47:d3:b4:ec:7f:55:53:79:6a:97:5c:99:71:0a:5e:e7:72:33: c3:eb:e0:24:f0:54:d8:08:78:d6:7e:86:b8:95:54:25:41:cf: 44:78:c9:81:84:ca:43:ce:59:c1:52:ef:c3:94:f8:93:01:85: e5:9b:a6:21:69:99:6b:a0:3a:95:f4:63:9d:1d:84:7d:d4:9f: 6a:38:88:f6:45:5b:92:15:4c:c4:c1:17:6c:43:fe:29:b0:f4: 28:cc:ca:93:86:55:54:db:2a:4a:e2:83:f0:4b:2e:44:6f:a2: d6:9a:99:50:f3:c7:ad:80:a6:cf:51:b5:76:3d:4c:a0:32:6d: bd:88:9c:80:13:c4:b8:e3:d6:5c:17:f5:94:a2:af:7c:9a:d2: 18:b4:76:7c:90:61:64:3f:c6:4d:20:b6:55:5f:c9:0c:5e:fb: 6a:1f:59:4b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICGc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjYwMjIwMTcxNDQ5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE4Mi0xZjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Muol0hWDM4z5QxEYPlDz9FNyxyj1+n+GK5LPXTNF9EZiNFaQzDcWE5Lu5av ZVFuBEub08/BvGuA5L6GNdKeWbCuAAgLL/zKIAi6EIHZ6O0xBCkYcgIsViLGh27O DkIlcKdyH31MpeX50sgddc39/lXS9DrEbnoFvTJSCbM9cpFwl+tt7a+4tVjEkqqS geTZDfctisiHopRC0F6NDdCdbV9Yrwl9tKKoTCTVtfrOYAkj05fKfXJ0WfVMLlEM Jms3B9s60OnNhmZCrQjWIgy3ZncupYpxWhb2biqvBl5A5SP0OuvpvWq9Oi0W0A2h rsX2gcLmkFZKBCWaTG5y3MGMKQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB5pcDe6 g/dSecvdprgknJutYkj9MB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNjY4N0JFNDY4 QjlGMTFFQTk3QkI4MDQ2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAMf8JMA0GCSqGSIb3DQEBCwUAA4IBAQA0ppOqDJ5PJ0aINnVd7zCE B3p08RX79OEasUGVMZB9/eqpBm6ZCgs2Y3sS1Dm9RpbPYf63RyJNAM0gH1IASVW6 5wNrXUgfHjb7Lh0W+eI7kRTLsPQ9GLioqs1H07Tsf1VTeWqXXJlxCl7ncjPD6+Ak 8FTYCHjWfoa4lVQlQc9EeMmBhMpDzlnBUu/DlPiTAYXlm6YhaZlroDqV9GOdHYR9 1J9qOIj2RVuSFUzEwRdsQ/4psPQozMqThlVU2ypK4oPwSy5Eb6LWmplQ88etgKbP UbV2PUygMm29iJyAE8S449ZcF/WUoq98mtIYtHZ8kGFkP8ZNILZVX8kMXvtqH1lL -----END CERTIFICATE-----Generated at Mon Mar 2 22:49:02 2026 by rpki-client