$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/FF5213E8A81D11EFA74FFD31C4F9AE02.roa File: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (raw, json) Hash identifier: dI0Owo+GmJIksXJLUcYpCsOM4BZgbknZ8IDThOCncOk= Subject key identifier: 7D:B9:67:0D:6A:E4:BA:BE:2D:E9:40:20:57:47:7D:8E:5D:32:7E:D2 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 01A7 Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/FF5213E8A81D11EFA74FFD31C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:02:54 +0000 ROA not before: Tue 18 Mar 2025 19:39:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 63121 IP address blocks: 2405:cbc0:4::/48 maxlen: 48 2405:cbc0:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B, serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Mar 18 19:39:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48d5e-c4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b7:ab:a4:ed:d3:9b:96:f8:98:89:13:51:82: 50:33:45:35:ab:68:69:f0:71:05:8e:ed:86:4c:ce: a9:c0:2e:6c:e3:2e:43:49:20:cc:90:d0:e7:f7:70: 03:af:aa:a2:a9:06:44:c0:d2:c3:41:d0:31:35:b8: ff:0e:72:a0:91:a2:ff:80:07:22:6a:9e:72:0f:69: bd:9d:d7:7a:64:bc:12:9b:0b:3c:e5:f2:ed:f1:ec: a5:2c:13:48:8b:19:3d:b0:e3:20:c1:b5:75:4f:b3: ac:fa:18:59:dd:1a:73:78:f9:d9:4e:5d:98:34:d9: 96:f7:81:01:af:91:b0:a2:e5:5e:ad:a5:9f:1f:b6: 7a:1c:dd:45:e5:6d:01:71:e3:f2:c2:f0:f6:08:9f: 5d:61:ce:5e:f1:0b:16:1c:c6:76:97:5b:74:1a:67: 3a:b2:c6:92:5e:a9:a2:e1:c6:60:74:e5:f1:05:c4: 09:00:63:51:b5:6e:18:7f:c1:3e:ec:96:1f:04:39: 48:55:18:a6:7f:99:a2:32:a6:a1:ae:cd:e1:2d:67: d9:4f:0c:a0:ff:89:30:ec:ea:ca:52:d9:a1:d0:2f: 6e:de:8d:24:a7:dc:92:53:4f:32:9e:d5:d5:ad:77: 5c:0e:64:da:1f:8a:0e:06:e3:30:85:b1:e2:3f:eb: 6c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B9:67:0D:6A:E4:BA:BE:2D:E9:40:20:57:47:7D:8E:5D:32:7E:D2 X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/FF5213E8A81D11EFA74FFD31C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2405:cbc0:4::/47 Signature Algorithm: sha256WithRSAEncryption 88:e3:49:b0:dd:81:23:0c:ec:1f:56:59:82:40:9e:43:7f:a6: 3d:eb:ab:a8:86:5d:2c:64:2c:88:6b:0a:d3:b9:76:d5:fe:df: 4d:36:c0:85:42:6b:5e:9a:7e:c6:eb:ad:41:54:12:2d:34:cc: 6b:18:5f:19:19:72:6f:b8:7b:fe:53:c8:28:55:0b:7d:4d:92: f1:4d:11:17:c7:5a:a3:85:0d:15:e4:5c:93:01:da:43:9d:c2: 07:c9:ad:bb:68:e4:74:19:60:bd:78:90:5d:86:46:f9:b1:ba: 98:f8:7e:b8:88:b2:35:29:63:48:39:a9:8e:37:52:25:f4:43: b3:0b:fd:07:a6:69:75:01:8c:96:9d:7c:8f:24:25:2b:34:ff: ac:39:3b:85:6d:de:17:a8:26:0e:da:98:59:8e:62:fe:c1:37: 75:9b:e8:2f:84:7d:dc:9d:fc:4e:5b:89:05:b9:0e:0f:0c:dc: 11:dc:6f:b3:47:b7:85:2d:04:c5:27:64:f8:23:c7:2f:e3:83: 4f:06:c5:64:5b:06:8b:9b:4b:04:e0:a2:64:d5:6c:63:d3:f1: d8:9a:df:ef:21:2e:ea:51:31:1d:50:f3:eb:a2:cd:4a:e1:49: 20:03:8c:72:e7:58:d6:25:6b:63:27:e7:71:98:78:3d:2f:ff: 06:4d:8c:69 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjUwMzE4MTkzOTIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGQ1ZS1jNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlberpO3Tm5b4mIkTUYJQM0U1q2hp8HEFju2GTM6pwC5s4y5DSSDMkNDn93AD r6qiqQZEwNLDQdAxNbj/DnKgkaL/gAciap5yD2m9ndd6ZLwSmws85fLt8eylLBNI ixk9sOMgwbV1T7Os+hhZ3RpzePnZTl2YNNmW94EBr5GwouVeraWfH7Z6HN1F5W0B cePywvD2CJ9dYc5e8QsWHMZ2l1t0Gmc6ssaSXqmi4cZgdOXxBcQJAGNRtW4Yf8E+ 7JYfBDlIVRimf5miMqahrs3hLWfZTwyg/4kw7OrKUtmh0C9u3o0kp9ySU08yntXV rXdcDmTaH4oOBuMwhbHiP+tsNwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFH25Zw1q 5Lq+LelAIFdHfY5dMn7SMB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFGNEIvODQ4NThGNkE0NzE5MTFFQTkwODYzMDcyQzRGOUFFMDIvRkY1MjEzRThB ODFEMTFFRkE3NEZGRDMxQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcBJAXLwAAEMA0GCSqGSIb3DQEBCwUAA4IBAQCI40mw3YEjDOwfVlmC QJ5Df6Y966uohl0sZCyIawrTuXbV/t9NNsCFQmtemn7G661BVBItNMxrGF8ZGXJv uHv+U8goVQt9TZLxTREXx1qjhQ0V5FyTAdpDncIHya27aOR0GWC9eJBdhkb5sbqY +H64iLI1KWNIOamON1Il9EOzC/0Hpml1AYyWnXyPJCUrNP+sOTuFbd4XqCYO2phZ jmL+wTd1m+gvhH3cnfxOW4kFuQ4PDNwR3G+zR7eFLQTFJ2T4I8cv44NPBsVkWwaL m0sE4KJk1Wxj0/HYmt/vIS7qUTEdUPPros1K4UkgA4xy51jWJWtjJ+dxmHg9L/8G TYxp -----END CERTIFICATE-----Generated at Mon Mar 2 13:06:38 2026 by rpki-client