$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa File: 14C4C7D4002611EFBD462953C4F9AE02.roa (raw, json) Hash identifier: 5WW1yiQU59km1nBHuhVJvsmGTVjKyzBy8rmt9MKW6VI= Subject key identifier: 7E:2F:94:C3:DF:D2:AA:25:56:AB:17:CF:07:07:06:3E:7B:A6:A0:F7 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 02A9 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:30:51 +0000 ROA not before: Thu 31 Jul 2025 04:10:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 216183 IP address blocks: 2401:b60:19::/48 maxlen: 48 2401:b60:20::/48 maxlen: 48 2401:b60:21::/48 maxlen: 48 2401:b60:210::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jul 31 04:10:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a485db-64d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:12:d0:a2:17:29:f0:3d:66:bd:90:95:a3:c8: 30:0f:e7:be:99:4b:e3:50:d8:a1:3e:85:8a:00:f3: 48:4b:77:ce:40:0b:5f:f0:ba:bb:2f:4c:73:d9:c2: 9b:5e:9d:c4:c7:41:65:d7:5b:55:be:ed:83:8d:6f: 3b:7e:d6:d9:a6:39:64:e7:b1:40:a5:42:6f:a5:a1: 0d:31:48:27:ed:9d:2d:ca:a8:37:79:b5:86:d5:c6: 6a:c9:0c:8a:3a:e3:7d:44:70:49:51:a1:b4:18:0c: 53:72:38:3c:5b:e2:55:56:2d:be:60:ba:43:ca:d6: b4:1b:1d:46:14:99:1b:59:37:96:4e:82:2c:17:ba: f5:f7:17:8d:40:86:a0:1f:74:49:cb:a7:60:71:b2: 6c:39:b0:d8:f8:7b:b0:84:ff:1a:3c:6e:a3:38:6c: c1:ea:33:2e:1b:b0:a3:47:6c:57:d6:28:4b:ed:a6: a3:3e:74:aa:d5:1d:30:02:e5:76:12:76:40:96:37: fc:a9:c9:1b:f1:fc:eb:22:30:e2:e5:40:f8:6b:36: ab:50:ee:f0:7f:72:58:7a:f4:16:37:d2:fc:ff:20: 9f:26:75:eb:7d:8d:1b:f1:a9:d8:db:f1:ad:9e:3e: 02:e7:c0:6d:56:19:c3:92:fb:fb:b4:81:4c:74:37: 02:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:2F:94:C3:DF:D2:AA:25:56:AB:17:CF:07:07:06:3E:7B:A6:A0:F7 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:b60:19::/48 2401:b60:20::/47 2401:b60:210::/44 Signature Algorithm: sha256WithRSAEncryption 2e:fe:4a:be:39:d7:d9:14:43:52:49:a7:48:bd:73:d8:3b:c2: ba:34:94:48:79:2d:22:56:eb:4c:78:b1:eb:e4:34:ee:1d:02: 07:4c:4b:7c:bc:84:8c:99:1c:6a:fb:9a:9c:02:d6:03:6d:f1: 35:f0:6e:17:b6:a8:26:d4:47:bd:a6:b9:4c:29:e3:fb:a2:f8: 28:62:82:51:96:03:e0:09:97:b3:e6:72:58:ee:89:57:f5:da: 2f:86:37:74:86:b9:86:ac:a5:9e:fa:ac:ea:2b:1f:32:8d:4b: 82:a9:3a:6e:24:80:e5:5f:17:85:a6:e7:a5:04:4d:bc:9c:d7: fc:a9:41:fc:2c:97:de:bc:79:58:5a:e2:fc:9f:01:b2:2a:60: df:5d:f6:5c:30:50:ce:1a:fc:00:f6:58:59:83:90:cc:f7:5a: 70:8f:d6:7a:72:5e:ba:30:14:27:7c:04:bf:c4:8c:25:d8:2a: 95:c9:6a:9e:f6:7c:e3:e4:28:ae:39:2f:39:b3:3e:29:a3:21: f1:4c:00:40:07:d8:09:98:30:3c:dc:96:b2:63:78:e6:e6:65: 34:bc:94:b3:0e:88:a3:d3:fe:1b:97:bf:5b:59:34:ee:87:0a: 58:5e:40:26:0d:4d:fe:c0:dc:1c:bc:c6:29:98:ab:b4:ba:f5: cd:4f:6e:0e -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNzMxMDQxMDQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODVkYi02NGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3BLQohcp8D1mvZCVo8gwD+e+mUvjUNihPoWKAPNIS3fOQAtf8Lq7L0xz2cKb Xp3Ex0Fl11tVvu2DjW87ftbZpjlk57FApUJvpaENMUgn7Z0tyqg3ebWG1cZqyQyK OuN9RHBJUaG0GAxTcjg8W+JVVi2+YLpDyta0Gx1GFJkbWTeWToIsF7r19xeNQIag H3RJy6dgcbJsObDY+HuwhP8aPG6jOGzB6jMuG7CjR2xX1ihL7aajPnSq1R0wAuV2 EnZAljf8qckb8fzrIjDi5UD4azarUO7wf3JYevQWN9L8/yCfJnXrfY0b8anY2/Gt nj4C58BtVhnDkvv7tIFMdDcCzwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFH4vlMPf 0qolVqsXzwcHBj57pqD3MB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvMTRDNEM3RDQw MDI2MTFFRkJENDYyOTUzQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAh BAIAAjAbAwcAJAELYAAZAwcBJAELYAAgAwcEJAELYAIQMA0GCSqGSIb3DQEBCwUA A4IBAQAu/kq+OdfZFENSSadIvXPYO8K6NJRIeS0iVutMeLHr5DTuHQIHTEt8vISM mRxq+5qcAtYDbfE18G4Xtqgm1Ee9prlMKeP7ovgoYoJRlgPgCZez5nJY7olX9dov hjd0hrmGrKWe+qzqKx8yjUuCqTpuJIDlXxeFpuelBE28nNf8qUH8LJfevHlYWuL8 nwGyKmDfXfZcMFDOGvwA9lhZg5DM91pwj9Z6cl66MBQnfAS/xIwl2CqVyWqe9nzj 5CiuOS85sz4poyHxTABAB9gJmDA83JayY3jm5mU0vJSzDoij0/4bl79bWTTuhwpY XkAmDU3+wNwcvMYpmKu0uvXNT24O -----END CERTIFICATE-----Generated at Mon Mar 2 12:00:43 2026 by rpki-client