$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/86AE60140D7A11EB9D346C48C4F9AE02.roa File: 86AE60140D7A11EB9D346C48C4F9AE02.roa (raw, json) Hash identifier: FEj+Wpf3i+UBiIyj1ILdZqVb7eAIBliHFCY3mKXHGkw= Subject key identifier: 04:9C:CB:B3:40:82:9A:D3:07:EA:1C:D7:CC:15:88:B4:DA:2E:87:20 Certificate issuer: /CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Certificate serial: 081E Authority key identifier: D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/86AE60140D7A11EB9D346C48C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:38:53 +0000 ROA not before: Tue 06 May 2025 21:32:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 15169 IP address blocks: 2404:6800::/32 maxlen: 32 2404:6800:4001::/48 maxlen: 48 2404:6800:4002::/48 maxlen: 48 2404:6800:4003::/48 maxlen: 48 2404:6800:4004::/48 maxlen: 48 2404:6800:4005::/48 maxlen: 48 2404:6800:4006::/48 maxlen: 48 2404:6800:4007::/48 maxlen: 48 2404:6800:4008::/48 maxlen: 48 2404:6800:4009::/48 maxlen: 48 2404:6800:400a::/48 maxlen: 48 2404:6800:480e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2E76, serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Validity Not Before: May 6 21:32:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fb1c-e5ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:21:c1:e7:c4:30:62:d1:46:1d:98:a2:7e:71: f3:f6:6e:f3:10:7d:54:1d:bf:d2:13:94:dc:aa:48: 48:a2:01:c9:e3:ce:1c:96:fe:d8:6f:17:c1:08:83: 78:6c:76:de:88:52:32:ec:70:6a:bd:5f:2e:92:12: d3:33:71:f0:f8:ef:c7:c2:6f:4c:05:d9:a8:e1:8f: 4f:9b:29:f8:95:0e:dc:ed:ee:12:42:fa:e0:f1:83: c2:3f:2c:60:60:84:fb:07:14:5b:f9:93:dd:91:fa: 7a:35:1d:df:c0:e3:7b:40:1a:24:f2:b6:09:3d:51: d1:a1:fe:0d:40:d7:00:35:a9:b1:b4:65:f1:1f:ed: c6:3b:87:8e:2a:fa:cb:71:b8:bf:99:09:6f:3f:0e: ed:83:9f:c0:c3:9d:03:42:0f:97:84:12:91:65:6c: 1e:67:08:bf:8e:83:94:e8:d1:ac:e2:34:fa:ee:9e: cd:47:3b:5e:bd:d0:ff:e7:92:29:5b:7a:e5:ef:c7: db:23:80:3d:15:85:f8:46:a3:ac:e8:10:e1:7a:1a: 1b:74:af:27:56:f7:dc:24:1a:8c:d8:3a:11:97:8f: 20:60:62:d5:6f:1d:8e:10:a1:49:e4:30:45:2d:cc: 3a:7e:d1:5a:9d:cd:36:93:64:e6:e7:9e:77:6c:51: 14:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9C:CB:B3:40:82:9A:D3:07:EA:1C:D7:CC:15:88:B4:DA:2E:87:20 X509v3 Authority Key Identifier: keyid:D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/86AE60140D7A11EB9D346C48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2404:6800::/32 Signature Algorithm: sha256WithRSAEncryption 9f:ba:52:0f:6e:b0:0b:2f:f8:7a:95:27:3f:08:51:4c:f7:28: 3c:ea:1a:58:42:d9:74:95:58:b2:1f:3a:ba:6c:03:62:36:0d: b3:e7:88:ed:7d:6e:16:4e:53:18:6f:25:5b:42:14:99:38:c3: e0:7b:8f:cb:e6:7d:7b:e4:6e:ce:8b:80:6d:3c:b0:81:9e:4f: 20:8a:b1:0a:ac:39:5e:38:bc:d2:29:e6:6d:05:60:07:98:a0: 0e:d5:6f:e5:36:79:1c:84:93:20:9a:e1:04:32:48:98:ef:8f: f2:0e:39:d7:ec:1d:f5:fa:fd:93:e4:3e:de:e5:f8:e9:1e:51: a7:93:21:7e:4f:49:25:7b:f3:d8:f0:10:ea:41:c7:09:91:b3: 3e:22:a8:e7:7c:25:3f:52:b6:ad:b9:7d:72:9f:00:81:a5:bd: b0:4c:50:ac:f1:54:31:0a:3d:c7:c3:7f:3f:d0:45:8d:2a:75: 2d:8d:e7:36:2d:98:b0:2a:91:7d:00:01:2e:a3:4c:14:93:fc: fb:27:ff:92:35:03:55:39:48:85:f2:45:0a:6d:50:9b:86:82: 80:79:cd:fa:18:70:06:04:a5:67:b7:30:f6:2f:74:2f:e4:82: ae:2d:07:5e:62:1e:c4:e4:32:86:11:59:73:1a:dc:aa:25:79: 87:d5:e0:df -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJFNzYxMTAvBgNVBAUTKEQ0MTM3OEVGQ0NDRENBOEU2NTM3RTk1RjI3QUEzQjM1 Mzc1ODBBRjMwHhcNMjUwNTA2MjEzMjI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmIxYy1lNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkSHB58QwYtFGHZiifnHz9m7zEH1UHb/SE5TcqkhIogHJ484clv7YbxfBCIN4 bHbeiFIy7HBqvV8ukhLTM3Hw+O/Hwm9MBdmo4Y9Pmyn4lQ7c7e4SQvrg8YPCPyxg YIT7BxRb+ZPdkfp6NR3fwON7QBok8rYJPVHRof4NQNcANamxtGXxH+3GO4eOKvrL cbi/mQlvPw7tg5/Aw50DQg+XhBKRZWweZwi/joOU6NGs4jT67p7NRztevdD/55Ip W3rl78fbI4A9FYX4RqOs6BDhehobdK8nVvfcJBqM2DoRl48gYGLVbx2OEKFJ5DBF Lcw6ftFanc02k2Tm5553bFEU/wIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFAScy7NA gprTB+oc18wViLTaLocgMB8GA1UdIwQYMBaAFNQTeO/MzcqOZTfpXyeqOzU3WArz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkU3Ni84RjNDOUU2QTBE NzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6TnlvNWxOLWxmSjZvN05UZFlD dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFCTjQ3OHpOeW81bE4tbGZKNm83TlRkWUN2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJFNzYvOEYzQzlFNkEwRDc3MTFFQkJCQUUzNDQwQzRGOUFFMDIvODZBRTYwMTQw RDdBMTFFQjlEMzQ2QzQ4QzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJARoADANBgkqhkiG9w0BAQsFAAOCAQEAn7pSD26wCy/4epUnPwhR TPcoPOoaWELZdJVYsh86umwDYjYNs+eI7X1uFk5TGG8lW0IUmTjD4HuPy+Z9e+Ru zouAbTywgZ5PIIqxCqw5Xji80inmbQVgB5igDtVv5TZ5HISTIJrhBDJImO+P8g45 1+wd9fr9k+Q+3uX46R5Rp5Mhfk9JJXvz2PAQ6kHHCZGzPiKo53wlP1K2rbl9cp8A gaW9sExQrPFUMQo9x8N/P9BFjSp1LY3nNi2YsCqRfQABLqNMFJP8+yf/kjUDVTlI hfJFCm1Qm4aCgHnN+hhwBgSlZ7cw9i90L+SCri0HXmIexOQyhhFZcxrcqiV5h9Xg 3w== -----END CERTIFICATE-----Generated at Mon Mar 2 06:26:31 2026 by rpki-client