$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa File: 2EFBFF901C0611EF883D807CC4F9AE02.roa (raw, json) Hash identifier: uc4RYqpjqZuGmSUCE9a97wEXjfj0RfCgzqbAD8ekhMc= Subject key identifier: CE:68:A8:EC:AB:83:83:8C:17:AB:6D:4B:9D:74:8E:1D:F4:D5:D4:4A Certificate issuer: /CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Certificate serial: 019D Authority key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:21:01 +0000 ROA not before: Wed 11 Feb 2026 04:24:20 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 14618 IP address blocks: 2400:3d20:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4FB0, serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Validity Not Before: Feb 11 04:24:20 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4595d-33e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a7:1c:7f:cc:d4:7f:c3:cd:46:64:a4:ec:d6: a1:a6:32:06:47:8a:1f:27:ce:55:1c:29:b2:9a:94: b2:1d:db:1e:1d:5b:b3:3f:a2:71:58:15:7e:3e:79: 04:3d:99:cf:0d:a1:25:2a:4d:6a:6d:42:9a:22:8b: 1a:4a:66:d6:3b:2d:60:e5:d3:5e:f7:4f:23:65:86: f3:5b:96:e8:62:5c:00:cd:c7:cc:68:09:15:99:1f: aa:27:68:85:35:14:91:4c:4e:b2:6a:99:fb:35:9b: 10:0f:79:79:f5:cc:24:3a:0a:aa:87:8b:28:6e:f7: 04:53:45:06:d8:27:ea:47:74:44:b6:a7:93:22:fb: b2:71:0c:a4:2d:c5:b7:47:fe:b4:f7:37:7b:bd:1d: 58:62:c0:a5:d0:6f:2a:c3:17:c6:ff:02:91:a6:8c: cd:a4:24:0b:21:c2:51:9d:bf:b9:ff:b3:00:d5:65: 8a:70:87:2a:f8:3c:ac:c9:db:df:0d:da:0e:cd:a7: 34:ce:da:5b:64:63:b7:65:33:bb:4a:02:24:82:ea: 8e:2c:b1:b8:1c:2f:f1:32:19:e1:96:8a:56:cc:28: 45:2f:5b:e1:9d:a1:92:8c:e2:f4:92:cb:85:1d:23: c8:15:aa:d7:76:1a:56:35:2c:4c:03:bb:7e:b9:44: f9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:68:A8:EC:AB:83:83:8C:17:AB:6D:4B:9D:74:8E:1D:F4:D5:D4:4A X509v3 Authority Key Identifier: keyid:87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/2EFBFF901C0611EF883D807CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:3d20:1000::/40 Signature Algorithm: sha256WithRSAEncryption 1f:80:f5:e9:bb:c0:40:93:d7:31:e3:08:af:44:f4:3c:7a:3d: 30:6c:0c:c5:6f:95:e0:0f:6e:5f:a6:f6:d1:26:3d:ee:ef:af: 17:42:ce:88:34:fa:4d:9b:4c:71:3d:b3:73:1d:e6:54:e5:5f: cf:c6:3a:7e:85:87:69:54:bd:06:59:6b:91:1f:f6:f6:f7:25: 36:86:aa:7d:2a:03:23:b2:1a:42:a7:c3:39:9e:04:c2:46:ac: be:dd:a8:9a:af:fc:bb:f9:23:e6:92:31:e2:72:ae:ee:52:78: 46:ac:53:b3:23:a2:52:ac:54:85:ee:c9:8b:1d:ce:b7:44:ee: 31:ad:34:71:80:53:e7:4d:4f:ff:57:68:f6:bd:0e:85:f8:86: 0e:b2:60:e2:54:67:03:bb:9a:d4:ff:5d:67:0d:fb:eb:63:d7: 98:54:46:d7:79:1d:90:05:dc:ff:6e:82:19:76:bb:44:e8:4b: 86:70:7f:83:5b:20:be:d8:a1:3f:a8:3f:30:ff:a1:37:25:56: 55:31:d6:2d:67:17:ec:fd:4a:6d:a3:22:c4:76:6a:2f:bf:6f: 1f:4b:8f:ef:31:2a:84:12:74:aa:1a:d8:d8:91:fa:e3:07:6c: 6e:7e:9f:e6:af:3a:fd:d0:2a:6c:9f:b1:dd:79:8f:d0:e6:f8: bb:b2:99:0d -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGQjAxMTAvBgNVBAUTKDg3NkU2ODEzQkYyQzE4MTFDRDExREU5OTI4MUFDRDQ0 QkVDMERFNzMwHhcNMjYwMjExMDQyNDIwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTk1ZC0zM2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqccf8zUf8PNRmSk7NahpjIGR4ofJ85VHCmympSyHdseHVuzP6JxWBV+PnkE PZnPDaElKk1qbUKaIosaSmbWOy1g5dNe908jZYbzW5boYlwAzcfMaAkVmR+qJ2iF NRSRTE6yapn7NZsQD3l59cwkOgqqh4sobvcEU0UG2CfqR3REtqeTIvuycQykLcW3 R/609zd7vR1YYsCl0G8qwxfG/wKRpozNpCQLIcJRnb+5/7MA1WWKcIcq+Dysydvf DdoOzac0ztpbZGO3ZTO7SgIkguqOLLG4HC/xMhnhlopWzChFL1vhnaGSjOL0ksuF HSPIFarXdhpWNSxMA7t+uUT51wIDAQABo4ICYjCCAl4wHQYDVR0OBBYEFM5oqOyr g4OMF6ttS510jh301dRKMB8GA1UdIwQYMBaAFIduaBO/LBgRzRHemSgazUS+wN5z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEZCMC8wNThDRUMxNDE5 QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dCSE5FZDZaS0JyTlJMN0Ez bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyNW9FNzhzR0JITkVkNlpLQnJOUkw3QTNuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRGQjAvMDU4Q0VDMTQxOUJEMTFFRkJEMzNFMDgyQzRGOUFFMDIvMkVGQkZGOTAx QzA2MTFFRjg4M0Q4MDdDQzRGOUFFMDIucm9hMCEGCCsGAQUFBwEHAQH/BBIwEDAO BAIAAjAIAwYAJAA9IBAwDQYJKoZIhvcNAQELBQADggEBAB+A9em7wECT1zHjCK9E 9Dx6PTBsDMVvleAPbl+m9tEmPe7vrxdCzog0+k2bTHE9s3Md5lTlX8/GOn6Fh2lU vQZZa5Ef9vb3JTaGqn0qAyOyGkKnwzmeBMJGrL7dqJqv/Lv5I+aSMeJyru5SeEas U7MjolKsVIXuyYsdzrdE7jGtNHGAU+dNT/9XaPa9DoX4hg6yYOJUZwO7mtT/XWcN ++tj15hURtd5HZAF3P9ughl2u0ToS4Zwf4NbIL7YoT+oPzD/oTclVlUx1i1nF+z9 Sm2jIsR2ai+/bx9Lj+8xKoQSdKoa2NiR+uMHbG5+n+avOv3QKmyfsd15j9Dm+Luy mQ0= -----END CERTIFICATE-----Generated at Mon Mar 2 15:18:16 2026 by rpki-client