$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AF6BB6C21F5A11F0BA7E6961C4F9AE02.roa File: AF6BB6C21F5A11F0BA7E6961C4F9AE02.roa (raw, json) Hash identifier: t4wnvinR2EWtGyjXP1LYzSR9U+6iUu8UxRYDOpa0wlU= Subject key identifier: C6:63:AD:1C:F9:E7:62:45:97:CA:1B:C6:24:E4:9A:D8:0C:0D:93:FC Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 045A Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AF6BB6C21F5A11F0BA7E6961C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:30:58 +0000 ROA not before: Wed 31 Dec 2025 00:19:46 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 20473 IP address blocks: 2400:16e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Dec 31 00:19:46 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a477d2-0aef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:64:ab:f9:75:06:fc:00:3f:b0:9d:61:a9:4d: 62:e0:c3:2f:34:fa:74:18:d1:6e:ec:d2:9d:0e:7b: 6c:64:f9:c5:dd:b9:59:38:e3:c2:1a:ec:81:ee:41: 18:4d:a1:a0:2a:41:1e:ef:9c:f6:43:b1:e2:cd:54: 53:da:30:50:c6:71:86:f1:1c:7d:c3:f9:31:da:37: e5:b5:7d:5d:d8:ec:7c:4b:6a:76:f6:6f:cd:f8:81: f9:22:cc:4c:c0:05:7b:02:10:33:20:51:86:9f:e8: be:83:b2:16:b7:f7:60:72:22:6b:71:0a:e5:e7:ce: 6e:e0:ad:2c:a6:bc:22:94:b9:a6:22:6f:b9:62:1c: 6a:fc:a1:e4:73:2d:f7:f9:1f:27:a3:7a:6a:db:7c: ef:57:b5:f6:bc:b2:dc:7a:85:41:45:1f:db:ba:e7: 95:40:3d:a1:08:56:8d:5d:6f:15:f9:ef:05:7d:fd: be:42:1c:d8:74:e0:85:f2:31:70:92:07:54:a6:f8: 22:14:79:29:cf:ca:c9:d8:13:35:77:d9:55:dd:49: 16:e6:fc:45:46:f0:57:64:43:57:4f:4e:29:72:ec: d7:bb:a0:26:6a:85:ca:e2:da:15:bd:1c:2d:bf:f7: ea:08:ea:2b:27:e7:26:6d:76:d6:2b:72:71:82:2b: 0b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:63:AD:1C:F9:E7:62:45:97:CA:1B:C6:24:E4:9A:D8:0C:0D:93:FC X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AF6BB6C21F5A11F0BA7E6961C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:16e0::/48 Signature Algorithm: sha256WithRSAEncryption 4e:88:8b:31:38:89:82:42:82:39:06:dd:25:49:82:9b:8b:64: 49:be:c3:37:52:ac:7d:12:e0:7e:b4:59:66:21:b2:74:4d:69: 2e:f7:ae:b7:2d:2b:60:1f:a0:e7:db:47:c4:97:39:bf:56:57: d5:a1:02:ba:eb:cb:cb:88:db:37:a2:0c:fa:a0:c4:c3:e0:f9: 08:ce:ec:35:5d:eb:2d:2f:58:e6:47:06:d0:ca:a6:ec:1e:0e: a3:29:e9:e9:94:62:90:d6:43:8d:30:91:54:d4:c1:d0:65:76: d6:e7:d3:5d:8c:da:92:34:07:5b:01:5b:ff:5c:b1:ec:27:9b: e9:fb:ea:68:9b:32:2b:c4:2c:40:30:a3:ad:8c:1d:44:75:16: 8f:f6:63:7b:33:f1:85:87:55:ba:ea:97:6e:69:a3:fb:2a:26: ae:2d:57:23:71:0d:f1:47:46:9a:12:dd:62:30:18:1f:df:89: 27:da:92:f7:6d:89:06:0c:32:fc:b6:44:88:2e:30:cd:9f:4b: a3:bc:71:f0:6b:f8:2a:85:4b:86:56:b1:17:a2:32:2a:30:e4: 23:5f:dd:7d:20:b4:e3:95:cc:3a:b2:15:14:f7:eb:1f:bd:98: 58:13:a7:54:a0:fd:5f:39:a9:90:de:2d:69:a0:fa:10:53:8f: 96:c8:e3:6a -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUxMjMxMDAxOTQ2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzdkMi0wYWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2Sr+XUG/AA/sJ1hqU1i4MMvNPp0GNFu7NKdDntsZPnF3blZOOPCGuyB7kEY TaGgKkEe75z2Q7HizVRT2jBQxnGG8Rx9w/kx2jfltX1d2Ox8S2p29m/N+IH5IsxM wAV7AhAzIFGGn+i+g7IWt/dgciJrcQrl585u4K0sprwilLmmIm+5Yhxq/KHkcy33 +R8no3pq23zvV7X2vLLceoVBRR/buueVQD2hCFaNXW8V+e8Fff2+QhzYdOCF8jFw kgdUpvgiFHkpz8rJ2BM1d9lV3UkW5vxFRvBXZENXT04pcuzXu6AmaoXK4toVvRwt v/fqCOorJ+cmbXbWK3JxgisLawIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFMZjrRz5 52JFl8obxiTkmtgMDZP8MB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4QzkvNDBFMEMwRUU5MzZDMTFFQ0JEQzExQTIwQzRGOUFFMDIvQUY2QkI2QzIx RjVBMTFGMEJBN0U2OTYxQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJAAW4AAAMA0GCSqGSIb3DQEBCwUAA4IBAQBOiIsxOImCQoI5Bt0l SYKbi2RJvsM3Uqx9EuB+tFlmIbJ0TWku9663LStgH6Dn20fElzm/VlfVoQK668vL iNs3ogz6oMTD4PkIzuw1XestL1jmRwbQyqbsHg6jKenplGKQ1kONMJFU1MHQZXbW 59NdjNqSNAdbAVv/XLHsJ5vp++pomzIrxCxAMKOtjB1EdRaP9mN7M/GFh1W66pdu aaP7KiauLVcjcQ3xR0aaEt1iMBgf34kn2pL3bYkGDDL8tkSILjDNn0ujvHHwa/gq hUuGVrEXojIqMOQjX919ILTjlcw6shUU9+sfvZhYE6dUoP1fOamQ3i1poPoQU4+W yONq -----END CERTIFICATE-----Generated at Mon Mar 2 05:45:14 2026 by rpki-client