$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/401EA996B5B511EABB640052C4F9AE02.roa File: 401EA996B5B511EABB640052C4F9AE02.roa (raw, json) Hash identifier: 3UdrZqdhdDJ0HDKYCaHDQZmp3LAxyKD7mCp5FO7bhxY= Subject key identifier: 31:1D:C4:D5:40:87:FA:B4:25:12:BC:32:1F:44:08:3C:3E:4E:12:46 Certificate issuer: /CN=A91F6E7D/serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Certificate serial: 0A50 Authority key identifier: 06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/401EA996B5B511EABB640052C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:47:38 +0000 ROA not before: Tue 30 Dec 2025 19:16:13 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 14061 IP address blocks: 139.59.0.0/16 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E7D, serialNumber=06DF52D291503D0E2B1172D385C2B187794C79C7 Validity Not Before: Dec 30 19:16:13 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4518a-ae4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b0:3c:f9:df:a3:72:60:f8:e2:3b:8a:3e:b9: 88:31:98:e0:b6:07:31:8a:c2:4f:e9:1e:1c:37:3a: 08:52:d0:8f:07:ba:fa:dc:d1:3f:4e:21:61:17:4b: f7:bd:34:f3:e4:46:1f:b3:92:d9:8f:ff:ad:e1:63: 4d:7d:56:03:81:61:a1:27:29:d2:e1:cd:ea:20:d4: 59:4a:fe:3b:30:ad:43:60:8e:b4:78:e4:e3:1c:5f: 60:b4:ac:30:94:23:a5:f1:d0:d6:f8:70:2c:40:ed: 28:e7:a2:ff:7b:68:9d:90:c1:09:91:cb:db:7d:02: b9:52:9d:d8:fd:f4:ae:37:32:d3:57:d3:0b:27:f0: 7f:64:03:f6:07:f4:b0:f4:c6:17:85:57:2e:85:e7: a6:3e:a3:78:df:61:e1:fc:04:53:1c:9b:da:f4:9b: ee:ba:96:86:fc:b1:64:61:13:ce:ba:4b:32:f2:6c: 97:aa:43:dd:ae:63:de:a2:1a:98:83:77:8c:32:8c: 96:90:db:d2:0c:97:2b:af:77:32:32:7b:33:4b:99: 91:12:42:57:40:da:a7:8a:db:e5:6d:21:4e:32:be: e2:1e:c3:73:8f:17:a3:a4:b8:31:1e:1f:02:15:fd: bc:2a:d2:63:15:c5:cb:36:30:38:e3:3e:d6:61:e3: bc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:1D:C4:D5:40:87:FA:B4:25:12:BC:32:1F:44:08:3C:3E:4E:12:46 X509v3 Authority Key Identifier: keyid:06:DF:52:D2:91:50:3D:0E:2B:11:72:D3:85:C2:B1:87:79:4C:79:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/Bt9S0pFQPQ4rEXLThcKxh3lMecc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Bt9S0pFQPQ4rEXLThcKxh3lMecc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1759E4C8838111EAACB9BC30C4F9AE02/401EA996B5B511EABB640052C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 139.59.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:da:e0:c4:ff:e4:40:ea:34:83:af:46:6d:2f:f6:26:ef:e9: 05:29:22:a3:99:24:41:81:05:91:03:4b:e9:7b:34:f1:da:9f: 1f:34:5e:38:65:df:63:81:e0:6e:29:37:b7:06:37:31:6f:71: 29:77:31:9e:ed:12:22:c6:54:04:a1:92:9e:c4:d7:40:fb:5d: 98:da:f1:16:d9:c3:f2:a6:0d:15:5b:82:5a:9a:d8:33:4a:33: 40:70:f8:9d:00:36:72:69:c1:3e:09:2f:8e:c6:7b:64:27:40: da:1b:7f:5e:b9:52:0f:43:3e:e0:ad:f0:2e:96:3a:6c:20:e8: cb:44:d7:e6:e5:87:72:8e:e9:43:05:3a:b7:35:78:bf:6f:8f: 80:34:2b:b0:56:e0:cd:cd:5c:3a:bf:68:ea:4b:9f:95:7f:18: b0:7d:ee:31:61:66:11:2f:7a:87:26:04:03:b3:e3:f5:da:28: 6b:c1:a1:80:fb:fd:0b:2e:e2:17:25:c0:d1:7e:e4:bf:e6:20: 83:ab:1b:5f:90:b4:23:85:39:51:cf:4b:42:22:56:49:97:37: 00:d4:5b:1e:5d:70:8b:22:85:cc:0f:90:aa:fd:c5:c8:98:fc: 35:e3:72:ab:02:dd:15:43:a6:8b:ad:f7:b9:38:8c:e8:54:c3: fe:ab:00:44 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFN0QxMTAvBgNVBAUTKDA2REY1MkQyOTE1MDNEMEUyQjExNzJEMzg1QzJCMTg3 Nzk0Qzc5QzcwHhcNMjUxMjMwMTkxNjEzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTE4YS1hZTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+rA8+d+jcmD44juKPrmIMZjgtgcxisJP6R4cNzoIUtCPB7r63NE/TiFhF0v3 vTTz5EYfs5LZj/+t4WNNfVYDgWGhJynS4c3qINRZSv47MK1DYI60eOTjHF9gtKww lCOl8dDW+HAsQO0o56L/e2idkMEJkcvbfQK5Up3Y/fSuNzLTV9MLJ/B/ZAP2B/Sw 9MYXhVcuheemPqN432Hh/ARTHJva9JvuupaG/LFkYRPOuksy8myXqkPdrmPeohqY g3eMMoyWkNvSDJcrr3cyMnszS5mREkJXQNqnitvlbSFOMr7iHsNzjxejpLgxHh8C Ff28KtJjFcXLNjA44z7WYeO8xwIDAQABo4ICXzCCAlswHQYDVR0OBBYEFDEdxNVA h/q0JRK8Mh9ECDw+ThJGMB8GA1UdIwQYMBaAFAbfUtKRUD0OKxFy04XCsYd5THnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU3RC8xNzU5RTRDODgz ODExMUVBQUNCOUJDMzBDNEY5QUUwMi9CdDlTMHBGUVBRNHJFWExUaGNLeGgzbE1l Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J0OVMwcEZRUFE0ckVYTFRoY0t4aDNsTWVjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZFN0QvMTc1OUU0Qzg4MzgxMTFFQUFDQjlCQzMwQzRGOUFFMDIvNDAxRUE5OTZC NUI1MTFFQUJCNjQwMDUyQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAizswDQYJKoZIhvcNAQELBQADggEBADza4MT/5EDqNIOvRm0v9ibv 6QUpIqOZJEGBBZEDS+l7NPHanx80Xjhl32OB4G4pN7cGNzFvcSl3MZ7tEiLGVASh kp7E10D7XZja8RbZw/KmDRVbglqa2DNKM0Bw+J0ANnJpwT4JL47Ge2QnQNobf165 Ug9DPuCt8C6WOmwg6MtE1+blh3KO6UMFOrc1eL9vj4A0K7BW4M3NXDq/aOpLn5V/ GLB97jFhZhEveocmBAOz4/XaKGvBoYD7/Qsu4hclwNF+5L/mIIOrG1+QtCOFOVHP S0IiVkmXNwDUWx5dcIsihcwPkKr9xciY/DXjcqsC3RVDpout97k4jOhUw/6rAEQ= -----END CERTIFICATE-----Generated at Mon Mar 2 13:21:26 2026 by rpki-client