$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/E6C1F0003C7E11F08A874435C4F9AE02.roa File: E6C1F0003C7E11F08A874435C4F9AE02.roa (raw, json) Hash identifier: C2KkFw83+cx2w+Z/qXt6C6L4zz7RactfK1dd4njLIPw= Subject key identifier: 8C:04:53:9A:2B:9C:F9:A0:D7:0A:5B:DA:4E:E2:E6:EF:37:D0:89:F7 Certificate issuer: /CN=A91F8928/serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Certificate serial: 0CF1 Authority key identifier: F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/E6C1F0003C7E11F08A874435C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:40:57 +0000 ROA not before: Tue 08 Jul 2025 11:32:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150774 IP address blocks: 2401:c5c0:2000::/48 maxlen: 48 2401:c5c0:2001::/48 maxlen: 48 2401:c5c0:2002::/48 maxlen: 48 2401:c5c0:2003::/48 maxlen: 48 2401:c5c0:2600::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8928, serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Validity Not Before: Jul 8 11:32:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a425c9-abdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:06:59:55:f5:7a:6a:e6:41:f9:55:c1:3e:6c: 44:52:27:75:5b:e4:72:c8:c9:8b:89:84:cc:44:12: ca:e7:32:8b:37:08:9a:a6:59:3a:61:67:9b:f6:d7: f5:71:d8:1c:fd:50:24:2c:f7:d5:36:d7:83:9f:f1: bd:c8:dd:06:45:7d:b4:02:57:11:f9:5c:40:eb:a8: f2:df:e5:8c:db:84:d9:13:0b:b3:62:bd:de:d1:e2: 54:80:9f:b2:0c:9b:70:f7:c3:56:49:c9:99:01:3c: 68:49:80:e9:12:f8:90:8a:ae:3b:b5:f1:9f:6c:92: 0e:5f:7b:41:05:de:16:a8:ed:53:e9:21:ed:a5:53: 1b:86:1b:84:15:4a:ee:09:bb:6d:42:33:70:93:74: 01:c6:d9:a2:26:0c:30:c6:9e:5e:bb:4a:e0:e8:ee: c6:d4:dd:ff:9c:fd:ea:ed:4e:fd:ff:c4:f7:eb:7b: f6:05:2d:d1:02:b7:99:34:74:ad:73:49:6c:14:bf: af:23:b8:b1:f4:db:d2:ca:b9:35:4f:f2:6b:de:a1: c1:b6:ee:f3:04:65:14:02:1c:75:90:fe:a4:d8:d8: f4:28:c2:89:f5:be:f7:d5:3b:dc:b2:35:fb:63:ce: f1:5e:72:43:2c:2a:4c:ba:e0:c9:0f:d3:93:42:44: 43:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:04:53:9A:2B:9C:F9:A0:D7:0A:5B:DA:4E:E2:E6:EF:37:D0:89:F7 X509v3 Authority Key Identifier: keyid:F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/E6C1F0003C7E11F08A874435C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:c5c0:2000::/46 2401:c5c0:2600::/44 Signature Algorithm: sha256WithRSAEncryption 67:65:41:f8:6f:dc:12:46:17:92:d7:4b:5c:41:c6:58:3b:b2: c1:53:6b:09:33:1d:68:d3:85:d7:8a:10:42:f1:66:4f:f6:09: bb:05:a1:c9:19:3d:20:7b:2c:a0:49:a2:98:4b:d2:01:ee:ff: 25:9b:29:a4:49:b3:e8:d8:5d:19:f9:62:5d:48:f9:ad:13:d6: 46:70:9e:73:8b:92:99:3d:cc:df:92:ec:d0:e6:7c:69:8c:8f: c5:44:7f:47:42:0e:df:1f:f7:06:d7:4c:a9:10:e6:37:d7:6e: cd:9b:b9:e2:a4:11:ab:d8:65:da:34:22:1e:30:c0:88:90:b3: 4d:c3:e3:04:f0:c6:38:cc:c2:2a:0c:2e:de:67:63:f1:df:e0: ae:7e:ed:a6:a0:06:74:ca:25:3b:17:f3:36:aa:7d:de:4c:dd: 39:2c:d4:84:dd:20:97:fd:97:15:45:57:29:2c:de:05:25:0b: a4:d0:34:cb:4d:59:e0:03:39:f2:c4:ac:0f:6e:af:e2:6d:4f: e5:1f:f7:85:6a:4f:65:aa:3d:91:6c:97:b5:6c:de:2b:0e:c6: 86:fe:ff:0d:99:4d:62:07:f5:16:c4:cf:a7:a5:78:b1:7a:17: 1e:2a:fd:08:37:fa:cf:bb:24:97:7a:a6:d8:72:c3:50:12:80: 99:10:d5:9b -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5MjgxMTAvBgNVBAUTKEY1QzlEMzBFOUQwNzcxQ0QwN0U1MUIyRTRBNTJCNTIy NTNBQkQwMjYwHhcNMjUwNzA4MTEzMjEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjVjOS1hYmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAZZVfV6auZB+VXBPmxEUid1W+RyyMmLiYTMRBLK5zKLNwiaplk6YWeb9tf1 cdgc/VAkLPfVNteDn/G9yN0GRX20AlcR+VxA66jy3+WM24TZEwuzYr3e0eJUgJ+y DJtw98NWScmZATxoSYDpEviQiq47tfGfbJIOX3tBBd4WqO1T6SHtpVMbhhuEFUru CbttQjNwk3QBxtmiJgwwxp5eu0rg6O7G1N3/nP3q7U79/8T363v2BS3RAreZNHSt c0lsFL+vI7ix9NvSyrk1T/Jr3qHBtu7zBGUUAhx1kP6k2Nj0KMKJ9b731TvcsjX7 Y87xXnJDLCpMuuDJD9OTQkRDQwIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFIwEU5or nPmg1wpb2k7i5u830In3MB8GA1UdIwQYMBaAFPXJ0w6dB3HNB+UbLkpStSJTq9Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODkyOC80REE3QkIyMDBC NUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNjMEg1UnN1U2xLMUlsT3Iw Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljblREcDBIY2MwSDVSc3VTbEsxSWxPcjBDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg5MjgvNERBN0JCMjAwQjVCMTFFQUEzRUJDNjUwQzRGOUFFMDIvRTZDMUYwMDAz QzdFMTFGMDhBODc0NDM1QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASAwcCJAHFwCAAAwcEJAHFwCYAMA0GCSqGSIb3DQEBCwUAA4IBAQBnZUH4 b9wSRheS10tcQcZYO7LBU2sJMx1o04XXihBC8WZP9gm7BaHJGT0geyygSaKYS9IB 7v8lmymkSbPo2F0Z+WJdSPmtE9ZGcJ5zi5KZPczfkuzQ5nxpjI/FRH9HQg7fH/cG 10ypEOY3127Nm7nipBGr2GXaNCIeMMCIkLNNw+ME8MY4zMIqDC7eZ2Px3+Cufu2m oAZ0yiU7F/M2qn3eTN05LNSE3SCX/ZcVRVcpLN4FJQuk0DTLTVngAznyxKwPbq/i bU/lH/eFak9lqj2RbJe1bN4rDsaG/v8NmU1iB/UWxM+npXixehceKv0IN/rPuySX eqbYcsNQEoCZENWb -----END CERTIFICATE-----Generated at Mon Mar 2 06:22:42 2026 by rpki-client