$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/D0CDFEEA406E11EFA085272AC4F9AE02.roa File: D0CDFEEA406E11EFA085272AC4F9AE02.roa (raw, json) Hash identifier: yNecsmBjDXjAgOr7n+zvB488WLZFWPFK2F0N+2hdbTo= Subject key identifier: 03:DC:10:F7:F0:08:D0:AC:55:A0:99:58:7C:5C:FC:A0:74:8E:9C:EC Certificate issuer: /CN=A91F9E0A/serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Certificate serial: 0160 Authority key identifier: 3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/D0CDFEEA406E11EFA085272AC4F9AE02.roa Signing time: Thu 09 Apr 2026 01:27:52 +0000 ROA not before: Thu 09 Apr 2026 01:27:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152900 IP address blocks: 2401:a4a0:1::/48 maxlen: 48 2401:a4a0:2::/48 maxlen: 48 2401:a4a0:3::/48 maxlen: 48 2401:a4a0:f::/48 maxlen: 48 2401:a4a0:a4a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:50:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Validity Not Before: Apr 9 01:27:52 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69d70098-5298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:90:bf:e1:37:98:c2:bd:e2:c7:e5:48:50:c5: 6b:0a:37:67:be:75:4d:89:f4:38:f6:8c:f6:1d:7c: 73:de:4e:a6:7b:8d:31:e5:a9:9f:ec:44:67:7f:78: dd:21:ef:79:85:6b:e6:89:91:63:87:71:82:9e:fe: da:07:51:c4:37:a2:5b:c0:83:43:32:ee:6a:bf:d6: 4e:09:52:12:21:b3:81:f4:9b:6d:d4:8f:45:9b:1c: a8:9e:0e:b0:be:1f:29:5e:b0:4d:7e:f6:5d:80:e9: ee:ac:fa:6b:44:f9:5d:09:61:69:30:2c:54:69:c7: 75:e9:eb:96:25:f8:9c:76:0b:57:f7:69:aa:09:32: fd:9a:ab:df:71:79:f6:70:ae:5f:64:90:a4:64:75: 2d:da:f3:6b:e0:da:3a:5f:6e:7b:2f:4d:bc:58:4a: 28:1c:1d:cd:78:89:26:7a:cb:bd:67:14:9e:31:bb: 4b:3d:da:87:23:cb:a7:a1:7c:d9:5d:2e:dd:68:b3: c1:4a:37:e5:ae:14:04:54:55:c7:5a:b3:28:e1:ff: a0:fb:97:8d:79:50:14:2c:cf:f8:d8:a6:1b:ac:b7: c9:de:0a:93:4f:4f:5c:37:62:b0:60:e9:7b:38:bf: 86:0f:59:cc:51:d4:b7:bf:6b:f8:aa:27:ad:c7:a5: a1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:DC:10:F7:F0:08:D0:AC:55:A0:99:58:7C:5C:FC:A0:74:8E:9C:EC X509v3 Authority Key Identifier: keyid:3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/D0CDFEEA406E11EFA085272AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:a4a0:1::-2401:a4a0:3:ffff:ffff:ffff:ffff:ffff 2401:a4a0:f::/48 2401:a4a0:a4a0::/48 Signature Algorithm: sha256WithRSAEncryption 1f:81:43:50:35:90:32:a8:6b:01:f9:55:bb:70:6b:f3:4c:24: d4:fe:ff:27:9d:bf:a8:6a:eb:8f:4e:bc:be:bb:bd:58:8d:78: c5:8a:4a:03:19:a8:a1:c4:65:58:f6:94:fc:49:6a:09:a6:27: 19:df:48:7c:bd:01:d3:94:f2:86:71:37:ae:24:6d:74:ac:65: 86:33:f3:f4:db:5b:13:fc:d5:e6:f7:3f:d8:e5:68:b1:4d:42: 4a:34:a2:5b:06:92:6d:09:44:b0:58:d2:6d:5e:aa:c6:0c:b3: 5a:49:90:4c:48:14:ba:f9:c4:ab:6e:8e:8b:6d:f9:d1:89:e9: 82:38:c6:6f:b7:55:5a:56:1b:38:7e:43:ed:ff:2e:5c:d0:61: 4a:b0:23:a7:06:de:9d:db:2b:7e:4e:d3:82:3e:90:16:42:47: a4:e2:31:2a:ac:46:4f:2e:47:9a:1f:b6:f8:7c:a4:ca:79:a7: 38:9b:e9:86:bc:0b:47:b0:01:57:42:d8:b7:03:cb:02:35:3f: 31:d7:62:33:6a:63:cf:80:84:81:de:64:9d:0c:8c:be:f5:51: 42:df:ff:21:05:b3:02:eb:45:35:ae:5d:1d:ae:e6:e6:46:ee: e9:89:fd:89:f6:05:1f:49:53:5b:98:ff:2b:7b:f6:bb:87:dd: 0a:8b:29:2b -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDNENTk0NjAwM0VFRTU0OEFEOTVENzk2Q0IxODhCNzUx QzU3Q0RBQzgwHhcNMjYwNDA5MDEyNzUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3MDA5OC01Mjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5C/4TeYwr3ix+VIUMVrCjdnvnVNifQ49oz2HXxz3k6me40x5amf7ERnf3jd Ie95hWvmiZFjh3GCnv7aB1HEN6JbwINDMu5qv9ZOCVISIbOB9Jtt1I9Fmxyong6w vh8pXrBNfvZdgOnurPprRPldCWFpMCxUacd16euWJficdgtX92mqCTL9mqvfcXn2 cK5fZJCkZHUt2vNr4No6X257L028WEooHB3NeIkmesu9ZxSeMbtLPdqHI8unoXzZ XS7daLPBSjflrhQEVFXHWrMo4f+g+5eNeVAULM/42KYbrLfJ3gqTT09cN2KwYOl7 OL+GD1nMUdS3v2v4qietx6WhnQIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFAPcEPfw CNCsVaCZWHxc/KB0jpzsMB8GA1UdIwQYMBaAFD1ZRgA+7lSK2V15bLGIt1HFfNrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wQkQ5ODVFODNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJclpYWGxzc1lpM1VjVjgy c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWbEdBRDd1VklyWlhYbHNzWWkzVWNWODJzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlFMEEvMEJEOTg1RTgzRTY5MTFFRkEyQ0U2NzZBQzRGOUFFMDIvRDBDREZFRUE0 MDZFMTFFRkEwODUyNzJBQzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAAjAmMBIDBwAkAaSgAAEDBwIkAaSgAAADBwAkAaSgAA8DBwAkAaSgpKAwDQYJ KoZIhvcNAQELBQADggEBAB+BQ1A1kDKoawH5Vbtwa/NMJNT+/yedv6hq649OvL67 vViNeMWKSgMZqKHEZVj2lPxJagmmJxnfSHy9AdOU8oZxN64kbXSsZYYz8/TbWxP8 1eb3P9jlaLFNQko0olsGkm0JRLBY0m1eqsYMs1pJkExIFLr5xKtujott+dGJ6YI4 xm+3VVpWGzh+Q+3/LlzQYUqwI6cG3p3bK35O04I+kBZCR6TiMSqsRk8uR5oftvh8 pMp5pzib6Ya8C0ewAVdC2LcDywI1PzHXYjNqY8+AhIHeZJ0MjL71UULf/yEFswLr RTWuXR2u5uZG7umJ/Yn2BR9JU1uY/yt79ruH3QqLKSs= -----END CERTIFICATE-----Generated at Fri Apr 17 10:14:45 2026 by rpki-client