$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/B2DE2498C4FD11ED909F2770C4F9AE02.roa File: B2DE2498C4FD11ED909F2770C4F9AE02.roa (raw, json) Hash identifier: 3w67fjihibZok1qWjIP39FszAZUqgmCtMKGJLAm88jM= Subject key identifier: 4E:9B:A0:47:A2:16:7E:E9:C7:5D:B5:46:96:50:1A:0C:67:22:AA:66 Certificate issuer: /CN=A91FA66B/serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Certificate serial: 0238 Authority key identifier: 62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/B2DE2498C4FD11ED909F2770C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:11:32 +0000 ROA not before: Wed 11 Feb 2026 02:22:21 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 38016 IP address blocks: 2406:c800::/32 maxlen: 32 2406:c800:a1ca::/48 maxlen: 48 2406:c800:e000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:10:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA66B, serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Validity Not Before: Feb 11 02:22:21 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a410d4-2d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:cb:84:62:74:c1:93:c0:61:2c:59:0b:83:df: a3:c5:e1:41:ad:48:4b:e3:fa:95:d5:f7:84:47:c3: 41:e8:fe:7b:56:bc:7f:a1:15:4a:a9:e8:5c:25:5c: 40:79:a3:17:ed:e2:6f:6d:29:25:92:58:1c:af:80: f9:9e:c0:8e:b6:03:3a:d4:a8:fe:8d:40:8e:e0:6b: 5a:86:97:38:e0:cc:61:5c:36:fb:fa:3b:59:57:10: 56:d6:47:78:12:fb:21:0a:15:31:63:d3:6e:a3:2e: 7c:a1:ea:03:98:94:70:85:2a:b4:20:8c:af:cb:b1: c8:24:7e:0f:4b:27:f5:a2:a5:31:82:52:03:6c:f9: c8:43:ac:93:b3:47:e6:b3:b4:d2:ef:35:71:b5:c1: 7a:56:e4:9c:4a:ee:df:bb:34:2b:1a:62:38:63:1d: 4c:41:e1:11:43:3f:ba:4f:c1:31:c9:e2:31:fd:49: 89:00:a7:e9:8f:0e:5f:b5:33:1f:32:77:22:81:fa: 20:bc:5e:44:01:2e:86:38:7a:82:3d:92:22:58:d1: 94:4a:c1:f0:ee:2e:4b:03:e1:c7:a4:cc:b3:10:ce: 42:1b:75:91:6b:71:04:18:7d:17:cd:3e:1c:84:1b: c9:1c:ac:7d:09:f6:72:99:01:63:17:06:62:d4:4a: 5a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:9B:A0:47:A2:16:7E:E9:C7:5D:B5:46:96:50:1A:0C:67:22:AA:66 X509v3 Authority Key Identifier: keyid:62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/B2DE2498C4FD11ED909F2770C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2406:c800::/32 Signature Algorithm: sha256WithRSAEncryption 0c:c7:c8:d3:b2:2a:93:57:86:3f:0d:d0:9e:ca:e2:07:2c:a3: 8d:c1:d1:05:bd:37:50:c1:db:95:d5:41:6d:32:27:34:2d:fa: 7e:75:31:d2:2a:ed:87:be:6b:45:e3:82:04:6e:ea:a9:e0:6b: 31:a0:e8:6a:12:a0:1d:c8:f4:79:ff:73:87:e0:b7:86:58:6e: 45:3c:da:af:c4:81:4b:dd:85:b5:8d:60:26:b7:ac:8e:5e:95: 12:a5:09:ac:f2:d0:37:33:80:5f:0f:cb:05:aa:35:31:2c:cf: 4a:af:c9:d2:b9:a8:d8:0e:23:4d:b1:54:9e:16:38:69:e5:62: d7:f9:40:1e:73:0c:e6:bb:00:7b:04:51:18:3f:33:13:0e:ee: 39:4f:4c:78:21:3c:9a:25:50:26:c1:d6:07:bf:49:5b:b1:bc: 8e:cb:46:f6:4e:72:04:a2:fc:06:5c:68:fb:00:a7:36:8e:c4: dd:e2:b1:4e:0c:2a:9e:a6:59:c3:b9:cc:5b:7c:ae:e3:bb:6d: 4b:00:dd:fa:6c:9c:cd:eb:50:5b:d9:6b:c1:32:b2:3e:ea:08: 8a:5e:da:23:be:e2:76:ee:52:2f:ee:cb:72:7b:c6:14:1b:87: c3:99:a2:d8:6b:9b:37:f9:39:63:c9:e8:2e:84:2c:03:e8:3b: 95:73:ba:1e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NkIxMTAvBgNVBAUTKDYyNjdDOTdFQjRBMERGMDFFREJENkY5RDQxQTg2QTg3 OUUwMjc5N0YwHhcNMjYwMjExMDIyMjIxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTBkNC0yZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8uEYnTBk8BhLFkLg9+jxeFBrUhL4/qV1feER8NB6P57Vrx/oRVKqehcJVxA eaMX7eJvbSklklgcr4D5nsCOtgM61Kj+jUCO4Gtahpc44MxhXDb7+jtZVxBW1kd4 EvshChUxY9Nuoy58oeoDmJRwhSq0IIyvy7HIJH4PSyf1oqUxglIDbPnIQ6yTs0fm s7TS7zVxtcF6VuScSu7fuzQrGmI4Yx1MQeERQz+6T8ExyeIx/UmJAKfpjw5ftTMf MncigfogvF5EAS6GOHqCPZIiWNGUSsHw7i5LA+HHpMyzEM5CG3WRa3EEGH0XzT4c hBvJHKx9CfZymQFjFwZi1EpaOwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFE6boEei Fn7px121RpZQGgxnIqpmMB8GA1UdIwQYMBaAFGJnyX60oN8B7b1vnUGoaoeeAnl/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY2Qi8xNDJCQ0I5NkM0 RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3SHR2Vy1kUWFocWg1NENl WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltZkpmclNnM3dIdHZXLWRRYWhxaDU0Q2VYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE2NkIvMTQyQkNCOTZDNEZBMTFFRDlCREYzMTU3QzRGOUFFMDIvQjJERTI0OThD NEZEMTFFRDkwOUYyNzcwQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAbIADANBgkqhkiG9w0BAQsFAAOCAQEADMfI07Iqk1eGPw3Qnsri ByyjjcHRBb03UMHbldVBbTInNC36fnUx0irth75rReOCBG7qqeBrMaDoahKgHcj0 ef9zh+C3hlhuRTzar8SBS92FtY1gJresjl6VEqUJrPLQNzOAXw/LBao1MSzPSq/J 0rmo2A4jTbFUnhY4aeVi1/lAHnMM5rsAewRRGD8zEw7uOU9MeCE8miVQJsHWB79J W7G8jstG9k5yBKL8Blxo+wCnNo7E3eKxTgwqnqZZw7nMW3yu47ttSwDd+myczetQ W9lrwTKyPuoIil7aI77idu5SL+7LcnvGFBuHw5mi2GubN/k5Y8noLoQsA+g7lXO6 Hg== -----END CERTIFICATE-----Generated at Mon Mar 2 11:21:48 2026 by rpki-client