$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/8FD49B16BAE411EE9198A471C4F9AE02.roa File: 8FD49B16BAE411EE9198A471C4F9AE02.roa (raw, json) Hash identifier: 0ESXESaf1Km8hU3mbKXTS2edVIPzUkaWWbUdYQNfwzs= Subject key identifier: 35:70:FF:4C:E1:F6:B2:E9:C2:01:94:88:EE:C4:06:87:69:A7:DF:2D Certificate issuer: /CN=A91FA851/serialNumber=B9250FDE3FABD59FA5608230FEA7A23C4B4C8968 Certificate serial: 0194 Authority key identifier: B9:25:0F:DE:3F:AB:D5:9F:A5:60:82:30:FE:A7:A2:3C:4B:4C:89:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/8FD49B16BAE411EE9198A471C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:03:03 +0000 ROA not before: Mon 23 Feb 2026 03:24:01 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 138548 IP address blocks: 2401:7960::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.crl rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA851, serialNumber=B9250FDE3FABD59FA5608230FEA7A23C4B4C8968 Validity Not Before: Feb 23 03:24:01 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a41ce7-6489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:30:b5:e7:b3:58:7b:ca:5b:26:4c:28:9d:fd: 70:51:60:4f:58:49:d8:30:1b:d2:c6:e8:47:09:b7: 38:86:cd:65:7f:57:d1:8d:f2:95:e0:80:7f:cd:b1: 93:27:cc:40:92:2b:dc:b4:94:1e:53:0d:ab:09:45: 20:12:fb:67:e0:33:97:ad:bd:be:8c:4a:13:01:d6: a4:8a:ed:7d:b5:dd:6f:d5:a0:61:4c:6f:07:94:07: 0d:e1:52:7a:aa:9f:f5:c4:3d:be:b1:d2:6a:d9:70: 39:85:f6:48:0f:53:93:c8:4a:29:c3:3f:5c:b2:03: 31:c3:c4:aa:9a:99:cc:cb:fb:ac:54:0f:13:56:87: 5e:45:0c:34:d1:64:24:66:18:f9:18:7c:40:0c:c6: 9d:28:02:b5:a3:79:62:49:b5:e1:60:c4:39:95:34: e9:b1:46:55:80:df:a1:c4:8e:ae:fe:2d:c6:e2:c8: 0c:8e:07:29:1e:28:24:bb:cb:b5:bf:ca:f4:36:2f: 19:d6:1a:63:e5:a4:a0:04:2f:59:81:a5:b6:55:86: d9:bf:7e:58:c8:9c:32:42:62:45:97:8f:c8:55:96: be:1b:f1:52:73:08:ef:1d:95:9e:0d:9f:da:79:a9: 2a:a1:9e:c9:02:97:eb:9a:6a:d3:29:ce:c8:cc:c7: 16:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:70:FF:4C:E1:F6:B2:E9:C2:01:94:88:EE:C4:06:87:69:A7:DF:2D X509v3 Authority Key Identifier: keyid:B9:25:0F:DE:3F:AB:D5:9F:A5:60:82:30:FE:A7:A2:3C:4B:4C:89:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uSUP3j-r1Z-lYIIw_qeiPEtMiWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA851/95A6119CB9DF11EE94B4242AC4F9AE02/8FD49B16BAE411EE9198A471C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:7960::/32 Signature Algorithm: sha256WithRSAEncryption 19:f1:99:f3:d5:60:41:32:50:06:6b:fc:da:de:ef:c6:b4:c6: f6:2e:7e:8b:a1:25:c4:e5:31:ca:23:69:54:3c:d5:44:e9:bd: 6e:0c:70:ab:36:a6:c9:91:d7:7a:d6:83:34:a3:b5:d4:96:f7: 24:3a:4a:e2:2d:0b:30:26:e0:da:61:da:83:39:30:ad:69:4d: 43:62:78:d4:d4:91:71:23:c4:33:6b:e9:38:22:52:45:33:bf: 6d:ed:80:21:b2:64:d4:19:36:0d:bc:99:30:85:98:af:cd:70: 5f:f2:de:39:dd:8d:2c:e4:e4:dc:d7:54:e8:f1:d8:4e:85:fc: 76:2a:01:17:66:21:60:dc:b8:05:cc:16:61:ab:ac:26:20:88: 70:41:1a:4b:1d:21:f7:15:5f:8d:6c:14:59:5c:7a:76:29:19: 45:b3:7a:0e:10:8f:26:1f:b7:d8:6e:10:87:64:aa:3a:5e:9a: 22:65:36:de:9a:cf:ba:dd:d4:0d:ee:9a:4f:fe:3b:51:8d:28: b2:59:a8:b3:b1:e1:fa:5d:f3:fa:36:15:07:c4:c5:71:f5:f7: 21:04:21:3c:38:34:59:db:1c:3c:b4:00:13:de:ad:d8:9a:8a: c3:22:c4:c2:b2:6b:f0:36:ed:a5:ff:4f:5a:09:2a:25:2d:c7: c1:7c:17:c4 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE4NTExMTAvBgNVBAUTKEI5MjUwRkRFM0ZBQkQ1OUZBNTYwODIzMEZFQTdBMjND NEI0Qzg5NjgwHhcNMjYwMjIzMDMyNDAxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWNlNy02NDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3jC157NYe8pbJkwonf1wUWBPWEnYMBvSxuhHCbc4hs1lf1fRjfKV4IB/zbGT J8xAkivctJQeUw2rCUUgEvtn4DOXrb2+jEoTAdakiu19td1v1aBhTG8HlAcN4VJ6 qp/1xD2+sdJq2XA5hfZID1OTyEopwz9csgMxw8SqmpnMy/usVA8TVodeRQw00WQk Zhj5GHxADMadKAK1o3liSbXhYMQ5lTTpsUZVgN+hxI6u/i3G4sgMjgcpHigku8u1 v8r0Ni8Z1hpj5aSgBC9ZgaW2VYbZv35YyJwyQmJFl4/IVZa+G/FScwjvHZWeDZ/a eakqoZ7JApfrmmrTKc7IzMcWywIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFDVw/0zh 9rLpwgGUiO7EBodpp98tMB8GA1UdIwQYMBaAFLklD94/q9WfpWCCMP6nojxLTIlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTg1MS85NUE2MTE5Q0I5 REYxMUVFOTRCNDI0MkFDNEY5QUUwMi91U1VQM2otcjFaLWxZSUl3X3FlaVBFdE1p V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VTVVAzai1yMVotbFlJSXdfcWVpUEV0TWlXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE4NTEvOTVBNjExOUNCOURGMTFFRTk0QjQyNDJBQzRGOUFFMDIvOEZENDlCMTZC QUU0MTFFRTkxOThBNDcxQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAF5YDANBgkqhkiG9w0BAQsFAAOCAQEAGfGZ89VgQTJQBmv82t7v xrTG9i5+i6ElxOUxyiNpVDzVROm9bgxwqzamyZHXetaDNKO11Jb3JDpK4i0LMCbg 2mHagzkwrWlNQ2J41NSRcSPEM2vpOCJSRTO/be2AIbJk1Bk2DbyZMIWYr81wX/Le Od2NLOTk3NdU6PHYToX8dioBF2YhYNy4BcwWYausJiCIcEEaSx0h9xVfjWwUWVx6 dikZRbN6DhCPJh+32G4Qh2SqOl6aImU23prPut3UDe6aT/47UY0oslmos7Hh+l3z +jYVB8TFcfX3IQQhPDg0WdscPLQAE96t2JqKwyLEwrJr8Dbtpf9PWgkqJS3HwXwX xA== -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:35 2026 by rpki-client