$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa File: C5CD32AAE5DC11EE867C6F21C4F9AE02.roa (raw, json) Hash identifier: q1UHSMWRHkyPM5/ZpC9nIF7x6czgaR9lk1C/QVX3U48= Subject key identifier: 9F:3C:35:2F:3B:3C:3B:6B:D6:34:8E:81:71:55:5F:2B:B3:91:F3:66 Certificate issuer: /CN=A91FC9FE/serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Certificate serial: 020B Authority key identifier: A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:31:28 +0000 ROA not before: Tue 15 Apr 2025 03:08:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 13981 IP address blocks: 2400:ef20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 523 (0x20b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC9FE, serialNumber=A5D9C6A6F9675B91CE54D115F88C9410F18F90FE Validity Not Before: Apr 15 03:08:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3eb50-5b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:48:f2:27:d7:00:8d:aa:c3:3b:df:db:7c:42: 8d:bc:a4:6c:15:dc:bc:08:c6:4b:b4:4f:e1:0a:df: e1:cd:85:6a:36:10:c1:80:2d:83:2b:4a:50:46:3a: ec:11:2d:1f:e6:5d:1f:15:d3:e0:72:89:3c:7f:b5: 98:60:19:ab:65:2f:ef:7c:84:af:bf:fc:0b:7c:08: 02:cd:e6:90:e1:5a:fa:ce:dc:fb:23:7b:69:5b:dc: 45:68:93:85:ab:4c:11:21:79:62:9e:21:ed:42:11: 7a:ac:82:31:36:fc:68:8c:ce:af:e7:6e:18:3d:46: b8:8b:02:94:cf:92:da:fb:4d:e9:22:88:96:a2:07: 97:a9:45:88:38:24:f4:47:03:8c:61:b7:ee:70:c4: 3e:6b:c5:22:e4:30:2d:06:eb:15:60:88:5e:f6:89: 51:ad:e2:25:6f:d8:f1:f5:cc:14:bd:7d:da:75:d9: 0d:52:ce:75:57:68:39:9a:d4:f0:fb:02:cd:e0:15: 3f:df:5a:c8:64:06:1a:27:b6:70:f4:e2:26:e7:8f: 9e:67:3e:e1:f6:af:9b:11:ae:fa:ec:24:78:8b:4a: 26:a8:d7:9a:ca:62:30:41:e5:f2:38:3a:f3:20:f1: ff:ca:80:69:98:74:b3:34:5a:f7:90:d6:ed:ff:60: e1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:3C:35:2F:3B:3C:3B:6B:D6:34:8E:81:71:55:5F:2B:B3:91:F3:66 X509v3 Authority Key Identifier: keyid:A5:D9:C6:A6:F9:67:5B:91:CE:54:D1:15:F8:8C:94:10:F1:8F:90:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/pdnGpvlnW5HOVNEV-IyUEPGPkP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pdnGpvlnW5HOVNEV-IyUEPGPkP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC9FE/53CB690CFDE211ED9D2D1F68C4F9AE02/C5CD32AAE5DC11EE867C6F21C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2400:ef20::/32 Signature Algorithm: sha256WithRSAEncryption 15:27:95:1e:38:17:42:69:b3:92:ac:85:8d:b7:d2:2f:e0:de: af:db:f8:03:d2:f2:46:e7:ad:d6:51:7c:cf:9e:d8:d7:92:7b: 48:a4:54:15:1a:e8:2f:ba:81:c0:41:9a:93:17:1a:2b:de:52: ab:01:08:a8:9a:a0:eb:18:ca:fa:c1:18:7a:48:69:a2:a9:7c: c5:f7:48:eb:b2:71:71:1a:11:b4:38:51:84:54:21:cf:3c:db: 8b:87:9b:1a:b8:1d:87:92:76:6d:29:b0:a4:46:ee:a8:63:a9: b3:8e:6e:83:ca:fe:21:e9:6c:ce:1c:d4:16:e7:f1:a5:55:18: 8a:4b:19:78:96:b6:78:54:3d:a4:4f:93:80:a1:01:9e:23:58: 08:36:d1:13:26:94:d4:8b:e0:ee:c8:1e:76:fb:eb:08:67:ac: ff:06:35:64:78:15:41:4c:8b:61:45:0d:fe:f9:71:bb:a8:92: 26:d9:a5:93:63:e3:11:42:db:a2:b2:07:fd:35:02:45:ad:78: be:10:cd:4a:e7:da:f2:03:4b:0b:a2:ab:5f:7c:28:a0:e6:07: 0f:16:8c:ca:72:1b:4b:a8:8d:00:6a:22:0a:40:35:e7:47:b7: e4:4d:4f:6f:15:95:29:7c:49:16:47:78:d2:80:ef:f6:b6:cf: 1d:b7:5d:9e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICAgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM5RkUxMTAvBgNVBAUTKEE1RDlDNkE2Rjk2NzVCOTFDRTU0RDExNUY4OEM5NDEw RjE4RjkwRkUwHhcNMjUwNDE1MDMwODQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWI1MC01YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6UjyJ9cAjarDO9/bfEKNvKRsFdy8CMZLtE/hCt/hzYVqNhDBgC2DK0pQRjrs ES0f5l0fFdPgcok8f7WYYBmrZS/vfISvv/wLfAgCzeaQ4Vr6ztz7I3tpW9xFaJOF q0wRIXliniHtQhF6rIIxNvxojM6v524YPUa4iwKUz5La+03pIoiWogeXqUWIOCT0 RwOMYbfucMQ+a8Ui5DAtBusVYIhe9olRreIlb9jx9cwUvX3addkNUs51V2g5mtTw +wLN4BU/31rIZAYaJ7Zw9OIm54+eZz7h9q+bEa767CR4i0omqNeaymIwQeXyODrz IPH/yoBpmHSzNFr3kNbt/2DhSwIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFJ88NS87 PDtr1jSOgXFVXyuzkfNmMB8GA1UdIwQYMBaAFKXZxqb5Z1uRzlTRFfiMlBDxj5D+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzlGRS81M0NCNjkwQ0ZE RTIxMUVEOUQyRDFGNjhDNEY5QUUwMi9wZG5HcHZsblc1SE9WTkVWLUl5VUVQR1Br UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BkbkdwdmxuVzVIT1ZORVYtSXlVRVBHUGtQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM5RkUvNTNDQjY5MENGREUyMTFFRDlEMkQxRjY4QzRGOUFFMDIvQzVDRDMyQUFF NURDMTFFRTg2N0M2RjIxQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJADvIDANBgkqhkiG9w0BAQsFAAOCAQEAFSeVHjgXQmmzkqyFjbfS L+Der9v4A9LyRuet1lF8z57Y15J7SKRUFRroL7qBwEGakxcaK95SqwEIqJqg6xjK +sEYekhpoql8xfdI67JxcRoRtDhRhFQhzzzbi4ebGrgdh5J2bSmwpEbuqGOps45u g8r+IelszhzUFufxpVUYiksZeJa2eFQ9pE+TgKEBniNYCDbREyaU1Ivg7sgedvvr CGes/wY1ZHgVQUyLYUUN/vlxu6iSJtmlk2PjEULborIH/TUCRa14vhDNSufa8gNL C6KrX3wooOYHDxaMynIbS6iNAGoiCkA150e35E1PbxWVKXxJFkd40oDv9rbPHbdd ng== -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:21 2026 by rpki-client