$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa File: 89D7E6869E9211EF8726F76AC4F9AE02.roa (raw, json) Hash identifier: VyYP9wSjKOiDhQAeFQwUCWE8o44zFR3WDi4mofWlQgc= Subject key identifier: AA:8B:43:9B:66:4D:98:79:99:01:19:1A:97:D7:4F:9B:53:A5:64:BD Certificate issuer: /CN=A913B4BE/serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Certificate serial: 0184 Authority key identifier: DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:30:09 +0000 ROA not before: Sat 17 May 2025 05:05:51 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152482 IP address blocks: 2001:df3:7940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE, serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Validity Not Before: May 17 05:05:51 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a590e1-13a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:83:ff:52:a2:fb:fa:97:0b:68:da:50:60:85: 30:b4:02:27:a3:8e:af:08:28:96:42:c6:41:1a:c0: 16:8a:66:ae:18:21:d5:33:8d:30:da:47:6d:f9:83: 68:19:6f:23:b7:d7:70:be:8e:28:17:3e:54:86:6f: 31:1d:a5:56:44:61:de:43:af:32:52:25:06:32:8e: 79:68:39:0f:8c:7c:63:35:00:93:2c:60:85:ec:cb: 5b:64:8d:a7:5d:46:49:80:2f:64:ae:aa:79:c0:bf: ba:89:ea:9a:37:bd:4f:68:e2:35:23:d9:80:1b:99: f6:f2:65:16:dc:c9:82:a3:cc:72:c7:b9:b8:3d:2d: 13:b2:68:d6:b9:35:84:7a:e2:ce:74:13:1e:dc:43: f6:b3:90:96:fc:8e:fd:bf:45:a5:e8:ff:c9:49:78: da:31:0c:22:3f:4b:50:c6:0f:95:04:e1:d6:3a:62: cc:98:f2:ad:06:19:e7:8f:ac:14:3b:89:3f:b1:ab: 49:ee:df:83:13:fb:e5:ec:e6:6c:17:0f:ac:55:24: 71:74:10:81:92:2f:f9:06:97:30:f9:cf:e4:5e:68: 0a:b5:ac:1e:dd:c6:3d:cc:39:0a:48:20:ee:44:79: dc:15:d4:29:48:2f:ef:63:2f:a7:16:a6:0e:7d:03: 7b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:8B:43:9B:66:4D:98:79:99:01:19:1A:97:D7:4F:9B:53:A5:64:BD X509v3 Authority Key Identifier: keyid:DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:7940::/48 Signature Algorithm: sha256WithRSAEncryption a9:88:7b:26:02:3e:4a:9a:ca:28:97:bb:cd:f4:70:5b:bb:8b: bf:38:a3:7c:46:27:01:f1:e5:50:93:b9:59:c1:d5:75:32:ab: 0c:d7:14:ee:99:32:8f:a7:32:db:7a:6d:72:e1:f5:0f:57:78: 1d:5b:a1:1d:46:b4:d1:c7:01:a3:72:b4:51:31:1b:14:18:07: 66:07:4e:b8:27:9d:7a:f3:2c:27:49:4b:cb:71:fe:37:a1:b1: c2:71:63:d0:aa:5e:97:43:fc:17:9f:43:b1:00:f4:e8:e4:1a: 36:8d:fe:24:11:4a:70:7c:04:72:34:28:4d:ab:ee:c9:16:f5: 78:ad:8b:d6:d7:ce:34:d3:79:e4:b7:9f:fc:15:d6:59:a0:5c: c7:a8:5a:dc:71:dd:7f:70:71:6c:48:4a:e9:5c:80:f0:3f:fa: e3:1f:ce:c7:1a:a9:7d:2d:5e:84:2e:db:53:9d:aa:38:b2:29: 9f:05:0f:97:24:7e:8e:77:d0:a0:5a:6f:97:e7:27:16:24:7c: 8f:4f:ba:31:88:9a:35:da:14:1a:d7:e3:dd:0c:51:a6:63:d6: 07:d1:aa:8c:0a:13:13:6f:88:f8:e3:ab:6c:68:fd:3e:c8:ea: e7:8e:4b:a9:25:3e:52:53:60:67:08:69:4b:0b:2d:c2:d4:af: 10:15:e0:9f -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKEREMzZFNDVDNzFEM0Q5MkIzQ0QxQTcyRDVGNUFCMzI1 QjM0NkFEQ0EwHhcNMjUwNTE3MDUwNTUxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTBlMS0xM2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAroP/UqL7+pcLaNpQYIUwtAIno46vCCiWQsZBGsAWimauGCHVM40w2kdt+YNo GW8jt9dwvo4oFz5Uhm8xHaVWRGHeQ68yUiUGMo55aDkPjHxjNQCTLGCF7MtbZI2n XUZJgC9krqp5wL+6ieqaN71PaOI1I9mAG5n28mUW3MmCo8xyx7m4PS0TsmjWuTWE euLOdBMe3EP2s5CW/I79v0Wl6P/JSXjaMQwiP0tQxg+VBOHWOmLMmPKtBhnnj6wU O4k/satJ7t+DE/vl7OZsFw+sVSRxdBCBki/5Bpcw+c/kXmgKtawe3cY9zDkKSCDu RHncFdQpSC/vYy+nFqYOfQN74QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFKqLQ5tm TZh5mQEZGpfXT5tTpWS9MB8GA1UdIwQYMBaAFN025Fxx09krPNGnLV9asyWzRq3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS83OEJEMzIyNEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi8zVGJrWEhIVDJTczgwYWN0WDFxekpiTkdy Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNUYmtYSEhUMlNzODBhY3RYMXF6SmJOR3Jjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNzhCRDMyMjRDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvODlEN0U2ODY5 RTkyMTFFRjg3MjZGNzZBQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN83lAMA0GCSqGSIb3DQEBCwUAA4IBAQCpiHsmAj5Kmsool7vN 9HBbu4u/OKN8RicB8eVQk7lZwdV1MqsM1xTumTKPpzLbem1y4fUPV3gdW6EdRrTR xwGjcrRRMRsUGAdmB064J5168ywnSUvLcf43obHCcWPQql6XQ/wXn0OxAPTo5Bo2 jf4kEUpwfARyNChNq+7JFvV4rYvW184003nkt5/8FdZZoFzHqFrccd1/cHFsSErp XIDwP/rjH87HGql9LV6ELttTnao4simfBQ+XJH6Od9CgWm+X5ycWJHyPT7oxiJo1 2hQa1+PdDFGmY9YH0aqMChMTb4j446tsaP0+yOrnjkupJT5SU2BnCGlLCy3C1K8Q FeCf -----END CERTIFICATE-----Generated at Fri Mar 27 01:28:20 2026 by rpki-client