$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/3B69BCFAF53A11EF907A433EC4F9AE02.roa File: 3B69BCFAF53A11EF907A433EC4F9AE02.roa (raw, json) Hash identifier: 7mtxzhW7MyhniT58YG+pmFRHGXfFUM+TIgtH7fPI7YA= Subject key identifier: 0D:7A:29:56:EB:08:EF:E0:59:CD:4D:DB:18:9E:66:F4:E7:0F:08:92 Certificate issuer: /CN=A9142A75/serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Certificate serial: C1 Authority key identifier: BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/3B69BCFAF53A11EF907A433EC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:52:04 +0000 ROA not before: Thu 27 Feb 2025 18:39:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153622 IP address blocks: 2001:df5:1dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 19:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A75, serialNumber=BC70F374B728C7B711C24A6827F7477A42B22A4D Validity Not Before: Feb 27 18:39:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a41a54-b966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2f:77:f7:90:0a:c5:23:9b:e8:d9:a8:cc:e1: 10:ba:e9:9d:4f:4e:a3:3f:a9:59:d8:67:56:ff:57: f0:3d:8f:86:93:0a:00:83:44:fa:c8:9d:e8:7e:df: 72:40:1f:b1:dc:a5:82:fd:c7:3d:49:f4:96:12:01: d5:68:0c:b6:98:9d:eb:c2:9f:a4:e7:53:d2:b2:90: 1a:65:f7:4e:fa:af:3d:ba:1d:81:5a:3a:36:eb:67: 70:6e:0c:93:a2:3c:0e:c0:4c:10:99:65:8c:18:12: 2a:02:ce:b9:d1:e5:fb:c4:3c:e7:f6:c7:e7:2e:c1: b4:04:18:ce:2a:4d:0f:64:65:f0:4b:37:79:f8:4a: 55:47:df:58:ea:d0:29:3f:04:aa:54:89:35:66:cd: 58:5c:fc:a2:4d:cc:88:cc:9b:4b:b9:b1:02:72:8e: 86:7c:e9:fb:cf:69:9f:74:1b:45:67:78:29:5d:d7: d0:63:39:06:7b:06:bd:d4:67:33:e7:06:7a:0e:3d: 94:75:6e:69:0e:e9:c8:e1:31:42:7d:03:64:2a:3b: 3b:05:2d:ef:f9:0c:f3:a3:74:90:68:69:5e:ff:84: 4c:e0:28:9a:15:aa:7d:03:ed:a8:0f:68:e9:77:cb: 47:53:8e:4f:ef:a1:98:29:03:ac:87:70:b3:9c:cb: 78:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:7A:29:56:EB:08:EF:E0:59:CD:4D:DB:18:9E:66:F4:E7:0F:08:92 X509v3 Authority Key Identifier: keyid:BC:70:F3:74:B7:28:C7:B7:11:C2:4A:68:27:F7:47:7A:42:B2:2A:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/vHDzdLcox7cRwkpoJ_dHekKyKk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHDzdLcox7cRwkpoJ_dHekKyKk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A75/EF5CD6DAF53911EFB09FC83DC4F9AE02/3B69BCFAF53A11EF907A433EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:1dc0::/48 Signature Algorithm: sha256WithRSAEncryption 67:24:55:f5:b5:dd:e0:a7:02:fe:10:e0:bf:68:55:01:84:c4: 67:4f:a6:c6:b2:19:7b:33:ec:50:5e:a5:fb:32:6a:13:a2:8e: 96:a8:93:61:2a:06:0e:c3:20:45:ff:ff:df:f4:ed:41:27:63: 58:a5:6a:6d:cb:28:9a:5b:a9:97:c5:db:57:79:38:23:0b:28: 8f:c8:b3:6b:fa:f4:43:98:98:b3:2b:b7:a8:3a:09:93:02:b5: 31:97:54:ef:79:22:48:e1:a0:2e:e6:46:9a:88:06:76:48:47: 07:59:95:1b:45:03:5c:74:90:68:4c:dd:d8:e6:47:44:39:ca: a2:c6:c9:b0:77:7c:ee:41:db:f7:72:ae:11:32:90:bf:55:93: d5:e0:79:09:c1:2a:bf:bc:96:50:40:ad:3f:9c:54:a7:8c:29: 8d:45:f2:69:5b:f4:0e:8c:a6:b9:25:1b:ed:2c:ce:47:e7:02: 9c:74:b0:88:bd:3b:33:76:f8:84:e0:d7:79:d6:7d:15:0e:54: be:c2:af:6b:31:ae:fe:82:87:e4:97:d1:28:af:e7:f1:55:37: 0e:bf:78:e6:25:3f:e0:7b:ac:11:23:4d:35:ac:8d:77:fe:59: 1f:f3:34:63:39:42:22:f8:89:8d:a7:4d:2b:75:b4:d1:ab:70: 46:0e:8d:67 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBNzUxMTAvBgNVBAUTKEJDNzBGMzc0QjcyOEM3QjcxMUMyNEE2ODI3Rjc0NzdB NDJCMjJBNEQwHhcNMjUwMjI3MTgzOTUzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWE1NC1iOTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyS9395AKxSOb6NmozOEQuumdT06jP6lZ2GdW/1fwPY+GkwoAg0T6yJ3oft9y QB+x3KWC/cc9SfSWEgHVaAy2mJ3rwp+k51PSspAaZfdO+q89uh2BWjo262dwbgyT ojwOwEwQmWWMGBIqAs650eX7xDzn9sfnLsG0BBjOKk0PZGXwSzd5+EpVR99Y6tAp PwSqVIk1Zs1YXPyiTcyIzJtLubECco6GfOn7z2mfdBtFZ3gpXdfQYzkGewa91Gcz 5wZ6Dj2UdW5pDunI4TFCfQNkKjs7BS3v+Qzzo3SQaGle/4RM4CiaFap9A+2oD2jp d8tHU45P76GYKQOsh3CznMt4/wIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFA16KVbr CO/gWc1N2xieZvTnDwiSMB8GA1UdIwQYMBaAFLxw83S3KMe3EcJKaCf3R3pCsipN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkE3NS9FRjVDRDZEQUY1 MzkxMUVGQjA5RkM4M0RDNEY5QUUwMi92SER6ZExjb3g3Y1J3a3BvSl9kSGVrS3lL azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRHpkTGNveDdjUndrcG9KX2RIZWtLeUtrMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJBNzUvRUY1Q0Q2REFGNTM5MTFFRkIwOUZDODNEQzRGOUFFMDIvM0I2OUJDRkFG NTNBMTFFRjkwN0E0MzNFQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9R3AMA0GCSqGSIb3DQEBCwUAA4IBAQBnJFX1td3gpwL+EOC/ aFUBhMRnT6bGshl7M+xQXqX7MmoToo6WqJNhKgYOwyBF///f9O1BJ2NYpWptyyia W6mXxdtXeTgjCyiPyLNr+vRDmJizK7eoOgmTArUxl1TveSJI4aAu5kaaiAZ2SEcH WZUbRQNcdJBoTN3Y5kdEOcqixsmwd3zuQdv3cq4RMpC/VZPV4HkJwSq/vJZQQK0/ nFSnjCmNRfJpW/QOjKa5JRvtLM5H5wKcdLCIvTszdviE4Nd51n0VDlS+wq9rMa7+ gofkl9Eor+fxVTcOv3jmJT/ge6wRI001rI13/lkf8zRjOUIi+ImNp00rdbTRq3BG Do1n -----END CERTIFICATE-----Generated at Thu Mar 26 08:47:10 2026 by rpki-client