$ rpki-client -vvf rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/7B3B0868DBDD11F089B5B5C658641951.roa File: 7B3B0868DBDD11F089B5B5C658641951.roa (raw, json) Hash identifier: ewYDV2AeFSraFT8cqNKwnfuovfJu1fvrIxXBNUNfFI4= Subject key identifier: BE:B1:52:34:C6:97:43:66:F5:E6:FC:93:3F:45:11:1D:5C:06:7A:16 Certificate issuer: /CN=A91454A8/serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Certificate serial: 08BE Authority key identifier: 9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/7B3B0868DBDD11F089B5B5C658641951.roa Signing time: Sun 01 Mar 2026 14:50:13 +0000 ROA not before: Thu 18 Dec 2025 06:47:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132335 IP address blocks: 2001:df3:8880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454A8, serialNumber=9BB2B4D1A8FE811DC4953D802D102F5D048D081D Validity Not Before: Dec 18 06:47:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a45225-3bb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:20:b1:27:0a:02:6f:41:eb:a7:e0:f2:62:d1: a5:09:c4:4b:5c:74:ae:89:28:3c:e6:83:2e:88:c0: 24:e1:65:eb:33:11:b7:84:fd:f7:d9:f3:a2:3a:da: 17:45:c5:3b:d5:f0:5f:70:3a:6f:4d:3e:e8:d8:4c: e1:1f:73:4e:3f:b6:ce:de:4e:73:d7:bd:71:1d:94: fa:4d:eb:42:bb:3a:bd:4e:4a:76:c3:9a:21:c3:20: bc:db:50:1f:df:92:09:06:31:1e:38:96:d6:0c:93: c3:f6:81:9d:28:0e:08:3c:de:f3:a9:a3:37:a3:61: 19:43:45:1a:e0:37:d3:f5:62:82:34:c6:7b:a6:01: f2:2b:41:d1:0c:99:1a:12:68:fa:3d:9e:1b:58:da: a0:32:bb:60:73:a3:99:b0:51:e8:22:4f:d0:90:2d: d2:6d:72:93:31:d1:75:ea:c1:b6:e9:f8:3e:47:35: 5a:7b:ae:c0:5d:23:1b:02:d3:1c:13:5e:f4:40:7c: a1:41:2f:f3:51:e7:46:bd:50:72:f4:1b:ed:00:87: 4d:87:45:77:f1:ee:ab:8f:39:a0:41:18:6e:db:9b: bf:25:5d:de:62:32:77:d6:0a:9e:9e:12:42:9d:c0: 3d:fb:eb:85:44:85:b1:2f:b6:d4:5d:f3:4e:ad:fe: cf:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B1:52:34:C6:97:43:66:F5:E6:FC:93:3F:45:11:1D:5C:06:7A:16 X509v3 Authority Key Identifier: keyid:9B:B2:B4:D1:A8:FE:81:1D:C4:95:3D:80:2D:10:2F:5D:04:8D:08:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/m7K00aj-gR3ElT2ALRAvXQSNCB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m7K00aj-gR3ElT2ALRAvXQSNCB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454A8/E29520B8D1CD11EABA4A3440C4F9AE02/7B3B0868DBDD11F089B5B5C658641951.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:8880::/48 Signature Algorithm: sha256WithRSAEncryption 6c:3a:73:73:78:8d:17:92:a2:51:7e:a5:df:8f:3d:0b:d4:7e: a2:29:48:22:b8:a0:31:31:3e:c6:c4:7b:b4:de:74:13:9f:26: 1d:65:d8:d8:c1:f3:c1:3d:90:c7:94:83:b5:ef:c2:d8:2f:e1: 2d:74:4a:5e:85:a8:be:af:db:0f:a6:38:8c:a6:32:2e:d7:71: 04:41:72:29:a2:c9:e2:3a:d8:5a:50:2e:af:54:dd:bc:ff:cf: 76:a0:fc:84:6b:70:77:53:13:ae:61:d3:b9:82:c4:7e:05:5a: c2:96:a5:85:9d:5d:bb:52:e8:07:2c:9e:8f:a5:a8:e5:5c:2d: 5d:79:55:f4:ec:be:64:76:82:1f:7b:03:8e:43:d2:bc:a8:79: e8:4c:65:54:f8:81:3e:dd:7f:10:a7:b5:3a:20:ab:0b:e2:82: 83:56:fa:bd:7d:55:6d:33:44:d3:9d:c3:df:48:8c:43:09:dd: f1:e2:a4:b6:0b:9d:7d:4d:3f:9f:29:68:a4:6e:4d:cb:5b:ea: 5d:37:d0:42:2b:2e:9d:e6:9d:34:63:5c:2b:54:e1:4c:f5:12: 9d:c2:cf:e3:c6:ee:97:cc:5b:7e:8d:48:aa:74:a5:79:ef:71: 20:34:ea:ed:ec:f1:64:b5:c2:8e:b5:a1:8d:7f:1d:d5:00:9d: 2e:65:08:06 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QTgxMTAvBgNVBAUTKDlCQjJCNEQxQThGRTgxMURDNDk1M0Q4MDJEMTAyRjVE MDQ4RDA4MUQwHhcNMjUxMjE4MDY0NzU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTIyNS0zYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSCxJwoCb0Hrp+DyYtGlCcRLXHSuiSg85oMuiMAk4WXrMxG3hP332fOiOtoX RcU71fBfcDpvTT7o2EzhH3NOP7bO3k5z171xHZT6TetCuzq9Tkp2w5ohwyC821Af 35IJBjEeOJbWDJPD9oGdKA4IPN7zqaM3o2EZQ0Ua4DfT9WKCNMZ7pgHyK0HRDJka Emj6PZ4bWNqgMrtgc6OZsFHoIk/QkC3SbXKTMdF16sG26fg+RzVae67AXSMbAtMc E170QHyhQS/zUedGvVBy9BvtAIdNh0V38e6rjzmgQRhu25u/JV3eYjJ31gqenhJC ncA9++uFRIWxL7bUXfNOrf7PEQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFL6xUjTG l0Nm9eb8kz9FER1cBnoWMB8GA1UdIwQYMBaAFJuytNGo/oEdxJU9gC0QL10EjQgd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRBOC9FMjk1MjBCOEQx Q0QxMUVBQkE0QTM0NDBDNEY5QUUwMi9tN0swMGFqLWdSM0VsVDJBTFJBdlhRU05D QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL203SzAwYWotZ1IzRWxUMkFMUkF2WFFTTkNCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0QTgvRTI5NTIwQjhEMUNEMTFFQUJBNEEzNDQwQzRGOUFFMDIvN0IzQjA4NjhE QkREMTFGMDg5QjVCNUM2NTg2NDE5NTEucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN84iAMA0GCSqGSIb3DQEBCwUAA4IBAQBsOnNzeI0XkqJRfqXf jz0L1H6iKUgiuKAxMT7GxHu03nQTnyYdZdjYwfPBPZDHlIO178LYL+EtdEpehai+ r9sPpjiMpjIu13EEQXIposniOthaUC6vVN28/892oPyEa3B3UxOuYdO5gsR+BVrC lqWFnV27UugHLJ6PpajlXC1deVX07L5kdoIfewOOQ9K8qHnoTGVU+IE+3X8Qp7U6 IKsL4oKDVvq9fVVtM0TTncPfSIxDCd3x4qS2C519TT+fKWikbk3LW+pdN9BCKy6d 5p00Y1wrVOFM9RKdws/jxu6XzFt+jUiqdKV573EgNOrt7PFktcKOtaGNfx3VAJ0u ZQgG -----END CERTIFICATE-----Generated at Thu Mar 26 14:26:59 2026 by rpki-client