$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/30A1B4D0C67E11EEB4008058C4F9AE02.roa File: 30A1B4D0C67E11EEB4008058C4F9AE02.roa (raw, json) Hash identifier: 1afV/Wp2zXvrGPdZywlVFm2mfGMyxkWyHsB9FTJiBqA= Subject key identifier: 49:46:33:0E:8A:D8:79:66:C1:F5:82:FB:C4:91:AF:3F:EE:F4:46:D1 Certificate issuer: /CN=A91764E1/serialNumber=1F633F72D1C67816C2064A56E5383CD954DDC0E5 Certificate serial: 0197 Authority key identifier: 1F:63:3F:72:D1:C6:78:16:C2:06:4A:56:E5:38:3C:D9:54:DD:C0:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/30A1B4D0C67E11EEB4008058C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:13:42 +0000 ROA not before: Wed 25 Feb 2026 03:24:03 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152456 IP address blocks: 2001:df3:7040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.crl rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=1F633F72D1C67816C2064A56E5383CD954DDC0E5 Validity Not Before: Feb 25 03:24:03 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5a926-430d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:35:cd:a2:38:e8:f4:37:62:24:25:96:de:dd: 3d:27:c1:b3:5c:80:c3:c9:54:ae:f9:ae:39:30:0b: 5a:99:a4:ff:4f:c8:39:09:20:f4:24:77:d8:d7:20: 44:ef:ca:48:f2:05:0d:d1:39:0d:6c:00:b8:d8:f4: 21:b8:c7:3d:bb:cd:cf:e7:77:8b:83:dc:4e:a6:87: 9f:28:31:5d:a2:cc:00:6c:e0:c9:7c:af:44:75:2a: 57:00:2d:5c:31:e3:4b:f8:39:c2:6f:9d:36:69:86: 3f:32:1b:9a:30:a6:8a:f0:f1:a4:34:46:6a:fc:70: 70:a5:2c:4b:9c:2a:f6:45:3a:c3:4e:29:5b:ea:9d: 24:30:f5:5c:4e:1a:ad:45:50:c9:0a:dd:d7:82:4f: a1:d7:bb:56:8b:a4:a2:d9:1c:02:f8:f4:61:bb:db: 57:b4:d3:3e:7d:4f:d7:a7:d6:89:98:d7:a7:2f:4c: 97:17:a9:18:03:6a:7d:d4:9c:83:de:c1:fa:0f:41: 78:37:29:63:0e:cc:15:2e:8b:d0:cb:05:f8:01:b5: b7:a8:b2:3a:49:09:b5:6d:1d:df:a7:29:a6:f4:8d: 97:f6:3e:ef:4b:78:a6:54:b3:8d:8b:ed:48:e2:4a: 04:b0:ad:c5:5b:01:c5:5f:a4:a2:24:d8:d7:51:4a: e0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:46:33:0E:8A:D8:79:66:C1:F5:82:FB:C4:91:AF:3F:EE:F4:46:D1 X509v3 Authority Key Identifier: keyid:1F:63:3F:72:D1:C6:78:16:C2:06:4A:56:E5:38:3C:D9:54:DD:C0:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/H2M_ctHGeBbCBkpW5Tg82VTdwOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H2M_ctHGeBbCBkpW5Tg82VTdwOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6B584D24C67D11EE87027B3AC4F9AE02/30A1B4D0C67E11EEB4008058C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:7040::/48 Signature Algorithm: sha256WithRSAEncryption 52:b3:74:51:44:10:db:87:3c:a1:1a:6e:54:38:55:ca:b7:1d: 8b:44:1d:5f:d7:7a:7b:42:06:3e:8e:84:17:c0:3f:cc:7b:11: 2c:77:bf:46:1b:a9:96:6a:c4:f3:05:c5:ef:62:16:21:0f:08: 4e:34:67:54:54:f5:00:8e:61:ad:4b:f7:fe:08:e3:ee:f1:8c: 04:45:a4:6c:16:32:ed:b5:9f:86:e7:35:3f:13:f5:88:d7:22: 75:0c:80:19:64:af:45:73:c2:d1:89:2a:34:28:5a:6b:1e:bf: 2b:ab:4b:6f:05:5f:a8:98:ca:f8:40:b7:e5:8b:6c:99:60:64: 9b:4c:3b:26:42:4f:31:bd:cc:a5:4c:06:7c:03:48:11:05:37: 3f:9d:29:fd:96:0d:01:6b:26:1e:97:0b:aa:bf:e9:6f:21:a4: be:73:ba:8a:bf:0f:9d:dc:cc:03:a3:50:48:57:46:09:f4:0c: f5:1f:8c:5f:4b:13:a4:0f:fd:35:98:3a:50:7b:cf:fb:72:af: 55:72:9f:1c:41:57:ef:89:62:15:69:b8:b6:08:3d:86:bb:70: 98:bd:fb:e1:32:94:34:44:f2:d4:3d:40:7a:00:c9:1c:5f:4b: 93:22:5d:d1:10:24:4c:9a:bb:ea:cf:d4:26:62:1b:3d:0f:f8: 60:98:c2:3e -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDFGNjMzRjcyRDFDNjc4MTZDMjA2NEE1NkU1MzgzQ0Q5 NTREREMwRTUwHhcNMjYwMjI1MDMyNDAzWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTkyNi00MzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTXNojjo9DdiJCWW3t09J8GzXIDDyVSu+a45MAtamaT/T8g5CSD0JHfY1yBE 78pI8gUN0TkNbAC42PQhuMc9u83P53eLg9xOpoefKDFdoswAbODJfK9EdSpXAC1c MeNL+DnCb502aYY/MhuaMKaK8PGkNEZq/HBwpSxLnCr2RTrDTilb6p0kMPVcThqt RVDJCt3Xgk+h17tWi6Si2RwC+PRhu9tXtNM+fU/Xp9aJmNenL0yXF6kYA2p91JyD 3sH6D0F4NyljDswVLovQywX4AbW3qLI6SQm1bR3fpymm9I2X9j7vS3imVLONi+1I 4koEsK3FWwHFX6SiJNjXUUrg2wIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFElGMw6K 2HlmwfWC+8SRrz/u9EbRMB8GA1UdIwQYMBaAFB9jP3LRxngWwgZKVuU4PNlU3cDl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82QjU4NEQyNEM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9IMk1fY3RIR2VCYkNCa3BXNVRnODJWVGR3 T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0gyTV9jdEhHZUJiQ0JrcFc1VGc4MlZUZHdPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY0RTEvNkI1ODREMjRDNjdEMTFFRTg3MDI3QjNBQzRGOUFFMDIvMzBBMUI0RDBD NjdFMTFFRUI0MDA4MDU4QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN83BAMA0GCSqGSIb3DQEBCwUAA4IBAQBSs3RRRBDbhzyhGm5U OFXKtx2LRB1f13p7QgY+joQXwD/MexEsd79GG6mWasTzBcXvYhYhDwhONGdUVPUA jmGtS/f+COPu8YwERaRsFjLttZ+G5zU/E/WI1yJ1DIAZZK9Fc8LRiSo0KFprHr8r q0tvBV+omMr4QLfli2yZYGSbTDsmQk8xvcylTAZ8A0gRBTc/nSn9lg0BayYelwuq v+lvIaS+c7qKvw+d3MwDo1BIV0YJ9Az1H4xfSxOkD/01mDpQe8/7cq9Vcp8cQVfv iWIVabi2CD2Gu3CYvfvhMpQ0RPLUPUB6AMkcX0uTIl3RECRMmrvqz9QmYhs9D/hg mMI+ -----END CERTIFICATE-----Generated at Fri Mar 27 06:42:22 2026 by rpki-client