$ rpki-client -vvf rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa File: 1FD07ED231FB11EAA335E10FC4F9AE02.roa (raw, json) Hash identifier: YJF7+er3dbDA0eaKTlwDNbJtYejMK42xL43RXDF6IfQ= Subject key identifier: 65:03:F8:F3:1B:EF:F0:28:05:95:93:36:0E:46:F7:93:42:B3:5E:4B Certificate issuer: /CN=A91771E3/serialNumber=1596C4BBE732DA85CB83E8A770873EA3413701A5 Certificate serial: 13F9 Authority key identifier: 15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa Signing time: Mon 02 Mar 2026 15:19:15 +0000 ROA not before: Wed 28 Jan 2026 17:14:25 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 45494 IP address blocks: 2001:dd8:25::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:54:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5113 (0x13f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91771E3, serialNumber=1596C4BBE732DA85CB83E8A770873EA3413701A5 Validity Not Before: Jan 28 17:14:25 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5aa73-3452 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:46:b8:fa:9b:88:1b:40:dd:7a:b4:72:3b:a5: fd:15:c5:44:27:07:9b:a7:42:70:b9:da:dd:43:d9: 4d:df:2d:01:52:9c:d4:f9:ed:cc:36:7e:d8:14:bb: 9e:73:aa:54:20:76:75:b9:43:85:e4:a8:78:ca:7b: bd:7d:a0:94:01:66:e5:9e:ce:85:96:8f:02:3f:89: f3:cf:61:07:e0:f4:90:b4:24:c8:ed:84:fa:4c:cf: ab:17:99:09:8d:99:82:e4:7b:9b:b4:a8:63:ed:21: 34:9b:4e:aa:a8:82:8c:44:30:a1:83:48:88:cc:bb: 70:0e:5c:f8:48:ee:79:0d:1e:66:db:c8:53:50:d9: 49:d0:70:99:ac:18:30:76:2f:d8:36:de:15:0d:58: 0b:74:9d:0b:f6:66:00:fa:4e:5e:1d:79:52:65:64: 18:39:fe:9a:13:c7:91:2a:1e:18:3d:49:a7:c8:33: 4c:a4:58:39:e4:4c:da:73:3a:14:d0:b1:07:46:63: 9f:08:bf:c4:95:95:40:56:57:31:75:97:cb:00:4a: 8b:6c:c5:95:0e:88:a3:07:8a:6a:af:d0:93:de:a9: be:99:72:81:8e:97:22:80:5c:e9:ee:4f:94:cb:eb: 94:ff:e2:47:a8:00:b6:08:3d:91:75:34:fb:86:e1: 77:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:03:F8:F3:1B:EF:F0:28:05:95:93:36:0E:46:F7:93:42:B3:5E:4B X509v3 Authority Key Identifier: keyid:15:96:C4:BB:E7:32:DA:85:CB:83:E8:A7:70:87:3E:A3:41:37:01:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/FZbEu-cy2oXLg-incIc-o0E3AaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FZbEu-cy2oXLg-incIc-o0E3AaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91771E3/9383E646AD6511E8ACBD0D6AC4F9AE02/1FD07ED231FB11EAA335E10FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:dd8:25::/48 Signature Algorithm: sha256WithRSAEncryption 67:91:f2:eb:5c:ab:ec:b5:35:81:11:cc:f0:9d:61:c7:2d:27: 7f:4d:6e:64:58:f6:d9:33:c6:d3:fd:42:5a:3b:bc:98:50:3d: 78:90:38:3e:21:8c:42:48:5f:fe:34:57:58:1e:a2:10:df:89: 74:6e:b5:4d:4c:91:80:1b:e7:65:e6:0d:c2:4a:d7:db:4a:c1: fe:66:64:3a:ef:f9:82:48:9e:9a:af:10:24:45:fa:04:28:bb: 33:54:18:fc:c1:9d:32:93:a4:2b:83:77:80:d1:e7:96:2c:17: 99:59:82:4f:95:14:0c:73:af:e2:de:8e:14:61:99:38:e6:25: 57:53:ed:fe:6a:2f:89:97:4e:61:e3:80:42:25:d5:31:39:06: 2c:e6:c9:7d:5f:5d:62:2e:2d:d2:b0:fa:0b:bb:5d:71:50:5c: 74:5f:9a:77:59:38:81:0f:98:1d:49:5f:99:05:13:d0:ca:3c: 3c:83:f0:8a:7f:21:ff:85:6a:4d:9b:78:2d:b0:c4:ec:a5:65: 5c:7d:d2:e7:1f:a8:82:cb:84:c4:ef:9c:f1:49:ba:72:16:73: 82:8a:c2:61:86:87:f7:86:4b:7d:50:a5:09:83:6d:4a:88:5a: 1d:fd:fc:f9:1b:f6:f3:69:75:4e:db:c4:07:15:4b:fa:87:11: 79:f8:5c:1d -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICE/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcxRTMxMTAvBgNVBAUTKDE1OTZDNEJCRTczMkRBODVDQjgzRThBNzcwODczRUEz NDEzNzAxQTUwHhcNMjYwMTI4MTcxNDI1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YWE3My0zNDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUa4+puIG0DderRyO6X9FcVEJwebp0JwudrdQ9lN3y0BUpzU+e3MNn7YFLue c6pUIHZ1uUOF5Kh4ynu9faCUAWblns6Flo8CP4nzz2EH4PSQtCTI7YT6TM+rF5kJ jZmC5HubtKhj7SE0m06qqIKMRDChg0iIzLtwDlz4SO55DR5m28hTUNlJ0HCZrBgw di/YNt4VDVgLdJ0L9mYA+k5eHXlSZWQYOf6aE8eRKh4YPUmnyDNMpFg55EzaczoU 0LEHRmOfCL/ElZVAVlcxdZfLAEqLbMWVDoijB4pqr9CT3qm+mXKBjpcigFzp7k+U y+uU/+JHqAC2CD2RdTT7huF3PwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFGUD+PMb 7/AoBZWTNg5G95NCs15LMB8GA1UdIwQYMBaAFBWWxLvnMtqFy4Pop3CHPqNBNwGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzFFMy85MzgzRTY0NkFE NjUxMUU4QUNCRDBENkFDNEY5QUUwMi9GWmJFdS1jeTJvWExnLWluY0ljLW8wRTNB YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZaYkV1LWN5Mm9YTGctaW5jSWMtbzBFM0FhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcxRTMvOTM4M0U2NDZBRDY1MTFFOEFDQkQwRDZBQzRGOUFFMDIvMUZEMDdFRDIz MUZCMTFFQUEzMzVFMTBGQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN2AAlMA0GCSqGSIb3DQEBCwUAA4IBAQBnkfLrXKvstTWBEczw nWHHLSd/TW5kWPbZM8bT/UJaO7yYUD14kDg+IYxCSF/+NFdYHqIQ34l0brVNTJGA G+dl5g3CStfbSsH+ZmQ67/mCSJ6arxAkRfoEKLszVBj8wZ0yk6Qrg3eA0eeWLBeZ WYJPlRQMc6/i3o4UYZk45iVXU+3+ai+Jl05h44BCJdUxOQYs5sl9X11iLi3SsPoL u11xUFx0X5p3WTiBD5gdSV+ZBRPQyjw8g/CKfyH/hWpNm3gtsMTspWVcfdLnH6iC y4TE75zxSbpyFnOCisJhhof3hkt9UKUJg21KiFod/fz5G/bzaXVO28QHFUv6hxF5 +Fwd -----END CERTIFICATE-----Generated at Thu Mar 26 21:33:52 2026 by rpki-client