$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/533DC25E60B511F0AB567568C4F9AE02.roa File: 533DC25E60B511F0AB567568C4F9AE02.roa (raw, json) Hash identifier: 3eyoBtxWZnVo9d8QTWGg5n0zVCETmWq673Im+Ia8NGk= Subject key identifier: F6:7C:0D:B9:67:2D:32:4E:D2:48:96:6B:1B:2E:1C:1B:21:AC:C9:6D Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: 81 Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/533DC25E60B511F0AB567568C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:02:37 +0000 ROA not before: Mon 14 Jul 2025 13:20:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154047 IP address blocks: 2001:df5:db40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: Jul 14 13:20:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a519ed-318b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:30:99:d7:7e:be:1f:05:68:ac:80:64:12:df: e1:5a:a0:ec:75:e0:e9:fc:c5:f2:16:29:99:0c:f5: e3:9d:b1:30:7f:5e:cf:56:8f:10:82:03:24:f7:55: 78:2e:88:04:dc:67:28:c9:1c:0d:50:2b:a8:22:c0: b5:0f:66:74:e3:95:68:a5:55:16:1c:5f:29:ee:52: 72:1c:92:d0:63:cf:fa:98:e3:9f:89:eb:7a:ff:78: b6:e1:a6:36:cf:a2:ab:25:da:87:60:eb:0a:f9:31: 5c:39:cf:b5:ab:06:33:54:ab:46:be:de:78:35:7c: f8:08:b1:52:68:fc:bb:56:e1:14:99:58:9e:4a:16: d4:a4:b5:18:df:b4:80:e5:66:c3:ef:eb:3b:dc:ef: 81:46:0d:2f:95:ae:2f:29:e2:df:a9:8a:4b:bf:54: aa:22:ef:3f:01:06:14:52:3b:9a:05:c7:fb:3d:17: 15:1a:cb:e0:6f:f6:4d:0a:bf:76:c3:d2:7c:55:02: 35:6d:fa:61:77:cf:56:f5:03:21:ff:bc:74:0c:fe: 2f:69:14:8d:ca:bc:38:be:f3:35:9b:e4:e8:3d:c1: 0e:23:6a:c6:e6:cf:b8:ed:a0:73:d5:c3:db:7a:84: f2:15:fb:fd:0d:3f:17:48:36:d6:e0:75:1b:ee:4d: 3e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:7C:0D:B9:67:2D:32:4E:D2:48:96:6B:1B:2E:1C:1B:21:AC:C9:6D X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/533DC25E60B511F0AB567568C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:db40::/48 Signature Algorithm: sha256WithRSAEncryption ab:51:ed:e8:dd:e4:6b:89:ba:c1:b1:20:46:1f:18:7d:d9:de: cd:20:be:69:02:5c:6d:87:d8:b9:48:4a:c7:4e:13:f0:c0:00: c0:af:73:a8:20:b1:37:8a:07:33:3b:ec:36:97:45:bc:08:f2: fc:c6:49:c8:a2:d3:2f:09:3f:76:bd:e4:09:d7:6e:40:42:30: 92:8f:13:fe:8d:27:e8:95:11:49:fd:37:ee:e4:be:bb:7f:2d: c8:c2:ad:47:23:db:af:37:8b:8f:85:43:c8:85:a2:bf:32:6f: b3:aa:13:76:7a:c8:d3:f3:df:72:62:62:e3:d8:5b:b1:cd:24: 47:87:11:5a:82:76:f6:a4:e8:54:8f:ef:ae:cf:b3:1d:2e:ba: f0:8b:74:f3:5c:d9:42:87:f7:4f:bd:48:64:63:f9:f1:08:7e: bb:95:bb:ce:15:44:38:2e:d8:1c:1f:9f:09:6c:c6:1a:f1:0a: e6:5b:b9:1d:1e:49:df:ce:31:81:98:13:4a:34:3e:2a:79:8d: 97:b4:9a:92:85:87:0e:1e:a8:20:f7:98:bf:6d:9d:8d:50:ea: 3a:7a:21:69:dd:b2:f4:62:45:6a:d3:81:cc:37:08:b1:38:81: f6:a4:51:68:20:5f:a2:cb:c8:d2:61:3f:71:76:09:59:61:d0: e4:33:24:51 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUxREUxMTAvBgNVBAUTKDY0N0U1Q0FEQ0IxRkJGN0VCQjg5OUE3MjE5QzNBMEYw M0QzRjdCMEQwHhcNMjUwNzE0MTMyMDM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTllZC0zMThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jCZ136+HwVorIBkEt/hWqDsdeDp/MXyFimZDPXjnbEwf17PVo8QggMk91V4 LogE3GcoyRwNUCuoIsC1D2Z045VopVUWHF8p7lJyHJLQY8/6mOOfiet6/3i24aY2 z6KrJdqHYOsK+TFcOc+1qwYzVKtGvt54NXz4CLFSaPy7VuEUmVieShbUpLUY37SA 5WbD7+s73O+BRg0vla4vKeLfqYpLv1SqIu8/AQYUUjuaBcf7PRcVGsvgb/ZNCr92 w9J8VQI1bfphd89W9QMh/7x0DP4vaRSNyrw4vvM1m+ToPcEOI2rG5s+47aBz1cPb eoTyFfv9DT8XSDbW4HUb7k0+MwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFPZ8Dbln LTJO0kiWaxsuHBshrMltMB8GA1UdIwQYMBaAFGR+XK3LH79+u4machnDoPA9P3sN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTFERS85MDRGODcwQTYw QjQxMUYwOEVEN0FFNjNDNEY5QUUwMi9aSDVjcmNzZnYzNjdpWnB5R2NPZzhEMF9l dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUxREUvOTA0Rjg3MEE2MEI0MTFGMDhFRDdBRTYzQzRGOUFFMDIvNTMzREMyNUU2 MEI1MTFGMEFCNTY3NTY4QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9dtAMA0GCSqGSIb3DQEBCwUAA4IBAQCrUe3o3eRribrBsSBG Hxh92d7NIL5pAlxth9i5SErHThPwwADAr3OoILE3igczO+w2l0W8CPL8xknIotMv CT92veQJ125AQjCSjxP+jSfolRFJ/Tfu5L67fy3Iwq1HI9uvN4uPhUPIhaK/Mm+z qhN2esjT899yYmLj2FuxzSRHhxFagnb2pOhUj++uz7MdLrrwi3TzXNlCh/dPvUhk Y/nxCH67lbvOFUQ4LtgcH58JbMYa8QrmW7kdHknfzjGBmBNKND4qeY2XtJqShYcO Hqgg95i/bZ2NUOo6eiFp3bL0YkVq04HMNwixOIH2pFFoIF+iy8jSYT9xdglZYdDk MyRR -----END CERTIFICATE-----Generated at Thu Mar 26 11:55:16 2026 by rpki-client