$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa File: DF3F877ED01D11F09BB99C37C4F9AE02.roa (raw, json) Hash identifier: GaDjg2LGrHhGqPo1QDhu/WF1zoWXbcBF0LoFtrNXHC4= Subject key identifier: 96:D9:99:A0:A0:AA:77:9A:06:8C:5E:82:57:F7:7F:E1:94:C3:9E:48 Certificate issuer: /CN=A91A1D8C/serialNumber=5193BD59949EF9B7DA12720F7D46EE7C4BCA30EC Certificate serial: 42 Authority key identifier: 51:93:BD:59:94:9E:F9:B7:DA:12:72:0F:7D:46:EE:7C:4B:CA:30:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:20:09 +0000 ROA not before: Wed 03 Dec 2025 07:58:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 136308 IP address blocks: 2001:df6:6440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.crl rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:42:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D8C, serialNumber=5193BD59949EF9B7DA12720F7D46EE7C4BCA30EC Validity Not Before: Dec 3 07:58:37 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a51e09-db3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:39:56:ce:0d:ac:d8:51:e2:53:1a:7f:23:46: 44:2b:f1:28:d9:57:74:23:0c:c1:7b:58:62:1f:f0: 60:87:6c:02:36:51:cd:bc:98:75:0d:c0:cb:bb:1e: 68:da:c9:9f:bf:1f:ff:74:fc:22:8d:64:34:2e:6c: 88:8b:48:6a:67:2a:22:a5:20:02:93:aa:54:0a:9f: 34:a7:01:d1:99:63:23:db:35:f9:e0:3f:93:9e:02: 2f:5e:87:f4:ad:68:31:0c:ce:ac:e7:2c:53:12:af: 62:35:04:a1:bc:b4:98:c4:ce:0c:e2:fe:95:fe:9d: ca:41:0c:b4:f2:68:b3:ec:07:f0:60:d6:bc:0d:2a: e0:ea:0d:f3:ac:53:86:11:06:7d:3f:4e:19:93:cc: 91:08:f2:b9:4d:0a:52:83:91:19:9d:58:bc:9d:8c: 8b:b9:a2:d8:24:8d:65:06:16:94:61:12:2a:44:6c: 90:52:18:ba:74:83:c2:9b:de:74:94:cb:c0:c9:a4: 94:1b:28:25:96:b2:c9:99:97:c9:fe:1c:cc:be:74: 8b:f1:68:a2:b2:aa:64:16:8d:7d:02:d2:a7:eb:c5: 34:32:aa:8b:a2:cb:c3:b5:29:31:f4:15:ed:f2:aa: a6:27:53:57:1f:47:49:6f:bb:3b:20:45:c1:e0:58: d3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D9:99:A0:A0:AA:77:9A:06:8C:5E:82:57:F7:7F:E1:94:C3:9E:48 X509v3 Authority Key Identifier: keyid:51:93:BD:59:94:9E:F9:B7:DA:12:72:0F:7D:46:EE:7C:4B:CA:30:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:6440::/48 Signature Algorithm: sha256WithRSAEncryption 3e:c3:62:72:d3:1f:d1:b7:30:34:6c:5d:ff:e8:b5:3c:a6:d6: 0c:a1:90:96:6e:1e:25:4d:f4:06:8d:99:35:ca:5f:ff:e9:e7: eb:e0:03:64:94:fa:46:2d:d8:0b:1c:f8:68:65:28:f2:bf:ab: 21:19:9d:a2:32:f4:7d:80:78:90:52:b1:62:f0:22:2d:19:f5: 51:91:65:66:e4:62:fe:ac:fe:cc:1b:3b:ad:09:d0:7c:5f:78: db:eb:c2:65:d9:b5:be:13:bf:40:b1:1c:49:68:a1:c7:7c:1e: f1:f7:a5:45:b3:ef:66:f1:65:ee:a7:99:2c:1d:f4:68:db:3a: 94:f3:35:47:45:a4:fb:4b:da:4f:ad:4e:48:26:3a:0c:84:eb: 34:4a:8b:6e:36:33:af:02:86:0f:2f:4d:6a:6c:fb:f0:fe:e9: e1:de:80:6c:de:30:04:a5:bd:de:3c:c1:34:f8:97:59:86:05: 16:85:f4:de:6f:c5:48:3b:b1:a9:5c:49:71:8f:96:2f:6f:f0: a8:d8:65:2d:83:ae:7f:5d:a2:2b:a5:ef:9e:a1:10:c7:20:99: ac:0d:0e:fa:68:59:b6:16:85:f1:80:84:c9:ac:09:91:36:88: c9:db:e9:f6:4d:76:8c:1f:1d:d5:d6:fe:2b:e5:53:07:be:d5: c0:33:b7:8c -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUQ4QzExMC8GA1UEBRMoNTE5M0JENTk5NDlFRjlCN0RBMTI3MjBGN0Q0NkVFN0M0 QkNBMzBFQzAeFw0yNTEyMDMwNzU4MzdaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTUxZTA5LWRiM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAOVbODazYUeJTGn8jRkQr8SjZV3QjDMF7WGIf8GCHbAI2Uc28mHUNwMu7Hmja yZ+/H/90/CKNZDQubIiLSGpnKiKlIAKTqlQKnzSnAdGZYyPbNfngP5OeAi9eh/St aDEMzqznLFMSr2I1BKG8tJjEzgzi/pX+ncpBDLTyaLPsB/Bg1rwNKuDqDfOsU4YR Bn0/ThmTzJEI8rlNClKDkRmdWLydjIu5otgkjWUGFpRhEipEbJBSGLp0g8Kb3nSU y8DJpJQbKCWWssmZl8n+HMy+dIvxaKKyqmQWjX0C0qfrxTQyqouiy8O1KTH0Fe3y qqYnU1cfR0lvuzsgRcHgWNOPAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUltmZoKCq d5oGjF6CV/d/4ZTDnkgwHwYDVR0jBBgwFoAUUZO9WZSe+bfaEnIPfUbufEvKMOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExRDhDL0EwODE5OTM0RDAx NjExRjBBRDQ5N0E3RUM0RjlBRTAyL1VaTzlXWlNlLWJmYUVuSVBmVWJ1ZkV2S01P dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVVpPOVdaU2UtYmZhRW5JUGZVYnVmRXZLTU93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ4Qy9BMDgxOTkzNEQwMTYxMUYwQUQ0OTdBN0VDNEY5QUUwMi9ERjNGODc3RUQw MUQxMUYwOUJCOTlDMzdDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32ZEAwDQYJKoZIhvcNAQELBQADggEBAD7DYnLTH9G3MDRsXf/o tTym1gyhkJZuHiVN9AaNmTXKX//p5+vgA2SU+kYt2Asc+GhlKPK/qyEZnaIy9H2A eJBSsWLwIi0Z9VGRZWbkYv6s/swbO60J0HxfeNvrwmXZtb4Tv0CxHEloocd8HvH3 pUWz72bxZe6nmSwd9GjbOpTzNUdFpPtL2k+tTkgmOgyE6zRKi242M68Chg8vTWps +/D+6eHegGzeMASlvd48wTT4l1mGBRaF9N5vxUg7salcSXGPli9v8KjYZS2Drn9d oiul756hEMcgmawNDvpoWbYWhfGAhMmsCZE2iMnb6fZNdowfHdXW/ivlUwe+1cAz t4w= -----END CERTIFICATE-----Generated at Thu Mar 26 08:23:26 2026 by rpki-client