$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa File: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (raw, json) Hash identifier: ehn04kQEo37JdGgytx1K1uXVldIdvvguae3z+PPv2LQ= Subject key identifier: C2:DB:A6:8E:18:E2:59:65:B5:D0:E1:01:85:1C:21:00:A0:33:A6:31 Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 019D Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:41:38 +0000 ROA not before: Tue 13 May 2025 04:55:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152322 IP address blocks: 2001:df3:5ac0::/49 maxlen: 49 2001:df3:5ac0:8000::/49 maxlen: 49 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:39:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: May 13 04:55:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3dfa1-b334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a5:0c:a7:99:28:11:f2:3b:ef:8d:fd:9c:e6: bd:af:01:4d:9f:a5:04:af:f7:7d:99:a7:da:97:af: 9d:d8:ee:f0:b6:d3:f7:db:3e:11:64:01:ae:d2:d5: ce:46:4b:cb:73:97:06:40:a2:a1:18:ae:67:8a:8d: 47:7d:3f:e2:33:fd:de:19:76:98:d3:98:dc:19:97: 0f:c0:67:5d:a6:c8:68:a0:20:c5:a2:87:4e:98:73: 44:ef:b8:27:bd:f8:0c:95:69:71:f0:ca:2f:26:62: 7c:bb:57:fa:76:3c:63:a4:16:96:0a:2d:cf:38:a0: ea:d0:9c:f9:d6:61:97:a8:7c:f0:c6:98:50:56:24: 87:3c:86:4e:2c:42:70:7f:40:d4:0f:69:f4:04:45: b8:f6:f9:a9:07:1a:11:f5:a9:2d:13:d1:49:93:fc: 80:fe:ba:cc:85:87:23:42:6b:9f:10:a8:83:a8:90: 46:49:61:25:7b:f2:58:d5:10:45:7f:28:9c:87:49: e1:ce:55:19:0f:13:5c:81:0b:53:9d:99:38:56:6a: 42:78:08:9e:cd:86:a5:c9:ce:25:28:75:d8:27:be: 46:2e:e5:e8:99:80:d7:60:b9:1f:8c:c0:73:e8:10: 71:d3:e9:60:49:fa:de:a4:ac:49:b8:5c:3d:a2:6f: 9f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DB:A6:8E:18:E2:59:65:B5:D0:E1:01:85:1C:21:00:A0:33:A6:31 X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:5ac0::/48 Signature Algorithm: sha256WithRSAEncryption 16:48:61:dd:bd:1b:0e:4f:aa:f0:76:d1:8b:47:07:93:52:65: 1a:b3:6a:35:20:31:6f:ce:56:4b:63:19:88:6c:94:ff:f0:99: 8d:65:cb:a1:8d:9e:2e:4f:2c:71:c4:31:0c:a3:6d:fe:49:f3: 49:85:be:63:d9:7f:7a:a3:1e:5e:51:d0:ad:38:26:68:cf:15: c3:b3:fb:d0:85:c3:f8:47:22:81:d9:74:5c:f8:69:ee:9d:67: d0:6f:50:e8:6b:c3:ce:e3:7d:d1:9c:96:cd:ba:eb:93:54:72: f6:4d:4e:8f:7e:6e:07:bd:d0:36:78:6f:3d:ce:27:61:3e:c4: d9:06:0f:d2:e3:3b:d9:ca:fa:e9:16:40:a0:cd:23:f6:ea:df: d0:79:9a:a6:4b:2a:54:5b:bf:40:d1:3d:32:a4:9e:5d:6d:4c: 6b:27:69:3e:ea:f3:1a:87:62:4c:f1:61:7a:53:39:24:a8:02: 0b:30:4d:ca:77:f0:48:b3:cb:8d:5f:69:89:6b:1a:0b:c5:7b: a9:41:c1:71:57:02:aa:b1:f6:73:ab:7d:40:37:21:ae:21:39: e4:30:a9:76:a8:07:24:ea:ed:9c:87:e0:f9:17:6e:29:0e:9e: 69:29:a1:66:5f:d7:08:f8:96:fc:8a:6c:ba:56:fa:4a:84:b6: 09:be:ad:13 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKDlDQzg4QTg2RDBCMzdFQ0VFOEQ1NzY1N0VGOTk3ODk1 MzI2ODBDREYwHhcNMjUwNTEzMDQ1NTMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGZhMS1iMzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwaUMp5koEfI77439nOa9rwFNn6UEr/d9mafal6+d2O7wttP32z4RZAGu0tXO RkvLc5cGQKKhGK5nio1HfT/iM/3eGXaY05jcGZcPwGddpshooCDFoodOmHNE77gn vfgMlWlx8MovJmJ8u1f6djxjpBaWCi3POKDq0Jz51mGXqHzwxphQViSHPIZOLEJw f0DUD2n0BEW49vmpBxoR9aktE9FJk/yA/rrMhYcjQmufEKiDqJBGSWEle/JY1RBF fyich0nhzlUZDxNcgQtTnZk4VmpCeAiezYalyc4lKHXYJ75GLuXomYDXYLkfjMBz 6BBx0+lgSfrepKxJuFw9om+fSQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFMLbpo4Y 4llltdDhAYUcIQCgM6YxMB8GA1UdIwQYMBaAFJzIiobQs37O6NV2V++ZeJUyaAzf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS9GRUY1NDlFOEFG MTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZzN28xWFpYNzVsNGxUSm9E TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMzkvRkVGNTQ5RThBRjE2MTFFRThDNDhBNzREQzRGOUFFMDIvQUE3NzhGNENB RjhBMTFFRUIxNjdEQjY0QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN81rAMA0GCSqGSIb3DQEBCwUAA4IBAQAWSGHdvRsOT6rwdtGL RweTUmUas2o1IDFvzlZLYxmIbJT/8JmNZcuhjZ4uTyxxxDEMo23+SfNJhb5j2X96 ox5eUdCtOCZozxXDs/vQhcP4RyKB2XRc+GnunWfQb1Doa8PO433RnJbNuuuTVHL2 TU6Pfm4HvdA2eG89zidhPsTZBg/S4zvZyvrpFkCgzSP26t/QeZqmSypUW79A0T0y pJ5dbUxrJ2k+6vMah2JM8WF6UzkkqAILME3Kd/BIs8uNX2mJaxoLxXupQcFxVwKq sfZzq31ANyGuITnkMKl2qAck6u2ch+D5F24pDp5pKaFmX9cI+Jb8imy6VvpKhLYJ vq0T -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:52 2026 by rpki-client