$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/14F7BC00CEEF11EFAF6F762FC4F9AE02.roa File: 14F7BC00CEEF11EFAF6F762FC4F9AE02.roa (raw, json) Hash identifier: BF86bk5wE6Zr1m3LZ6kF7qlbs43Gmk6OeQj3ok60wVo= Subject key identifier: D4:21:DB:73:8E:37:0D:88:78:5F:0C:3D:AD:B0:C6:87:82:5C:08:71 Certificate issuer: /CN=A91B15DC/serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Certificate serial: DF Authority key identifier: 1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/14F7BC00CEEF11EFAF6F762FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:17:33 +0000 ROA not before: Wed 03 Dec 2025 04:34:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134602 IP address blocks: 2001:df4:8bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=1D45E729454A2424467B03CFC997D7EB184AE766 Validity Not Before: Dec 3 04:34:57 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59bfd-cba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c0:30:64:b7:99:6b:ad:1c:8b:1d:1b:cf:1b: 3d:99:07:c8:e6:2a:8b:5f:e1:4a:15:79:cc:94:35: 47:15:87:1d:ca:62:2c:8a:70:92:05:ec:5d:cc:77: af:74:91:19:03:f3:b3:01:0e:60:7b:a2:18:eb:07: 47:30:89:36:c8:fa:63:c8:b9:fb:24:f9:0a:18:e9: ea:f4:d1:d5:1b:17:b7:eb:65:f4:2c:b6:9b:f8:e8: 46:c3:f3:ab:e4:28:64:9f:f9:66:98:59:56:03:e6: 88:a8:7e:e7:b3:f1:bd:c5:58:4a:d5:7d:ce:95:d8: 3d:62:67:45:88:42:56:7b:75:71:9a:e5:9b:9c:19: b1:66:81:89:69:c1:01:81:c9:cf:83:7f:9d:cc:72: be:47:5b:8b:d8:d1:22:e0:9f:bd:c0:49:63:b2:7a: 49:f6:85:77:32:fd:8c:cb:70:9b:d4:b5:7d:f9:fe: 30:46:a0:d4:fd:5a:ed:69:15:13:76:29:dd:88:6a: d2:36:19:27:24:71:b7:15:9d:a0:52:37:ea:86:b6: 46:73:b0:06:0f:2b:1b:a3:78:1d:6d:45:be:1d:e7: 61:b2:54:a7:a0:3d:66:ac:66:bd:1d:60:94:87:71: b8:32:c5:1b:12:f7:1b:13:ac:d6:89:ad:7b:89:83: bb:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:21:DB:73:8E:37:0D:88:78:5F:0C:3D:AD:B0:C6:87:82:5C:08:71 X509v3 Authority Key Identifier: keyid:1D:45:E7:29:45:4A:24:24:46:7B:03:CF:C9:97:D7:EB:18:4A:E7:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/HUXnKUVKJCRGewPPyZfX6xhK52Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HUXnKUVKJCRGewPPyZfX6xhK52Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/5823AF86CEED11EFBD655511C4F9AE02/14F7BC00CEEF11EFAF6F762FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:8bc0::/48 Signature Algorithm: sha256WithRSAEncryption 2b:f2:a3:68:e7:cb:97:52:e5:d1:f7:3d:36:15:f9:0b:b7:70: c9:2d:94:1a:67:46:c4:9a:72:8e:06:a8:08:8d:3f:a7:04:6a: bf:9f:e4:13:20:12:6d:bb:fb:24:9a:dc:8d:8d:1a:88:e2:31: 58:22:25:f0:a1:e1:2f:1e:95:f6:85:9f:45:43:2d:0a:53:c8: a4:2e:97:fa:e0:32:40:0d:d2:98:5b:e6:dd:66:93:11:92:27: 3b:1b:32:0e:0d:0b:56:7d:fe:0d:00:25:9f:a5:e9:fe:df:fb: 11:08:df:bb:47:2e:39:e4:4f:7d:03:dc:b4:4a:85:f4:65:d3: 0c:44:2e:df:91:39:da:85:ee:36:f3:40:bd:fc:34:6b:1a:b7: ad:0d:92:4d:80:54:33:f2:f4:31:9b:92:fe:15:84:33:90:e1: a2:b6:6e:51:5c:e2:09:30:7d:4c:9f:09:55:07:a5:af:1f:5f: c6:ca:3a:1b:bb:f0:2b:a2:c6:0c:64:8b:b7:c3:a3:8c:23:65: 29:c5:3c:b6:cb:b2:d6:df:0b:be:9f:16:80:7c:da:8c:1e:1a: 65:cd:20:54:1f:60:e1:55:56:85:81:36:54:5b:79:8d:73:cf: a5:a1:e5:ed:37:db:63:3e:3f:8f:41:b2:bc:31:a5:e6:63:65: 3e:9e:5f:21 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE1REMxMTAvBgNVBAUTKDFENDVFNzI5NDU0QTI0MjQ0NjdCMDNDRkM5OTdEN0VC MTg0QUU3NjYwHhcNMjUxMjAzMDQzNDU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWJmZC1jYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcAwZLeZa60cix0bzxs9mQfI5iqLX+FKFXnMlDVHFYcdymIsinCSBexdzHev dJEZA/OzAQ5ge6IY6wdHMIk2yPpjyLn7JPkKGOnq9NHVGxe362X0LLab+OhGw/Or 5Chkn/lmmFlWA+aIqH7ns/G9xVhK1X3Oldg9YmdFiEJWe3VxmuWbnBmxZoGJacEB gcnPg3+dzHK+R1uL2NEi4J+9wEljsnpJ9oV3Mv2My3Cb1LV9+f4wRqDU/VrtaRUT dindiGrSNhknJHG3FZ2gUjfqhrZGc7AGDysbo3gdbUW+HedhslSnoD1mrGa9HWCU h3G4MsUbEvcbE6zWia17iYO7ZwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFNQh23OO Nw2IeF8MPa2wxoeCXAhxMB8GA1UdIwQYMBaAFB1F5ylFSiQkRnsDz8mX1+sYSudm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTVEQy81ODIzQUY4NkNF RUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi9IVVhuS1VWS0pDUkdld1BQeVpmWDZ4aEs1 MlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hVWG5LVVZLSkNSR2V3UFB5WmZYNnhoSzUyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE1REMvNTgyM0FGODZDRUVEMTFFRkJENjU1NTExQzRGOUFFMDIvMTRGN0JDMDBD RUVGMTFFRkFGNkY3NjJGQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9IvAMA0GCSqGSIb3DQEBCwUAA4IBAQAr8qNo58uXUuXR9z02 FfkLt3DJLZQaZ0bEmnKOBqgIjT+nBGq/n+QTIBJtu/skmtyNjRqI4jFYIiXwoeEv HpX2hZ9FQy0KU8ikLpf64DJADdKYW+bdZpMRkic7GzIODQtWff4NACWfpen+3/sR CN+7Ry455E99A9y0SoX0ZdMMRC7fkTnahe4280C9/DRrGretDZJNgFQz8vQxm5L+ FYQzkOGitm5RXOIJMH1MnwlVB6WvH1/Gyjobu/ArosYMZIu3w6OMI2UpxTy2y7LW 3wu+nxaAfNqMHhplzSBUH2DhVVaFgTZUW3mNc8+loeXtN9tjPj+PQbK8MaXmY2U+ nl8h -----END CERTIFICATE-----Generated at Thu Mar 26 19:15:00 2026 by rpki-client