$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa File: 6CF3FF44901111EF922BFC29C4F9AE02.roa (raw, json) Hash identifier: hvfFWUPLyFvJCXfs1g4giSnFKRGrDpasDj01CVoVhxU= Subject key identifier: 2D:47:1D:02:C5:6E:D2:75:13:25:1B:39:F6:30:CB:CC:6F:E4:65:1C Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: 0108 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:05:51 +0000 ROA not before: Wed 27 Aug 2025 06:42:31 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150146 IP address blocks: 2001:df1:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Aug 27 06:42:31 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58b2f-0dc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3d:d6:46:e9:81:d8:90:27:93:03:4a:4e:65: 70:71:7c:77:07:35:6c:5f:08:35:83:00:88:4f:38: 1a:dd:a3:29:91:41:b0:77:ef:9d:6e:b3:8e:c7:4e: e7:f3:3c:b9:0f:c4:b7:d9:d4:5c:a1:a5:e7:0e:2f: 2d:17:cb:fc:8d:74:f9:16:62:c5:d9:a2:6e:3b:79: f2:31:b0:bd:ec:00:0f:28:29:0e:29:a5:0d:1f:44: 08:02:09:67:33:4b:09:ec:eb:9f:3c:28:7b:93:fc: 59:07:42:71:b1:69:10:77:2e:80:16:49:32:e0:90: a0:0c:9d:89:50:f6:fb:9d:29:9a:71:d8:d4:b6:d5: c6:06:e6:4f:4b:f1:96:25:53:53:fd:ec:e5:a0:9f: 15:65:61:26:e8:b6:4a:1b:e6:80:7c:86:bb:69:0d: c3:8c:4e:8a:37:a6:57:8f:1e:79:ba:27:cf:9f:f0: e7:6f:3f:fb:cc:a9:e2:d1:83:08:17:9d:bc:b8:1d: 9c:8e:ee:04:a3:9d:92:d5:41:2c:ce:63:5b:2c:83: e2:fb:9f:b7:d4:f8:03:69:d7:2d:58:30:5b:ed:17: 14:b2:c2:14:c7:fe:43:4f:23:d0:89:a8:d0:84:a7: 74:fb:bf:48:78:1e:22:09:cc:1c:8d:69:8a:27:f2: f2:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:47:1D:02:C5:6E:D2:75:13:25:1B:39:F6:30:CB:CC:6F:E4:65:1C X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df1:d40::/48 Signature Algorithm: sha256WithRSAEncryption 90:34:c0:6d:f0:54:b2:b3:fd:59:86:09:e1:c0:0a:59:bf:62: ba:9b:12:58:e7:08:d0:2b:2d:c2:3f:fe:8c:11:0d:0c:d2:03: 79:39:5d:4f:f3:ed:3c:7f:dc:ac:4a:1a:0f:e4:c6:09:ad:3d: 5b:dd:76:f5:fc:df:4e:df:6e:ef:51:82:f6:6a:c9:8f:c2:2c: c1:8f:41:26:fc:10:7f:17:a6:88:21:05:12:90:95:fe:67:cd: 49:2f:97:f8:99:13:36:09:b8:fe:68:5c:ae:2d:3b:09:53:b3: 3c:4e:fc:4a:99:da:f0:3e:59:88:94:cb:2e:99:a4:72:ab:b4: 04:66:22:fe:fc:42:b4:04:57:69:00:c7:f8:7b:9f:ec:49:40: 64:a1:32:8f:e2:e9:14:98:81:fd:7a:08:a9:b5:d5:01:56:bb: 5e:5e:6f:17:de:0d:2b:b6:13:b2:e9:11:7a:9a:5d:28:fe:7c: 8e:53:8c:ea:e5:89:d7:07:44:31:cd:0e:19:40:95:6e:b5:13: 4f:e7:bf:22:04:d0:32:67:23:72:81:3e:99:96:fb:b6:d8:ce: 38:dc:dd:62:a4:6c:19:0e:2e:c5:1f:e7:35:56:75:fb:d2:81: 4f:b8:af:75:60:7a:5f:3b:40:c2:91:96:e7:20:4d:08:19:95: d9:01:d6:2d -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUwODI3MDY0MjMxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGIyZi0wZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyD3WRumB2JAnkwNKTmVwcXx3BzVsXwg1gwCITzga3aMpkUGwd++dbrOOx07n 8zy5D8S32dRcoaXnDi8tF8v8jXT5FmLF2aJuO3nyMbC97AAPKCkOKaUNH0QIAgln M0sJ7OufPCh7k/xZB0JxsWkQdy6AFkky4JCgDJ2JUPb7nSmacdjUttXGBuZPS/GW JVNT/ezloJ8VZWEm6LZKG+aAfIa7aQ3DjE6KN6ZXjx55uifPn/Dnbz/7zKni0YMI F528uB2cju4Eo52S1UEszmNbLIPi+5+31PgDadctWDBb7RcUssIUx/5DTyPQiajQ hKd0+79IeB4iCcwcjWmKJ/LyvQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFC1HHQLF btJ1EyUbOfYwy8xv5GUcMB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFBM0IvMjI3MDE5REE5MDExMTFFRjlCODVDOTZBQzRGOUFFMDIvNkNGM0ZGNDQ5 MDExMTFFRjkyMkJGQzI5QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8Q1AMA0GCSqGSIb3DQEBCwUAA4IBAQCQNMBt8FSys/1Zhgnh wApZv2K6mxJY5wjQKy3CP/6MEQ0M0gN5OV1P8+08f9ysShoP5MYJrT1b3Xb1/N9O 327vUYL2asmPwizBj0Em/BB/F6aIIQUSkJX+Z81JL5f4mRM2Cbj+aFyuLTsJU7M8 TvxKmdrwPlmIlMsumaRyq7QEZiL+/EK0BFdpAMf4e5/sSUBkoTKP4ukUmIH9egip tdUBVrteXm8X3g0rthOy6RF6ml0o/nyOU4zq5YnXB0QxzQ4ZQJVutRNP578iBNAy ZyNygT6Zlvu22M443N1ipGwZDi7FH+c1VnX70oFPuK91YHpfO0DCkZbnIE0IGZXZ AdYt -----END CERTIFICATE-----Generated at Thu Mar 26 02:29:53 2026 by rpki-client