$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa File: 3F9CDA68179911EDB9008D18C4F9AE02.roa (raw, json) Hash identifier: ujU1B1KKk8uCOgjiGvdkkocmT0/xdPECzUqBQtEEibQ= Subject key identifier: 66:B6:77:F5:95:62:07:FE:6A:BC:7F:62:3C:C6:35:B5:3D:4A:53:61 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 06E6 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:45:20 +0000 ROA not before: Tue 02 Sep 2025 22:43:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24390 IP address blocks: 2001:dd8::/48 maxlen: 48 2402:2940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Sep 2 22:43:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40ab0-2eae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:22:16:79:e0:80:3d:ed:33:ab:d6:95:90:56: 24:2b:1a:ef:80:8e:f7:aa:35:60:12:76:0a:a7:72: 1e:c5:04:18:6c:69:73:1b:51:63:f8:93:49:fa:48: 61:34:54:00:e1:72:1a:9c:84:0f:2d:4d:1f:8f:3f: f6:c6:70:dc:88:67:55:75:5a:07:b1:5b:f1:7f:2b: 6f:d5:ad:66:fa:5b:1e:e1:19:ce:4f:29:b7:b6:92: 22:6f:f6:d6:bf:85:36:83:9c:69:5a:61:e6:f1:ab: a5:cf:de:a7:8e:ac:80:05:86:2a:db:63:f3:31:3e: 90:26:3f:26:33:85:0c:c1:eb:1e:cb:92:5f:7a:1b: e4:1c:70:51:ad:98:7f:80:ac:57:e3:51:b8:fd:4d: a1:c5:6b:fc:23:b5:1f:9f:b5:17:47:51:f9:94:f9: 19:a3:f9:07:29:f3:0c:61:d9:c5:b7:52:93:28:0d: 5e:0b:fe:18:1e:9f:4a:24:e7:f3:e0:89:65:58:c6: b2:34:a6:08:3c:fe:6d:9e:ab:2e:91:73:0a:e9:52: 31:b5:a1:a2:ea:3d:65:4b:56:e8:ed:ca:33:58:d6: c6:79:87:79:9f:36:e2:86:3a:92:ab:0e:fa:4f:d6: f0:a0:8c:30:ec:7a:09:7c:7c:c3:d3:b0:59:53:b8: 3f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:B6:77:F5:95:62:07:FE:6A:BC:7F:62:3C:C6:35:B5:3D:4A:53:61 X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/3F9CDA68179911EDB9008D18C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:dd8::/48 2402:2940::/32 Signature Algorithm: sha256WithRSAEncryption bd:72:03:2b:58:63:82:7a:9c:19:c6:3d:49:74:62:3c:a2:d6: a9:0e:69:45:3f:47:07:76:e1:c0:47:c9:49:4a:a1:1c:6f:ed: 92:73:0b:c3:0b:f6:65:40:c4:f9:5a:a5:79:24:7c:ec:b1:ff: e1:a9:86:cc:4c:c2:04:6a:2f:01:ad:f3:d0:c3:62:4f:07:f1: d8:b5:37:f2:bd:9f:f3:53:71:47:88:15:eb:28:8d:db:69:73: 94:45:48:cc:d1:99:74:74:55:3c:6a:ff:74:9e:88:48:89:2b: 4b:e9:7d:fa:77:cc:57:40:5b:1b:fa:f2:83:de:4d:1a:fc:da: 00:95:3c:f4:2e:3d:ac:12:64:de:1e:d8:56:76:77:da:b5:44: 68:64:c5:d6:14:12:b7:94:49:e1:af:0e:cd:1d:9f:4a:82:79: 4c:97:c3:13:19:cc:c3:ae:81:a6:fd:7e:b6:5e:51:41:9a:98: a8:6f:48:1d:8f:63:53:89:c9:6e:a0:cc:62:21:c5:61:c2:64: fe:5a:e2:51:cb:a8:8d:88:29:67:67:62:79:d9:9b:33:a7:f1: b2:21:c1:d9:df:f1:d0:d5:4d:2d:02:d5:fa:1f:6b:df:f2:80: 9e:47:14:40:78:97:41:f7:df:eb:d4:85:43:6b:18:4c:c9:f8: f4:ea:39:f7 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwOTAyMjI0MzM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGFiMC0yZWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+CIWeeCAPe0zq9aVkFYkKxrvgI73qjVgEnYKp3IexQQYbGlzG1Fj+JNJ+khh NFQA4XIanIQPLU0fjz/2xnDciGdVdVoHsVvxfytv1a1m+lse4RnOTym3tpIib/bW v4U2g5xpWmHm8aulz96njqyABYYq22PzMT6QJj8mM4UMwesey5JfehvkHHBRrZh/ gKxX41G4/U2hxWv8I7Ufn7UXR1H5lPkZo/kHKfMMYdnFt1KTKA1eC/4YHp9KJOfz 4IllWMayNKYIPP5tnqsukXMK6VIxtaGi6j1lS1bo7cozWNbGeYd5nzbihjqSqw76 T9bwoIww7HoJfHzD07BZU7g/RQIDAQABo4ICajCCAmYwHQYDVR0OBBYEFGa2d/WV Ygf+arx/YjzGNbU9SlNhMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlCMEQvQTI4RUNCQzA4QUI2MTFFQjgyMzdENDE0QzRGOUFFMDIvM0Y5Q0RBNjgx Nzk5MTFFREI5MDA4RDE4QzRGOUFFMDIucm9hMCkGCCsGAQUFBwEHAQH/BBowGDAW BAIAAjAQAwcAIAEN2AAAAwUAJAIpQDANBgkqhkiG9w0BAQsFAAOCAQEAvXIDK1hj gnqcGcY9SXRiPKLWqQ5pRT9HB3bhwEfJSUqhHG/tknMLwwv2ZUDE+VqleSR87LH/ 4amGzEzCBGovAa3z0MNiTwfx2LU38r2f81NxR4gV6yiN22lzlEVIzNGZdHRVPGr/ dJ6ISIkrS+l9+nfMV0BbG/ryg95NGvzaAJU89C49rBJk3h7YVnZ32rVEaGTF1hQS t5RJ4a8OzR2fSoJ5TJfDExnMw66Bpv1+tl5RQZqYqG9IHY9jU4nJbqDMYiHFYcJk /lriUcuojYgpZ2diedmbM6fxsiHB2d/x0NVNLQLV+h9r3/KAnkcUQHiXQfff69SF Q2sYTMn49Oo59w== -----END CERTIFICATE-----Generated at Thu Mar 26 08:47:18 2026 by rpki-client