$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D173DA3043B911EDB6AA2D5FC4F9AE02.roa File: D173DA3043B911EDB6AA2D5FC4F9AE02.roa (raw, json) Hash identifier: //LaDwZuynrCgMu5CfMjESDm6KeQCJ8rranq0x2DlD8= Subject key identifier: D3:3E:BB:C8:37:42:77:9B:4E:A9:79:87:7D:5E:0B:FD:EA:33:EC:DA Certificate issuer: /CN=A91BB5F2/serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Certificate serial: 0287 Authority key identifier: 08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D173DA3043B911EDB6AA2D5FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:54:38 +0000 ROA not before: Wed 09 Apr 2025 02:07:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 2403:8300:a4e0::/48 maxlen: 48 2403:8300:a4e1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB5F2, serialNumber=089C7F00D81EDD64DBAB6D037122B2A21F0D3BE6 Validity Not Before: Apr 9 02:07:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5a4ad-3a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4f:25:7e:cd:00:ca:e9:4f:d2:27:61:3f:b2: 91:bd:93:62:d1:3c:2f:96:06:a9:3b:ef:28:77:f1: 0e:e4:5f:bc:3f:df:3c:29:a2:62:16:d2:96:79:24: 0c:9c:53:67:0c:2f:d3:4f:7d:10:77:cd:97:69:2c: 9d:20:62:de:03:3a:8f:51:bf:2a:87:87:59:4f:f0: f8:35:60:d6:6c:49:ad:88:16:79:68:c0:8a:13:52: 1f:c2:18:c3:26:15:14:ab:64:0c:0d:72:d1:04:c1: 46:bd:55:91:24:ea:c4:c2:4a:bf:7e:07:bf:08:6e: 56:9d:70:2b:cf:1f:c9:d0:ff:fc:1c:0e:0f:92:e1: 2d:27:58:d1:05:ef:7b:6f:bf:a9:18:d1:a6:13:9d: 86:b4:9c:b2:b4:cc:04:a5:61:11:16:c1:28:6e:13: 2d:49:88:e4:a9:b3:6d:0c:07:58:ff:8d:4f:f3:14: 5e:30:f0:17:4c:fc:25:9c:9a:7d:25:1d:02:34:ad: c3:ec:68:10:09:95:ed:21:ae:84:0b:7e:25:aa:82: 6e:b1:4d:3e:ef:77:a3:2a:af:a9:63:e1:55:fd:54: bb:a4:09:6a:9b:ff:6b:71:48:57:19:c3:3b:43:5a: c4:fd:4a:b0:3b:66:50:a7:ac:c7:89:fd:e7:d5:44: 8f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3E:BB:C8:37:42:77:9B:4E:A9:79:87:7D:5E:0B:FD:EA:33:EC:DA X509v3 Authority Key Identifier: keyid:08:9C:7F:00:D8:1E:DD:64:DB:AB:6D:03:71:22:B2:A2:1F:0D:3B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/CJx_ANge3WTbq20DcSKyoh8NO-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CJx_ANge3WTbq20DcSKyoh8NO-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB5F2/4AEED91C43B711ED98FF455EC4F9AE02/D173DA3043B911EDB6AA2D5FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:8300:a4e0::/47 Signature Algorithm: sha256WithRSAEncryption 48:d4:02:95:82:2d:76:9e:1a:2c:c1:62:11:d8:66:52:1b:f9: c5:6d:9f:4b:a0:2f:ba:56:b9:dc:ae:05:3d:82:58:87:6b:fd: 11:e0:7f:82:56:ab:d8:dd:ed:80:c9:34:7d:28:43:5e:d8:e4: 34:0e:14:77:60:77:ea:4f:9b:29:ce:41:a2:53:a1:6f:a2:85: 55:d1:c0:dd:6a:92:e2:42:01:8e:7f:c6:e2:a7:91:41:91:00: c4:7e:91:7b:c3:6d:f5:f6:0a:e2:1f:ae:a4:6a:bb:31:db:52: 2d:77:35:a5:7c:c3:e0:35:8c:3c:f5:e3:0b:d1:b8:cc:d8:93: 53:69:9e:23:26:3a:91:2f:ac:e4:0f:3e:44:ca:34:83:db:fd: ee:93:14:3a:c6:b5:6a:74:b3:92:e4:88:9f:c2:88:b8:4e:33: f6:21:43:bf:81:18:37:46:07:af:ae:54:e7:c9:f4:13:e1:4a: 52:04:a2:b7:74:14:a5:e3:ac:b9:0f:11:6d:12:1a:74:a3:7f: 4f:68:f3:34:9c:9b:db:34:78:60:29:34:98:cf:83:22:d2:78: bc:6d:a6:3d:31:94:3a:cc:55:02:61:f4:09:2d:29:85:36:11: 19:ca:53:50:74:5d:01:9f:53:28:ff:ee:95:37:b9:91:10:6a: 64:5b:7d:a5 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI1RjIxMTAvBgNVBAUTKDA4OUM3RjAwRDgxRURENjREQkFCNkQwMzcxMjJCMkEy MUYwRDNCRTYwHhcNMjUwNDA5MDIwNzQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTRhZC0zYTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE8lfs0AyulP0idhP7KRvZNi0TwvlgapO+8od/EO5F+8P988KaJiFtKWeSQM nFNnDC/TT30Qd82XaSydIGLeAzqPUb8qh4dZT/D4NWDWbEmtiBZ5aMCKE1IfwhjD JhUUq2QMDXLRBMFGvVWRJOrEwkq/fge/CG5WnXArzx/J0P/8HA4PkuEtJ1jRBe97 b7+pGNGmE52GtJyytMwEpWERFsEobhMtSYjkqbNtDAdY/41P8xReMPAXTPwlnJp9 JR0CNK3D7GgQCZXtIa6EC34lqoJusU0+73ejKq+pY+FV/VS7pAlqm/9rcUhXGcM7 Q1rE/UqwO2ZQp6zHif3n1USPTQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFNM+u8g3 QnebTql5h31eC/3qM+zaMB8GA1UdIwQYMBaAFAicfwDYHt1k26ttA3EisqIfDTvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjVGMi80QUVFRDkxQzQz QjcxMUVEOThGRjQ1NUVDNEY5QUUwMi9DSnhfQU5nZTNXVGJxMjBEY1NLeW9oOE5P LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NKeF9BTmdlM1dUYnEyMERjU0t5b2g4Tk8tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI1RjIvNEFFRUQ5MUM0M0I3MTFFRDk4RkY0NTVFQzRGOUFFMDIvRDE3M0RBMzA0 M0I5MTFFREI2QUEyRDVGQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcBJAODAKTgMA0GCSqGSIb3DQEBCwUAA4IBAQBI1AKVgi12nhoswWIR 2GZSG/nFbZ9LoC+6VrncrgU9gliHa/0R4H+CVqvY3e2AyTR9KENe2OQ0DhR3YHfq T5spzkGiU6FvooVV0cDdapLiQgGOf8bip5FBkQDEfpF7w2319griH66karsx21It dzWlfMPgNYw89eML0bjM2JNTaZ4jJjqRL6zkDz5EyjSD2/3ukxQ6xrVqdLOS5Iif woi4TjP2IUO/gRg3RgevrlTnyfQT4UpSBKK3dBSl46y5DxFtEhp0o39PaPM0nJvb NHhgKTSYz4Mi0ni8baY9MZQ6zFUCYfQJLSmFNhEZylNQdF0Bn1Mo/+6VN7mREGpk W32l -----END CERTIFICATE-----Generated at Thu Mar 26 01:52:39 2026 by rpki-client