$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/C4A33CA4275711F0BA7C7752C4F9AE02.roa File: C4A33CA4275711F0BA7C7752C4F9AE02.roa (raw, json) Hash identifier: fBtk/FNi9NSe3R4w+Y6D6yuDxCaNIphlrOKGcre0df8= Subject key identifier: C7:97:B5:8C:EB:E4:F1:71:5F:A4:D5:51:E9:89:9F:57:5C:18:95:1B Certificate issuer: /CN=A91BDEEB/serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Certificate serial: EA Authority key identifier: 6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/C4A33CA4275711F0BA7C7752C4F9AE02.roa Signing time: Mon 02 Mar 2026 11:53:57 +0000 ROA not before: Fri 02 May 2025 13:17:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153581 IP address blocks: 2001:df5:11c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 05:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDEEB, serialNumber=6B63A60E7D7F51D038728C6425906047016C9904 Validity Not Before: May 2 13:17:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a57a55-0ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:21:02:27:84:2b:45:16:25:b1:10:91:cb:b0: 6a:84:99:a0:5f:99:5e:40:f0:f3:c8:02:ff:39:89: b1:0b:01:76:62:ee:a5:38:f7:21:0a:a3:41:04:59: b2:37:53:ef:75:97:f5:f6:76:70:d5:a6:20:39:84: 47:e0:6f:94:3b:ec:66:f2:13:da:ef:06:37:3a:9c: 3c:47:3d:df:91:5e:dd:5f:b1:bf:a3:ea:ed:9c:5f: 1b:f4:b9:82:f6:31:35:48:21:e4:55:1c:9f:e6:5a: a0:79:d3:08:ee:11:7c:ac:61:59:a7:ba:db:2b:2b: 67:f9:34:68:3c:5d:45:63:0f:10:e7:e9:40:f3:b2: 3e:1d:36:9f:61:d6:26:a0:90:b9:bd:4b:16:0f:70: 65:f2:e4:ac:6c:bd:81:1f:6e:27:26:22:6c:e0:eb: eb:9c:0e:b0:1b:d2:b0:7a:82:e9:e2:f2:02:b3:ec: 89:f4:04:6e:a2:09:9d:ac:0d:27:40:7b:cd:1f:d1: 1d:17:f0:d4:dc:6c:05:42:5a:dc:95:32:61:0c:9a: 0a:7d:9f:1a:6b:05:f2:fc:5b:0c:9b:c9:ae:a8:1b: c6:01:0b:fa:f0:1f:53:df:a1:15:2a:84:c6:44:19: 55:ad:73:2c:9e:74:c9:fc:cb:c3:12:51:70:2b:07: 83:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:97:B5:8C:EB:E4:F1:71:5F:A4:D5:51:E9:89:9F:57:5C:18:95:1B X509v3 Authority Key Identifier: keyid:6B:63:A6:0E:7D:7F:51:D0:38:72:8C:64:25:90:60:47:01:6C:99:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/a2OmDn1_UdA4coxkJZBgRwFsmQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a2OmDn1_UdA4coxkJZBgRwFsmQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDEEB/1EE7FA60E5F411EFABD39D7EC4F9AE02/C4A33CA4275711F0BA7C7752C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:11c0::/48 Signature Algorithm: sha256WithRSAEncryption 94:44:42:e0:93:17:a2:9a:de:f5:14:44:82:04:57:70:a1:75: 25:00:d4:2d:51:85:d4:bf:de:9e:40:80:fe:fe:d6:60:10:53: ed:d2:41:66:c3:db:b6:b8:ab:be:4a:18:ed:eb:40:db:13:8c: b0:56:f0:96:d3:c5:57:7d:f3:34:7e:22:72:b8:a8:2a:1e:c6: 2e:b2:4e:11:8a:29:dc:42:3b:11:2f:54:66:b5:85:79:ba:e1: f7:35:39:ff:73:9b:ef:b9:11:d4:fe:60:57:90:4c:61:e3:17: e9:a0:c3:88:23:90:b9:f4:22:44:b6:a6:49:6b:fc:08:f1:c6: e4:59:a5:d7:ac:aa:62:3a:99:1b:b6:91:84:36:02:f7:2e:7d: 0b:b0:d4:88:c0:b9:ef:c8:ae:52:e1:6c:e2:7f:bd:bf:1f:76: 2e:c5:59:55:b3:4d:84:1d:b5:70:6b:16:b8:45:fa:7f:ed:b8: 01:49:48:8a:80:45:8a:47:08:c5:f5:62:08:97:b7:f3:e3:a8: 45:99:ec:c7:87:4f:6a:eb:3f:fb:f7:bb:67:30:cd:dc:e0:e8: 64:f5:bf:d8:f4:a0:b1:0e:7e:2a:cb:2b:25:af:d0:a5:40:c3: b4:49:b5:bb:36:ea:32:08:6a:d8:52:71:ab:2a:ed:46:1a:53: 3d:05:55:2d -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRFRUIxMTAvBgNVBAUTKDZCNjNBNjBFN0Q3RjUxRDAzODcyOEM2NDI1OTA2MDQ3 MDE2Qzk5MDQwHhcNMjUwNTAyMTMxNzE2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1N2E1NS0wY2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSECJ4QrRRYlsRCRy7BqhJmgX5leQPDzyAL/OYmxCwF2Yu6lOPchCqNBBFmy N1PvdZf19nZw1aYgOYRH4G+UO+xm8hPa7wY3Opw8Rz3fkV7dX7G/o+rtnF8b9LmC 9jE1SCHkVRyf5lqgedMI7hF8rGFZp7rbKytn+TRoPF1FYw8Q5+lA87I+HTafYdYm oJC5vUsWD3Bl8uSsbL2BH24nJiJs4OvrnA6wG9KweoLp4vICs+yJ9ARuogmdrA0n QHvNH9EdF/DU3GwFQlrclTJhDJoKfZ8aawXy/FsMm8muqBvGAQv68B9T36EVKoTG RBlVrXMsnnTJ/MvDElFwKweDZQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFMeXtYzr 5PFxX6TVUemJn1dcGJUbMB8GA1UdIwQYMBaAFGtjpg59f1HQOHKMZCWQYEcBbJkE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREVFQi8xRUU3RkE2MEU1 RjQxMUVGQUJEMzlEN0VDNEY5QUUwMi9hMk9tRG4xX1VkQTRjb3hrSlpCZ1J3RnNt UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EyT21EbjFfVWRBNGNveGtKWkJnUndGc21RUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRFRUIvMUVFN0ZBNjBFNUY0MTFFRkFCRDM5RDdFQzRGOUFFMDIvQzRBMzNDQTQy NzU3MTFGMEJBN0M3NzUyQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9RHAMA0GCSqGSIb3DQEBCwUAA4IBAQCURELgkxeimt71FESC BFdwoXUlANQtUYXUv96eQID+/tZgEFPt0kFmw9u2uKu+Shjt60DbE4ywVvCW08VX ffM0fiJyuKgqHsYusk4RiincQjsRL1RmtYV5uuH3NTn/c5vvuRHU/mBXkExh4xfp oMOII5C59CJEtqZJa/wI8cbkWaXXrKpiOpkbtpGENgL3Ln0LsNSIwLnvyK5S4Wzi f72/H3YuxVlVs02EHbVwaxa4Rfp/7bgBSUiKgEWKRwjF9WIIl7fz46hFmezHh09q 6z/797tnMM3c4Ohk9b/Y9KCxDn4qyyslr9ClQMO0SbW7NuoyCGrYUnGrKu1GGlM9 BVUt -----END CERTIFICATE-----Generated at Thu Mar 26 20:22:34 2026 by rpki-client