$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa File: 4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: HXxWYnff/fgeR5wMRkICKjOsvZw/QuWoeLfmhHd+VHU= Subject key identifier: 72:2B:55:17:EF:93:86:DE:10:B4:AE:C5:0A:5A:AF:D8:59:3D:BC:C9 Certificate issuer: /CN=A91DC068/serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Certificate serial: 0186 Authority key identifier: AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:46:11 +0000 ROA not before: Mon 17 Mar 2025 04:50:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152590 IP address blocks: 2001:df3:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Validity Not Before: Mar 17 04:50:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5a2b3-3ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:16:cb:30:06:b7:a6:f1:9f:59:19:a8:f5:49: 7b:b4:54:35:6c:d4:16:c2:28:47:0f:3f:11:b7:a0: 7a:0b:9a:19:19:a8:ed:41:c6:12:78:ca:ab:d2:dd: 6b:8c:26:c4:fb:1f:6c:4c:6c:96:6a:84:d0:dd:35: 08:78:a2:08:70:93:ef:8f:ec:a4:5d:76:1c:af:ac: 59:c0:f7:62:ad:bf:1a:9e:35:eb:a9:2b:e4:38:48: 2c:e3:3b:39:5e:9e:99:66:49:27:d9:95:18:c1:9e: ee:1c:d5:1e:bb:72:be:20:af:34:26:50:bc:cc:04: e4:a3:67:d1:2d:33:d2:c4:44:79:b5:19:c5:77:14: af:bb:a4:11:e6:5d:57:13:15:19:4b:82:66:ed:ed: 4a:f6:38:e4:b1:84:28:80:1a:63:48:c2:09:61:c2: d8:98:76:69:a0:bd:d3:1d:4a:c4:c9:93:7c:5e:8b: d4:fa:a5:02:49:08:90:2f:b4:35:7d:c8:1f:95:97: 85:7f:96:0d:28:33:ea:cd:19:f1:ce:46:4e:9e:12: f7:af:55:a5:23:a4:bf:f7:df:97:92:71:c4:e5:32: 87:80:5e:af:64:21:70:48:73:12:f7:85:58:40:64: ce:3c:f2:3d:e8:d7:dc:b7:c0:9f:ae:89:b2:58:fb: b1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:2B:55:17:EF:93:86:DE:10:B4:AE:C5:0A:5A:AF:D8:59:3D:BC:C9 X509v3 Authority Key Identifier: keyid:AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 18:71:1f:02:19:cd:ab:aa:ec:08:26:74:2e:ef:e3:c7:32:ab: e7:80:3a:37:eb:58:55:31:ce:6d:df:87:15:3a:a7:bf:bf:5e: db:03:d3:c3:cc:bc:a6:6d:89:fe:f2:c5:4e:56:6d:21:47:5a: aa:53:a9:fb:93:e0:99:26:cd:5d:c4:b1:ec:9a:9d:af:c8:00: 4d:e4:b3:94:7d:45:f3:16:86:53:b4:69:c3:49:05:37:79:b7: 0c:6a:8b:68:77:3c:2b:64:f1:67:11:97:d8:f9:26:69:74:02: 96:35:6d:fb:c4:4d:99:d8:f3:fb:c8:e7:ad:77:11:10:51:3f: 38:ec:18:4f:c9:8f:92:d6:cb:1c:77:f0:c1:4d:5e:11:53:55: d7:19:36:5d:55:cc:52:a1:4c:dd:ed:b2:10:43:74:98:09:37: 46:ea:70:9c:25:4a:58:10:6e:45:66:ee:58:78:ff:71:de:04: bb:c4:1d:fe:fd:b7:04:7b:76:31:9d:11:49:f5:61:fa:3d:9b: ed:59:77:77:96:a4:3e:22:3c:26:d1:c0:49:45:88:36:fa:f1: 58:52:ca:d9:03:f9:39:c3:f6:c9:55:30:dc:be:d1:58:3a:e0: 36:20:96:77:91:ad:36:3e:9a:ad:59:ec:93:ad:42:39:a0:08: 49:9b:01:c4 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKEFBMzZERUFBMEI0ODhENzQzRDMwOTZBMzc0RDNDRUMz MDM0RTY5REEwHhcNMjUwMzE3MDQ1MDU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTJiMy0zYWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7hbLMAa3pvGfWRmo9Ul7tFQ1bNQWwihHDz8Rt6B6C5oZGajtQcYSeMqr0t1r jCbE+x9sTGyWaoTQ3TUIeKIIcJPvj+ykXXYcr6xZwPdirb8anjXrqSvkOEgs4zs5 Xp6ZZkkn2ZUYwZ7uHNUeu3K+IK80JlC8zATko2fRLTPSxER5tRnFdxSvu6QR5l1X ExUZS4Jm7e1K9jjksYQogBpjSMIJYcLYmHZpoL3THUrEyZN8XovU+qUCSQiQL7Q1 fcgflZeFf5YNKDPqzRnxzkZOnhL3r1WlI6S/99+XknHE5TKHgF6vZCFwSHMS94VY QGTOPPI96Nfct8CfromyWPuxZwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFHIrVRfv k4beELSuxQpar9hZPbzJMB8GA1UdIwQYMBaAFKo23qoLSI10PTCWo3TTzsMDTmna MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC83ODFFN0RDNEQ1 MTYxMUVFQjM1RTZBNjBDNEY5QUUwMi9xamJlcWd0SWpYUTlNSmFqZE5QT3d3Tk9h ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FqYmVxZ3RJalhROU1KYWpkTlBPd3dOT2Fkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwNjgvNzgxRTdEQzRENTE2MTFFRUIzNUU2QTYwQzRGOUFFMDIvNENGRkYwQTZE NUREMTFFRUE1QjFDNzExQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN84DAMA0GCSqGSIb3DQEBCwUAA4IBAQAYcR8CGc2rquwIJnQu 7+PHMqvngDo361hVMc5t34cVOqe/v17bA9PDzLymbYn+8sVOVm0hR1qqU6n7k+CZ Js1dxLHsmp2vyABN5LOUfUXzFoZTtGnDSQU3ebcMaotodzwrZPFnEZfY+SZpdAKW NW37xE2Z2PP7yOetdxEQUT847BhPyY+S1sscd/DBTV4RU1XXGTZdVcxSoUzd7bIQ Q3SYCTdG6nCcJUpYEG5FZu5YeP9x3gS7xB3+/bcEe3YxnRFJ9WH6PZvtWXd3lqQ+ Ijwm0cBJRYg2+vFYUsrZA/k5w/bJVTDcvtFYOuA2IJZ3ka02PpqtWeyTrUI5oAhJ mwHE -----END CERTIFICATE-----Generated at Thu Mar 26 14:09:44 2026 by rpki-client