$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa File: F6668BF41FF311EFB0A97A82C4F9AE02.roa (raw, json) Hash identifier: eZb19K4Y/DQ/sNU4ZXv4s8zJTek1JXBNOEh4fBR+KDU= Subject key identifier: 39:D5:6A:A8:09:79:BD:CE:7D:8D:72:78:50:87:E2:92:08:79:76:31 Certificate issuer: /CN=A91E57A9/serialNumber=F7F06369399D9935F5FB59FD58571541A581CC63 Certificate serial: 014C Authority key identifier: F7:F0:63:69:39:9D:99:35:F5:FB:59:FD:58:57:15:41:A5:81:CC:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:46:02 +0000 ROA not before: Tue 03 Jun 2025 06:05:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138327 IP address blocks: 2001:df3:de40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.crl rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57A9, serialNumber=F7F06369399D9935F5FB59FD58571541A581CC63 Validity Not Before: Jun 3 06:05:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a5a2aa-78e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b1:3e:4f:c7:bf:ea:38:8b:e7:d4:86:9a:99: 00:f1:2b:c0:7c:bf:c5:f5:d8:c1:28:fa:8e:d2:51: 97:88:b5:c6:4f:a1:e8:44:76:64:b2:f0:98:b9:c1: b9:eb:da:c7:1d:f7:be:42:04:e3:75:ff:36:83:42: 1f:41:6d:f1:9f:bf:5d:b0:62:af:dd:4b:1d:57:06: 0a:93:67:94:15:bf:35:2a:d0:ec:9b:b2:31:7f:6f: bb:f5:d9:fe:72:95:5c:90:c2:d8:c0:ad:a1:18:30: bc:9c:d3:40:d3:f1:2a:92:b5:3d:74:26:d2:89:a0: e3:2a:98:cf:b5:c7:58:6d:d0:ad:3b:05:fc:1f:90: fa:ed:0d:ad:c5:b8:93:c5:e2:2a:7f:af:c9:d8:ac: c3:97:d2:bb:60:49:cf:d4:81:61:d9:d2:ec:52:8c: 5a:6c:6b:8b:b9:68:82:e7:1e:8f:ac:19:17:ea:2a: 1c:f2:0e:96:15:d4:85:fd:36:8e:0a:ed:d2:ac:d5: 4a:42:2e:b0:b9:32:4b:6c:14:d0:c0:ea:7f:b7:b5: 4d:5c:c0:b5:f9:4e:b6:d1:09:37:c8:20:6f:9f:cd: d4:f5:3e:b9:ea:b6:ce:bb:a0:9d:9f:8c:e0:31:78: 98:47:20:01:d1:fb:13:0c:51:d1:0c:00:06:04:86: 53:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:D5:6A:A8:09:79:BD:CE:7D:8D:72:78:50:87:E2:92:08:79:76:31 X509v3 Authority Key Identifier: keyid:F7:F0:63:69:39:9D:99:35:F5:FB:59:FD:58:57:15:41:A5:81:CC:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/9_BjaTmdmTX1-1n9WFcVQaWBzGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9_BjaTmdmTX1-1n9WFcVQaWBzGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57A9/862463481FF311EFA3FB2C81C4F9AE02/F6668BF41FF311EFB0A97A82C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:de40::/48 Signature Algorithm: sha256WithRSAEncryption 06:2b:ed:c9:08:da:1e:a8:13:da:0c:d6:7b:23:79:30:c2:22: a7:fb:d5:73:f4:63:4e:b4:3b:a5:9c:d4:0b:31:2d:4e:db:f3: 29:0c:de:ca:f8:86:27:6b:e2:6a:38:3b:00:72:7c:a2:44:bf: 8b:85:4e:a9:44:bf:ce:a6:be:37:4b:f7:5c:f0:96:46:b5:40: 0d:5c:2a:96:a4:af:7c:95:ef:f3:e4:33:ab:8b:d7:3e:23:d3: eb:bb:61:19:a7:b6:8d:17:26:55:8d:a6:ae:b9:6a:4c:2c:7b: 67:31:68:81:6b:b0:a1:e9:62:0a:bf:77:55:85:eb:22:48:a0: 93:55:85:b1:0a:d5:0c:7b:ed:56:a5:aa:54:e1:64:dc:80:ef: a2:58:0d:0a:1f:4c:d2:a0:bb:8f:ff:e4:65:a6:02:57:64:01: 26:5c:55:a1:e9:6b:3c:1a:23:27:4e:90:9b:43:87:15:19:0e: 0b:6b:42:cf:9b:85:c6:c4:0f:45:17:c6:8e:e2:3f:2c:a0:22: 09:df:37:57:a8:ce:b7:ab:43:e2:e3:43:5f:5d:3b:24:07:3f: ad:34:49:00:50:57:5d:5c:f0:60:aa:b7:85:80:90:3e:8f:eb: a7:e0:ce:5f:c6:89:f7:6d:e9:28:7e:56:59:d9:84:2b:9e:69: 84:50:b8:48 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QTkxMTAvBgNVBAUTKEY3RjA2MzY5Mzk5RDk5MzVGNUZCNTlGRDU4NTcxNTQx QTU4MUNDNjMwHhcNMjUwNjAzMDYwNTM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTJhYS03OGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLE+T8e/6jiL59SGmpkA8SvAfL/F9djBKPqO0lGXiLXGT6HoRHZksvCYucG5 69rHHfe+QgTjdf82g0IfQW3xn79dsGKv3UsdVwYKk2eUFb81KtDsm7Ixf2+79dn+ cpVckMLYwK2hGDC8nNNA0/EqkrU9dCbSiaDjKpjPtcdYbdCtOwX8H5D67Q2txbiT xeIqf6/J2KzDl9K7YEnP1IFh2dLsUoxabGuLuWiC5x6PrBkX6ioc8g6WFdSF/TaO Cu3SrNVKQi6wuTJLbBTQwOp/t7VNXMC1+U620Qk3yCBvn83U9T656rbOu6Cdn4zg MXiYRyAB0fsTDFHRDAAGBIZTOwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFDnVaqgJ eb3OfY1yeFCH4pIIeXYxMB8GA1UdIwQYMBaAFPfwY2k5nZk19ftZ/VhXFUGlgcxj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdBOS84NjI0NjM0ODFG RjMxMUVGQTNGQjJDODFDNEY5QUUwMi85X0JqYVRtZG1UWDEtMW45V0ZjVlFhV0J6 R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlfQmphVG1kbVRYMS0xbjlXRmNWUWFXQnpHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3QTkvODYyNDYzNDgxRkYzMTFFRkEzRkIyQzgxQzRGOUFFMDIvRjY2NjhCRjQx RkYzMTFFRkIwQTk3QTgyQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN895AMA0GCSqGSIb3DQEBCwUAA4IBAQAGK+3JCNoeqBPaDNZ7 I3kwwiKn+9Vz9GNOtDulnNQLMS1O2/MpDN7K+IYna+JqODsAcnyiRL+LhU6pRL/O pr43S/dc8JZGtUANXCqWpK98le/z5DOri9c+I9Pru2EZp7aNFyZVjaauuWpMLHtn MWiBa7Ch6WIKv3dVhesiSKCTVYWxCtUMe+1WpapU4WTcgO+iWA0KH0zSoLuP/+Rl pgJXZAEmXFWh6Ws8GiMnTpCbQ4cVGQ4La0LPm4XGxA9FF8aO4j8soCIJ3zdXqM63 q0Pi40NfXTskBz+tNEkAUFddXPBgqreFgJA+j+un4M5fxon3bekoflZZ2YQrnmmE ULhI -----END CERTIFICATE-----Generated at Thu Mar 26 10:18:23 2026 by rpki-client