$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/D18B4798F06C11F09D48C4D25F6F56BC.roa File: D18B4798F06C11F09D48C4D25F6F56BC.roa (raw, json) Hash identifier: kI+lMMObUMoNwx25Je6t1ksEN0pwKqftAByIDVpB9+8= Subject key identifier: 42:FD:32:9B:5A:BD:01:9B:21:BC:7F:82:33:3C:7F:76:5A:14:EF:73 Certificate issuer: /CN=A91F17B3/serialNumber=F87F3099AD78F589DDFE4AA5F39137FFB32AFF9E Certificate serial: 6C Authority key identifier: F8:7F:30:99:AD:78:F5:89:DD:FE:4A:A5:F3:91:37:FF:B3:2A:FF:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-H8wma149Ynd_kql85E3_7Mq_54.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/D18B4798F06C11F09D48C4D25F6F56BC.roa Signing time: Mon 02 Mar 2026 12:27:24 +0000 ROA not before: Tue 13 Jan 2026 10:44:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150775 IP address blocks: 2001:df5:88c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/-H8wma149Ynd_kql85E3_7Mq_54.crl rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/-H8wma149Ynd_kql85E3_7Mq_54.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-H8wma149Ynd_kql85E3_7Mq_54.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B3, serialNumber=F87F3099AD78F589DDFE4AA5F39137FFB32AFF9E Validity Not Before: Jan 13 10:44:21 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5822c-c6e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bd:55:be:2f:90:c2:b3:62:3a:ba:28:0e:0f: 6a:6b:b2:41:30:e6:26:15:e8:47:53:7c:ae:26:73: f5:6b:fc:cc:08:79:48:04:6b:3e:98:01:67:d7:0d: 77:5d:3c:a7:e5:ba:17:38:d2:3a:16:31:7e:77:46: 90:94:09:5f:02:75:99:d6:29:64:0c:4b:6e:3c:7a: 73:76:26:e2:e2:65:64:4a:63:77:ca:76:8a:6e:1f: 15:d0:66:a2:f7:1a:16:ff:f4:b3:24:83:a6:23:ed: 89:3e:84:c5:f6:6f:83:39:3c:eb:00:b3:a1:60:b0: e5:4f:13:74:1f:4d:fd:c5:6b:13:68:20:fe:5b:d7: 05:ce:e4:86:4d:97:28:ee:f4:95:ea:02:f6:69:03: 45:d7:a6:fc:92:c2:a0:2e:ae:4d:37:93:54:43:a3: 18:e6:40:67:d4:0c:d1:e4:f2:35:ae:4e:df:39:ed: ac:82:db:fb:98:75:19:31:d6:dc:59:ed:07:f3:23: c6:4d:0f:56:63:7a:b5:98:9d:95:b7:8e:a4:0c:90: 94:88:d0:07:8a:0a:21:15:06:60:9e:a0:38:fb:1b: f2:79:22:eb:c4:13:6a:c1:c4:9e:4f:a6:84:91:00: 34:d1:04:ab:63:9b:e5:12:04:07:a4:6c:5c:a1:92: a9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:FD:32:9B:5A:BD:01:9B:21:BC:7F:82:33:3C:7F:76:5A:14:EF:73 X509v3 Authority Key Identifier: keyid:F8:7F:30:99:AD:78:F5:89:DD:FE:4A:A5:F3:91:37:FF:B3:2A:FF:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/-H8wma149Ynd_kql85E3_7Mq_54.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-H8wma149Ynd_kql85E3_7Mq_54.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B3/5E5095C879CD11F0A9B90321C4F9AE02/D18B4798F06C11F09D48C4D25F6F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:88c0::/48 Signature Algorithm: sha256WithRSAEncryption 33:a7:7c:31:70:b2:8f:b5:46:98:3d:22:68:f2:97:66:0a:2f: d0:07:f0:77:73:7a:19:7e:cc:7c:c8:c4:ec:ec:6d:57:00:0e: ef:52:3e:25:f7:08:af:60:eb:19:df:45:1d:ec:7b:71:e7:6f: 59:b3:15:0f:cb:28:2b:64:86:34:fe:58:87:c1:ba:e8:51:ab: 04:45:ec:7a:03:c6:0e:fb:23:11:39:6a:50:b5:43:01:38:8c: 14:06:32:59:4e:5c:2a:c1:ab:aa:cb:ce:f6:c4:f2:e6:e7:5b: 18:18:d7:78:be:70:53:24:2e:6c:df:7d:c5:ce:dd:f8:af:c6: 26:1f:81:24:38:28:f6:b2:7b:0c:18:b4:74:bd:ed:82:39:21: 2f:30:f5:fc:8d:70:7e:25:01:72:0b:6c:5a:72:80:e4:96:e1: 4d:dd:3a:69:67:57:8f:9d:19:90:03:1f:84:fb:8c:b0:05:51: d1:16:4e:cf:20:7e:b3:f2:8b:d4:4d:2c:88:37:27:70:5e:e9: 69:df:e0:ea:99:a8:16:3b:5c:a7:32:85:03:5b:52:84:53:d7: 62:73:38:ac:32:73:9e:15:c0:01:91:40:78:ad:40:c0:c6:bc: 76:70:04:a5:45:5a:c2:95:31:5c:92:41:28:a8:ea:5b:9e:27: c6:f0:d8:5d -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MTdCMzExMC8GA1UEBRMoRjg3RjMwOTlBRDc4RjU4OURERkU0QUE1RjM5MTM3RkZC MzJBRkY5RTAeFw0yNjAxMTMxMDQ0MjFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4MjJjLWM2ZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsvVW+L5DCs2I6uigOD2prskEw5iYV6EdTfK4mc/Vr/MwIeUgEaz6YAWfXDXdd PKfluhc40joWMX53RpCUCV8CdZnWKWQMS248enN2JuLiZWRKY3fKdopuHxXQZqL3 Ghb/9LMkg6Yj7Yk+hMX2b4M5POsAs6FgsOVPE3QfTf3FaxNoIP5b1wXO5IZNlyju 9JXqAvZpA0XXpvySwqAurk03k1RDoxjmQGfUDNHk8jWuTt857ayC2/uYdRkx1txZ 7QfzI8ZND1ZjerWYnZW3jqQMkJSI0AeKCiEVBmCeoDj7G/J5IuvEE2rBxJ5PpoSR ADTRBKtjm+USBAekbFyhkqktAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUQv0ym1q9 AZshvH+CMzx/dloU73MwHwYDVR0jBBgwFoAU+H8wma149Ynd/kql85E3/7Mq/54w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxN0IzLzVFNTA5NUM4NzlD RDExRjBBOUI5MDMyMUM0RjlBRTAyLy1IOHdtYTE0OVluZF9rcWw4NUUzXzdNcV81 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLUg4d21hMTQ5WW5kX2txbDg1RTNfN01xXzU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdCMy81RTUwOTVDODc5Q0QxMUYwQTlCOTAzMjFDNEY5QUUwMi9EMThCNDc5OEYw NkMxMUYwOUQ0OEM0RDI1RjZGNTZCQy5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ31iMAwDQYJKoZIhvcNAQELBQADggEBADOnfDFwso+1Rpg9Imjy l2YKL9AH8Hdzehl+zHzIxOzsbVcADu9SPiX3CK9g6xnfRR3se3Hnb1mzFQ/LKCtk hjT+WIfBuuhRqwRF7HoDxg77IxE5alC1QwE4jBQGMllOXCrBq6rLzvbE8ubnWxgY 13i+cFMkLmzffcXO3fivxiYfgSQ4KPayewwYtHS97YI5IS8w9fyNcH4lAXILbFpy gOSW4U3dOmlnV4+dGZADH4T7jLAFUdEWTs8gfrPyi9RNLIg3J3Be6Wnf4OqZqBY7 XKcyhQNbUoRT12JzOKwyc54VwAGRQHitQMDGvHZwBKVFWsKVMVySQSio6lueJ8bw 2F0= -----END CERTIFICATE-----Generated at Fri Mar 27 01:02:10 2026 by rpki-client