$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/A24D0F54140C11EFBC640B71C4F9AE02.roa File: A24D0F54140C11EFBC640B71C4F9AE02.roa (raw, json) Hash identifier: BSVTwwRbq3VYo1MDzrnaZmnq1w5wQREhmFrVERfDa/4= Subject key identifier: 64:7C:CC:15:2C:66:D5:67:8B:DA:B1:E8:11:10:33:28:8B:ED:8B:C5 Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 023F Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/A24D0F54140C11EFBC640B71C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:27:58 +0000 ROA not before: Thu 01 May 2025 02:39:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150791 IP address blocks: 2001:df2:fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: May 1 02:39:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ea7d-6e42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:67:22:f2:0e:56:bb:5a:2c:65:18:43:40:ec: be:cb:6c:f6:17:aa:64:35:cb:5e:25:9f:82:44:28: 8e:cc:5e:7c:55:d6:fc:f3:c8:f4:d5:f4:f3:44:e5: c7:a2:d3:0d:12:4a:41:2b:cd:5b:17:ab:7c:3d:14: f7:cf:4f:4b:7a:ae:f1:15:44:be:c9:59:74:54:ac: 8b:2e:27:37:15:12:72:34:09:e8:e6:1b:4c:f7:e3: 91:32:04:cb:fa:72:3e:50:a5:fd:0c:8a:48:8c:89: e0:a6:57:85:a4:7e:ab:2f:70:5f:b5:7e:65:3e:80: b5:a2:1c:74:df:94:69:2f:8f:98:80:ed:32:1f:cc: 86:20:20:0f:a9:c6:17:94:c3:f1:1f:84:40:01:6a: d0:2c:6a:99:0b:15:8d:1b:e4:c1:8d:4f:b3:ee:d6: a4:47:ce:74:f5:55:b1:af:80:b6:a5:65:82:26:3f: c4:ed:ad:a1:0a:6a:0d:fe:35:40:1a:b7:34:b8:a6: 32:33:c4:44:03:84:ea:aa:6a:02:ce:a7:ec:3b:a8: c4:f9:2c:f3:89:cf:0f:ff:0f:13:cb:7b:af:2a:f8: 8a:66:6a:c1:45:b6:5a:86:a5:27:13:0b:05:4c:fa: 1c:1d:ed:94:a6:8e:ab:d2:1d:8c:d7:6a:50:30:65: 3b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7C:CC:15:2C:66:D5:67:8B:DA:B1:E8:11:10:33:28:8B:ED:8B:C5 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/A24D0F54140C11EFBC640B71C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df2:fc0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:f5:6e:d8:7e:0e:61:6b:68:a6:95:02:6c:cf:1f:1c:eb:f0: 7c:99:27:c1:bf:11:df:e6:d3:38:65:8f:dd:49:95:2d:36:60: 25:d8:9d:43:b3:8e:5d:d4:73:18:ac:a3:1e:cb:c9:a9:84:c7: 28:7e:5c:ba:f4:d5:9b:bc:5b:3f:d2:ee:0e:af:52:6a:61:e8: 6a:a4:34:83:ff:e1:3d:3f:44:c9:4c:52:70:9b:64:1b:f5:ae: 42:49:5f:dd:27:eb:00:2c:52:56:b9:d4:b0:c8:4e:93:67:ef: 5e:bb:4d:b8:46:be:60:72:de:4e:39:5d:19:8c:be:fc:51:c9: c9:81:f9:49:33:32:60:bd:40:21:fe:a9:c3:b9:4f:a9:05:99: b8:e1:93:f8:f0:6b:2e:85:9f:fc:e0:29:48:51:e5:7c:63:15: c2:58:13:4e:e3:2b:74:bb:74:29:ee:e6:14:e0:fb:cb:b8:cf: f6:53:43:55:12:e9:96:81:c4:db:0b:04:49:28:dd:0e:da:e9: a0:94:df:3b:f6:8e:a3:39:30:82:f7:6b:c9:4b:bd:31:4a:93: ea:54:44:bc:d1:1d:bc:78:cd:24:90:d4:c7:db:83:56:f5:0a: ff:e0:ab:40:7a:cf:08:4c:8f:e4:15:a9:87:db:1c:b7:95:9b: 55:a7:75:c0 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwNTAxMDIzOTI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWE3ZC02ZTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGci8g5Wu1osZRhDQOy+y2z2F6pkNcteJZ+CRCiOzF58Vdb888j01fTzROXH otMNEkpBK81bF6t8PRT3z09Leq7xFUS+yVl0VKyLLic3FRJyNAno5htM9+ORMgTL +nI+UKX9DIpIjIngpleFpH6rL3BftX5lPoC1ohx035RpL4+YgO0yH8yGICAPqcYX lMPxH4RAAWrQLGqZCxWNG+TBjU+z7takR8509VWxr4C2pWWCJj/E7a2hCmoN/jVA Grc0uKYyM8REA4TqqmoCzqfsO6jE+Szzic8P/w8Ty3uvKviKZmrBRbZahqUnEwsF TPocHe2Upo6r0h2M12pQMGU7VQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFGR8zBUs ZtVni9qx6BEQMyiL7YvFMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBNDAvOTZGMEQ3MENCQkRBMTFFRDg4NzhFRjQ3QzRGOUFFMDIvQTI0RDBGNTQx NDBDMTFFRkJDNjQwQjcxQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8g/AMA0GCSqGSIb3DQEBCwUAA4IBAQA/9W7Yfg5ha2imlQJs zx8c6/B8mSfBvxHf5tM4ZY/dSZUtNmAl2J1Ds45d1HMYrKMey8mphMcofly69NWb vFs/0u4Or1JqYehqpDSD/+E9P0TJTFJwm2Qb9a5CSV/dJ+sALFJWudSwyE6TZ+9e u024Rr5gct5OOV0ZjL78UcnJgflJMzJgvUAh/qnDuU+pBZm44ZP48GsuhZ/84ClI UeV8YxXCWBNO4yt0u3Qp7uYU4PvLuM/2U0NVEumWgcTbCwRJKN0O2umglN879o6j OTCC92vJS70xSpPqVES80R28eM0kkNTH24NW9Qr/4KtAes8ITI/kFamH2xy3lZtV p3XA -----END CERTIFICATE-----Generated at Thu Mar 26 10:15:58 2026 by rpki-client