$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa File: 3492D2F083BA11EA8728F076C4F9AE02.roa (raw, json) Hash identifier: fSihFqalIKY6ytzAhc7OtqICrnfklHIgIa5bNBLtu/w= Subject key identifier: 11:BF:B3:C2:22:A9:73:7F:04:F2:5B:35:FC:4A:5E:B2:4C:9F:BE:62 Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 0A57 Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:49:05 +0000 ROA not before: Wed 06 Aug 2025 20:31:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 681 IP address blocks: 2001:df0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2647 (0xa57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1, serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Validity Not Before: Aug 6 20:31:47 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a427b0-e0c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:e8:6f:54:54:6b:47:74:4f:2a:9b:18:29: 24:bb:6d:cc:9b:f0:ee:93:63:ca:0a:68:e9:44:d2: 9b:a2:37:59:40:51:24:f5:4c:b9:e2:2d:9b:ba:a1: 84:2a:51:5b:35:31:00:d0:02:2b:d1:f2:22:86:8c: bf:8b:28:36:70:07:e6:a4:f8:26:53:ae:1d:ea:12: 1c:db:b4:6f:f6:3e:33:4c:8c:2c:91:88:7d:dc:eb: ad:b1:b9:f3:07:72:ef:44:d9:f2:91:96:f3:02:50: 45:7a:e3:fd:17:a3:25:a8:3a:ee:8a:6e:bc:94:ed: 77:ec:81:b4:fc:03:bd:14:5d:ef:cb:97:7e:92:bb: f5:70:53:12:89:e0:1e:77:6b:2b:c2:88:c1:65:6c: f1:37:52:c6:65:b7:36:0f:e3:75:37:bc:aa:b3:8a: 7d:10:91:a0:f0:c4:27:eb:42:2a:78:be:24:bf:98: 66:39:b6:99:ef:e3:e9:57:87:b0:03:54:e5:90:91: b1:07:15:4a:97:1e:73:ff:53:f4:66:50:4e:69:4d: d6:56:d8:e6:52:02:a6:fd:f2:9f:30:e8:b0:68:4b: dd:2d:65:19:d5:39:ee:ef:4e:14:0b:e3:3c:43:96: d2:a1:ea:65:d1:22:f1:89:27:36:1d:67:8e:41:67: 7f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BF:B3:C2:22:A9:73:7F:04:F2:5B:35:FC:4A:5E:B2:4C:9F:BE:62 X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df0:4::/48 Signature Algorithm: sha256WithRSAEncryption 7f:19:3d:4a:44:c6:3e:fb:37:71:3e:b4:d1:fc:8e:1a:42:b7: 16:ae:20:a5:6a:f4:dd:39:fe:c6:5e:de:c9:3d:cc:17:bb:56: 29:e1:3e:eb:4b:e3:bd:23:78:3b:54:16:bb:10:7d:20:76:b3: d4:59:f7:d7:e7:30:d8:f7:47:2d:9d:e1:e3:ca:b6:2d:84:e6: 18:77:6e:e7:8f:82:6a:7b:2d:6d:20:ec:a5:21:1c:22:09:05: 8f:5f:8a:33:55:83:ca:4c:69:ea:c3:42:f2:0c:16:37:fd:03: ab:a9:f3:a9:14:c3:d9:81:61:b3:a6:37:e4:62:6c:86:b2:a5: 35:9a:b6:ee:8b:f2:b5:ff:24:88:0e:d0:7a:6a:ff:6c:e4:bd: 02:5e:43:0b:66:14:f1:9e:00:da:2a:be:d3:90:3f:9b:69:66: d3:6b:c7:fc:ee:1f:e6:55:19:2f:3e:30:27:63:81:96:78:91: 81:ce:24:f5:25:66:6b:8c:e9:23:70:50:ba:cf:b5:d4:e6:c7: 16:bb:7e:b6:54:7c:6f:d1:60:8c:ae:c4:68:a6:b2:08:da:7f: 72:12:81:40:08:19:9f:9c:46:14:7a:82:75:58:d6:51:44:a6: 99:92:80:11:79:e6:c7:d8:eb:48:49:66:e3:4a:da:47:e5:ac: f9:89:2b:58 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICClcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjUwODA2MjAzMTQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjdiMC1lMGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ3ob1RUa0d0TyqbGCkku23Mm/Duk2PKCmjpRNKbojdZQFEk9Uy54i2buqGE KlFbNTEA0AIr0fIihoy/iyg2cAfmpPgmU64d6hIc27Rv9j4zTIwskYh93Outsbnz B3LvRNnykZbzAlBFeuP9F6MlqDruim68lO137IG0/AO9FF3vy5d+krv1cFMSieAe d2srwojBZWzxN1LGZbc2D+N1N7yqs4p9EJGg8MQn60IqeL4kv5hmObaZ7+PpV4ew A1TlkJGxBxVKlx5z/1P0ZlBOaU3WVtjmUgKm/fKfMOiwaEvdLWUZ1Tnu704UC+M8 Q5bSoepl0SLxiSc2HWeOQWd/ewIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFBG/s8Ii qXN/BPJbNfxKXrJMn75iMB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3QzEvNTM0NDcyQ0M4M0I5MTFFQTg1MkExNTc2QzRGOUFFMDIvMzQ5MkQyRjA4 M0JBMTFFQTg3MjhGMDc2QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8AAEMA0GCSqGSIb3DQEBCwUAA4IBAQB/GT1KRMY++zdxPrTR /I4aQrcWriClavTdOf7GXt7JPcwXu1Yp4T7rS+O9I3g7VBa7EH0gdrPUWffX5zDY 90ctneHjyrYthOYYd27nj4Jqey1tIOylIRwiCQWPX4ozVYPKTGnqw0LyDBY3/QOr qfOpFMPZgWGzpjfkYmyGsqU1mrbui/K1/ySIDtB6av9s5L0CXkMLZhTxngDaKr7T kD+baWbTa8f87h/mVRkvPjAnY4GWeJGBziT1JWZrjOkjcFC6z7XU5scWu362VHxv 0WCMrsRoprII2n9yEoFACBmfnEYUeoJ1WNZRRKaZkoAReebH2OtISWbjStpH5az5 iStY -----END CERTIFICATE-----Generated at Mon Mar 2 09:49:55 2026 by rpki-client