$ rpki-client -vvf rpki.apnic.net/member_repository/A911F587/C1BA1A22136E11F1AD791BA3313D8C67/CE3E7CF6136F11F1982A4804323D8C67.roa File: CE3E7CF6136F11F1982A4804323D8C67.roa (raw, json) Hash identifier: 433GVnEHsEmqM+RA2zhP/NFczVjY5LHUX58RsvVfVKM= Subject key identifier: 02:48:29:0A:5A:2A:8C:D5:00:33:D1:4C:4A:FD:F7:B4:5E:D3:24:B7 Certificate issuer: /CN=A911F587/serialNumber=B9FC5C14B2D27529D50E6E593DA8CB0AA87D6510 Certificate serial: 0F Authority key identifier: B9:FC:5C:14:B2:D2:75:29:D5:0E:6E:59:3D:A8:CB:0A:A8:7D:65:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ufxcFLLSdSnVDm5ZPajLCqh9ZRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F587/C1BA1A22136E11F1AD791BA3313D8C67/CE3E7CF6136F11F1982A4804323D8C67.roa Signing time: Mon 02 Mar 2026 04:54:51 +0000 ROA not before: Fri 27 Feb 2026 00:03:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133427 IP address blocks: 2001:df5:e840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F587/C1BA1A22136E11F1AD791BA3313D8C67/ufxcFLLSdSnVDm5ZPajLCqh9ZRA.crl rsync://rpki.apnic.net/member_repository/A911F587/C1BA1A22136E11F1AD791BA3313D8C67/ufxcFLLSdSnVDm5ZPajLCqh9ZRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ufxcFLLSdSnVDm5ZPajLCqh9ZRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:02:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F587, serialNumber=B9FC5C14B2D27529D50E6E593DA8CB0AA87D6510 Validity Not Before: Feb 27 00:03:55 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5181a-d0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a9:98:9f:85:8b:3b:5c:55:e1:89:ad:46:35: 64:fa:35:e8:40:a1:ee:0d:60:e7:8c:e7:67:29:7e: 60:72:f7:cc:4d:cf:4a:99:0b:c8:e3:35:aa:96:6b: 6d:48:cc:18:f3:1d:04:da:32:e9:2c:b1:36:04:78: 99:42:ab:f0:cd:83:5f:f0:30:01:f7:c5:d3:14:41: 54:72:64:69:fc:c3:68:26:96:1a:39:5b:95:e6:f8: f8:eb:a0:97:db:41:f7:2b:71:29:ff:15:b2:fd:22: 0f:d6:84:0c:78:29:c6:e3:f5:5d:0a:e3:bc:cc:04: 6e:d2:48:36:ba:f1:42:3f:8b:ce:3e:f5:ff:00:29: 05:dd:7f:17:a0:72:eb:ea:b8:62:93:34:a7:17:36: 84:d9:f3:fc:7a:52:37:72:0e:d9:f2:c4:d2:c1:c6: 0a:0b:3e:bd:48:32:63:90:88:14:bc:c5:30:c7:41: ef:e1:b3:76:79:6f:55:9d:dd:91:7c:34:14:0b:e4: d5:65:65:d9:97:9a:4b:06:e6:88:40:b5:1e:50:21: 70:d9:1e:33:98:11:2b:91:6d:d9:63:4f:34:74:a0: aa:96:1b:cf:b9:f1:44:6a:99:c8:15:11:2a:f3:39: c3:be:a2:55:1f:c5:6f:6d:9d:65:18:06:c0:cd:0d: 73:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:48:29:0A:5A:2A:8C:D5:00:33:D1:4C:4A:FD:F7:B4:5E:D3:24:B7 X509v3 Authority Key Identifier: keyid:B9:FC:5C:14:B2:D2:75:29:D5:0E:6E:59:3D:A8:CB:0A:A8:7D:65:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F587/C1BA1A22136E11F1AD791BA3313D8C67/ufxcFLLSdSnVDm5ZPajLCqh9ZRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ufxcFLLSdSnVDm5ZPajLCqh9ZRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F587/C1BA1A22136E11F1AD791BA3313D8C67/CE3E7CF6136F11F1982A4804323D8C67.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:e840::/48 Signature Algorithm: sha256WithRSAEncryption 7a:ac:a0:e5:6c:b8:56:91:87:f9:75:57:5f:6a:c1:89:95:d4: f8:4d:b8:40:94:a7:f9:d3:ef:90:61:65:c2:8b:12:d7:c2:b4: b4:d8:23:5b:38:28:96:71:4c:65:af:05:36:0e:6c:0c:f2:2c: ca:79:55:eb:1e:1d:5c:62:9a:bb:7e:28:52:16:ca:7d:57:77: 18:22:ac:9b:4c:15:55:86:03:7c:d9:eb:9a:05:ed:e4:0e:d0: 78:ce:20:42:6a:aa:7d:51:a3:2f:6e:2e:1d:2c:b7:2b:db:31: 18:72:d7:78:61:c2:ba:2e:72:ee:b3:3e:27:d2:b6:78:0a:38: 97:60:b1:24:af:a1:f9:cb:64:59:8e:16:42:31:f6:79:1b:c2: ed:21:99:fa:44:b5:a7:a9:5e:17:3b:df:9e:9e:7f:8f:04:b1: d7:a7:95:0f:de:95:e5:47:eb:57:84:a6:72:95:d4:6e:31:c2: f8:9b:f5:4c:0c:af:25:d8:6a:12:c0:19:c9:6e:3f:8b:f9:3c: 9c:1d:33:db:84:18:82:dc:c8:da:6a:08:eb:65:c8:36:0b:62: 6d:55:96:10:de:51:b3:d2:fd:5e:63:26:61:36:7f:01:1c:9a: 6b:fe:b9:45:c9:af:71:47:31:d2:0f:d0:80:44:2b:87:7a:3f: 3f:f2:a0:ab -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjU4NzExMC8GA1UEBRMoQjlGQzVDMTRCMkQyNzUyOUQ1MEU2RTU5M0RBOENCMEFB ODdENjUxMDAeFw0yNjAyMjcwMDAzNTVaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTUxODFhLWQwZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVqZifhYs7XFXhia1GNWT6NehAoe4NYOeM52cpfmBy98xNz0qZC8jjNaqWa21I zBjzHQTaMukssTYEeJlCq/DNg1/wMAH3xdMUQVRyZGn8w2gmlho5W5Xm+PjroJfb QfcrcSn/FbL9Ig/WhAx4Kcbj9V0K47zMBG7SSDa68UI/i84+9f8AKQXdfxegcuvq uGKTNKcXNoTZ8/x6UjdyDtnyxNLBxgoLPr1IMmOQiBS8xTDHQe/hs3Z5b1Wd3ZF8 NBQL5NVlZdmXmksG5ohAtR5QIXDZHjOYESuRbdljTzR0oKqWG8+58URqmcgVESrz OcO+olUfxW9tnWUYBsDNDXPTAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUAkgpCloq jNUAM9FMSv33tF7TJLcwHwYDVR0jBBgwFoAUufxcFLLSdSnVDm5ZPajLCqh9ZRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNTg3L0MxQkExQTIyMTM2 RTExRjFBRDc5MUJBMzMxM0Q4QzY3L3VmeGNGTExTZFNuVkRtNVpQYWpMQ3FoOVpS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdWZ4Y0ZMTFNkU25WRG01WlBhakxDcWg5WlJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjU4Ny9DMUJBMUEyMjEzNkUxMUYxQUQ3OTFCQTMzMTNEOEM2Ny9DRTNFN0NGNjEz NkYxMUYxOTgyQTQ4MDQzMjNEOEM2Ny5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ316EAwDQYJKoZIhvcNAQELBQADggEBAHqsoOVsuFaRh/l1V19q wYmV1PhNuECUp/nT75BhZcKLEtfCtLTYI1s4KJZxTGWvBTYObAzyLMp5VeseHVxi mrt+KFIWyn1XdxgirJtMFVWGA3zZ65oF7eQO0HjOIEJqqn1Roy9uLh0styvbMRhy 13hhwroucu6zPifStngKOJdgsSSvofnLZFmOFkIx9nkbwu0hmfpEtaepXhc7356e f48EsdenlQ/eleVH61eEpnKV1G4xwvib9UwMryXYahLAGcluP4v5PJwdM9uEGILc yNpqCOtlyDYLYm1VlhDeUbPS/V5jJmE2fwEcmmv+uUXJr3FHMdIP0IBEK4d6Pz/y oKs= -----END CERTIFICATE-----Generated at Mon Mar 2 19:57:55 2026 by rpki-client