$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/624C3E865DB011F0875D570FC4F9AE02.roa File: 624C3E865DB011F0875D570FC4F9AE02.roa (raw, json) Hash identifier: a4BkoiItlms6YCqVC8v1i4qTu07pVSF2ZxL78g6dboE= Subject key identifier: 3C:41:C3:A6:AC:81:19:5D:39:E5:E9:BD:C7:8C:2E:CF:3A:6D:3C:AB Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 01D1 Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/624C3E865DB011F0875D570FC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:03:48 +0000 ROA not before: Mon 03 Nov 2025 03:48:28 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151964 IP address blocks: 2001:df3:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:25:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2, serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Nov 3 03:48:28 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a43934-5a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:66:49:98:f6:83:c4:8c:2b:1a:ac:1c:bb: 35:78:29:fe:50:48:a9:18:c5:12:95:be:66:76:18: f6:ad:86:5e:3a:93:4b:e8:0a:24:b2:f6:df:4c:6f: 1f:96:39:0f:4f:43:ac:87:13:77:80:c6:c4:9f:bc: 2a:74:79:5b:ad:14:80:0c:8d:12:2f:59:32:a7:28: d9:bc:c1:67:2f:7f:76:34:7d:2e:0b:d8:37:85:15: 1c:1d:bc:de:61:49:6e:27:8b:1f:3f:78:78:e1:1f: 11:1d:d2:85:e5:2e:f3:b7:4f:6e:d8:9b:23:05:05: a4:c2:87:b2:a9:ff:70:9a:71:1d:29:5d:c0:d4:4c: 3c:40:30:6a:fd:64:09:9a:fa:d5:a7:38:21:c5:6d: db:62:a8:fd:44:71:08:75:68:96:5c:fb:49:4e:61: ce:6e:dd:a7:a0:d6:f4:90:24:a4:74:7a:d5:46:1b: f7:bd:4c:9c:01:ba:12:52:6a:40:94:82:81:64:70: c6:3a:c4:0f:e1:46:25:db:09:7f:12:97:33:71:96: 3d:33:8e:d1:57:4d:58:ab:80:85:b8:05:38:0c:5f: c3:a2:90:ce:9f:90:e5:29:e7:63:1c:14:19:be:e5: 5e:4d:0b:b4:4e:c5:0f:7a:62:d3:c8:5e:b3:7a:b2: bf:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:41:C3:A6:AC:81:19:5D:39:E5:E9:BD:C7:8C:2E:CF:3A:6D:3C:AB X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/624C3E865DB011F0875D570FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:940::/48 Signature Algorithm: sha256WithRSAEncryption b0:fb:c2:5d:79:52:b5:fd:42:36:98:6a:ed:12:2b:7a:5e:b7: bf:56:04:d4:8e:a9:af:0b:0d:7d:3d:60:7c:29:1d:fc:e8:17: 05:4f:8e:fb:88:ba:95:fb:90:75:a6:c0:fb:8f:47:a8:d8:18: 06:86:d1:5c:81:03:9d:a4:9b:f6:f0:92:5c:a0:7b:4c:7c:db: 99:31:34:7b:38:53:94:90:f3:64:56:e2:6b:64:f2:68:c2:30: 67:e8:25:3f:a1:8d:bb:e2:a9:aa:16:46:2d:50:3a:eb:98:af: bb:04:9d:89:de:63:87:d0:e2:a1:ec:d3:12:01:b1:ed:9e:1b: 04:a5:05:d2:b4:ad:f3:ec:52:8c:85:5c:26:a7:de:a8:e4:cb: 3e:40:57:a3:f7:81:f0:b7:fa:ec:2c:78:9f:b6:45:6e:ca:e7: a0:42:a2:69:34:d1:16:e2:bb:c2:4c:68:6a:af:56:6a:de:b4: 9e:f3:d3:0e:9a:d4:44:03:9d:22:4a:f8:70:a5:a0:55:58:fa: 38:b6:74:f6:61:56:9c:75:e4:3b:93:32:1c:0c:74:00:46:de: 21:41:dc:6f:d5:ca:c6:a0:9c:ba:12:ec:67:5f:cf:2c:61:0c: be:1f:fa:ea:95:18:02:ae:4f:f1:d4:76:6a:a9:d9:2d:95:38: 6e:06:97:18 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjUxMTAzMDM0ODI4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzkzNC01YTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArINmSZj2g8SMKxqsHLs1eCn+UEipGMUSlb5mdhj2rYZeOpNL6AoksvbfTG8f ljkPT0OshxN3gMbEn7wqdHlbrRSADI0SL1kypyjZvMFnL392NH0uC9g3hRUcHbze YUluJ4sfP3h44R8RHdKF5S7zt09u2JsjBQWkwoeyqf9wmnEdKV3A1Ew8QDBq/WQJ mvrVpzghxW3bYqj9RHEIdWiWXPtJTmHObt2noNb0kCSkdHrVRhv3vUycAboSUmpA lIKBZHDGOsQP4UYl2wl/EpczcZY9M47RV01Yq4CFuAU4DF/DopDOn5DlKedjHBQZ vuVeTQu0TsUPemLTyF6zerK/TQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFDxBw6as gRldOeXpvceMLs86bTyrMB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3QTIvQjNERkM4ODQ2RDYyMTFFRUIzMDdDRTE5QzRGOUFFMDIvNjI0QzNFODY1 REIwMTFGMDg3NUQ1NzBGQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8wlAMA0GCSqGSIb3DQEBCwUAA4IBAQCw+8JdeVK1/UI2mGrt Eit6Xre/VgTUjqmvCw19PWB8KR386BcFT477iLqV+5B1psD7j0eo2BgGhtFcgQOd pJv28JJcoHtMfNuZMTR7OFOUkPNkVuJrZPJowjBn6CU/oY274qmqFkYtUDrrmK+7 BJ2J3mOH0OKh7NMSAbHtnhsEpQXStK3z7FKMhVwmp96o5Ms+QFej94Hwt/rsLHif tkVuyuegQqJpNNEW4rvCTGhqr1Zq3rSe89MOmtREA50iSvhwpaBVWPo4tnT2YVac deQ7kzIcDHQARt4hQdxv1crGoJy6EuxnX88sYQy+H/rqlRgCrk/x1HZqqdktlThu BpcY -----END CERTIFICATE-----Generated at Mon Mar 2 09:29:10 2026 by rpki-client