$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/66287F98AE4711EE8C130419C4F9AE02.roa File: 66287F98AE4711EE8C130419C4F9AE02.roa (raw, json) Hash identifier: jidjPqjhwiib65keCcPhREH4tf4UiXEekkUxxTfAB2U= Subject key identifier: BF:5B:55:42:5C:FA:D4:6A:76:5B:43:DF:3D:E3:8E:CA:CE:48:46:31 Certificate issuer: /CN=A913AF6A/serialNumber=B54CC4EF8688BAD60A935B52D4115637894E2337 Certificate serial: 019D Authority key identifier: B5:4C:C4:EF:86:88:BA:D6:0A:93:5B:52:D4:11:56:37:89:4E:23:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUzE74aIutYKk1tS1BFWN4lOIzc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/66287F98AE4711EE8C130419C4F9AE02.roa Signing time: Mon 02 Mar 2026 04:51:28 +0000 ROA not before: Mon 05 Jan 2026 03:22:48 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152305 IP address blocks: 2001:df3:5540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/tUzE74aIutYKk1tS1BFWN4lOIzc.crl rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/tUzE74aIutYKk1tS1BFWN4lOIzc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUzE74aIutYKk1tS1BFWN4lOIzc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 11:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=B54CC4EF8688BAD60A935B52D4115637894E2337 Validity Not Before: Jan 5 03:22:48 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a51750-b8dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:da:18:84:86:dd:9f:aa:61:c8:3b:36:e4:1f: 93:f4:cb:82:1b:45:57:1b:87:cc:af:95:ec:86:38: a2:9a:68:5c:c7:1b:ba:4a:a9:43:dc:d4:29:57:0a: 39:27:f6:bb:e1:e4:87:3d:72:77:6b:b2:c4:31:7c: dc:f1:ee:ee:73:cc:37:3d:73:12:25:ab:51:4d:5a: d0:f1:15:8a:f2:7d:5b:ab:5b:13:e8:bd:42:5f:a3: 5e:87:d1:4f:53:71:8e:3b:05:aa:a7:12:e0:7e:2e: 76:2d:0d:88:17:45:1a:eb:c0:29:fd:ab:f0:e3:eb: 19:2e:29:e7:a0:ea:39:76:7e:a5:46:2f:94:2d:1d: b4:fd:5d:88:b5:a8:01:73:f6:17:6c:8b:b9:14:49: d5:f9:4f:31:94:8a:b2:75:e6:cc:15:75:40:31:f4: cd:aa:42:ff:35:91:07:c1:09:5e:2c:a2:8e:af:af: e8:38:44:41:89:f1:3d:2e:9d:36:a3:c4:ed:44:fd: c3:62:19:91:49:8d:75:dc:f5:fe:d2:96:c2:29:34: 79:3c:59:52:f5:4f:1e:04:e0:93:b3:12:3f:be:4b: 60:3a:34:7a:12:e2:0c:1a:a1:24:28:0c:83:e4:01: cc:bc:fc:19:33:94:a5:91:90:4b:63:78:7c:7d:7c: cd:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:5B:55:42:5C:FA:D4:6A:76:5B:43:DF:3D:E3:8E:CA:CE:48:46:31 X509v3 Authority Key Identifier: keyid:B5:4C:C4:EF:86:88:BA:D6:0A:93:5B:52:D4:11:56:37:89:4E:23:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/tUzE74aIutYKk1tS1BFWN4lOIzc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUzE74aIutYKk1tS1BFWN4lOIzc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/8C6DAC78AE4211EEBF64DA69C4F9AE02/66287F98AE4711EE8C130419C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:5540::/48 Signature Algorithm: sha256WithRSAEncryption 11:05:c7:1d:46:f0:46:1b:1e:e9:26:08:7d:2f:85:af:2d:29: 71:77:a2:a2:32:6e:96:17:32:f8:14:d2:f7:b5:5b:f8:f3:7e: cf:e9:66:d3:8e:9c:00:7f:b5:52:42:08:13:86:2c:ba:4d:3b: 2f:5e:c3:17:db:25:67:7d:1e:9b:d2:02:4f:e4:c0:f5:3f:17: a9:73:2b:a2:d3:84:ac:2c:54:5b:be:4a:10:40:4c:99:c9:99: 2c:5b:9a:fa:1d:3e:63:86:51:73:82:79:c5:9e:9b:51:a9:24: bf:29:6b:e6:27:ac:f0:10:36:f4:9f:23:82:76:43:8f:57:fd: 60:fa:a2:0b:1c:66:af:00:78:b6:4c:e9:86:27:71:53:eb:8c: 8c:c8:3e:52:6f:2b:8e:1e:77:4f:04:b8:f3:24:53:32:5f:8a: 5f:0a:70:7a:7d:a2:eb:31:e4:c1:eb:b5:f2:f5:2e:a7:43:ed: 43:ef:06:f2:b4:11:1a:39:2e:91:02:05:d4:c1:4e:a2:7b:ad: 48:24:3b:20:b2:63:ae:96:c8:75:f3:f9:8e:2b:dc:ba:a7:40: 1c:68:bd:63:f2:55:88:ba:f1:d6:04:f8:3e:92:dc:5f:3a:c1: d9:93:8b:58:22:da:ca:16:ca:9d:cb:d3:6a:0f:b7:89:36:dc: 3e:34:ec:f1 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKEI1NENDNEVGODY4OEJBRDYwQTkzNUI1MkQ0MTE1NjM3 ODk0RTIzMzcwHhcNMjYwMTA1MDMyMjQ4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTc1MC1iOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69oYhIbdn6phyDs25B+T9MuCG0VXG4fMr5Xshjiimmhcxxu6SqlD3NQpVwo5 J/a74eSHPXJ3a7LEMXzc8e7uc8w3PXMSJatRTVrQ8RWK8n1bq1sT6L1CX6Neh9FP U3GOOwWqpxLgfi52LQ2IF0Ua68Ap/avw4+sZLinnoOo5dn6lRi+ULR20/V2ItagB c/YXbIu5FEnV+U8xlIqydebMFXVAMfTNqkL/NZEHwQleLKKOr6/oOERBifE9Lp02 o8TtRP3DYhmRSY113PX+0pbCKTR5PFlS9U8eBOCTsxI/vktgOjR6EuIMGqEkKAyD 5AHMvPwZM5SlkZBLY3h8fXzNvQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFL9bVUJc +tRqdltD3z3jjsrOSEYxMB8GA1UdIwQYMBaAFLVMxO+GiLrWCpNbUtQRVjeJTiM3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84QzZEQUM3OEFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi90VXpFNzRhSXV0WUtrMXRTMUJGV040bE9J emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVekU3NGFJdXRZS2sxdFMxQkZXTjRsT0l6Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FGNkEvOEM2REFDNzhBRTQyMTFFRUJGNjREQTY5QzRGOUFFMDIvNjYyODdGOThB RTQ3MTFFRThDMTMwNDE5QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN81VAMA0GCSqGSIb3DQEBCwUAA4IBAQARBccdRvBGGx7pJgh9 L4WvLSlxd6KiMm6WFzL4FNL3tVv4837P6WbTjpwAf7VSQggThiy6TTsvXsMX2yVn fR6b0gJP5MD1Pxepcyui04SsLFRbvkoQQEyZyZksW5r6HT5jhlFzgnnFnptRqSS/ KWvmJ6zwEDb0nyOCdkOPV/1g+qILHGavAHi2TOmGJ3FT64yMyD5SbyuOHndPBLjz JFMyX4pfCnB6faLrMeTB67Xy9S6nQ+1D7wbytBEaOS6RAgXUwU6ie61IJDsgsmOu lsh18/mOK9y6p0AcaL1j8lWIuvHWBPg+ktxfOsHZk4tYItrKFsqdy9NqD7eJNtw+ NOzx -----END CERTIFICATE-----Generated at Mon Mar 2 15:50:29 2026 by rpki-client