$ rpki-client -vvf rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa File: D4D84D08DA9211ED99CD1D28C4F9AE02.roa (raw, json) Hash identifier: 5bqa2F16x3K2ufD94UWeJcKjSY7OuoSHPB7AZTdIMpk= Subject key identifier: 6A:6A:6A:4F:C1:A3:CB:06:90:4F:8B:A6:44:5C:87:B1:B2:3D:1C:FA Certificate issuer: /CN=A914E5F6/serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Certificate serial: 0230 Authority key identifier: AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:15:58 +0000 ROA not before: Fri 25 Apr 2025 02:59:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151182 IP address blocks: 2001:df2:42c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E5F6, serialNumber=AFF85F7EF3DA5887438DD2061F2E9EE0B2DD0A7F Validity Not Before: Apr 25 02:59:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3f5be-324a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:53:14:57:0d:dd:f6:8a:42:d1:70:1a:ee:89: 0f:79:e0:63:50:04:ae:e2:9d:fb:33:9f:bc:69:c7: 44:5a:3d:35:d0:91:55:d7:67:4d:9b:55:a0:73:f9: 52:17:1e:b3:c0:4f:96:10:d2:7f:d9:21:05:52:a8: 49:8d:81:57:57:75:c3:89:04:61:3a:73:46:3d:f3: 2c:d9:d6:8d:1b:ed:51:9f:1b:c8:58:f8:b7:61:fa: 46:32:a6:34:d7:d6:a7:c0:5f:b3:a1:56:9a:6d:30: da:c7:a0:24:c6:f9:8e:3d:d8:c4:f5:f3:73:b4:dd: 98:14:7d:48:c8:18:4c:78:5d:f7:fc:7e:2f:7b:b4: 79:a2:53:dd:c2:83:f4:53:6b:28:b4:1d:29:a6:1a: 8f:24:1e:30:6e:73:98:66:60:16:e1:35:6b:29:a0: 12:b4:36:5f:c3:0f:14:82:76:3b:bb:9f:65:30:ac: 2f:f4:fd:8b:1b:9a:aa:c4:3b:18:39:ad:11:10:96: f6:03:ff:c4:d7:f4:2b:04:35:90:5c:ce:2a:85:b5: be:ca:fc:c3:f0:e7:9e:5c:ca:18:1f:b0:1c:e0:bb: 3d:f7:4b:0d:7d:38:33:a3:c7:9c:1c:49:2a:8f:ca: 43:fb:71:c2:eb:b0:bc:76:e4:46:8a:d9:ba:cd:6c: e8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:6A:6A:4F:C1:A3:CB:06:90:4F:8B:A6:44:5C:87:B1:B2:3D:1C:FA X509v3 Authority Key Identifier: keyid:AF:F8:5F:7E:F3:DA:58:87:43:8D:D2:06:1F:2E:9E:E0:B2:DD:0A:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/r_hffvPaWIdDjdIGHy6e4LLdCn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_hffvPaWIdDjdIGHy6e4LLdCn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E5F6/BCA66B7EDA8E11ED835C3925C4F9AE02/D4D84D08DA9211ED99CD1D28C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df2:42c0::/48 Signature Algorithm: sha256WithRSAEncryption a2:2c:07:51:57:0f:6e:f9:ea:de:be:db:c2:a8:09:c4:1e:f0: 23:cc:0b:86:2e:05:32:17:55:3d:f5:27:e8:fc:c0:eb:70:12: 49:bb:6b:83:03:c7:0c:90:35:21:f7:f2:31:d7:c4:ae:d5:7f: a3:35:0b:d9:2e:95:36:8f:6d:9e:6e:32:64:27:0f:c6:7d:37: 91:a7:cc:3d:69:7e:3c:5b:01:b8:65:b7:53:6f:c7:d8:9f:97: 80:a2:55:20:f6:d3:27:ab:0c:a9:a0:27:8a:ff:53:85:3d:f8: e8:f5:f1:40:49:5e:e5:cc:1a:14:13:d8:95:09:75:bf:f6:f7: 72:eb:ed:b9:ee:55:b4:0e:18:ea:5c:99:13:f4:db:b7:62:1a: 7a:a8:be:2c:f5:d5:82:bf:b3:d6:56:80:3c:a0:ab:8b:de:fa: d0:20:69:c5:42:9d:ed:da:aa:55:d4:57:cc:58:5e:ba:5b:6e: 6d:5e:29:5a:a6:95:24:7c:45:d5:e8:82:49:85:bc:14:50:ae: e1:88:05:83:b7:ae:9d:a4:aa:f1:fb:8c:3e:8e:3b:71:df:d8: fc:c6:00:48:94:62:39:45:a1:8a:76:b8:ed:92:14:c7:a9:f1: fb:75:09:39:2f:a7:10:6a:ac:3c:5a:cc:03:e3:4b:67:1d:6e: 2d:5b:bc:fc -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1RjYxMTAvBgNVBAUTKEFGRjg1RjdFRjNEQTU4ODc0MzhERDIwNjFGMkU5RUUw QjJERDBBN0YwHhcNMjUwNDI1MDI1OTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjViZS0zMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFMUVw3d9opC0XAa7okPeeBjUASu4p37M5+8acdEWj010JFV12dNm1Wgc/lS Fx6zwE+WENJ/2SEFUqhJjYFXV3XDiQRhOnNGPfMs2daNG+1RnxvIWPi3YfpGMqY0 19anwF+zoVaabTDax6AkxvmOPdjE9fNztN2YFH1IyBhMeF33/H4ve7R5olPdwoP0 U2sotB0pphqPJB4wbnOYZmAW4TVrKaAStDZfww8UgnY7u59lMKwv9P2LG5qqxDsY Oa0REJb2A//E1/QrBDWQXM4qhbW+yvzD8OeeXMoYH7Ac4Ls990sNfTgzo8ecHEkq j8pD+3HC67C8duRGitm6zWzoXQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFGpqak/B o8sGkE+LpkRch7GyPRz6MB8GA1UdIwQYMBaAFK/4X37z2liHQ43SBh8unuCy3Qp/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTVGNi9CQ0E2NkI3RURB OEUxMUVEODM1QzM5MjVDNEY5QUUwMi9yX2hmZnZQYVdJZERqZElHSHk2ZTRMTGRD bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JfaGZmdlBhV0lkRGpkSUdIeTZlNExMZENuOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU1RjYvQkNBNjZCN0VEQThFMTFFRDgzNUMzOTI1QzRGOUFFMDIvRDREODREMDhE QTkyMTFFRDk5Q0QxRDI4QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8kLAMA0GCSqGSIb3DQEBCwUAA4IBAQCiLAdRVw9u+erevtvC qAnEHvAjzAuGLgUyF1U99Sfo/MDrcBJJu2uDA8cMkDUh9/Ix18Su1X+jNQvZLpU2 j22ebjJkJw/GfTeRp8w9aX48WwG4ZbdTb8fYn5eAolUg9tMnqwypoCeK/1OFPfjo 9fFASV7lzBoUE9iVCXW/9vdy6+257lW0DhjqXJkT9Nu3Yhp6qL4s9dWCv7PWVoA8 oKuL3vrQIGnFQp3t2qpV1FfMWF66W25tXilappUkfEXV6IJJhbwUUK7hiAWDt66d pKrx+4w+jjtx39j8xgBIlGI5RaGKdrjtkhTHqfH7dQk5L6cQaqw8WswD40tnHW4t W7z8 -----END CERTIFICATE-----Generated at Mon Mar 2 04:10:05 2026 by rpki-client