$ rpki-client -vvf rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3DD736B0BF9511EEAD184E59C4F9AE02.roa File: 3DD736B0BF9511EEAD184E59C4F9AE02.roa (raw, json) Hash identifier: BHVBfCzOYUd+2ny+1K9CPCKgSk9FwJiZKsxlnYFIyaM= Subject key identifier: 3E:05:D1:EC:23:EE:52:62:0D:3F:C1:B9:64:80:68:FC:51:F9:7C:DB Certificate issuer: /CN=A91501CE/serialNumber=C6BF897098AF4486A54E28BA3EFF535D45289411 Certificate serial: 23B7 Authority key identifier: C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3DD736B0BF9511EEAD184E59C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:23:50 +0000 ROA not before: Thu 04 Dec 2025 15:43:56 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 7489 IP address blocks: 2403:5680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9143 (0x23b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501CE, serialNumber=C6BF897098AF4486A54E28BA3EFF535D45289411 Validity Not Before: Dec 4 15:43:56 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46816-8281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bb:77:94:d6:c1:0e:e4:97:c4:33:57:cf:19: bd:53:53:73:da:11:da:b0:8a:46:44:20:1b:7c:00: 5b:be:e1:29:aa:91:68:94:5d:7c:69:fa:a2:19:f7: d8:f9:5a:95:88:21:6d:76:21:b3:a1:f8:f3:32:03: 1d:f8:8a:81:fc:73:b2:c1:35:f8:16:ac:a4:8d:42: fe:d6:a3:cc:bd:d2:43:83:21:a7:7c:c0:dd:8a:59: 9b:ff:b5:32:16:0b:42:d4:58:1e:e2:5f:6c:7c:b0: 4b:a9:d0:8f:dc:94:20:3a:9c:4f:e9:a5:20:f2:9d: 71:06:13:1a:77:d9:2d:0a:d6:9a:bb:f8:6d:fb:9d: 40:e1:9b:51:5c:7b:39:ce:b2:9d:14:df:55:7a:64: f7:33:94:c2:4c:3a:49:b7:08:63:ad:f4:ca:73:6b: e2:3f:93:32:16:58:d0:32:49:5e:fb:35:55:32:19: 62:d1:c4:72:b9:b5:bc:e0:1f:c4:98:40:ca:d9:ce: e7:1f:9b:f6:af:c6:98:c8:01:cb:73:b3:62:5e:40: 84:74:5b:bb:2a:63:a7:25:cc:18:1b:7a:39:2c:c2: ae:6c:7f:3b:8c:98:e0:81:01:52:17:1e:24:fd:bb: 64:52:14:5b:cc:0d:98:b0:e7:9e:e5:32:71:7f:31: 23:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:05:D1:EC:23:EE:52:62:0D:3F:C1:B9:64:80:68:FC:51:F9:7C:DB X509v3 Authority Key Identifier: keyid:C6:BF:89:70:98:AF:44:86:A5:4E:28:BA:3E:FF:53:5D:45:28:94:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/xr-JcJivRIalTii6Pv9TXUUolBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xr-JcJivRIalTii6Pv9TXUUolBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501CE/93BA853A97F011E5B920106AC4F9AE02/3DD736B0BF9511EEAD184E59C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2403:5680::/48 Signature Algorithm: sha256WithRSAEncryption 1c:7f:42:40:e2:23:f3:88:18:60:78:21:f1:2d:24:29:64:7f: 95:29:34:c0:ed:95:8b:74:4d:60:1f:e1:87:30:38:a5:c9:0c: be:04:c0:f2:9f:7f:dd:bd:07:36:d8:20:c2:db:e2:24:e3:96: 02:9f:db:04:a3:d0:6c:14:58:0e:42:d3:96:2d:d9:77:2f:ab: 10:aa:ba:eb:c7:54:6d:9f:2f:6e:53:bb:23:32:44:6c:96:cc: df:97:31:77:0e:78:37:09:3e:ad:fb:70:1b:ed:92:3e:30:b6: cb:7a:ce:c8:37:4f:42:3e:07:3c:a6:e4:a0:49:35:52:98:e2: e8:ab:43:f1:31:01:f5:d7:8e:69:1a:5b:91:4c:46:50:be:80: 8b:6a:5d:6c:c6:96:78:b8:1d:60:e1:d6:64:e5:26:46:63:74: b8:09:0f:cd:50:69:6c:c9:5a:17:12:c6:2f:df:17:8a:35:4c: 68:96:9c:b4:15:9f:1b:da:b2:00:d0:bc:75:ef:09:27:5c:f6: 1c:58:e5:42:fe:13:d4:41:e8:ff:74:61:90:cf:a5:de:f9:4b: a3:50:23:f3:ca:a9:18:a1:3d:e0:49:22:26:a8:31:23:cb:2b: 9c:8e:00:e3:dc:10:f1:47:18:11:7a:42:1a:dc:51:7c:c7:d9: ed:b3:e8:35 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICI7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxQ0UxMTAvBgNVBAUTKEM2QkY4OTcwOThBRjQ0ODZBNTRFMjhCQTNFRkY1MzVE NDUyODk0MTEwHhcNMjUxMjA0MTU0MzU2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjgxNi04MjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rt3lNbBDuSXxDNXzxm9U1Nz2hHasIpGRCAbfABbvuEpqpFolF18afqiGffY +VqViCFtdiGzofjzMgMd+IqB/HOywTX4FqykjUL+1qPMvdJDgyGnfMDdilmb/7Uy FgtC1Fge4l9sfLBLqdCP3JQgOpxP6aUg8p1xBhMad9ktCtaau/ht+51A4ZtRXHs5 zrKdFN9VemT3M5TCTDpJtwhjrfTKc2viP5MyFljQMkle+zVVMhli0cRyubW84B/E mEDK2c7nH5v2r8aYyAHLc7NiXkCEdFu7KmOnJcwYG3o5LMKubH87jJjggQFSFx4k /btkUhRbzA2YsOee5TJxfzEjzQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFD4F0ewj 7lJiDT/BuWSAaPxR+XzbMB8GA1UdIwQYMBaAFMa/iXCYr0SGpU4ouj7/U11FKJQR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFDRS85M0JBODUzQTk3 RjAxMUU1QjkyMDEwNkFDNEY5QUUwMi94ci1KY0ppdlJJYWxUaWk2UHY5VFhVVW9s QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hyLUpjSml2UklhbFRpaTZQdjlUWFVVb2xCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAxQ0UvOTNCQTg1M0E5N0YwMTFFNUI5MjAxMDZBQzRGOUFFMDIvM0RENzM2QjBC Rjk1MTFFRUFEMTg0RTU5QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAJANWgAAAMA0GCSqGSIb3DQEBCwUAA4IBAQAcf0JA4iPziBhgeCHx LSQpZH+VKTTA7ZWLdE1gH+GHMDilyQy+BMDyn3/dvQc22CDC2+Ik45YCn9sEo9Bs FFgOQtOWLdl3L6sQqrrrx1Rtny9uU7sjMkRslszflzF3Dng3CT6t+3Ab7ZI+MLbL es7IN09CPgc8puSgSTVSmOLoq0PxMQH1145pGluRTEZQvoCLal1sxpZ4uB1g4dZk 5SZGY3S4CQ/NUGlsyVoXEsYv3xeKNUxolpy0FZ8b2rIA0Lx17wknXPYcWOVC/hPU Qej/dGGQz6Xe+UujUCPzyqkYoT3gSSImqDEjyyucjgDj3BDxRxgRekIa3FF8x9nt s+g1 -----END CERTIFICATE-----Generated at Mon Mar 2 09:07:07 2026 by rpki-client