$ rpki-client -vvf rpki.apnic.net/member_repository/A91597A7/0B4C2DA0BA3811F093408F6BC4F9AE02/B674DD44BB3C11F0AD98C485C4F9AE02.roa File: B674DD44BB3C11F0AD98C485C4F9AE02.roa (raw, json) Hash identifier: gQ9o3ShWhFSXckCOxiyfc9G9ysU3P8Ay4D9+aX74JkY= Subject key identifier: C2:4B:4B:D4:99:61:53:55:A5:6E:B8:B6:53:EF:F2:30:55:42:E3:0B Certificate issuer: /CN=A91597A7/serialNumber=971F99D18F830DAD4554906CAD0AD5998BBB52A7 Certificate serial: 3F Authority key identifier: 97:1F:99:D1:8F:83:0D:AD:45:54:90:6C:AD:0A:D5:99:8B:BB:52:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lx-Z0Y-DDa1FVJBsrQrVmYu7Uqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597A7/0B4C2DA0BA3811F093408F6BC4F9AE02/B674DD44BB3C11F0AD98C485C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:07:15 +0000 ROA not before: Thu 06 Nov 2025 18:16:28 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154334 IP address blocks: 2001:df6:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597A7/0B4C2DA0BA3811F093408F6BC4F9AE02/lx-Z0Y-DDa1FVJBsrQrVmYu7Uqc.crl rsync://rpki.apnic.net/member_repository/A91597A7/0B4C2DA0BA3811F093408F6BC4F9AE02/lx-Z0Y-DDa1FVJBsrQrVmYu7Uqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lx-Z0Y-DDa1FVJBsrQrVmYu7Uqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597A7, serialNumber=971F99D18F830DAD4554906CAD0AD5998BBB52A7 Validity Not Before: Nov 6 18:16:28 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d793-6e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f0:f1:5c:b8:3a:9f:49:6a:5b:72:de:05:c9: 3d:d5:8f:29:16:f5:9b:05:2d:e5:d1:df:38:67:c6: 8a:44:c3:43:71:db:89:e3:2e:0a:32:1f:27:d1:6f: 6e:a1:36:51:f8:0f:23:12:ce:16:d8:5a:a9:b1:68: 1b:80:61:d9:e3:da:1b:ac:14:2e:7e:67:16:00:09: ca:38:a0:d5:2a:b2:d1:1b:52:e4:c5:41:80:b8:be: 06:9c:2d:2b:73:57:4b:69:6e:45:fb:ce:20:5f:5b: 55:0a:30:3d:f6:73:f4:c0:d1:78:c6:49:eb:49:19: 56:42:32:a1:e8:fd:50:0d:4b:33:0d:0c:a4:0e:83: ec:5b:3c:66:3a:56:71:f3:aa:97:db:a4:22:11:e4: 35:78:d0:39:b1:27:3e:0d:db:b8:82:a1:40:93:fe: 52:a0:e1:3f:aa:1b:a1:96:2c:5a:c7:94:6c:65:71: c1:45:4f:50:e1:7d:a1:93:99:a0:9b:62:34:02:47: 8f:01:40:cc:4e:f2:8b:78:60:04:bb:73:63:58:45: 70:b2:12:1f:5d:c0:19:a6:f9:4d:b2:63:6c:3a:12: d3:39:2a:e8:7d:00:1d:97:41:33:92:9f:bd:da:4b: 52:bf:12:8f:84:0a:50:24:e6:b4:76:ff:54:8f:74: 7b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:4B:4B:D4:99:61:53:55:A5:6E:B8:B6:53:EF:F2:30:55:42:E3:0B X509v3 Authority Key Identifier: keyid:97:1F:99:D1:8F:83:0D:AD:45:54:90:6C:AD:0A:D5:99:8B:BB:52:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597A7/0B4C2DA0BA3811F093408F6BC4F9AE02/lx-Z0Y-DDa1FVJBsrQrVmYu7Uqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lx-Z0Y-DDa1FVJBsrQrVmYu7Uqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597A7/0B4C2DA0BA3811F093408F6BC4F9AE02/B674DD44BB3C11F0AD98C485C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:4440::/48 Signature Algorithm: sha256WithRSAEncryption 5f:6c:f2:d8:9c:b5:64:1d:3f:43:2a:1b:c2:06:88:4d:46:9f: da:a3:68:a2:6d:f9:e5:c8:64:9d:f7:77:0d:b4:62:95:ee:5f: ef:39:1a:5d:4d:71:0b:08:bb:76:c8:1f:86:db:b8:73:c7:8c: 0c:dc:db:c6:0d:a5:d6:21:54:42:cf:46:6f:d8:b0:1b:28:ca: 27:d8:4d:ed:1b:68:60:6f:0c:03:1d:51:9c:35:c9:64:af:3f: 27:83:cf:1d:d5:76:04:34:42:c2:27:41:fb:bd:5a:4a:a8:5d: 01:28:05:b7:e2:66:9c:08:19:38:70:fa:91:85:f9:b0:35:63: e4:3b:23:33:19:e5:b9:71:89:05:82:29:27:3a:57:fb:8e:c7: 04:6c:a2:f8:9b:73:87:d0:94:fd:f3:e4:90:cb:41:a5:36:99: 05:b2:51:a0:da:0e:a0:c5:3b:df:14:91:82:62:ef:cc:79:e7: fc:cd:46:ce:63:3f:8d:58:b3:0b:c2:ad:cb:c1:df:3d:7c:3a: 90:f2:19:97:a7:74:bb:df:33:97:e9:f6:c5:2e:05:2d:cf:04: 42:a4:9c:cf:04:84:6f:1d:22:09:c1:4c:70:03:57:94:04:ee: 95:6d:7e:26:b3:a1:73:a4:ef:b3:17:16:3e:4f:06:a1:96:17: 7a:f5:28:82 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTdBNzExMC8GA1UEBRMoOTcxRjk5RDE4RjgzMERBRDQ1NTQ5MDZDQUQwQUQ1OTk4 QkJCNTJBNzAeFw0yNTExMDYxODE2MjhaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNzkzLTZlMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCT8PFcuDqfSWpbct4FyT3VjykW9ZsFLeXR3zhnxopEw0Nx24njLgoyHyfRb26h NlH4DyMSzhbYWqmxaBuAYdnj2husFC5+ZxYACco4oNUqstEbUuTFQYC4vgacLStz V0tpbkX7ziBfW1UKMD32c/TA0XjGSetJGVZCMqHo/VANSzMNDKQOg+xbPGY6VnHz qpfbpCIR5DV40DmxJz4N27iCoUCT/lKg4T+qG6GWLFrHlGxlccFFT1DhfaGTmaCb YjQCR48BQMxO8ot4YAS7c2NYRXCyEh9dwBmm+U2yY2w6EtM5Kuh9AB2XQTOSn73a S1K/Eo+EClAk5rR2/1SPdHthAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUwktL1Jlh U1Wlbri2U+/yMFVC4wswHwYDVR0jBBgwFoAUlx+Z0Y+DDa1FVJBsrQrVmYu7Uqcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5N0E3LzBCNEMyREEwQkEz ODExRjA5MzQwOEY2QkM0RjlBRTAyL2x4LVowWS1ERGExRlZKQnNyUXJWbVl1N1Vx Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbHgtWjBZLUREYTFGVkpCc3JRclZtWXU3VXFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdBNy8wQjRDMkRBMEJBMzgxMUYwOTM0MDhGNkJDNEY5QUUwMi9CNjc0REQ0NEJC M0MxMUYwQUQ5OEM0ODVDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32REAwDQYJKoZIhvcNAQELBQADggEBAF9s8tictWQdP0MqG8IG iE1Gn9qjaKJt+eXIZJ33dw20YpXuX+85Gl1NcQsIu3bIH4bbuHPHjAzc28YNpdYh VELPRm/YsBsoyifYTe0baGBvDAMdUZw1yWSvPyeDzx3VdgQ0QsInQfu9WkqoXQEo BbfiZpwIGThw+pGF+bA1Y+Q7IzMZ5blxiQWCKSc6V/uOxwRsovibc4fQlP3z5JDL QaU2mQWyUaDaDqDFO98UkYJi78x55/zNRs5jP41YswvCrcvB3z18OpDyGZendLvf M5fp9sUuBS3PBEKknM8EhG8dIgnBTHADV5QE7pVtfiazoXOk77MXFj5PBqGWF3r1 KII= -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:18 2026 by rpki-client