$ rpki-client -vvf rpki.apnic.net/member_repository/A915E131/65C38C98BC1211F0B696607BC4F9AE02/7D4302A0BEC811F0AE45220FC4F9AE02.roa File: 7D4302A0BEC811F0AE45220FC4F9AE02.roa (raw, json) Hash identifier: DdCOIo33v4IDMQPtkKtDFsOxid92dMxNzutXTG46zeE= Subject key identifier: 82:85:26:9B:A1:01:93:53:96:A3:5F:3F:7C:77:13:AE:99:C6:82:6C Certificate issuer: /CN=A915E131/serialNumber=DA72D0CEDAAE19A1EC3EDBA0467D598EB9915656 Certificate serial: 3F Authority key identifier: DA:72:D0:CE:DA:AE:19:A1:EC:3E:DB:A0:46:7D:59:8E:B9:91:56:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nLQztquGaHsPtugRn1ZjrmRVlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E131/65C38C98BC1211F0B696607BC4F9AE02/7D4302A0BEC811F0AE45220FC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:07:20 +0000 ROA not before: Tue 11 Nov 2025 06:34:35 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154355 IP address blocks: 2001:df6:3ac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E131/65C38C98BC1211F0B696607BC4F9AE02/2nLQztquGaHsPtugRn1ZjrmRVlY.crl rsync://rpki.apnic.net/member_repository/A915E131/65C38C98BC1211F0B696607BC4F9AE02/2nLQztquGaHsPtugRn1ZjrmRVlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nLQztquGaHsPtugRn1ZjrmRVlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E131, serialNumber=DA72D0CEDAAE19A1EC3EDBA0467D598EB9915656 Validity Not Before: Nov 11 06:34:35 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d798-ce72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:41:48:99:eb:3d:81:44:74:00:11:4b:5a: 0b:c3:ae:c9:b2:8c:f8:bf:31:f6:b5:b6:5d:d1:d0: a2:ef:b7:0c:19:d9:d3:cf:94:63:5f:c0:30:5f:11: 69:bd:1d:47:11:f4:c6:4a:90:9d:46:ca:09:01:63: 03:e8:3d:17:6b:a5:20:78:0a:86:0c:31:59:14:54: 9b:9f:21:73:88:ec:87:0b:e5:95:a9:7c:23:63:f5: cb:8d:97:91:bf:a4:59:54:b7:af:75:d7:ad:94:f3: 16:43:89:cb:59:08:e5:27:e4:6b:08:80:ce:b3:26: 41:1a:c8:fc:3e:ed:0d:58:e0:e2:49:5d:3b:68:22: 01:21:ce:f3:e4:b0:24:5b:a7:8c:b2:8a:a1:a6:f7: 56:1d:b7:c0:18:fb:47:5a:4e:36:a6:db:87:91:62: fa:8e:b4:65:da:f2:db:ce:0a:f7:ce:8b:3d:d5:c1: b9:b3:5d:65:42:ac:95:23:7c:b9:8a:47:d2:41:07: f9:df:03:f8:b6:06:55:5f:ab:55:a0:f0:3a:31:52: 12:af:5e:70:85:d3:00:50:41:3b:45:ee:80:dd:71: ba:06:aa:95:c0:2c:97:a1:b1:1a:a3:95:8f:73:51: 46:d3:97:6f:fc:b3:fd:a9:bb:ec:0b:4d:e5:5e:88: c7:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:85:26:9B:A1:01:93:53:96:A3:5F:3F:7C:77:13:AE:99:C6:82:6C X509v3 Authority Key Identifier: keyid:DA:72:D0:CE:DA:AE:19:A1:EC:3E:DB:A0:46:7D:59:8E:B9:91:56:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E131/65C38C98BC1211F0B696607BC4F9AE02/2nLQztquGaHsPtugRn1ZjrmRVlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nLQztquGaHsPtugRn1ZjrmRVlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E131/65C38C98BC1211F0B696607BC4F9AE02/7D4302A0BEC811F0AE45220FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:3ac0::/48 Signature Algorithm: sha256WithRSAEncryption 05:2a:8f:d6:c5:b5:87:1c:99:76:88:0d:c4:a7:c3:b6:30:75: 8c:af:a3:85:02:f0:c7:ea:df:7f:e1:d5:67:fc:3a:b1:4d:8c: b3:8d:44:39:f1:89:84:fa:2f:66:61:81:24:8a:20:9e:3c:0f: a8:67:24:b2:76:de:89:32:e6:36:55:14:e8:f2:2f:89:8c:63: 68:db:d6:ba:4b:6c:97:f1:9c:18:4d:2f:74:fb:91:b8:79:e6: 97:3b:1d:66:9e:15:f8:c5:3c:86:81:cf:a2:4b:8f:5a:0d:ac: 8e:46:ce:b2:d7:80:8a:f8:24:ed:c2:c2:5e:6e:c5:da:cd:83: ca:8a:93:14:b8:f5:dc:9e:03:5d:57:4c:68:5a:3f:8d:7b:c5: c7:38:1d:01:99:ac:e6:f0:17:40:ca:f0:f0:5d:a2:fe:67:27: e4:ef:3a:d4:8b:66:59:9f:f7:83:81:fb:4b:7f:cf:8e:74:f5: 0a:79:64:8f:a4:9e:b5:f9:06:aa:16:58:d4:92:a7:8f:f6:ca: 89:b1:0e:40:db:4f:e2:4c:43:35:c3:1a:e9:cd:63:cf:49:9a: f7:ff:67:28:78:77:52:1e:8d:8c:e0:b7:57:60:1d:04:f3:ee: e5:8e:8f:11:cc:cb:b9:8b:a4:b7:b7:69:0c:f9:e8:fc:58:8b: 92:29:c7:b1 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RTEzMTExMC8GA1UEBRMoREE3MkQwQ0VEQUFFMTlBMUVDM0VEQkEwNDY3RDU5OEVC OTkxNTY1NjAeFw0yNTExMTEwNjM0MzVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNzk4LWNlNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy8kFImes9gUR0ABFLWgvDrsmyjPi/Mfa1tl3R0KLvtwwZ2dPPlGNfwDBfEWm9 HUcR9MZKkJ1GygkBYwPoPRdrpSB4CoYMMVkUVJufIXOI7IcL5ZWpfCNj9cuNl5G/ pFlUt691162U8xZDictZCOUn5GsIgM6zJkEayPw+7Q1Y4OJJXTtoIgEhzvPksCRb p4yyiqGm91Ydt8AY+0daTjam24eRYvqOtGXa8tvOCvfOiz3VwbmzXWVCrJUjfLmK R9JBB/nfA/i2BlVfq1Wg8DoxUhKvXnCF0wBQQTtF7oDdcboGqpXALJehsRqjlY9z UUbTl2/8s/2pu+wLTeVeiMeBAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUgoUmm6EB k1OWo18/fHcTrpnGgmwwHwYDVR0jBBgwFoAU2nLQztquGaHsPtugRn1ZjrmRVlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFMTMxLzY1QzM4Qzk4QkMx MjExRjBCNjk2NjA3QkM0RjlBRTAyLzJuTFF6dHF1R2FIc1B0dWdSbjFaanJtUlZs WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMm5MUXp0cXVHYUhzUHR1Z1JuMVpqcm1SVmxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTEzMS82NUMzOEM5OEJDMTIxMUYwQjY5NjYwN0JDNEY5QUUwMi83RDQzMDJBMEJF QzgxMUYwQUU0NTIyMEZDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32OsAwDQYJKoZIhvcNAQELBQADggEBAAUqj9bFtYccmXaIDcSn w7YwdYyvo4UC8Mfq33/h1Wf8OrFNjLONRDnxiYT6L2ZhgSSKIJ48D6hnJLJ23oky 5jZVFOjyL4mMY2jb1rpLbJfxnBhNL3T7kbh55pc7HWaeFfjFPIaBz6JLj1oNrI5G zrLXgIr4JO3Cwl5uxdrNg8qKkxS49dyeA11XTGhaP417xcc4HQGZrObwF0DK8PBd ov5nJ+TvOtSLZlmf94OB+0t/z4509Qp5ZI+knrX5BqoWWNSSp4/2yomxDkDbT+JM QzXDGunNY89Jmvf/Zyh4d1IejYzgt1dgHQTz7uWOjxHMy7mLpLe3aQz56PxYi5Ip x7E= -----END CERTIFICATE-----Generated at Mon Mar 2 11:00:37 2026 by rpki-client