$ rpki-client -vvf rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/DF8D07E8FB7E11EFA25DF775C4F9AE02.roa File: DF8D07E8FB7E11EFA25DF775C4F9AE02.roa (raw, json) Hash identifier: 1/1W8qYx2zRT+SB1jArsVcARbCr/b03bu7LoiR2N3yc= Subject key identifier: 65:AA:9D:95:D7:7A:3B:F1:AB:89:42:B0:22:10:5D:73:EC:E0:5D:B8 Certificate issuer: /CN=A9166C39/serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Certificate serial: 0964 Authority key identifier: 07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/DF8D07E8FB7E11EFA25DF775C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:23:17 +0000 ROA not before: Wed 10 Sep 2025 21:01:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 400105 IP address blocks: 2001:df4:d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2404 (0x964) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166C39, serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Validity Not Before: Sep 10 21:01:50 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47605-0bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2c:98:1b:b6:75:c5:00:33:9c:65:e4:8f:fb: 61:0d:bd:41:62:f5:7c:0d:a9:47:04:3f:b6:4d:7b: cf:00:1c:8b:ad:c0:9a:89:b6:6c:be:26:00:a0:a7: 44:91:23:16:47:57:9b:67:cb:c5:13:ad:d1:c3:30: 72:24:58:ff:07:9f:e5:f2:70:68:f7:7c:6f:a7:4d: 67:dd:ff:b4:06:13:b3:d4:ce:73:4f:01:94:f4:21: 64:81:96:be:5d:24:6e:9f:68:a3:b3:8b:f8:8f:36: 50:04:85:a8:c8:b0:cc:80:a8:bb:ad:ee:b8:35:69: 9d:7f:ac:88:13:c0:7b:d6:da:c3:3e:48:dd:02:3d: 5a:e1:8f:06:13:97:15:df:97:1b:49:a4:00:26:bd: b5:73:1a:bc:e6:c4:81:82:a5:19:ab:e7:33:fc:9a: 78:b2:9a:4e:81:bd:93:03:9f:fd:5c:e7:e7:bc:4d: a9:44:72:bb:04:bd:41:9f:ab:77:c6:56:e9:9d:57: e8:b5:ae:f8:39:75:40:d7:ea:eb:f8:99:56:1f:74: db:ce:8c:c1:25:be:21:25:53:f7:23:48:7c:2e:10: 50:66:cb:4e:4d:5b:48:0b:81:f2:eb:76:6f:2d:07: 0d:29:88:1e:f8:db:97:6b:fe:ff:ef:2a:b0:4a:5e: 79:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:AA:9D:95:D7:7A:3B:F1:AB:89:42:B0:22:10:5D:73:EC:E0:5D:B8 X509v3 Authority Key Identifier: keyid:07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/DF8D07E8FB7E11EFA25DF775C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:d80::/48 Signature Algorithm: sha256WithRSAEncryption 37:57:5e:d5:49:83:fe:6d:35:39:c6:db:8b:b0:c7:39:3c:15: 48:71:f5:d5:92:d3:3b:fe:55:ac:e2:9b:b4:93:97:1c:e0:75: ad:df:06:2f:e6:c0:66:1c:62:66:5a:7b:4d:2c:19:e0:fb:7b: 7a:0a:05:ca:57:42:4d:1f:d5:ed:e7:7e:ea:19:a5:d6:2c:c4: 89:0f:59:7a:e5:c8:5b:52:f1:9a:5b:a9:d3:34:b3:64:75:28: 37:8b:f0:66:d6:9d:96:45:c6:14:88:a3:02:9a:d4:88:1f:03: 1b:2c:42:a4:df:3a:b7:28:dc:e9:f3:bd:cf:2e:87:38:f1:09: 55:1c:6b:43:45:5c:93:9f:e7:36:e1:77:2b:20:29:e0:8e:1c: 83:18:0d:bd:bf:e7:8f:9b:ea:ab:e7:56:b7:a5:2f:1d:a2:f6: af:db:89:43:31:86:39:a6:94:be:5d:d6:58:68:ba:f5:34:1b: da:d6:8b:20:f8:94:ce:b2:6c:bc:b2:9a:6c:5a:04:be:dd:82: 0a:df:d4:46:95:2f:b4:35:47:1f:82:c7:a5:e5:ff:85:88:10: 52:3d:4e:28:2a:81:ae:02:78:57:eb:07:f0:4d:fb:ce:98:26: 20:c2:4b:11:2b:43:a0:02:98:a1:ac:75:e4:8e:90:95:ce:0a: 33:f6:36:39 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICCWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZDMzkxMTAvBgNVBAUTKDA3RTA1MUI0MUVEODJFM0Y1M0JGNTlBQTg0REQ5QUNB MjBDRkI1NEMwHhcNMjUwOTEwMjEwMTUwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzYwNS0wYmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yyYG7Z1xQAznGXkj/thDb1BYvV8DalHBD+2TXvPAByLrcCaibZsviYAoKdE kSMWR1ebZ8vFE63RwzByJFj/B5/l8nBo93xvp01n3f+0BhOz1M5zTwGU9CFkgZa+ XSRun2ijs4v4jzZQBIWoyLDMgKi7re64NWmdf6yIE8B71trDPkjdAj1a4Y8GE5cV 35cbSaQAJr21cxq85sSBgqUZq+cz/Jp4sppOgb2TA5/9XOfnvE2pRHK7BL1Bn6t3 xlbpnVfota74OXVA1+rr+JlWH3TbzozBJb4hJVP3I0h8LhBQZstOTVtIC4Hy63Zv LQcNKYge+NuXa/7/7yqwSl55VwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFGWqnZXX ejvxq4lCsCIQXXPs4F24MB8GA1UdIwQYMBaAFAfgUbQe2C4/U79ZqoTdmsogz7VM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkMzOS8yN0VFQ0ZEMEJC OTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxqOVR2MW1xaE4yYXlpRFB0 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItQlJ0QjdZTGo5VHYxbXFoTjJheWlEUHRVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZDMzkvMjdFRUNGRDBCQjk3MTFFQUExQTY2QzUzQzRGOUFFMDIvREY4RDA3RThG QjdFMTFFRkEyNURGNzc1QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9A2AMA0GCSqGSIb3DQEBCwUAA4IBAQA3V17VSYP+bTU5xtuL sMc5PBVIcfXVktM7/lWs4pu0k5cc4HWt3wYv5sBmHGJmWntNLBng+3t6CgXKV0JN H9Xt537qGaXWLMSJD1l65chbUvGaW6nTNLNkdSg3i/Bm1p2WRcYUiKMCmtSIHwMb LEKk3zq3KNzp873PLoc48QlVHGtDRVyTn+c24XcrICngjhyDGA29v+ePm+qr51a3 pS8dovav24lDMYY5ppS+XdZYaLr1NBva1osg+JTOsmy8sppsWgS+3YIK39RGlS+0 NUcfgsel5f+FiBBSPU4oKoGuAnhX6wfwTfvOmCYgwksRK0OgApihrHXkjpCVzgoz 9jY5 -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:32 2026 by rpki-client