$ rpki-client -vvf rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/48B17B5CB4CD11F094AF5C23C4F9AE02.roa File: 48B17B5CB4CD11F094AF5C23C4F9AE02.roa (raw, json) Hash identifier: 3dDTLwP/OlJ6lL+bKftpywhzpFsx4/+TC1PCWUv+oec= Subject key identifier: 78:2D:90:38:82:D1:7D:86:FC:B2:71:B7:BF:71:8B:67:CD:2F:B2:A2 Certificate issuer: /CN=A91731AD/serialNumber=B870D2E0E31C8A910EDFBA765BB7CF04C3C10CBE Certificate serial: 89 Authority key identifier: B8:70:D2:E0:E3:1C:8A:91:0E:DF:BA:76:5B:B7:CF:04:C3:C1:0C:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/48B17B5CB4CD11F094AF5C23C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:32:57 +0000 ROA not before: Wed 29 Oct 2025 13:43:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153930 IP address blocks: 2001:df6:31c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.crl rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731AD, serialNumber=B870D2E0E31C8A910EDFBA765BB7CF04C3C10CBE Validity Not Before: Oct 29 13:43:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a44009-3bd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9d:97:f3:dd:0c:a2:09:28:76:6f:a2:68:79: e3:f8:1e:d3:3d:0b:c0:52:56:ff:1f:66:d2:00:92: f2:be:11:3b:7e:a4:5a:63:5e:e4:11:0e:9e:09:1f: 39:21:1c:3d:f6:fc:f9:7b:98:fb:27:20:ad:e9:29: 3f:79:9a:f2:39:84:73:e2:e0:1e:33:ae:bf:de:e4: 23:ab:68:52:78:5c:a2:18:ef:71:42:b5:69:a0:1a: 1b:b5:f5:d6:8d:cb:48:3d:0a:ad:77:78:99:ca:9c: 17:0c:40:37:05:88:e3:86:bb:61:c0:c6:28:ab:76: da:df:63:f1:4f:2d:92:be:3e:44:04:20:50:3a:64: db:b1:bd:5b:30:56:f5:39:07:95:8d:6a:f3:3a:38: 7a:b2:49:f9:e9:5d:88:56:61:b0:59:80:9a:91:d0: ac:11:5b:92:97:76:0c:bd:dd:ae:0d:03:1d:09:db: 14:48:10:93:8f:f5:9a:e3:c2:5c:3f:c1:a6:19:e8: 36:52:e1:a8:5c:98:e2:14:8d:a9:2a:67:d3:33:0b: ba:d2:78:06:cc:26:c3:3b:2d:6b:5a:10:f2:f9:2f: 02:1f:c4:43:d4:f6:e0:b1:05:d7:da:a1:1d:13:9e: 5c:15:c7:16:41:18:57:da:31:ab:d4:a6:fc:2a:82: c3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:2D:90:38:82:D1:7D:86:FC:B2:71:B7:BF:71:8B:67:CD:2F:B2:A2 X509v3 Authority Key Identifier: keyid:B8:70:D2:E0:E3:1C:8A:91:0E:DF:BA:76:5B:B7:CF:04:C3:C1:0C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/48B17B5CB4CD11F094AF5C23C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:31c0::/48 Signature Algorithm: sha256WithRSAEncryption 77:27:c3:b5:5d:37:13:52:54:f1:fc:85:36:2e:bc:a6:99:c8: 45:31:95:cb:68:5e:90:8f:9e:34:2b:7f:a6:67:30:04:33:9b: 5a:a4:cd:92:21:eb:e1:cc:3a:37:06:7b:bb:ca:f9:32:52:38: 33:85:ba:4f:10:b0:12:df:d4:cc:c3:ca:c5:b0:1b:b1:ef:ad: 83:ce:fb:4b:06:37:ab:7c:70:75:8c:a2:9d:e2:15:3c:0f:68: cb:99:98:cb:2f:b1:18:f4:88:13:b1:5c:ec:3a:d8:7f:2e:0a: 9b:d2:91:91:d7:b0:b8:a2:e9:bf:a6:fb:99:79:e2:44:52:e0: fe:fa:a8:ba:7d:33:0b:33:6c:b9:e1:fe:71:d3:9a:ce:8c:34: e3:da:98:6a:da:11:45:f1:55:29:ab:5f:6d:65:ff:1b:8a:81: 88:4d:2d:0d:74:a8:cc:81:d5:b1:df:b8:d1:05:20:23:59:1e: 64:f9:a4:ec:a1:5c:81:ec:3e:96:94:a3:80:e3:2c:69:cd:72: 96:25:b3:e8:03:2c:e9:95:53:00:06:b6:6d:5f:84:ff:f6:ef: b7:1b:ab:4b:e7:1c:33:bd:3c:92:15:8e:70:56:b4:34:62:05: 49:c8:4a:8a:5a:71:36:00:10:02:5b:5b:4c:bf:c3:bd:ec:dd: 32:a8:e5:32 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxQUQxMTAvBgNVBAUTKEI4NzBEMkUwRTMxQzhBOTEwRURGQkE3NjVCQjdDRjA0 QzNDMTBDQkUwHhcNMjUxMDI5MTM0MzQzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDAwOS0zYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA452X890Mogkodm+iaHnj+B7TPQvAUlb/H2bSAJLyvhE7fqRaY17kEQ6eCR85 IRw99vz5e5j7JyCt6Sk/eZryOYRz4uAeM66/3uQjq2hSeFyiGO9xQrVpoBobtfXW jctIPQqtd3iZypwXDEA3BYjjhrthwMYoq3ba32PxTy2Svj5EBCBQOmTbsb1bMFb1 OQeVjWrzOjh6skn56V2IVmGwWYCakdCsEVuSl3YMvd2uDQMdCdsUSBCTj/Wa48Jc P8GmGeg2UuGoXJjiFI2pKmfTMwu60ngGzCbDOy1rWhDy+S8CH8RD1PbgsQXX2qEd E55cFccWQRhX2jGr1Kb8KoLDWQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFHgtkDiC 0X2G/LJxt79xi2fNL7KiMB8GA1UdIwQYMBaAFLhw0uDjHIqRDt+6dlu3zwTDwQy+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFBRC9DNEUyNjk1NjUw OUMxMUYwODZEOTJEMzhDNEY5QUUwMi91SERTNE9NY2lwRU8zN3AyVzdmUEJNUEJE TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VIRFM0T01jaXBFTzM3cDJXN2ZQQk1QQkRMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxQUQvQzRFMjY5NTY1MDlDMTFGMDg2RDkyRDM4QzRGOUFFMDIvNDhCMTdCNUNC NENEMTFGMDk0QUY1QzIzQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9jHAMA0GCSqGSIb3DQEBCwUAA4IBAQB3J8O1XTcTUlTx/IU2 LrymmchFMZXLaF6Qj540K3+mZzAEM5tapM2SIevhzDo3Bnu7yvkyUjgzhbpPELAS 39TMw8rFsBux762DzvtLBjerfHB1jKKd4hU8D2jLmZjLL7EY9IgTsVzsOth/Lgqb 0pGR17C4oum/pvuZeeJEUuD++qi6fTMLM2y54f5x05rOjDTj2phq2hFF8VUpq19t Zf8bioGITS0NdKjMgdWx37jRBSAjWR5k+aTsoVyB7D6WlKOA4yxpzXKWJbPoAyzp lVMABrZtX4T/9u+3G6tL5xwzvTySFY5wVrQ0YgVJyEqKWnE2ABACW1tMv8O97N0y qOUy -----END CERTIFICATE-----Generated at Mon Mar 2 19:26:19 2026 by rpki-client