$ rpki-client -vvf rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/3505DC88B6E411F090AAA224C4F9AE02.roa File: 3505DC88B6E411F090AAA224C4F9AE02.roa (raw, json) Hash identifier: 0eYQs4+CcW1n3DAWa3b99gSSE/qKrGxFztudMbxy8B8= Subject key identifier: 72:EA:79:3C:8D:9A:B1:BA:ED:A9:F2:0A:A1:31:52:94:0B:23:CE:27 Certificate issuer: /CN=A917D31E/serialNumber=FC4AF86E70099DA0BAAC2EDDC77D1BEF4C75A895 Certificate serial: 46 Authority key identifier: FC:4A:F8:6E:70:09:9D:A0:BA:AC:2E:DD:C7:7D:1B:EF:4C:75:A8:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Er4bnAJnaC6rC7dx30b70x1qJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/3505DC88B6E411F090AAA224C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:11:10 +0000 ROA not before: Sat 01 Nov 2025 05:32:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154310 IP address blocks: 2001:df6:3c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/_Er4bnAJnaC6rC7dx30b70x1qJU.crl rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/_Er4bnAJnaC6rC7dx30b70x1qJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Er4bnAJnaC6rC7dx30b70x1qJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D31E, serialNumber=FC4AF86E70099DA0BAAC2EDDC77D1BEF4C75A895 Validity Not Before: Nov 1 05:32:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d87d-5af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:1d:5c:e6:a9:e9:13:15:af:58:e5:1e:91:ed: 4a:0d:b6:98:fa:f0:3c:db:60:61:bf:58:6d:fa:c0: 3b:44:ff:93:b1:c7:2d:3a:18:fd:eb:00:9b:d8:bc: fd:41:48:7e:9e:20:9b:55:ed:c5:93:5a:6f:42:80: 9c:7c:ac:cc:9e:e3:b1:08:5b:48:0f:81:a1:33:c4: 9b:14:bb:1f:b5:0e:00:d3:25:6f:01:92:12:f7:21: 1d:b6:c8:bc:b1:e6:66:ec:fd:a3:e9:8e:df:7c:73: 02:16:77:a7:ae:a6:4f:4e:e6:02:72:6c:ce:77:51: 82:77:4d:b4:49:41:9c:48:4c:4d:c5:53:11:2f:78: 5b:cb:85:eb:ae:2b:c9:96:6e:29:5f:f7:24:57:83: 83:8f:ef:13:57:9a:46:e5:3c:72:e0:04:8b:95:12: 80:86:6d:3e:77:b3:47:e6:dd:8a:58:e1:8f:44:b8: 94:b3:3a:9f:b7:bc:c7:6c:ba:2b:a9:53:ce:09:1b: 21:5d:d7:55:43:e5:f7:89:17:27:85:86:68:24:a8: 01:99:a9:72:a3:2a:63:70:34:56:b6:c0:73:29:1d: 9e:07:3b:d1:e5:51:52:d1:ab:3a:94:58:48:81:39: 09:4b:24:27:1b:fb:c6:b2:50:a1:3f:53:cb:d5:cc: b2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EA:79:3C:8D:9A:B1:BA:ED:A9:F2:0A:A1:31:52:94:0B:23:CE:27 X509v3 Authority Key Identifier: keyid:FC:4A:F8:6E:70:09:9D:A0:BA:AC:2E:DD:C7:7D:1B:EF:4C:75:A8:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/_Er4bnAJnaC6rC7dx30b70x1qJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_Er4bnAJnaC6rC7dx30b70x1qJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D31E/537845A0B4BB11F0A1353722C4F9AE02/3505DC88B6E411F090AAA224C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:3c40::/48 Signature Algorithm: sha256WithRSAEncryption 31:70:ec:f7:ac:4b:a7:a6:ea:a2:ce:ca:42:ab:fd:b1:2c:a7: 9a:a3:88:e4:27:df:d5:5c:33:b6:5b:b4:6f:d1:04:64:8f:e6: 64:46:0d:1c:da:80:c3:ff:00:24:29:63:30:66:79:2a:4a:41: e5:96:6f:24:be:7d:40:72:50:c0:98:0c:2a:f1:e0:43:69:f4: 82:71:1f:fb:ad:9f:55:3f:80:19:b3:8b:ce:bc:67:85:13:76: 5b:5d:35:a0:f8:62:c9:f9:05:6b:bb:9c:7b:45:c6:4e:9a:3d: 25:a7:5c:9e:62:b7:83:05:e0:30:af:3f:56:bf:77:00:21:52: 90:f7:b3:78:e7:68:f7:99:b2:99:26:97:ab:d3:52:85:49:6c: 45:f0:12:3f:5e:3f:a8:3f:db:f7:2b:8c:d7:f4:65:ec:99:80: aa:eb:b2:c7:ed:d0:29:2d:70:ec:06:75:33:7c:5e:4b:e0:f0: 41:af:dc:e8:a3:61:2f:fa:2f:84:19:18:0a:98:4c:a5:86:bd: 62:f0:8d:ca:b0:6c:d1:3c:59:69:0d:7d:eb:0f:34:91:ab:99: f9:13:95:38:47:54:86:9e:8b:52:3a:d8:11:6d:e4:5c:e7:77: 46:f5:65:5c:77:3a:d6:8a:73:91:a0:ea:ba:3f:5a:7b:72:bb: 66:a0:d6:e6 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDMxRTExMC8GA1UEBRMoRkM0QUY4NkU3MDA5OURBMEJBQUMyRUREQzc3RDFCRUY0 Qzc1QTg5NTAeFw0yNTExMDEwNTMyNTFaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODdkLTVhZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVHVzmqekTFa9Y5R6R7UoNtpj68DzbYGG/WG36wDtE/5Oxxy06GP3rAJvYvP1B SH6eIJtV7cWTWm9CgJx8rMye47EIW0gPgaEzxJsUux+1DgDTJW8BkhL3IR22yLyx 5mbs/aPpjt98cwIWd6eupk9O5gJybM53UYJ3TbRJQZxITE3FUxEveFvLheuuK8mW bilf9yRXg4OP7xNXmkblPHLgBIuVEoCGbT53s0fm3YpY4Y9EuJSzOp+3vMdsuiup U84JGyFd11VD5feJFyeFhmgkqAGZqXKjKmNwNFa2wHMpHZ4HO9HlUVLRqzqUWEiB OQlLJCcb+8ayUKE/U8vVzLLjAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUcup5PI2a sbrtqfIKoTFSlAsjzicwHwYDVR0jBBgwFoAU/Er4bnAJnaC6rC7dx30b70x1qJUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEMzFFLzUzNzg0NUEwQjRC QjExRjBBMTM1MzcyMkM0RjlBRTAyL19FcjRibkFKbmFDNnJDN2R4MzBiNzB4MXFK VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX0VyNGJuQUpuYUM2ckM3ZHgzMGI3MHgxcUpVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDMxRS81Mzc4NDVBMEI0QkIxMUYwQTEzNTM3MjJDNEY5QUUwMi8zNTA1REM4OEI2 RTQxMUYwOTBBQUEyMjRDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32PEAwDQYJKoZIhvcNAQELBQADggEBADFw7PesS6em6qLOykKr /bEsp5qjiOQn39VcM7ZbtG/RBGSP5mRGDRzagMP/ACQpYzBmeSpKQeWWbyS+fUBy UMCYDCrx4ENp9IJxH/utn1U/gBmzi868Z4UTdltdNaD4Ysn5BWu7nHtFxk6aPSWn XJ5it4MF4DCvP1a/dwAhUpD3s3jnaPeZspkml6vTUoVJbEXwEj9eP6g/2/crjNf0 ZeyZgKrrssft0CktcOwGdTN8Xkvg8EGv3OijYS/6L4QZGAqYTKWGvWLwjcqwbNE8 WWkNfesPNJGrmfkTlThHVIaei1I62BFt5Fznd0b1ZVx3OtaKc5Gg6ro/Wntyu2ag 1uY= -----END CERTIFICATE-----Generated at Mon Mar 2 15:30:21 2026 by rpki-client