$ rpki-client -vvf rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa File: DC76F25EBCFD11EFAF51D253C4F9AE02.roa (raw, json) Hash identifier: BtHfDz8Hw6cGvROOr50leZJ/AmtKCEWaHsU3HjKIGvY= Subject key identifier: FF:53:17:B1:E7:59:65:40:6B:52:31:E0:7B:E3:A4:6D:4B:1E:08:D9 Certificate issuer: /CN=A91921AE/serialNumber=82A769DD746C831F4C4DB29D6A65DE08D6AD95ED Certificate serial: F7 Authority key identifier: 82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:12:29 +0000 ROA not before: Mon 29 Dec 2025 05:24:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136396 IP address blocks: 2001:df4:adc0::/48 maxlen: 48 2001:df4:adc1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.crl rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91921AE, serialNumber=82A769DD746C831F4C4DB29D6A65DE08D6AD95ED Validity Not Before: Dec 29 05:24:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41f1d-aeb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:41:f6:1e:de:9a:c9:67:1f:03:3b:41:26:f3: 94:c3:54:54:32:cb:25:eb:fd:81:64:f7:d0:94:9c: 4a:a3:74:4d:6d:31:e8:97:9e:cf:6b:a9:04:9a:13: 1c:73:80:8b:01:71:0b:e8:1d:7c:34:df:ef:19:24: 94:c3:2a:ce:7c:29:d9:44:f9:ed:a8:60:39:03:ce: 06:b7:ce:25:8c:a0:59:b5:26:dd:01:95:bb:25:9c: 95:dd:da:e7:7f:a1:9d:bf:bf:e5:42:bc:b3:74:1f: df:df:ef:e4:b2:e9:e1:20:df:06:d8:ec:e4:fa:08: 43:64:3e:50:31:0c:63:ba:37:43:22:4a:b0:cd:81: 95:e8:f0:e2:31:a9:fd:cc:05:81:ab:8e:0f:da:73: ce:a4:31:1c:b2:05:d6:6a:9a:e0:12:2b:44:a1:23: 36:e6:ec:f7:2a:d3:06:1a:c1:82:15:6e:85:4d:27: 83:68:15:37:6b:2e:cc:26:cd:db:d7:50:e5:6c:47: 01:15:7d:8a:92:f1:51:b4:1a:a6:10:57:d8:42:09: 78:cd:0c:d2:17:2d:d3:29:d2:21:73:16:d3:74:5b: d1:53:80:a3:61:41:3e:c6:40:52:41:ed:49:d8:a9: 9f:bb:46:f8:1b:49:1b:c5:d4:02:28:e1:95:cb:4e: be:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:53:17:B1:E7:59:65:40:6B:52:31:E0:7B:E3:A4:6D:4B:1E:08:D9 X509v3 Authority Key Identifier: keyid:82:A7:69:DD:74:6C:83:1F:4C:4D:B2:9D:6A:65:DE:08:D6:AD:95:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/gqdp3XRsgx9MTbKdamXeCNatle0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqdp3XRsgx9MTbKdamXeCNatle0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91921AE/74912B2CAC7311EFA3CBD14AC4F9AE02/DC76F25EBCFD11EFAF51D253C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:adc0::/47 Signature Algorithm: sha256WithRSAEncryption 07:50:a5:ef:c5:71:1c:a7:1e:79:a7:4b:95:41:31:a2:ad:70: 9a:20:b1:60:23:4c:63:de:a7:2c:f1:53:a7:d4:09:e1:83:8c: 91:9f:7c:65:bb:76:b6:8a:fe:6f:8d:1c:69:06:ff:a6:ce:15: b4:67:79:7b:35:a3:ee:e9:f9:36:d7:92:c0:70:c3:ab:96:90: c4:e3:5e:64:c0:62:7f:0a:da:86:3b:a0:2e:d0:90:96:6f:4d: 53:01:db:da:29:7a:84:f6:a3:a9:6f:af:19:ad:58:db:d8:95: 24:93:fa:c6:74:9d:2e:d3:02:90:a8:00:af:bd:fc:0d:98:d6: 6f:8b:1a:d1:51:a5:9b:42:2a:3c:cf:43:a2:00:3b:c1:3e:b8: de:97:ce:b8:de:81:d6:b5:6d:94:ac:43:f3:2b:03:fd:22:19: 5b:e0:a5:25:96:ac:83:96:36:8c:32:35:ad:ea:db:17:43:0d: 36:b8:ef:e9:63:17:a1:4c:4a:e8:d9:01:85:ae:ea:0d:a5:2d: 81:7d:9f:fd:63:7b:88:8d:ab:2b:e6:54:1b:ff:01:ef:2b:c2: fd:89:85:eb:97:0a:f2:e3:c4:48:49:7a:ed:27:3a:50:be:45: 93:9f:aa:6d:34:2e:02:da:8e:ff:9c:b0:b5:fa:3a:63:7a:22: 4a:b4:b1:83 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIxQUUxMTAvBgNVBAUTKDgyQTc2OURENzQ2QzgzMUY0QzREQjI5RDZBNjVERTA4 RDZBRDk1RUQwHhcNMjUxMjI5MDUyNDUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWYxZC1hZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUH2Ht6ayWcfAztBJvOUw1RUMssl6/2BZPfQlJxKo3RNbTHol57Pa6kEmhMc c4CLAXEL6B18NN/vGSSUwyrOfCnZRPntqGA5A84Gt84ljKBZtSbdAZW7JZyV3drn f6Gdv7/lQryzdB/f3+/ksunhIN8G2Ozk+ghDZD5QMQxjujdDIkqwzYGV6PDiMan9 zAWBq44P2nPOpDEcsgXWaprgEitEoSM25uz3KtMGGsGCFW6FTSeDaBU3ay7MJs3b 11DlbEcBFX2KkvFRtBqmEFfYQgl4zQzSFy3TKdIhcxbTdFvRU4CjYUE+xkBSQe1J 2Kmfu0b4G0kbxdQCKOGVy06+AwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFP9TF7Hn WWVAa1Ix4HvjpG1LHgjZMB8GA1UdIwQYMBaAFIKnad10bIMfTE2ynWpl3gjWrZXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjFBRS83NDkxMkIyQ0FD NzMxMUVGQTNDQkQxNEFDNEY5QUUwMi9ncWRwM1hSc2d4OU1UYktkYW1YZUNOYXRs ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxZHAzWFJzZ3g5TVRiS2RhbVhlQ05hdGxlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTIxQUUvNzQ5MTJCMkNBQzczMTFFRkEzQ0JEMTRBQzRGOUFFMDIvREM3NkYyNUVC Q0ZEMTFFRkFGNTFEMjUzQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcBIAEN9K3AMA0GCSqGSIb3DQEBCwUAA4IBAQAHUKXvxXEcpx55p0uV QTGirXCaILFgI0xj3qcs8VOn1Anhg4yRn3xlu3a2iv5vjRxpBv+mzhW0Z3l7NaPu 6fk215LAcMOrlpDE415kwGJ/CtqGO6Au0JCWb01TAdvaKXqE9qOpb68ZrVjb2JUk k/rGdJ0u0wKQqACvvfwNmNZvixrRUaWbQio8z0OiADvBPrjel8643oHWtW2UrEPz KwP9Ihlb4KUllqyDljaMMjWt6tsXQw02uO/pYxehTEro2QGFruoNpS2BfZ/9Y3uI jasr5lQb/wHvK8L9iYXrlwry48RISXrtJzpQvkWTn6ptNC4C2o7/nLC1+jpjeiJK tLGD -----END CERTIFICATE-----Generated at Mon Mar 2 07:27:05 2026 by rpki-client