$ rpki-client -vvf rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/533DC25E60B511F0AB567568C4F9AE02.roa File: 533DC25E60B511F0AB567568C4F9AE02.roa (raw, json) Hash identifier: rAsgVXsXPyayrU2c0ruv6hB/awxi4k3UFmNsKrMdYlg= Subject key identifier: BD:E3:04:CA:32:F8:61:C5:20:8E:33:E3:5E:7D:1D:21:7D:C8:92:F2 Certificate issuer: /CN=A91951DE/serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Certificate serial: 7B Authority key identifier: 64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/533DC25E60B511F0AB567568C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:10:52 +0000 ROA not before: Mon 14 Jul 2025 13:20:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154047 IP address blocks: 2001:df5:db40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951DE, serialNumber=647E5CADCB1FBF7EBB899A7219C3A0F03D3F7B0D Validity Not Before: Jul 14 13:20:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3e67c-75cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:6e:d4:e2:cd:dc:75:4e:e6:83:1d:06:85:e1: 6f:ba:37:ca:e1:41:d0:8d:1e:85:ce:f9:d7:a7:59: 43:81:8f:24:76:99:0c:0c:29:2d:13:9b:cf:2c:c3: 88:a7:d2:37:77:b8:4d:c7:fa:78:4f:8b:5e:1f:91: 1f:08:c5:45:20:65:a8:c1:c7:0d:43:3b:d5:06:d9: 88:d7:14:eb:85:37:91:ab:3b:de:6e:f2:a8:69:43: 3e:ba:68:d5:a7:e3:4e:7a:e9:1e:4c:96:32:4a:3c: 8f:e5:ef:10:29:e0:78:20:c1:f6:39:f4:ef:2c:70: a9:1e:61:d0:78:d0:24:b0:f4:df:dc:ff:57:fb:05: c2:e6:4e:72:9b:28:b9:f5:02:e8:a6:2c:92:4d:2c: 39:a6:36:0b:97:39:20:76:49:6a:e4:c1:36:27:fa: 2c:df:45:de:6d:92:99:83:42:5f:b8:39:cb:4b:c9: 24:ce:a4:8d:35:15:d6:31:a6:9a:fe:c3:02:10:c6: 67:b8:8d:e6:d4:20:e3:d6:22:f3:ba:19:b8:35:02: 72:1f:27:b6:a2:26:9d:bd:06:05:7d:85:dd:f7:d7: 52:69:09:2c:75:23:22:c5:54:40:ea:e8:60:0f:56: ba:15:b9:94:e2:86:bd:ae:81:65:bc:5f:11:75:04: 90:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E3:04:CA:32:F8:61:C5:20:8E:33:E3:5E:7D:1D:21:7D:C8:92:F2 X509v3 Authority Key Identifier: keyid:64:7E:5C:AD:CB:1F:BF:7E:BB:89:9A:72:19:C3:A0:F0:3D:3F:7B:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/ZH5crcsfv367iZpyGcOg8D0_ew0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH5crcsfv367iZpyGcOg8D0_ew0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951DE/904F870A60B411F08ED7AE63C4F9AE02/533DC25E60B511F0AB567568C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:db40::/48 Signature Algorithm: sha256WithRSAEncryption 23:5e:d3:41:26:b4:dd:1f:12:43:e4:46:a6:5d:8f:42:b8:cc: c7:12:9d:1f:33:6a:1e:1f:aa:31:ae:03:79:68:4c:f5:b1:76: c7:23:30:05:a4:ba:7f:f3:dc:c3:e8:79:d0:e6:3e:d6:a0:d5: f0:a5:aa:3f:b0:8c:1d:43:5b:2f:5a:28:d0:94:b5:62:4a:38: 88:a1:8b:a2:34:03:04:00:c5:ba:b6:e5:90:fd:bc:e6:f9:f9: 70:1a:58:8b:6c:b1:66:a7:aa:a0:56:97:de:8e:0c:5a:96:27: 47:65:d8:70:f7:a2:b7:1f:c2:49:1d:9d:78:43:c4:3f:26:6e: 7e:f2:38:ad:65:e3:61:98:37:73:13:1c:3b:e7:95:44:3e:50: 23:18:b1:00:88:e9:85:f1:f3:0c:55:1d:03:71:9f:94:de:fb: c0:8d:55:c7:ca:29:97:0e:2c:8c:4c:b7:e4:61:d2:19:7a:6e: ac:e3:3d:d7:57:60:d7:df:34:3b:10:ff:6c:40:c2:e4:6f:2a: 54:c5:89:85:a4:83:e4:9e:a6:45:44:8f:76:16:d8:e2:59:8e: 89:57:ed:77:a9:3e:26:7d:ec:4f:d5:32:07:ca:9d:cf:28:22: 96:e4:eb:82:e2:08:f2:00:d7:78:4c:8a:fd:f3:d2:fb:ab:9a: 7f:2f:8b:32 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTFERTExMC8GA1UEBRMoNjQ3RTVDQURDQjFGQkY3RUJCODk5QTcyMTlDM0EwRjAz RDNGN0IwRDAeFw0yNTA3MTQxMzIwMzVaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNlNjdjLTc1Y2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0btTizdx1TuaDHQaF4W+6N8rhQdCNHoXO+denWUOBjyR2mQwMKS0Tm88sw4in 0jd3uE3H+nhPi14fkR8IxUUgZajBxw1DO9UG2YjXFOuFN5GrO95u8qhpQz66aNWn 40566R5MljJKPI/l7xAp4HggwfY59O8scKkeYdB40CSw9N/c/1f7BcLmTnKbKLn1 AuimLJJNLDmmNguXOSB2SWrkwTYn+izfRd5tkpmDQl+4OctLySTOpI01FdYxppr+ wwIQxme4jebUIOPWIvO6Gbg1AnIfJ7aiJp29BgV9hd3311JpCSx1IyLFVEDq6GAP VroVuZTihr2ugWW8XxF1BJBtAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUveMEyjL4 YcUgjjPjXn0dIX3IkvIwHwYDVR0jBBgwFoAUZH5crcsfv367iZpyGcOg8D0/ew0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MURFLzkwNEY4NzBBNjBC NDExRjA4RUQ3QUU2M0M0RjlBRTAyL1pINWNyY3NmdjM2N2lacHlHY09nOEQwX2V3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWkg1Y3Jjc2Z2MzY3aVpweUdjT2c4RDBfZXcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTFERS85MDRGODcwQTYwQjQxMUYwOEVEN0FFNjNDNEY5QUUwMi81MzNEQzI1RTYw QjUxMUYwQUI1Njc1NjhDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ3120AwDQYJKoZIhvcNAQELBQADggEBACNe00EmtN0fEkPkRqZd j0K4zMcSnR8zah4fqjGuA3loTPWxdscjMAWkun/z3MPoedDmPtag1fClqj+wjB1D Wy9aKNCUtWJKOIihi6I0AwQAxbq25ZD9vOb5+XAaWItssWanqqBWl96ODFqWJ0dl 2HD3orcfwkkdnXhDxD8mbn7yOK1l42GYN3MTHDvnlUQ+UCMYsQCI6YXx8wxVHQNx n5Te+8CNVcfKKZcOLIxMt+Rh0hl6bqzjPddXYNffNDsQ/2xAwuRvKlTFiYWkg+Se pkVEj3YW2OJZjolX7XepPiZ97E/VMgfKnc8oIpbk64LiCPIA13hMiv3z0vurmn8v izI= -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:19 2026 by rpki-client