$ rpki-client -vvf rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/C352565AC6E011EF87D90241C4F9AE02.roa File: C352565AC6E011EF87D90241C4F9AE02.roa (raw, json) Hash identifier: 52J+v1k8tWgHY+HhlcSMLxR4J+xohtBlTQq3KKgwtyU= Subject key identifier: A9:57:A8:5C:45:21:EA:40:4E:7E:A2:0F:15:75:D6:3C:11:BF:A8:7B Certificate issuer: /CN=A91A192D/serialNumber=A81D0D61F7B730DDB742CC48ADD88A04D46FD024 Certificate serial: 01E1 Authority key identifier: A8:1D:0D:61:F7:B7:30:DD:B7:42:CC:48:AD:D8:8A:04:D4:6F:D0:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0NYfe3MN23QsxIrdiKBNRv0CQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/C352565AC6E011EF87D90241C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:41:39 +0000 ROA not before: Sun 01 Mar 2026 05:24:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152300 IP address blocks: 2001:df3:5240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/qB0NYfe3MN23QsxIrdiKBNRv0CQ.crl rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/qB0NYfe3MN23QsxIrdiKBNRv0CQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0NYfe3MN23QsxIrdiKBNRv0CQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A192D, serialNumber=A81D0D61F7B730DDB742CC48ADD88A04D46FD024 Validity Not Before: Mar 1 05:24:24 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3edb3-ef15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d9:19:25:4f:a9:38:9f:0b:c1:31:63:ed:e7: 0e:81:13:8d:ad:fd:0f:0d:51:20:b8:56:23:df:ae: 7d:1b:82:b2:b2:1c:f8:2c:f1:b8:af:43:73:f3:54: dc:2e:8a:2a:d2:34:28:ae:27:b5:9e:87:a5:85:2a: d0:df:8f:05:35:97:81:9c:06:2f:ed:42:fb:6a:0f: e8:2a:47:07:89:58:69:72:81:9d:24:9d:41:82:31: 2f:8f:44:29:e3:3c:cc:1b:3d:4c:3b:be:a7:ec:b8: 08:76:90:14:6c:62:db:33:55:a6:c7:14:55:b6:aa: c9:4c:e4:7e:df:9b:23:ad:c5:a0:fb:d2:4b:69:c4: c4:a2:99:db:85:df:fc:f7:29:ac:b8:59:23:71:9a: 79:62:3f:14:0f:c9:f9:00:1a:2e:ec:e4:b5:a7:28: 6e:3e:78:6f:e8:2e:44:d4:61:26:4e:75:80:6d:c4: 5a:4c:06:5c:f1:0e:48:3d:5f:71:b8:42:bd:12:59: 6e:de:60:e3:db:d4:81:a5:7f:21:52:22:66:26:1a: a7:8a:cc:bd:97:4a:5e:97:95:a4:3f:88:c9:db:ac: 44:6f:25:95:a4:31:d2:2f:23:0f:9a:c5:56:0e:83: 1c:54:0d:5c:8a:c1:3b:56:bc:30:2e:6b:27:a3:d9: 92:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:57:A8:5C:45:21:EA:40:4E:7E:A2:0F:15:75:D6:3C:11:BF:A8:7B X509v3 Authority Key Identifier: keyid:A8:1D:0D:61:F7:B7:30:DD:B7:42:CC:48:AD:D8:8A:04:D4:6F:D0:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/qB0NYfe3MN23QsxIrdiKBNRv0CQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0NYfe3MN23QsxIrdiKBNRv0CQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/C352565AC6E011EF87D90241C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:5240::/48 Signature Algorithm: sha256WithRSAEncryption 8f:fd:2d:80:26:f5:b8:e9:31:e9:96:ef:c9:cd:6a:07:ba:c8: 92:89:a2:c8:2e:40:96:e0:d5:cb:2e:ed:b4:e2:d7:54:78:a2: 4b:de:fb:7d:24:a8:b2:c2:1e:2c:82:ac:94:e4:2b:78:f7:98: 25:b3:f3:d4:7f:01:b0:ac:3c:3b:8b:bc:77:41:f4:b2:67:33: 52:6c:04:51:22:43:24:c3:1e:9c:cb:e2:a4:e5:24:9f:e0:08: 30:2c:19:fb:75:5c:7a:ab:66:ca:84:2f:2d:44:88:a8:9c:78: 1d:91:b9:71:47:c8:84:1f:83:22:1a:86:59:f2:ea:26:14:3a: e6:eb:7a:81:81:14:aa:b2:34:c9:91:66:f7:4a:93:53:40:2b: da:b4:df:26:5f:a9:ce:ac:68:01:25:14:bb:6b:e8:a8:74:04: b7:25:c7:b5:e6:7e:ae:5a:4c:ff:84:6a:e3:b5:2c:cd:5f:41: 06:80:09:74:45:13:d7:da:9e:e0:6b:75:33:c0:ed:8f:44:62: be:7c:7f:ca:1e:12:83:7a:df:c4:41:b1:25:8f:bf:3c:e9:b3: 35:6c:4e:c5:42:8d:77:75:de:46:e0:40:95:02:ff:9a:31:3c: 84:5e:a5:53:60:02:f2:6e:ae:84:89:de:7d:28:84:70:85:cc: 43:00:78:63 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE5MkQxMTAvBgNVBAUTKEE4MUQwRDYxRjdCNzMwRERCNzQyQ0M0OEFERDg4QTA0 RDQ2RkQwMjQwHhcNMjYwMzAxMDUyNDI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWRiMy1lZjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9kZJU+pOJ8LwTFj7ecOgRONrf0PDVEguFYj3659G4Kyshz4LPG4r0Nz81Tc Looq0jQorie1noelhSrQ348FNZeBnAYv7UL7ag/oKkcHiVhpcoGdJJ1BgjEvj0Qp 4zzMGz1MO76n7LgIdpAUbGLbM1WmxxRVtqrJTOR+35sjrcWg+9JLacTEopnbhd/8 9ymsuFkjcZp5Yj8UD8n5ABou7OS1pyhuPnhv6C5E1GEmTnWAbcRaTAZc8Q5IPV9x uEK9Ellu3mDj29SBpX8hUiJmJhqnisy9l0pel5WkP4jJ26xEbyWVpDHSLyMPmsVW DoMcVA1cisE7VrwwLmsno9mSGwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFKlXqFxF IepATn6iDxV11jwRv6h7MB8GA1UdIwQYMBaAFKgdDWH3tzDdt0LMSK3YigTUb9Ak MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTkyRC9DQzY3RDI1MkE0 QkMxMUVFOUU1QTVENzJDNEY5QUUwMi9xQjBOWWZlM01OMjNRc3hJcmRpS0JOUnYw Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FCME5ZZmUzTU4yM1FzeElyZGlLQk5SdjBDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE5MkQvQ0M2N0QyNTJBNEJDMTFFRTlFNUE1RDcyQzRGOUFFMDIvQzM1MjU2NUFD NkUwMTFFRjg3RDkwMjQxQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN81JAMA0GCSqGSIb3DQEBCwUAA4IBAQCP/S2AJvW46THplu/J zWoHusiSiaLILkCW4NXLLu204tdUeKJL3vt9JKiywh4sgqyU5Ct495gls/PUfwGw rDw7i7x3QfSyZzNSbARRIkMkwx6cy+Kk5SSf4AgwLBn7dVx6q2bKhC8tRIionHgd kblxR8iEH4MiGoZZ8uomFDrm63qBgRSqsjTJkWb3SpNTQCvatN8mX6nOrGgBJRS7 a+iodAS3Jce15n6uWkz/hGrjtSzNX0EGgAl0RRPX2p7ga3UzwO2PRGK+fH/KHhKD et/EQbElj7886bM1bE7FQo13dd5G4ECVAv+aMTyEXqVTYALybq6Eid59KIRwhcxD AHhj -----END CERTIFICATE-----Generated at Mon Mar 2 06:33:45 2026 by rpki-client