$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa File: DF3F877ED01D11F09BB99C37C4F9AE02.roa (raw, json) Hash identifier: tgtytQmr6pQ+PGiMqkoXYyGsCLfeIgQnFjuAN5av8ec= Subject key identifier: 36:38:17:08:97:32:0B:04:0C:96:B9:06:8C:39:7E:DB:B9:AD:68:F1 Certificate issuer: /CN=A91A1D8C/serialNumber=5193BD59949EF9B7DA12720F7D46EE7C4BCA30EC Certificate serial: 38 Authority key identifier: 51:93:BD:59:94:9E:F9:B7:DA:12:72:0F:7D:46:EE:7C:4B:CA:30:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa Signing time: Sun 01 Mar 2026 05:56:00 +0000 ROA not before: Wed 03 Dec 2025 07:58:37 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 136308 IP address blocks: 2001:df6:6440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.crl rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D8C, serialNumber=5193BD59949EF9B7DA12720F7D46EE7C4BCA30EC Validity Not Before: Dec 3 07:58:37 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d4ef-0b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:50:18:40:be:87:0d:9c:7a:f3:05:c1:7a:df: ab:7f:b0:20:7e:f8:27:4f:db:18:b4:54:dc:3e:e2: a1:31:0a:8a:9c:94:e0:25:08:ad:d9:a5:a2:77:6f: 61:fb:fa:e4:f7:76:3b:37:e0:36:3a:30:21:87:74: 35:c2:71:03:7a:3a:88:4b:49:25:bb:e8:0b:39:54: 3f:cf:6b:8c:35:7b:3c:12:3a:5f:63:0f:bb:fe:74: e2:f5:68:9f:b8:bc:ea:1c:8b:f1:11:03:0f:41:f7: c4:18:80:08:80:96:46:d3:f4:0c:41:3b:98:cb:04: 71:22:56:cc:48:fc:1e:2a:6a:de:3a:3b:84:6e:66: 81:3a:cc:32:02:13:7e:0a:be:46:97:8d:c9:88:40: 8f:e5:80:ec:d4:ad:e7:ee:75:25:d2:2b:c1:97:e6: c5:69:08:94:a4:70:60:eb:83:83:e2:8a:b2:0c:2b: 99:82:0b:f1:02:86:96:93:49:e6:46:fc:4f:07:2e: 06:75:41:e3:29:62:a8:8c:6f:6a:a2:de:e4:53:9b: 19:54:b6:94:ba:4e:f6:9e:0b:77:13:f6:4c:c6:06: cc:f7:6c:36:59:bb:f3:18:fd:02:64:53:4e:34:8d: 7a:f7:1c:b5:75:da:81:a7:0f:58:4a:95:fe:f5:46: 89:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:38:17:08:97:32:0B:04:0C:96:B9:06:8C:39:7E:DB:B9:AD:68:F1 X509v3 Authority Key Identifier: keyid:51:93:BD:59:94:9E:F9:B7:DA:12:72:0F:7D:46:EE:7C:4B:CA:30:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/UZO9WZSe-bfaEnIPfUbufEvKMOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UZO9WZSe-bfaEnIPfUbufEvKMOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D8C/A0819934D01611F0AD497A7EC4F9AE02/DF3F877ED01D11F09BB99C37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:6440::/48 Signature Algorithm: sha256WithRSAEncryption 7f:46:8c:3e:52:c6:ce:26:e1:14:28:67:63:b8:4a:5d:a7:4b: 42:2f:57:97:22:3f:a7:3c:da:91:97:a2:95:80:5c:a1:d8:ce: 7a:d6:ca:03:79:68:f5:68:48:9a:b2:cb:6b:dd:90:69:0c:fe: b4:12:40:1b:78:2c:41:d2:66:e9:d6:10:1f:e1:3e:c4:cd:68: a0:f4:9f:c2:8b:c1:f4:c6:0d:9a:5c:dc:07:fc:47:3f:d1:5b: a1:73:8d:da:78:04:44:2c:d7:52:93:aa:20:bf:94:f0:c0:f6: d5:e6:e8:1e:8e:90:48:b0:7d:8b:e3:a7:a1:30:fc:e2:26:e1: 6a:25:62:8d:d4:06:94:af:84:b7:29:88:1b:49:6e:18:00:42: a4:3d:1f:29:bf:38:7d:6d:a9:53:c5:39:6c:05:97:a1:10:c9: 04:f8:98:32:09:8a:96:a9:7a:2d:db:9f:81:9f:8f:2b:3c:ee: 1f:76:9a:c9:a7:fb:3a:1a:c9:fc:e3:4c:00:4d:90:72:b7:9e: 3c:49:6b:97:33:ab:6a:aa:56:58:79:a5:6f:b9:9c:d7:90:d4: 3e:66:6e:28:3d:af:09:f4:d5:45:3a:a3:0a:5c:9f:47:22:68: 5f:80:df:7f:40:90:a5:51:bd:35:b2:b9:ce:61:17:e3:56:a6: 09:18:58:85 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUQ4QzExMC8GA1UEBRMoNTE5M0JENTk5NDlFRjlCN0RBMTI3MjBGN0Q0NkVFN0M0 QkNBMzBFQzAeFw0yNTEyMDMwNzU4MzdaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNGVmLTBiOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjUBhAvocNnHrzBcF636t/sCB++CdP2xi0VNw+4qExCoqclOAlCK3ZpaJ3b2H7 +uT3djs34DY6MCGHdDXCcQN6OohLSSW76As5VD/Pa4w1ezwSOl9jD7v+dOL1aJ+4 vOoci/ERAw9B98QYgAiAlkbT9AxBO5jLBHEiVsxI/B4qat46O4RuZoE6zDICE34K vkaXjcmIQI/lgOzUrefudSXSK8GX5sVpCJSkcGDrg4PiirIMK5mCC/EChpaTSeZG /E8HLgZ1QeMpYqiMb2qi3uRTmxlUtpS6TvaeC3cT9kzGBsz3bDZZu/MY/QJkU040 jXr3HLV12oGnD1hKlf71Rok/AgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUNjgXCJcy CwQMlrkGjDl+27mtaPEwHwYDVR0jBBgwFoAUUZO9WZSe+bfaEnIPfUbufEvKMOww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExRDhDL0EwODE5OTM0RDAx NjExRjBBRDQ5N0E3RUM0RjlBRTAyL1VaTzlXWlNlLWJmYUVuSVBmVWJ1ZkV2S01P dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVVpPOVdaU2UtYmZhRW5JUGZVYnVmRXZLTU93LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ4Qy9BMDgxOTkzNEQwMTYxMUYwQUQ0OTdBN0VDNEY5QUUwMi9ERjNGODc3RUQw MUQxMUYwOUJCOTlDMzdDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32ZEAwDQYJKoZIhvcNAQELBQADggEBAH9GjD5Sxs4m4RQoZ2O4 Sl2nS0IvV5ciP6c82pGXopWAXKHYznrWygN5aPVoSJqyy2vdkGkM/rQSQBt4LEHS ZunWEB/hPsTNaKD0n8KLwfTGDZpc3Af8Rz/RW6Fzjdp4BEQs11KTqiC/lPDA9tXm 6B6OkEiwfYvjp6Ew/OIm4WolYo3UBpSvhLcpiBtJbhgAQqQ9Hym/OH1tqVPFOWwF l6EQyQT4mDIJipapei3bn4Gfjys87h92msmn+zoayfzjTABNkHK3njxJa5czq2qq Vlh5pW+5nNeQ1D5mbig9rwn01UU6owpcn0ciaF+A339AkKVRvTWyuc5hF+NWpgkY WIU= -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:59 2026 by rpki-client