$ rpki-client -vvf rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C3C5C43A0A2011EC8B517885C4F9AE02.roa File: C3C5C43A0A2011EC8B517885C4F9AE02.roa (raw, json) Hash identifier: wACutP1f1rqOkMuUfI0y6o4RkmpusyPFR7IEkRsm+4E= Subject key identifier: D1:CB:7E:1F:47:EB:F7:31:DF:AA:3B:5D:48:26:C8:51:49:07:39:C6 Certificate issuer: /CN=A91A60A9/serialNumber=7787F1E53E9B78132DE9A78711088316DD6055B3 Certificate serial: 3547 Authority key identifier: 77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C3C5C43A0A2011EC8B517885C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:20:58 +0000 ROA not before: Sat 06 Dec 2025 14:50:46 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9676 IP address blocks: 210.208.72.0/21 maxlen: 21 2407:680::/33 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.crl rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13639 (0x3547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A60A9, serialNumber=7787F1E53E9B78132DE9A78711088316DD6055B3 Validity Not Before: Dec 6 14:50:46 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4676a-2aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:a2:39:18:9a:db:4c:de:71:d6:c6:9d:8d: 65:bf:5b:6c:d8:ca:68:81:51:80:36:c3:f0:19:24: be:f8:92:d9:2a:9d:1b:92:0e:89:b7:d1:4d:27:4f: b7:34:44:2f:c0:38:76:f4:d4:fc:be:6f:e7:00:44: 16:5c:17:2e:76:53:10:a7:42:6b:67:37:0b:5f:b6: 23:ff:27:91:4a:d0:6c:43:4e:ad:d4:22:9f:fd:d3: 2f:a5:f9:bf:d8:8a:c8:ae:54:a3:b1:1c:16:41:f4: 03:d1:94:72:ad:2d:df:f9:7b:ae:fa:88:50:d8:4b: 25:b1:4c:4c:da:6d:3a:25:f8:5e:d1:81:9a:ca:b0: 61:a8:b2:c2:7a:a1:ae:92:91:cd:d6:3f:21:24:39: 7f:6b:d2:35:bf:c1:49:52:92:11:48:49:54:9b:66: 9d:df:7e:0a:a6:b5:79:4e:9a:d8:a7:f8:d5:2d:00: c8:7b:59:cb:da:79:55:6e:5e:d0:ed:e9:ca:46:49: 13:eb:b1:79:35:16:0e:5a:ed:44:39:a4:96:ef:06: 4b:f7:6f:f5:56:fd:21:7d:d2:5a:c3:2c:27:b2:cb: 22:7c:8f:d6:37:a4:f9:cd:d2:97:6b:21:6e:be:2d: 96:0b:06:6f:6a:a6:40:56:46:b7:72:00:cd:44:01: 9c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:CB:7E:1F:47:EB:F7:31:DF:AA:3B:5D:48:26:C8:51:49:07:39:C6 X509v3 Authority Key Identifier: keyid:77:87:F1:E5:3E:9B:78:13:2D:E9:A7:87:11:08:83:16:DD:60:55:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/d4fx5T6beBMt6aeHEQiDFt1gVbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d4fx5T6beBMt6aeHEQiDFt1gVbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A60A9/6BA8061A1D8411E2B3A54FDA08B02CD2/C3C5C43A0A2011EC8B517885C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.208.72.0/21 IPv6: 2407:680::/33 Signature Algorithm: sha256WithRSAEncryption 9d:9b:a9:03:31:42:db:43:e5:73:0a:07:3c:5b:f7:7c:29:29: 42:be:0d:31:ea:0d:72:71:19:03:87:49:14:b9:5d:f4:48:43: 03:5d:01:ae:eb:24:c2:7a:6c:c1:a8:6d:61:b8:f7:8c:a9:7a: 38:b6:9f:75:8e:25:84:28:a6:a8:ab:36:07:d4:68:7e:74:87: 51:50:e6:89:e5:16:25:81:29:64:12:ce:95:3a:f6:d1:a7:d6: 08:da:7f:0d:83:82:47:f3:2a:4b:6c:fc:19:b2:46:22:65:0a: bd:0f:08:99:41:09:49:b1:36:5b:4e:92:a9:45:14:e1:28:e2: 0b:b8:a9:6a:dc:bf:c9:b6:f4:bd:df:cd:59:1e:5f:5f:d8:23: c6:2d:08:ea:8e:08:7f:2c:93:d9:8c:7f:58:3b:59:d5:5f:11: de:f9:40:1b:9a:ae:4b:90:07:2c:f3:90:ef:0a:bf:fd:4b:57: af:e8:62:8d:ad:94:70:a8:83:96:c6:a3:a9:b8:5a:d6:2b:42: 50:e3:fc:0b:c1:64:0a:dc:bb:5d:9a:f0:da:53:be:67:6c:e3: 27:ba:bc:ef:df:1a:03:23:be:cd:b1:76:70:49:6f:0b:d8:35: 58:ad:4d:bd:2c:5d:72:04:90:b2:26:7a:c6:a4:51:b3:44:90: 1a:c5:b0:dc -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICNUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYwQTkxMTAvBgNVBAUTKDc3ODdGMUU1M0U5Qjc4MTMyREU5QTc4NzExMDg4MzE2 REQ2MDU1QjMwHhcNMjUxMjA2MTQ1MDQ2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njc2YS0yYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxmiiORia20zecdbGnY1lv1ts2MpogVGANsPwGSS++JLZKp0bkg6Jt9FNJ0+3 NEQvwDh29NT8vm/nAEQWXBcudlMQp0JrZzcLX7Yj/yeRStBsQ06t1CKf/dMvpfm/ 2IrIrlSjsRwWQfQD0ZRyrS3f+Xuu+ohQ2EslsUxM2m06Jfhe0YGayrBhqLLCeqGu kpHN1j8hJDl/a9I1v8FJUpIRSElUm2ad334KprV5TprYp/jVLQDIe1nL2nlVbl7Q 7enKRkkT67F5NRYOWu1EOaSW7wZL92/1Vv0hfdJawywnsssifI/WN6T5zdKXayFu vi2WCwZvaqZAVka3cgDNRAGc4wIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFNHLfh9H 6/cx36o7XUgmyFFJBznGMB8GA1UdIwQYMBaAFHeH8eU+m3gTLemnhxEIgxbdYFWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjBBOS82QkE4MDYxQTFE ODQxMUUyQjNBNTRGREEwOEIwMkNEMi9kNGZ4NVQ2YmVCTXQ2YWVIRVFpREZ0MWdW Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q0Zng1VDZiZUJNdDZhZUhFUWlERnQxZ1ZiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTYwQTkvNkJBODA2MUExRDg0MTFFMkIzQTU0RkRBMDhCMDJDRDIvQzNDNUM0M0Ew QTIwMTFFQzhCNTE3ODg1QzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQD0tBIMA4EAgACMAgDBgckBwaAADANBgkqhkiG9w0BAQsFAAOCAQEA nZupAzFC20PlcwoHPFv3fCkpQr4NMeoNcnEZA4dJFLld9EhDA10Bruskwnpswaht Ybj3jKl6OLafdY4lhCimqKs2B9RofnSHUVDmieUWJYEpZBLOlTr20afWCNp/DYOC R/MqS2z8GbJGImUKvQ8ImUEJSbE2W06SqUUU4SjiC7ipaty/ybb0vd/NWR5fX9gj xi0I6o4IfyyT2Yx/WDtZ1V8R3vlAG5quS5AHLPOQ7wq//UtXr+hija2UcKiDlsaj qbha1itCUOP8C8FkCty7XZrw2lO+Z2zjJ7q8798aAyO+zbF2cElvC9g1WK1NvSxd cgSQsiZ6xqRRs0SQGsWw3A== -----END CERTIFICATE-----Generated at Tue Mar 3 00:40:21 2026 by rpki-client