$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/3EF6E4A4291D11EFBE3C7971C4F9AE02.roa File: 3EF6E4A4291D11EFBE3C7971C4F9AE02.roa (raw, json) Hash identifier: ez0ZpxEc2H6SHwlieDmykICyUSOd9UTMrzq/iSE9yDQ= Subject key identifier: 61:7E:4C:4D:A8:9A:18:8F:1E:8A:C4:4E:AA:2F:2B:93:54:65:15:C5 Certificate issuer: /CN=A91A6943/serialNumber=0AB99F52C9AD9BE0B9C04470CFB1B6C2360FD0F5 Certificate serial: 0A84 Authority key identifier: 0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/3EF6E4A4291D11EFBE3C7971C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:21:02 +0000 ROA not before: Fri 28 Nov 2025 19:22:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133141 IP address blocks: 2407:1ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.crl rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2692 (0xa84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6943, serialNumber=0AB99F52C9AD9BE0B9C04470CFB1B6C2360FD0F5 Validity Not Before: Nov 28 19:22:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4838e-5ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d1:99:e1:91:c1:8a:ab:56:3c:d1:fe:04:d6: fa:66:4a:0b:c0:63:aa:45:9d:e1:14:aa:c9:aa:bd: b6:8a:04:a5:c8:06:a5:01:74:cd:07:75:29:0f:4b: 37:0c:d8:1e:b8:c4:a6:3c:23:55:78:87:07:93:fb: 48:bd:37:4d:f5:23:5c:27:41:47:69:b2:48:13:79: ff:39:08:d1:97:50:f7:8b:6a:75:9d:7a:15:18:52: 6d:59:d8:4e:1f:63:8a:57:1a:ae:0e:12:4b:9a:36: ea:cc:ff:97:29:a0:bc:aa:0f:d5:0f:09:42:56:5c: 43:0b:18:f0:f9:3c:17:f2:d4:54:37:62:ce:5b:e4: 6a:b0:2c:94:01:a8:f7:03:09:59:72:d9:d6:b0:5c: e5:10:d3:07:b8:dd:93:4f:93:a9:e9:37:88:0a:c1: bc:21:fb:c1:e0:36:7a:d4:44:0f:16:cd:d1:27:e7: 14:1f:f0:1d:4b:90:1d:4a:3c:3e:10:48:7b:d4:e5: e3:a9:ec:c6:cc:e7:2e:e3:a3:c7:bd:44:36:32:3d: 16:24:07:cf:88:d2:17:c3:56:67:36:73:d3:3b:5d: 30:81:b6:af:97:fb:89:b6:0e:07:2a:8d:94:dd:62: 09:3a:cc:b7:a2:54:45:87:7c:3d:8e:93:6b:76:be: 9e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:7E:4C:4D:A8:9A:18:8F:1E:8A:C4:4E:AA:2F:2B:93:54:65:15:C5 X509v3 Authority Key Identifier: keyid:0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/3EF6E4A4291D11EFBE3C7971C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2407:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption 10:de:d1:90:11:74:d6:21:81:cb:aa:d2:ec:4c:27:39:c8:62: 29:37:ca:ff:3a:a1:6c:2e:ba:49:c1:0a:ed:e4:f7:07:90:6c: a4:83:98:14:5c:bc:14:1a:dd:69:d7:ac:29:7a:21:fc:28:2e: bb:f6:b1:01:e4:55:fe:b8:3c:ff:ae:17:b8:0d:24:9e:18:71: db:e5:eb:d8:6c:ca:2f:6b:5a:78:3c:15:c7:39:df:23:0c:b8: 3c:11:c2:25:48:7a:17:e5:e1:0a:81:e4:d7:73:f3:1c:b5:92: 2a:f3:96:28:58:58:ef:3d:73:64:c5:4c:0c:38:fd:f8:72:d2: d6:b2:67:51:50:c7:a9:f7:e6:89:0c:5c:fd:98:85:ae:93:ab: f6:96:4e:b0:79:bf:70:ae:26:61:e4:b8:33:16:19:4e:2b:63: ab:fe:bf:ff:a5:a1:b5:30:b4:18:04:30:77:d8:d8:7f:89:cf: e6:37:15:a0:b7:83:89:07:c3:70:b2:82:84:3d:6d:91:c0:9c: 90:3b:15:74:42:c8:ba:74:55:b8:bf:1d:c9:3a:49:c8:1f:ac: 65:a3:e8:c0:28:9c:90:c8:cb:bd:ae:ef:6c:94:bc:66:4f:e4: a1:3c:5f:b8:e0:d5:1c:6a:76:86:b1:dd:4f:fc:50:7b:1b:7c: 52:11:c0:e6 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgICCoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY5NDMxMTAvBgNVBAUTKDBBQjk5RjUyQzlBRDlCRTBCOUMwNDQ3MENGQjFCNkMy MzYwRkQwRjUwHhcNMjUxMTI4MTkyMjI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODM4ZS01YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkNGZ4ZHBiqtWPNH+BNb6ZkoLwGOqRZ3hFKrJqr22igSlyAalAXTNB3UpD0s3 DNgeuMSmPCNVeIcHk/tIvTdN9SNcJ0FHabJIE3n/OQjRl1D3i2p1nXoVGFJtWdhO H2OKVxquDhJLmjbqzP+XKaC8qg/VDwlCVlxDCxjw+TwX8tRUN2LOW+RqsCyUAaj3 AwlZctnWsFzlENMHuN2TT5Op6TeICsG8IfvB4DZ61EQPFs3RJ+cUH/AdS5AdSjw+ EEh71OXjqezGzOcu46PHvUQ2Mj0WJAfPiNIXw1ZnNnPTO10wgbavl/uJtg4HKo2U 3WIJOsy3olRFh3w9jpNrdr6e0wIDAQABo4ICYTCCAl0wHQYDVR0OBBYEFGF+TE2o mhiPHorETqovK5NUZRXFMB8GA1UdIwQYMBaAFAq5n1LJrZvgucBEcM+xtsI2D9D1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjk0My9CNzE4MTE2ODhE NTExMUVBQjhCMjYzODRDNEY5QUUwMi9Dcm1mVXNtdG0tQzV3RVJ3ejdHMndqWVAw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NybWZVc210bS1DNXdFUnd6N0cyd2pZUDBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY5NDMvQjcxODExNjg4RDUxMTFFQUI4QjI2Mzg0QzRGOUFFMDIvM0VGNkU0QTQy OTFEMTFFRkJFM0M3OTcxQzRGOUFFMDIucm9hMCAGCCsGAQUFBwEHAQH/BBEwDzAN BAIAAjAHAwUAJAcewDANBgkqhkiG9w0BAQsFAAOCAQEAEN7RkBF01iGBy6rS7Ewn OchiKTfK/zqhbC66ScEK7eT3B5BspIOYFFy8FBrdadesKXoh/Cguu/axAeRV/rg8 /64XuA0knhhx2+Xr2GzKL2taeDwVxznfIwy4PBHCJUh6F+XhCoHk13PzHLWSKvOW KFhY7z1zZMVMDDj9+HLS1rJnUVDHqffmiQxc/ZiFrpOr9pZOsHm/cK4mYeS4MxYZ Titjq/6//6WhtTC0GAQwd9jYf4nP5jcVoLeDiQfDcLKChD1tkcCckDsVdELIunRV uL8dyTpJyB+sZaPowCickMjLva7vbJS8Zk/koTxfuODVHGp2hrHdT/xQext8UhHA 5g== -----END CERTIFICATE-----Generated at Mon Mar 2 17:41:14 2026 by rpki-client