$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3958EEC642BB11F0B449BB81C4F9AE02.roa File: 3958EEC642BB11F0B449BB81C4F9AE02.roa (raw, json) Hash identifier: xBMqZvhUayr3U1URgwrl8EIqJ+zMDOpes797KaEjYwY= Subject key identifier: 1B:7A:60:11:88:FB:AB:CB:87:EB:E7:6E:72:DE:AA:74:F1:55:B6:BB Certificate issuer: /CN=A91A7273/serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Certificate serial: CD Authority key identifier: DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3958EEC642BB11F0B449BB81C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:51:38 +0000 ROA not before: Sat 13 Dec 2025 06:25:23 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132894 IP address blocks: 2001:df5:acc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7273, serialNumber=DDA49F41F618A55F9CA7CFC55BAEA7B616D95762 Validity Not Before: Dec 13 06:25:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a41a3a-c5ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:15:7a:14:cf:a3:ef:cd:54:3d:3a:75:7e:98: f2:bb:ec:38:19:3c:f7:f4:0d:8a:41:e0:3e:24:81: ee:2a:9f:fe:12:da:5a:b5:a2:ac:29:85:6d:2e:6e: 69:f1:a2:07:d2:a2:38:c3:0a:73:f2:8c:7f:a9:d2: a2:ac:da:75:cc:e7:7b:d2:47:14:a6:c1:f2:77:0b: 23:b2:66:11:9b:a4:98:f4:e0:13:27:c9:17:08:02: 39:f1:75:52:f0:c0:25:81:21:1c:8f:18:5a:92:8f: 0b:48:b1:26:2f:26:ea:90:65:f1:6f:ed:2e:a4:cb: 11:5a:b8:bc:31:9d:fd:bd:f9:f7:27:e7:e2:00:66: 71:d2:f6:3e:50:d7:4f:3f:56:23:1e:39:71:89:4c: 99:53:f0:bc:44:be:28:de:3a:5d:b5:90:44:f9:24: 7b:47:3a:08:aa:18:3e:8a:25:77:ea:45:47:47:d2: f4:e0:14:24:24:68:ad:ec:8b:71:2c:8e:40:49:10: 35:b8:e7:b3:80:bd:9d:c7:f5:df:7a:19:ab:27:16: 72:13:84:f9:3e:10:22:a5:6f:6f:bc:65:de:bb:c3: e9:34:2a:2d:68:18:77:5a:bb:2f:4d:40:7d:8c:43: 52:71:04:ff:15:53:dc:e0:53:c3:1d:3a:dd:b8:db: e8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7A:60:11:88:FB:AB:CB:87:EB:E7:6E:72:DE:AA:74:F1:55:B6:BB X509v3 Authority Key Identifier: keyid:DD:A4:9F:41:F6:18:A5:5F:9C:A7:CF:C5:5B:AE:A7:B6:16:D9:57:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3aSfQfYYpV-cp8_FW66nthbZV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3aSfQfYYpV-cp8_FW66nthbZV2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7273/FC50500EE77111EF9DFBDD50C4F9AE02/3958EEC642BB11F0B449BB81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:acc0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:30:ad:ec:7d:c6:47:f4:6c:c2:4b:7f:df:bf:2f:e1:40:65: 0f:28:6c:36:e0:b8:12:82:d3:87:bb:e4:9e:a3:48:23:f3:e7: 9e:d1:1f:dc:db:8e:15:af:5e:36:d5:98:00:bf:ba:2e:87:d3: 0c:3f:b7:4a:39:f8:1b:5d:e4:d8:2d:94:d8:38:56:95:9f:48: 2e:d4:3d:fd:8c:35:ee:78:3b:fe:58:4c:b4:6b:a6:c5:18:11: 3b:31:57:43:ba:d6:bc:00:f1:40:b9:34:39:24:ef:1c:4a:63: b6:92:c9:b7:53:66:97:2b:04:52:4d:a5:66:54:53:29:c5:97: eb:2a:f4:dd:ea:1a:3e:96:cd:c2:17:e0:04:56:ba:7d:bb:d0: a9:b0:27:d3:18:d5:a4:00:1e:2d:9d:f3:d4:e5:34:f8:0f:0f: 45:c9:c5:90:90:de:90:85:9f:a8:e5:91:18:d8:3c:c7:e2:f1: 30:6b:ce:cd:4c:ce:91:00:3c:06:0b:0d:80:b9:eb:f2:f4:cc: 1d:83:e0:c9:d1:f0:ca:d8:29:6e:1c:52:e2:59:30:91:c6:7b: b0:ac:61:d1:a5:f6:8b:ec:5a:05:6a:85:7b:82:3d:9a:df:a4: d9:22:81:2d:25:9c:66:62:fc:a9:d2:82:72:a8:e6:c8:31:ff: f1:df:a6:f8 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcyNzMxMTAvBgNVBAUTKEREQTQ5RjQxRjYxOEE1NUY5Q0E3Q0ZDNTVCQUVBN0I2 MTZEOTU3NjIwHhcNMjUxMjEzMDYyNTIzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWEzYS1jNWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxV6FM+j781UPTp1fpjyu+w4GTz39A2KQeA+JIHuKp/+EtpataKsKYVtLm5p 8aIH0qI4wwpz8ox/qdKirNp1zOd70kcUpsHydwsjsmYRm6SY9OATJ8kXCAI58XVS 8MAlgSEcjxhako8LSLEmLybqkGXxb+0upMsRWri8MZ39vfn3J+fiAGZx0vY+UNdP P1YjHjlxiUyZU/C8RL4o3jpdtZBE+SR7RzoIqhg+iiV36kVHR9L04BQkJGit7Itx LI5ASRA1uOezgL2dx/XfehmrJxZyE4T5PhAipW9vvGXeu8PpNCotaBh3WrsvTUB9 jENScQT/FVPc4FPDHTrduNvoeQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFBt6YBGI +6vLh+vnbnLeqnTxVba7MB8GA1UdIwQYMBaAFN2kn0H2GKVfnKfPxVuup7YW2Vdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzI3My9GQzUwNTAwRUU3 NzExMUVGOURGQkRENTBDNEY5QUUwMi8zYVNmUWZZWXBWLWNwOF9GVzY2bnRoYlpW MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhU2ZRZllZcFYtY3A4X0ZXNjZudGhiWlYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTcyNzMvRkM1MDUwMEVFNzcxMTFFRjlERkJERDUwQzRGOUFFMDIvMzk1OEVFQzY0 MkJCMTFGMEI0NDlCQjgxQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9azAMA0GCSqGSIb3DQEBCwUAA4IBAQA/MK3sfcZH9GzCS3/f vy/hQGUPKGw24LgSgtOHu+Seo0gj8+ee0R/c244Vr1421ZgAv7ouh9MMP7dKOfgb XeTYLZTYOFaVn0gu1D39jDXueDv+WEy0a6bFGBE7MVdDuta8APFAuTQ5JO8cSmO2 ksm3U2aXKwRSTaVmVFMpxZfrKvTd6ho+ls3CF+AEVrp9u9CpsCfTGNWkAB4tnfPU 5TT4Dw9FycWQkN6QhZ+o5ZEY2DzH4vEwa87NTM6RADwGCw2Auevy9Mwdg+DJ0fDK 2CluHFLiWTCRxnuwrGHRpfaL7FoFaoV7gj2a36TZIoEtJZxmYvyp0oJyqObIMf/x 36b4 -----END CERTIFICATE-----Generated at Mon Mar 2 07:51:00 2026 by rpki-client