$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/07D143BC294811F0BE054340C4F9AE02.roa File: 07D143BC294811F0BE054340C4F9AE02.roa (raw, json) Hash identifier: kzSsxZ682v8/ERGLhjD9XrRbqG/U1pi7dFHad+/CXo0= Subject key identifier: 88:5D:3E:EE:57:92:CE:E8:63:35:27:81:CE:2C:BB:B3:A4:52:60:DA Certificate issuer: /CN=A91B7DCB/serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Certificate serial: AA Authority key identifier: 0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/07D143BC294811F0BE054340C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:19:54 +0000 ROA not before: Wed 21 Jan 2026 06:24:47 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 45586 IP address blocks: 2001:df0:f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Validity Not Before: Jan 21 06:24:47 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4672a-ec27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8d:72:c5:5b:ea:50:a3:50:dc:5e:a8:73:be: 68:e8:fb:72:3a:40:d6:8b:98:2d:5d:f6:3e:03:dc: 5c:f4:90:e8:84:f2:ab:72:4a:71:18:5d:d1:f6:39: 7f:da:eb:63:f8:08:4e:5c:f2:93:75:a7:71:bc:a2: 5d:77:96:77:dc:76:79:87:f3:8e:3b:28:f1:aa:41: dc:46:63:c4:5f:7b:6d:12:59:65:c2:c1:b7:94:24: 0b:bc:b8:34:19:e5:99:c1:2b:aa:e3:c8:71:6d:2c: 65:94:9b:cf:ab:f2:02:58:65:37:2e:7f:0c:97:4d: f5:d9:6d:3d:13:28:85:2b:ac:83:b0:50:f9:dc:16: 4a:3b:73:90:4c:1b:48:1e:85:3a:95:d7:37:80:13: d6:b3:02:3b:0c:01:2f:65:8b:78:1d:eb:60:4d:0c: 42:4a:46:2a:bd:07:e4:fd:15:e9:b8:1e:f2:98:88: 15:cd:7f:59:e5:7b:8f:00:53:d9:1c:1f:9a:83:95: a8:a0:a1:21:d5:5d:f5:d4:91:2d:15:68:70:c9:d7: a8:2b:d8:7f:b3:2e:18:48:00:32:85:a4:b0:57:06: 2b:1b:52:22:7e:67:2a:1c:02:25:b8:31:d1:53:0b: 6d:d5:b7:98:25:f1:ee:34:2e:cc:8d:39:ae:76:f7: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5D:3E:EE:57:92:CE:E8:63:35:27:81:CE:2C:BB:B3:A4:52:60:DA X509v3 Authority Key Identifier: keyid:0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/07D143BC294811F0BE054340C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df0:f0::/48 Signature Algorithm: sha256WithRSAEncryption b1:56:1b:5c:21:b0:01:3a:3a:ca:ea:25:89:3d:65:ba:4d:fc: 3f:a0:82:45:38:a6:d2:e0:b7:91:54:db:8e:3f:e4:3f:4c:ba: bf:47:0d:b6:1f:a1:6e:a1:97:d2:5c:79:9e:4c:ad:8e:15:e4: 89:c3:7a:00:a1:44:8b:2f:c6:a9:48:67:b3:5f:80:ab:69:79: 45:e2:ab:47:38:46:75:db:7e:cd:fb:ad:d2:b6:cc:ad:cf:ac: d4:e9:66:68:8d:57:c0:36:7c:8e:52:da:78:7a:34:f9:e0:d5: 83:1b:75:1c:c5:16:d7:45:74:50:b1:6f:b3:6d:75:b7:66:73: cd:79:09:86:83:8e:5c:b3:c0:df:49:ee:13:6a:c5:b0:1a:47: da:ef:32:60:a7:8c:91:b9:bb:c1:4e:7b:3b:71:13:2b:c6:43: 0a:3a:a4:7d:91:f4:2e:51:e3:b0:8c:ba:2e:7d:55:0d:44:eb: 18:e5:9e:4e:4a:65:5e:f5:4d:16:aa:18:f6:fc:8e:94:b1:4a: 27:79:6a:45:96:ca:39:9c:c2:0f:11:2c:b9:1f:d1:a9:ae:af: d7:29:02:ab:e4:86:4b:2c:8d:85:eb:66:d8:87:2e:4c:9e:53: d4:f8:75:c3:0f:f1:d3:c3:ea:7b:1f:18:fc:3e:62:4e:4e:b0: 64:62:d0:48 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEQ0IxMTAvBgNVBAUTKDBBMkEzMzEyRTA4QkE5QzQxQkU3RTBGQjU4QUE2NDJD NkQwMUI4NzUwHhcNMjYwMTIxMDYyNDQ3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjcyYS1lYzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtI1yxVvqUKNQ3F6oc75o6PtyOkDWi5gtXfY+A9xc9JDohPKrckpxGF3R9jl/ 2utj+AhOXPKTdadxvKJdd5Z33HZ5h/OOOyjxqkHcRmPEX3ttElllwsG3lCQLvLg0 GeWZwSuq48hxbSxllJvPq/ICWGU3Ln8Ml0312W09EyiFK6yDsFD53BZKO3OQTBtI HoU6ldc3gBPWswI7DAEvZYt4HetgTQxCSkYqvQfk/RXpuB7ymIgVzX9Z5XuPAFPZ HB+ag5WooKEh1V311JEtFWhwydeoK9h/sy4YSAAyhaSwVwYrG1IifmcqHAIluDHR Uwtt1beYJfHuNC7MjTmudvdObQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFIhdPu5X ks7oYzUngc4su7OkUmDaMB8GA1UdIwQYMBaAFAoqMxLgi6nEG+fg+1iqZCxtAbh1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0RDQi8wMTUwNUEzMDI5 NDUxMUYwQUUxQUJDNzRDNEY5QUUwMi9DaW96RXVDTHFjUWI1LUQ3V0twa0xHMEJ1 SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Npb3pFdUNMcWNRYjUtRDdXS3BrTEcwQnVIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdEQ0IvMDE1MDVBMzAyOTQ1MTFGMEFFMUFCQzc0QzRGOUFFMDIvMDdEMTQzQkMy OTQ4MTFGMEJFMDU0MzQwQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN8ADwMA0GCSqGSIb3DQEBCwUAA4IBAQCxVhtcIbABOjrK6iWJ PWW6Tfw/oIJFOKbS4LeRVNuOP+Q/TLq/Rw22H6FuoZfSXHmeTK2OFeSJw3oAoUSL L8apSGezX4CraXlF4qtHOEZ1237N+63Stsytz6zU6WZojVfANnyOUtp4ejT54NWD G3UcxRbXRXRQsW+zbXW3ZnPNeQmGg45cs8DfSe4TasWwGkfa7zJgp4yRubvBTns7 cRMrxkMKOqR9kfQuUeOwjLoufVUNROsY5Z5OSmVe9U0Wqhj2/I6UsUoneWpFlso5 nMIPESy5H9Gprq/XKQKr5IZLLI2F62bYhy5MnlPU+HXDD/HTw+p7Hxj8PmJOTrBk YtBI -----END CERTIFICATE-----Generated at Mon Mar 2 08:13:02 2026 by rpki-client