$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD7A3/8F06025AC52411F0A2A4DD1AC4F9AE02/132F5C52C52511F0B4A6F21BC4F9AE02.roa File: 132F5C52C52511F0B4A6F21BC4F9AE02.roa (raw, json) Hash identifier: +oT+l8AaeCiLhYsjOPIgCUOdYkL2JAeHR0qNvNkZXgc= Subject key identifier: 28:56:60:F8:FD:E1:19:D6:2D:B0:D8:14:4C:27:66:98:E7:84:6D:D1 Certificate issuer: /CN=A91BD7A3/serialNumber=3E0C39B5584ACFAE418081388F4F0A94D6DA8E06 Certificate serial: 36 Authority key identifier: 3E:0C:39:B5:58:4A:CF:AE:41:80:81:38:8F:4F:0A:94:D6:DA:8E:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pgw5tVhKz65BgIE4j08KlNbajgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD7A3/8F06025AC52411F0A2A4DD1AC4F9AE02/132F5C52C52511F0B4A6F21BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:00:14 +0000 ROA not before: Wed 19 Nov 2025 08:52:27 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154351 IP address blocks: 2001:df6:4bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD7A3/8F06025AC52411F0A2A4DD1AC4F9AE02/Pgw5tVhKz65BgIE4j08KlNbajgY.crl rsync://rpki.apnic.net/member_repository/A91BD7A3/8F06025AC52411F0A2A4DD1AC4F9AE02/Pgw5tVhKz65BgIE4j08KlNbajgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pgw5tVhKz65BgIE4j08KlNbajgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:57:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD7A3, serialNumber=3E0C39B5584ACFAE418081388F4F0A94D6DA8E06 Validity Not Before: Nov 19 08:52:27 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d5ee-56e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:98:74:0d:2a:ce:f2:ad:f0:84:0a:48:7e:f3: 80:30:e9:4f:b9:60:d3:bd:c9:ab:c9:16:1e:2a:be: 33:6a:3f:21:ba:0f:43:00:ca:f7:55:85:55:e1:ac: ad:69:7b:b8:44:13:26:26:15:82:5f:e8:6c:9f:91: 2b:71:12:bb:d4:8d:a2:b5:f4:33:62:89:19:e6:09: ff:3c:08:6a:a2:00:10:5b:f6:cd:6b:e4:46:93:9b: c1:cb:95:a2:f6:45:9b:68:77:4a:4b:58:f2:3e:20: 6c:24:92:a7:05:1d:48:40:63:48:dd:ce:49:b8:7e: c4:8b:d8:7c:fe:22:54:7e:31:3d:42:4d:00:27:45: 01:a3:70:1d:c9:90:97:f3:97:42:23:d7:6e:b7:03: d5:38:35:d4:7f:a1:84:f7:84:ac:35:da:1f:bd:5f: 92:9f:4f:77:3c:bf:36:ba:3f:f3:39:7d:f4:b2:fc: 35:df:55:38:7b:68:bf:35:77:29:b5:57:1c:88:08: 9d:b3:a1:10:50:58:ec:da:9b:35:9a:1a:9d:00:64: 26:98:1d:2b:0d:00:92:53:95:b2:3b:29:09:6f:a2: a6:29:23:f2:dd:6e:97:ca:83:21:c1:f3:f2:72:91: 17:f0:32:28:fd:01:68:9e:4a:7c:a5:eb:aa:6f:a2: 84:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:56:60:F8:FD:E1:19:D6:2D:B0:D8:14:4C:27:66:98:E7:84:6D:D1 X509v3 Authority Key Identifier: keyid:3E:0C:39:B5:58:4A:CF:AE:41:80:81:38:8F:4F:0A:94:D6:DA:8E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD7A3/8F06025AC52411F0A2A4DD1AC4F9AE02/Pgw5tVhKz65BgIE4j08KlNbajgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pgw5tVhKz65BgIE4j08KlNbajgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD7A3/8F06025AC52411F0A2A4DD1AC4F9AE02/132F5C52C52511F0B4A6F21BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:4bc0::/48 Signature Algorithm: sha256WithRSAEncryption 8e:d0:fa:69:8b:bb:5f:b8:98:51:5d:84:67:25:43:57:8b:3e: 4b:bc:8f:42:db:df:0b:2f:01:bb:60:4e:d9:93:cc:86:b9:ce: 73:08:b4:1b:14:d8:ac:8e:1c:03:87:15:14:57:eb:c5:69:53: 0b:f9:8b:b6:ab:0b:b3:40:a6:01:4a:df:81:53:e3:e0:4e:8f: fa:46:65:af:4d:61:99:a7:4c:a2:f5:11:3a:10:3e:ef:9f:c5: 73:3d:ab:84:0b:04:06:93:35:bb:cd:58:9e:94:95:4e:1e:0d: da:e4:40:a2:71:53:da:ea:d6:fe:3b:23:69:96:53:ac:3a:ea: b7:b3:61:c1:1d:83:c7:74:c8:45:8b:0e:04:77:17:71:9a:ee: de:29:c8:37:1b:5a:b4:79:6f:7c:05:75:9b:d6:7b:57:88:09: ac:31:18:ba:52:51:0c:dd:18:ab:64:ed:54:d9:98:da:c8:51: c6:6f:e7:8d:4b:a0:a9:94:04:a5:25:48:0d:52:20:2c:90:ac: fc:48:5a:a9:1a:e1:f4:6e:36:e4:80:7a:67:82:7a:e9:fc:c8: 45:db:63:98:24:90:1f:65:95:18:ce:86:db:ca:bd:e5:80:c8: 2b:e9:4e:78:30:54:88:d9:e4:b0:77:b0:27:d1:82:83:bb:5c: da:16:27:a4 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RDdBMzExMC8GA1UEBRMoM0UwQzM5QjU1ODRBQ0ZBRTQxODA4MTM4OEY0RjBBOTRE NkRBOEUwNjAeFw0yNTExMTkwODUyMjdaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNWVlLTU2ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCSmHQNKs7yrfCECkh+84Aw6U+5YNO9yavJFh4qvjNqPyG6D0MAyvdVhVXhrK1p e7hEEyYmFYJf6GyfkStxErvUjaK19DNiiRnmCf88CGqiABBb9s1r5EaTm8HLlaL2 RZtod0pLWPI+IGwkkqcFHUhAY0jdzkm4fsSL2Hz+IlR+MT1CTQAnRQGjcB3JkJfz l0Ij1263A9U4NdR/oYT3hKw12h+9X5KfT3c8vza6P/M5ffSy/DXfVTh7aL81dym1 VxyICJ2zoRBQWOzamzWaGp0AZCaYHSsNAJJTlbI7KQlvoqYpI/LdbpfKgyHB8/Jy kRfwMij9AWieSnyl66pvooStAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUKFZg+P3h GdYtsNgUTCdmmOeEbdEwHwYDVR0jBBgwFoAUPgw5tVhKz65BgIE4j08KlNbajgYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJEN0EzLzhGMDYwMjVBQzUy NDExRjBBMkE0REQxQUM0RjlBRTAyL1BndzV0VmhLejY1QmdJRTRqMDhLbE5iYWpn WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUGd3NXRWaEt6NjVCZ0lFNGowOEtsTmJhamdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDdBMy84RjA2MDI1QUM1MjQxMUYwQTJBNEREMUFDNEY5QUUwMi8xMzJGNUM1MkM1 MjUxMUYwQjRBNkYyMUJDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32S8AwDQYJKoZIhvcNAQELBQADggEBAI7Q+mmLu1+4mFFdhGcl Q1eLPku8j0Lb3wsvAbtgTtmTzIa5znMItBsU2KyOHAOHFRRX68VpUwv5i7arC7NA pgFK34FT4+BOj/pGZa9NYZmnTKL1EToQPu+fxXM9q4QLBAaTNbvNWJ6UlU4eDdrk QKJxU9rq1v47I2mWU6w66rezYcEdg8d0yEWLDgR3F3Ga7t4pyDcbWrR5b3wFdZvW e1eICawxGLpSUQzdGKtk7VTZmNrIUcZv541LoKmUBKUlSA1SICyQrPxIWqka4fRu NuSAemeCeun8yEXbY5gkkB9llRjOhtvKveWAyCvpTngwVIjZ5LB3sCfRgoO7XNoW J6Q= -----END CERTIFICATE-----Generated at Mon Mar 2 20:56:36 2026 by rpki-client