$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa File: 4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: 9ttVaEEltdhUs2UYv+eAKQaB+ioiRBAGNmshMZGHE7w= Subject key identifier: 03:94:DA:24:88:C9:F2:15:41:0D:70:D1:9B:E9:E5:52:AC:8C:BC:3B Certificate issuer: /CN=A91DC068/serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Certificate serial: 019D Authority key identifier: AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa Signing time: Tue 07 Apr 2026 04:37:57 +0000 ROA not before: Tue 07 Apr 2026 04:37:57 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 152590 IP address blocks: 2001:df3:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Validity Not Before: Apr 7 04:37:57 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d48a25-c8ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2d:bf:a2:7a:74:17:f3:01:28:b3:1f:02:5a: 6c:6b:b3:c9:4c:23:2e:cb:ca:fb:ea:94:aa:94:3e: 82:5a:12:69:5a:92:3c:9a:af:a0:ff:36:b2:1c:c3: 29:20:b3:85:95:a3:d0:db:3c:c1:2f:f7:0c:27:d5: 76:04:b4:5e:31:a1:ac:f1:0c:f8:ef:6f:cc:95:da: dd:bd:e5:f8:c3:03:65:d7:00:35:7d:73:8c:aa:f9: 0e:2f:97:2c:7a:a2:b7:5c:fa:15:2e:9b:e5:c5:af: 45:28:7e:83:67:f1:9e:eb:96:47:10:0d:1e:03:f4: 7f:ba:13:50:d6:45:8f:d1:18:42:f7:f6:1c:d2:d8: 00:0c:d2:c3:d7:54:4f:21:4e:aa:7b:73:c4:1a:5c: a8:68:be:03:ae:df:e4:53:b7:67:a3:e3:5c:b4:e0: bc:7d:bc:cb:fe:bd:7e:78:6e:87:a2:ac:1a:39:df: 4a:e3:9f:b2:51:b7:2d:fb:3f:6c:15:07:4b:91:53: d5:1c:6a:2a:0c:94:6f:9c:b0:09:39:64:15:bc:c7: 21:af:be:03:ec:92:f4:1f:bb:9d:1f:cc:3d:05:84: 0c:fc:bc:8a:e9:0b:d9:80:a7:38:95:af:f6:64:ba: d8:51:b0:e2:19:d4:b9:42:63:e9:f3:e8:23:b1:c9: 6a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:94:DA:24:88:C9:F2:15:41:0D:70:D1:9B:E9:E5:52:AC:8C:BC:3B X509v3 Authority Key Identifier: keyid:AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 65:ec:bf:af:9d:62:6b:b6:00:37:8a:dc:81:39:84:18:dd:16: 27:c9:a1:42:53:93:90:00:04:5f:1d:0b:d1:f6:4d:2b:1a:0a: 9e:fa:cc:4a:74:eb:54:35:2d:b6:4e:f5:e8:9c:59:f0:c1:1d: e1:63:03:1e:d5:25:88:fe:ab:69:ce:9a:5d:3d:51:ff:e7:53: 23:0a:86:a4:72:e2:b7:81:5c:20:03:c7:5f:cb:e6:b3:92:54: 22:83:33:5f:c9:2c:6c:e2:c6:3d:88:59:e9:74:82:03:d7:1d: 42:3c:34:e8:44:6b:12:41:5d:ec:92:6e:8e:9c:ee:0c:cb:75: 15:54:95:2d:32:87:f6:e8:3b:db:06:81:59:e6:d6:83:d0:b2: fb:9e:e6:45:a8:e2:10:45:cb:70:05:7c:d9:0b:3d:0e:ca:58: 1c:48:aa:9e:79:89:86:bb:bb:5a:46:56:49:85:9c:d8:a0:9f: 9a:8c:f1:cf:aa:36:9c:ad:3a:b3:18:8c:af:d0:a0:ae:e1:e9: 03:7f:5f:e1:d5:28:f8:5e:20:b9:a8:00:aa:51:72:c1:df:dd: ec:96:bb:f7:d6:27:65:5b:72:cd:30:f4:25:0b:0d:f2:bd:06: af:75:8e:8f:bb:a4:0b:ff:ae:24:29:75:fb:fb:bc:6d:4e:e2: b0:65:0d:6b -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKEFBMzZERUFBMEI0ODhENzQzRDMwOTZBMzc0RDNDRUMz MDM0RTY5REEwHhcNMjYwNDA3MDQzNzU3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ0OGEyNS1jOGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyC2/onp0F/MBKLMfAlpsa7PJTCMuy8r76pSqlD6CWhJpWpI8mq+g/zayHMMp ILOFlaPQ2zzBL/cMJ9V2BLReMaGs8Qz472/MldrdveX4wwNl1wA1fXOMqvkOL5cs eqK3XPoVLpvlxa9FKH6DZ/Ge65ZHEA0eA/R/uhNQ1kWP0RhC9/Yc0tgADNLD11RP IU6qe3PEGlyoaL4Drt/kU7dno+NctOC8fbzL/r1+eG6HoqwaOd9K45+yUbct+z9s FQdLkVPVHGoqDJRvnLAJOWQVvMchr74D7JL0H7udH8w9BYQM/LyK6QvZgKc4la/2 ZLrYUbDiGdS5QmPp8+gjsclqawIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFAOU2iSI yfIVQQ1w0Zvp5VKsjLw7MB8GA1UdIwQYMBaAFKo23qoLSI10PTCWo3TTzsMDTmna MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC83ODFFN0RDNEQ1 MTYxMUVFQjM1RTZBNjBDNEY5QUUwMi9xamJlcWd0SWpYUTlNSmFqZE5QT3d3Tk9h ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FqYmVxZ3RJalhROU1KYWpkTlBPd3dOT2Fkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwNjgvNzgxRTdEQzRENTE2MTFFRUIzNUU2QTYwQzRGOUFFMDIvNENGRkYwQTZE NUREMTFFRUE1QjFDNzExQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN84DAMA0GCSqGSIb3DQEBCwUAA4IBAQBl7L+vnWJrtgA3ityB OYQY3RYnyaFCU5OQAARfHQvR9k0rGgqe+sxKdOtUNS22TvXonFnwwR3hYwMe1SWI /qtpzppdPVH/51MjCoakcuK3gVwgA8dfy+azklQigzNfySxs4sY9iFnpdIID1x1C PDToRGsSQV3skm6OnO4My3UVVJUtMof26DvbBoFZ5taD0LL7nuZFqOIQRctwBXzZ Cz0OylgcSKqeeYmGu7taRlZJhZzYoJ+ajPHPqjacrTqzGIyv0KCu4ekDf1/h1Sj4 XiC5qACqUXLB393slrv31idlW3LNMPQlCw3yvQavdY6Pu6QL/64kKXX7+7xtTuKw ZQ1r -----END CERTIFICATE-----Generated at Fri Apr 17 18:57:14 2026 by rpki-client