$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/DA06E7EAA37511F09017D760C4F9AE02.roa File: DA06E7EAA37511F09017D760C4F9AE02.roa (raw, json) Hash identifier: jDv+Js4PBwNUeHPmXEMSjePprI/MWg7gMm1K3QYqJ6U= Subject key identifier: B1:13:54:9E:09:07:42:FB:E0:EC:1E:35:38:55:21:25:B9:24:1B:FA Certificate issuer: /CN=A91DE19B/serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Certificate serial: 61 Authority key identifier: DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/DA06E7EAA37511F09017D760C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:21:47 +0000 ROA not before: Mon 13 Oct 2025 07:52:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140613 IP address blocks: 223.165.2.0/23 maxlen: 23 223.165.2.0/24 maxlen: 24 223.165.3.0/24 maxlen: 24 2001:df6:26c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE19B, serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Validity Not Before: Oct 13 07:52:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a58eeb-32f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:6b:52:28:89:63:26:22:24:dc:e5:13:3c: 60:23:3a:36:0e:4a:56:13:22:f1:e2:50:ec:cd:fc: 13:69:8b:cd:cc:e1:8a:42:db:8a:7a:62:bb:73:02: e3:c0:d6:ac:4d:83:50:98:1a:fd:28:27:3e:62:e7: 7f:37:38:e1:fc:43:84:c4:19:90:35:0d:c7:27:55: c7:05:0a:73:b6:dc:35:96:c7:fe:f7:cd:b3:be:5e: c4:2d:0d:d6:ac:15:c8:59:e9:8e:9a:37:1d:a5:b2: bb:ac:4c:e3:10:41:de:dd:80:d9:ca:d3:21:f0:8a: cd:48:ed:56:fe:90:6e:23:32:70:52:ec:bb:af:f4: 1d:c6:2d:d2:03:73:17:b4:61:90:b2:47:90:bc:90: 21:48:20:85:53:58:22:7e:14:59:9a:4b:df:40:ad: 48:5c:14:1e:67:77:6c:8a:82:54:dc:ea:20:f4:22: 0d:66:8a:43:78:ad:d8:ea:da:cf:f2:a4:1d:1c:dd: b7:55:02:24:cf:3c:d6:b6:5a:a1:4d:0c:73:4f:f4: 18:9c:99:07:ef:59:ff:f2:84:6a:5f:4d:9a:2d:82: b9:3d:e0:74:2f:de:bf:43:c3:b7:96:ba:c2:e8:f5: 37:93:f4:0f:3e:68:7b:60:c2:be:f9:6e:34:cf:10: 18:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:13:54:9E:09:07:42:FB:E0:EC:1E:35:38:55:21:25:B9:24:1B:FA X509v3 Authority Key Identifier: keyid:DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/DA06E7EAA37511F09017D760C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 223.165.2.0/23 IPv6: 2001:df6:26c0::/48 Signature Algorithm: sha256WithRSAEncryption 05:eb:df:70:59:28:43:22:68:34:c4:1d:3d:3f:ea:e1:26:5b: a5:0f:4b:f1:84:4f:a9:8f:fd:1c:49:65:0d:d9:47:e7:65:65: ab:10:47:24:c8:74:0e:3b:0c:35:45:77:d7:00:69:74:63:25: c5:88:44:4e:4f:52:e1:71:ed:e5:0d:dd:47:55:91:42:6c:73: a0:a1:e5:96:02:79:0a:9d:d9:8f:fb:83:9b:2b:21:41:da:3e: dd:fc:60:0c:17:4f:3a:ce:98:69:29:7f:bc:d3:fa:dc:fc:b0: e4:39:50:24:ed:55:a8:6f:1c:e4:0e:59:3a:40:67:40:84:3e: 91:6b:5a:92:01:cf:16:76:2e:63:b8:e5:51:ff:12:fa:dc:fe: 69:b9:b8:90:b0:d1:7d:b8:85:17:0b:e0:bf:3d:ec:9e:73:a5: c4:8b:a8:67:2c:56:bb:db:62:5e:35:82:dd:af:96:2d:c3:31: 5a:f9:9d:17:df:72:d1:07:b1:c7:ca:a4:11:e9:2a:58:02:1c: 36:40:e1:f1:18:91:66:2e:a7:3a:4b:43:e6:94:a4:4b:a6:e0: 06:02:c5:6f:bb:dc:d2:6d:0e:24:35:a0:f4:b0:be:2c:d3:da: 0c:de:f8:53:25:77:06:cc:0c:49:44:58:78:08:b5:01:4c:a0: 12:78:f3:b1 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTE5QjExMC8GA1UEBRMoREYyMkE5QTU3QjdEM0E4QUVCMTI0RDY5MEM3OTE3MDY2 QjREQjU5RTAeFw0yNTEwMTMwNzUyNTZaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4ZWViLTMyZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDETGtSKIljJiIk3OUTPGAjOjYOSlYTIvHiUOzN/BNpi83M4YpC24p6YrtzAuPA 1qxNg1CYGv0oJz5i5383OOH8Q4TEGZA1DccnVccFCnO23DWWx/73zbO+XsQtDdas FchZ6Y6aNx2lsrusTOMQQd7dgNnK0yHwis1I7Vb+kG4jMnBS7Luv9B3GLdIDcxe0 YZCyR5C8kCFIIIVTWCJ+FFmaS99ArUhcFB5nd2yKglTc6iD0Ig1mikN4rdjq2s/y pB0c3bdVAiTPPNa2WqFNDHNP9BicmQfvWf/yhGpfTZotgrk94HQv3r9Dw7eWusLo 9TeT9A8+aHtgwr75bjTPEBg3AgMBAAGjggJxMIICbTAdBgNVHQ4EFgQUsRNUngkH Qvvg7B41OFUhJbkkG/owHwYDVR0jBBgwFoAU3yKppXt9OorrEk1pDHkXBmtNtZ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMTlCL0RBQjg1RTI4QTM3 MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29yckVrMXBESGtYQm10TnRa NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3lLcHBYdDlPb3JyRWsxcERIa1hCbXROdFo0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTE5Qi9EQUI4NUUyOEEzNzMxMUYwOEY4OTFDMzdDNEY5QUUwMi9EQTA2RTdFQUEz NzUxMUYwOTAxN0Q3NjBDNEY5QUUwMi5yb2EwMAYIKwYBBQUHAQcBAf8EITAfMAwE AgABMAYDBAHfpQIwDwQCAAIwCQMHACABDfYmwDANBgkqhkiG9w0BAQsFAAOCAQEA BevfcFkoQyJoNMQdPT/q4SZbpQ9L8YRPqY/9HEllDdlH52VlqxBHJMh0DjsMNUV3 1wBpdGMlxYhETk9S4XHt5Q3dR1WRQmxzoKHllgJ5Cp3Zj/uDmyshQdo+3fxgDBdP Os6YaSl/vNP63Pyw5DlQJO1VqG8c5A5ZOkBnQIQ+kWtakgHPFnYuY7jlUf8S+tz+ abm4kLDRfbiFFwvgvz3snnOlxIuoZyxWu9tiXjWC3a+WLcMxWvmdF99y0Qexx8qk EekqWAIcNkDh8RiRZi6nOktD5pSkS6bgBgLFb7vc0m0OJDWg9LC+LNPaDN74UyV3 BswMSURYeAi1AUygEnjzsQ== -----END CERTIFICATE-----Generated at Mon Mar 2 17:04:33 2026 by rpki-client