$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/DD3F28CC93D111F0B0A32B0BC4F9AE02.roa File: DD3F28CC93D111F0B0A32B0BC4F9AE02.roa (raw, json) Hash identifier: Cadr/xUb1+0gVtL0k3xW6zkBh+JLJ5ZTxdWq64WB59k= Subject key identifier: BC:E4:C0:E2:50:84:DC:D8:C0:4B:7B:0F:50:68:5F:84:43:2C:A5:80 Certificate issuer: /CN=A91DF195/serialNumber=615775A4DE23E46A8B57C8F7B9C9E1E886E5D8D5 Certificate serial: 64 Authority key identifier: 61:57:75:A4:DE:23:E4:6A:8B:57:C8:F7:B9:C9:E1:E8:86:E5:D8:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/DD3F28CC93D111F0B0A32B0BC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:16:52 +0000 ROA not before: Wed 31 Dec 2025 07:24:42 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63956 IP address blocks: 2001:df5:f040::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.crl rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF195, serialNumber=615775A4DE23E46A8B57C8F7B9C9E1E886E5D8D5 Validity Not Before: Dec 31 07:24:42 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45864-0d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6b:43:bb:bd:c2:5c:3c:2e:b1:f4:2e:e1:ee: 68:dc:ca:ef:95:83:27:54:2d:02:f6:d0:b6:f4:7a: 94:24:8e:ff:bf:ce:0d:b2:c2:44:83:cc:48:8b:c9: bc:5b:5e:61:1e:d2:7f:d6:60:ae:27:81:4c:fb:3f: 45:e7:24:cd:85:a0:79:59:5c:ad:34:d8:0f:6d:bb: 97:a2:e8:b1:65:5b:36:1b:c6:07:a0:b3:0d:dc:6b: 91:0b:74:90:0d:6a:7e:7d:1d:d7:7d:0b:f7:d2:39: e9:fd:8b:0e:cc:5d:b5:c7:73:cf:8b:2b:a7:2b:d6: 90:7d:58:13:3b:40:8d:47:a0:a9:c4:eb:43:a6:09: 20:83:f2:33:51:29:e1:c3:05:59:4f:ba:e7:b0:84: a4:e7:26:dd:ac:27:da:b3:27:08:01:a7:1d:0c:c6: cd:d5:1e:33:b0:7f:6d:d6:21:d6:9e:4f:59:9d:d3: eb:ae:98:a6:03:5c:35:15:ed:c4:a8:0a:ab:99:4e: 89:0d:e3:ad:44:0f:7e:38:85:36:78:13:1d:07:a1: 5c:ef:d9:a5:0f:37:7b:d6:ea:47:b2:81:c1:0e:01: ff:dc:b3:cc:7d:a2:88:dd:ea:a9:c0:b2:0a:41:b3: 00:a7:c3:15:e5:38:ef:91:2f:67:1a:e3:30:4a:5b: 6e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E4:C0:E2:50:84:DC:D8:C0:4B:7B:0F:50:68:5F:84:43:2C:A5:80 X509v3 Authority Key Identifier: keyid:61:57:75:A4:DE:23:E4:6A:8B:57:C8:F7:B9:C9:E1:E8:86:E5:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/DD3F28CC93D111F0B0A32B0BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:f040::/47 Signature Algorithm: sha256WithRSAEncryption b2:5e:55:3a:7a:97:62:37:36:65:02:ab:c2:99:b3:15:84:a0: 15:27:b1:04:01:50:50:1c:b7:cd:dd:ad:f4:ca:df:b5:9c:2d: 42:6d:e7:f7:7c:fe:27:68:a2:4b:db:b8:b2:05:d6:72:42:25: df:bf:68:08:e2:02:aa:d3:9f:d9:90:3d:2d:52:1d:35:ae:f8: d9:e3:d5:67:83:22:a0:24:d0:65:11:19:9b:23:f7:3d:ff:2b: 31:e8:be:21:60:b6:99:5c:8d:55:b6:79:98:a4:bf:e5:6b:dc: 38:4d:86:cd:6b:a2:76:71:89:65:bd:49:fc:ea:81:ea:eb:24: 11:bf:75:67:ea:6b:fe:66:8e:a2:50:fe:73:a6:df:ae:aa:df: af:fb:9d:12:f6:37:90:31:9a:76:62:87:95:24:11:ad:18:8e: 88:34:9a:1f:ab:37:20:c6:0d:7f:8e:50:9b:f0:40:53:fa:f1: 4b:32:43:c1:48:ea:0e:e5:2b:21:51:83:43:f6:ee:d8:4f:5c: 66:e3:d7:6c:51:ce:62:e0:5a:4a:26:25:db:9b:18:f6:8d:61: 30:01:66:3b:3b:f3:f3:e8:4b:8a:2e:6a:72:c6:a9:fc:88:29: 76:4a:2f:99:8f:a4:4f:fd:9b:69:92:e7:26:95:37:aa:60:2f: 11:32:54:84 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjE5NTExMC8GA1UEBRMoNjE1Nzc1QTRERTIzRTQ2QThCNTdDOEY3QjlDOUUxRTg4 NkU1RDhENTAeFw0yNTEyMzEwNzI0NDJaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ1ODY0LTBkNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYa0O7vcJcPC6x9C7h7mjcyu+VgydULQL20Lb0epQkjv+/zg2ywkSDzEiLybxb XmEe0n/WYK4ngUz7P0XnJM2FoHlZXK002A9tu5ei6LFlWzYbxgegsw3ca5ELdJAN an59Hdd9C/fSOen9iw7MXbXHc8+LK6cr1pB9WBM7QI1HoKnE60OmCSCD8jNRKeHD BVlPuuewhKTnJt2sJ9qzJwgBpx0Mxs3VHjOwf23WIdaeT1md0+uumKYDXDUV7cSo CquZTokN461ED344hTZ4Ex0HoVzv2aUPN3vW6keygcEOAf/cs8x9oojd6qnAsgpB swCnwxXlOO+RL2ca4zBKW24NAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUvOTA4lCE 3NjAS3sPUGhfhEMspYAwHwYDVR0jBBgwFoAUYVd1pN4j5GqLV8j3ucnh6Ibl2NUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMTk1Lzc0QzE4RjcwOTM4 QTExRjBCQkQ2MjM4NUM0RjlBRTAyL1lWZDFwTjRqNUdxTFY4ajN1Y25oNklibDJO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVZkMXBONGo1R3FMVjhqM3Vjbmg2SWJsMk5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjE5NS83NEMxOEY3MDkzOEExMUYwQkJENjIzODVDNEY5QUUwMi9ERDNGMjhDQzkz RDExMUYwQjBBMzJCMEJDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwEgAQ318EAwDQYJKoZIhvcNAQELBQADggEBALJeVTp6l2I3NmUCq8KZ sxWEoBUnsQQBUFAct83drfTK37WcLUJt5/d8/idookvbuLIF1nJCJd+/aAjiAqrT n9mQPS1SHTWu+Nnj1WeDIqAk0GURGZsj9z3/KzHoviFgtplcjVW2eZikv+Vr3DhN hs1ronZxiWW9SfzqgerrJBG/dWfqa/5mjqJQ/nOm366q36/7nRL2N5AxmnZih5Uk Ea0Yjog0mh+rNyDGDX+OUJvwQFP68UsyQ8FI6g7lKyFRg0P27thPXGbj12xRzmLg WkomJdubGPaNYTABZjs78/PoS4ouanLGqfyIKXZKL5mPpE/9m2mS5yaVN6pgLxEy VIQ= -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:20 2026 by rpki-client