$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/E68B45D6596711F094054D6BC4F9AE02.roa File: E68B45D6596711F094054D6BC4F9AE02.roa (raw, json) Hash identifier: sLjeaSGa4LRSlSB8sQPoF/VbSZaMLTrPtakBzYE292w= Subject key identifier: B3:1D:C7:51:F0:90:80:6A:00:DF:E7:F4:AC:59:F4:3A:16:AC:24:47 Certificate issuer: /CN=A91E33AA/serialNumber=F7D6DE6E7B2AC7BD450C7715863E979955383E4E Certificate serial: 81 Authority key identifier: F7:D6:DE:6E:7B:2A:C7:BD:45:0C:77:15:86:3E:97:99:55:38:3E:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99bebnsqx71FDHcVhj6XmVU4Pk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/E68B45D6596711F094054D6BC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:44:01 +0000 ROA not before: Sat 05 Jul 2025 06:18:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134732 IP address blocks: 2001:df5:d3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/99bebnsqx71FDHcVhj6XmVU4Pk4.crl rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/99bebnsqx71FDHcVhj6XmVU4Pk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99bebnsqx71FDHcVhj6XmVU4Pk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 12:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=F7D6DE6E7B2AC7BD450C7715863E979955383E4E Validity Not Before: Jul 5 06:18:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58611-538e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b8:39:3c:47:fc:39:ad:1d:82:01:5a:3d:6c: 13:14:a6:ac:e2:6f:c0:f1:c2:de:ad:3c:81:69:c8: d8:d1:3b:6b:ec:5b:6f:42:74:f4:77:43:c6:5c:05: df:af:56:e1:99:94:ba:b5:06:86:57:eb:2b:e5:84: 29:7c:66:63:7a:b1:e8:cb:a3:20:ba:48:67:d0:ad: 80:c2:94:4b:02:ec:a4:5f:09:a0:a8:b8:f6:eb:c7: 81:ad:a4:06:55:cb:c7:b7:2b:c4:40:c4:bd:f8:30: 28:d9:09:56:cd:42:3c:aa:4c:d5:fb:bf:28:35:7f: c3:aa:80:3e:4c:39:49:dd:f3:20:77:6f:68:e4:ec: 40:76:22:46:6a:c1:4d:3c:b6:98:a4:ac:e4:6e:c8: f3:e1:e9:ae:65:64:27:87:f6:db:a9:b9:28:aa:ee: 5c:d0:05:64:a1:79:4c:af:05:83:4d:07:dc:28:8c: 47:19:d6:f7:76:52:7b:07:2f:85:88:df:92:81:21: ce:cc:e1:e8:b1:bd:33:ff:2d:d4:33:6a:3a:39:2a: 64:15:85:50:16:ef:00:d1:49:b9:0f:a5:0a:11:4f: b4:b3:30:45:e8:cb:ac:56:47:4b:b7:0e:50:8c:c1: e8:5e:50:ef:d6:59:32:b3:d9:c0:38:c6:35:65:87: 3b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:1D:C7:51:F0:90:80:6A:00:DF:E7:F4:AC:59:F4:3A:16:AC:24:47 X509v3 Authority Key Identifier: keyid:F7:D6:DE:6E:7B:2A:C7:BD:45:0C:77:15:86:3E:97:99:55:38:3E:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/99bebnsqx71FDHcVhj6XmVU4Pk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99bebnsqx71FDHcVhj6XmVU4Pk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/52D9AD46596711F08C40792CC4F9AE02/E68B45D6596711F094054D6BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:d3c0::/48 Signature Algorithm: sha256WithRSAEncryption 91:3a:51:f0:ed:4d:19:6f:e0:0b:38:15:56:7f:d0:8f:d5:99: 56:16:2c:fb:55:52:35:0f:b0:6b:9b:f4:bf:01:e5:51:8e:51: 68:98:4d:2f:8e:64:8a:fd:40:9a:67:a3:2d:b7:49:11:16:85: f6:02:99:41:2e:26:da:90:87:5a:42:a4:d3:f5:ea:1e:34:97: dc:fc:74:c7:34:af:fe:e1:6d:00:8c:e7:4b:7e:0d:5c:b8:19: bd:c0:73:8d:a2:dc:df:72:8c:5a:eb:20:fd:2e:d9:48:42:da: eb:54:58:3f:6d:cb:1b:17:72:86:af:8e:cb:a2:ed:0d:1a:55: 17:fd:e0:a7:d2:6f:c8:ff:55:c2:b4:60:78:79:19:58:3b:7b: 47:6f:3c:64:11:a8:ab:30:b4:0f:a8:a6:cc:c7:54:d7:22:49: ec:8c:f3:f8:cf:cb:ed:49:d8:2a:9b:50:32:37:97:45:2f:1a: 10:9f:b7:6f:9a:98:5d:c5:2f:98:32:0c:7b:be:00:63:99:b5: ac:1f:0e:9c:3c:73:76:99:37:fa:ce:55:16:8e:44:68:46:26: ad:f1:ba:fc:2d:42:a5:66:6a:61:f8:78:4c:18:22:cf:83:d9: 52:b4:54:74:25:81:e5:5c:f5:c0:33:d0:81:48:a3:5e:b7:fc: 20:e3:70:22 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzQUExMTAvBgNVBAUTKEY3RDZERTZFN0IyQUM3QkQ0NTBDNzcxNTg2M0U5Nzk5 NTUzODNFNEUwHhcNMjUwNzA1MDYxODQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODYxMS01MzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7g5PEf8Oa0dggFaPWwTFKas4m/A8cLerTyBacjY0Ttr7FtvQnT0d0PGXAXf r1bhmZS6tQaGV+sr5YQpfGZjerHoy6Mgukhn0K2AwpRLAuykXwmgqLj268eBraQG VcvHtyvEQMS9+DAo2QlWzUI8qkzV+78oNX/DqoA+TDlJ3fMgd29o5OxAdiJGasFN PLaYpKzkbsjz4emuZWQnh/bbqbkoqu5c0AVkoXlMrwWDTQfcKIxHGdb3dlJ7By+F iN+SgSHOzOHosb0z/y3UM2o6OSpkFYVQFu8A0Um5D6UKEU+0szBF6MusVkdLtw5Q jMHoXlDv1lkys9nAOMY1ZYc74QIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFLMdx1Hw kIBqAN/n9KxZ9DoWrCRHMB8GA1UdIwQYMBaAFPfW3m57Kse9RQx3FYY+l5lVOD5O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzNBQS81MkQ5QUQ0NjU5 NjcxMUYwOEM0MDc5MkNDNEY5QUUwMi85OWJlYm5zcXg3MUZESGNWaGo2WG1WVTRQ azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5YmVibnNxeDcxRkRIY1ZoajZYbVZVNFBrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTMzQUEvNTJEOUFENDY1OTY3MTFGMDhDNDA3OTJDQzRGOUFFMDIvRTY4QjQ1RDY1 OTY3MTFGMDk0MDU0RDZCQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9dPAMA0GCSqGSIb3DQEBCwUAA4IBAQCROlHw7U0Zb+ALOBVW f9CP1ZlWFiz7VVI1D7Brm/S/AeVRjlFomE0vjmSK/UCaZ6Mtt0kRFoX2AplBLiba kIdaQqTT9eoeNJfc/HTHNK/+4W0AjOdLfg1cuBm9wHONotzfcoxa6yD9LtlIQtrr VFg/bcsbF3KGr47Lou0NGlUX/eCn0m/I/1XCtGB4eRlYO3tHbzxkEairMLQPqKbM x1TXIknsjPP4z8vtSdgqm1AyN5dFLxoQn7dvmphdxS+YMgx7vgBjmbWsHw6cPHN2 mTf6zlUWjkRoRiat8br8LUKlZmph+HhMGCLPg9lStFR0JYHlXPXAM9CBSKNet/wg 43Ai -----END CERTIFICATE-----Generated at Mon Mar 2 18:09:31 2026 by rpki-client