$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8FFF/5913E262EED111F0B0ACD276736F56BC/DBA60106EED111F0AB3DEEA1736F56BC.roa File: DBA60106EED111F0AB3DEEA1736F56BC.roa (raw, json) Hash identifier: Zm5NVQiX1B1lMh6YYC6ofTBSfpDnYcLSn7pw+rOzSFc= Subject key identifier: 3A:99:E0:8F:A8:95:7E:BD:44:D0:3A:8B:47:CC:0D:61:B5:4F:1E:24 Certificate issuer: /CN=A91E8FFF/serialNumber=CC9F2FBBFAEDC44C7632B18C2BD3BC58ECED7BF5 Certificate serial: 1D Authority key identifier: CC:9F:2F:BB:FA:ED:C4:4C:76:32:B1:8C:2B:D3:BC:58:EC:ED:7B:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zJ8vu_rtxEx2MrGMK9O8WOzte_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8FFF/5913E262EED111F0B0ACD276736F56BC/DBA60106EED111F0AB3DEEA1736F56BC.roa Signing time: Sun 01 Mar 2026 05:44:40 +0000 ROA not before: Sun 11 Jan 2026 09:42:35 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154321 IP address blocks: 2001:df6:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8FFF/5913E262EED111F0B0ACD276736F56BC/zJ8vu_rtxEx2MrGMK9O8WOzte_U.crl rsync://rpki.apnic.net/member_repository/A91E8FFF/5913E262EED111F0B0ACD276736F56BC/zJ8vu_rtxEx2MrGMK9O8WOzte_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zJ8vu_rtxEx2MrGMK9O8WOzte_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8FFF, serialNumber=CC9F2FBBFAEDC44C7632B18C2BD3BC58ECED7BF5 Validity Not Before: Jan 11 09:42:35 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d248-0873 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f4:e4:1d:27:6c:d2:1f:f5:3f:91:cd:d3:25: 5a:17:bf:87:ab:b0:83:3f:62:bb:23:41:38:c1:c7: 58:27:f0:68:12:54:81:13:ab:57:d1:b0:2d:57:6d: 3e:33:c6:1b:62:fe:12:1e:70:63:b5:ad:45:3b:85: 54:09:1b:1c:a7:e1:75:57:48:e7:a4:0d:96:ea:4e: 1e:51:49:f0:78:94:ce:83:04:be:11:0e:0c:38:b2: 33:1f:04:d1:69:4f:19:64:a8:c5:fa:b9:60:32:3f: 62:77:58:86:a4:9f:ba:eb:ad:ec:b7:4a:b9:1a:f3: 6b:08:b1:75:8b:80:27:27:e8:e1:e5:73:bb:9e:58: c8:57:98:6a:72:53:fb:17:21:9e:73:66:dc:9e:f4: b0:e2:9c:db:c7:cb:bc:8b:31:49:25:c8:0c:98:da: 34:0f:84:02:bc:76:0a:17:0e:82:c4:24:64:e5:e5: f5:3a:05:5a:e5:0f:b6:96:26:28:45:ca:d3:38:76: 15:20:cb:14:51:ce:52:63:65:01:2e:78:eb:84:66: 92:f2:6c:bc:5a:9d:df:0c:04:04:1f:1b:70:4d:14: 4b:65:97:c1:db:ba:b7:49:f0:ab:dc:86:b8:e0:e1: b6:bb:f4:0f:cf:08:b1:bc:cf:0d:f0:ce:05:c3:16: 7b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:99:E0:8F:A8:95:7E:BD:44:D0:3A:8B:47:CC:0D:61:B5:4F:1E:24 X509v3 Authority Key Identifier: keyid:CC:9F:2F:BB:FA:ED:C4:4C:76:32:B1:8C:2B:D3:BC:58:EC:ED:7B:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8FFF/5913E262EED111F0B0ACD276736F56BC/zJ8vu_rtxEx2MrGMK9O8WOzte_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zJ8vu_rtxEx2MrGMK9O8WOzte_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8FFF/5913E262EED111F0B0ACD276736F56BC/DBA60106EED111F0AB3DEEA1736F56BC.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 40:8e:94:e5:0c:bf:88:77:a1:2b:88:8d:eb:03:f3:74:46:86: f1:51:81:83:ae:5e:1a:db:05:2e:28:02:fe:fb:45:5a:1d:3d: fc:4e:27:f4:06:df:45:c3:d6:81:aa:49:a9:bd:b2:9e:58:28: af:e2:43:e8:db:ed:01:73:1e:68:1a:73:e1:7f:d9:96:2d:47: 73:49:b3:48:68:ec:3d:e9:bf:ad:f7:1e:7c:07:54:9a:4e:1a: 42:87:f3:3e:2f:1e:85:2d:a0:6a:56:8f:11:bd:1a:cf:76:1d: 1e:c5:79:3b:a9:b7:7c:9d:1f:47:51:83:63:99:00:3f:66:17: 4b:5f:c0:85:97:60:8d:b2:cd:9a:d3:38:f6:b1:2f:65:d8:a8: bf:e5:5c:b0:86:64:71:a3:a0:14:4c:c1:18:08:b6:d8:95:98: 52:cf:a7:24:07:27:34:e5:00:68:3a:87:f3:9c:25:ae:9b:8d: 79:cd:05:1c:d1:e0:0c:d6:c8:62:85:2b:a1:f5:7d:5a:f3:0b: b5:78:a1:05:52:e5:34:6c:e7:49:c6:76:1c:ea:44:ca:2f:2f: f5:fa:bf:2a:b5:3c:54:48:0a:67:c6:ef:56:b7:e7:d6:81:49: c1:90:04:b6:ae:e9:8a:38:df:b2:74:bc:5c:3a:f8:39:f9:af: 73:de:90:31 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OEZGRjExMC8GA1UEBRMoQ0M5RjJGQkJGQUVEQzQ0Qzc2MzJCMThDMkJEM0JDNThF Q0VEN0JGNTAeFw0yNjAxMTEwOTQyMzVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMjQ4LTA4NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC99OQdJ2zSH/U/kc3TJVoXv4ersIM/YrsjQTjBx1gn8GgSVIETq1fRsC1XbT4z xhti/hIecGO1rUU7hVQJGxyn4XVXSOekDZbqTh5RSfB4lM6DBL4RDgw4sjMfBNFp TxlkqMX6uWAyP2J3WIakn7rrrey3Srka82sIsXWLgCcn6OHlc7ueWMhXmGpyU/sX IZ5zZtye9LDinNvHy7yLMUklyAyY2jQPhAK8dgoXDoLEJGTl5fU6BVrlD7aWJihF ytM4dhUgyxRRzlJjZQEueOuEZpLybLxand8MBAQfG3BNFEtll8HburdJ8Kvchrjg 4ba79A/PCLG8zw3wzgXDFnu1AgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUOpngj6iV fr1E0DqLR8wNYbVPHiQwHwYDVR0jBBgwFoAUzJ8vu/rtxEx2MrGMK9O8WOzte/Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4RkZGLzU5MTNFMjYyRUVE MTExRjBCMEFDRDI3NjczNkY1NkJDL3pKOHZ1X3J0eEV4Mk1yR01LOU84V096dGVf VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveko4dnVfcnR4RXgyTXJHTUs5TzhXT3p0ZV9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEZGRi81OTEzRTI2MkVFRDExMUYwQjBBQ0QyNzY3MzZGNTZCQy9EQkE2MDEwNkVF RDExMUYwQUIzREVFQTE3MzZGNTZCQy5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32QMAwDQYJKoZIhvcNAQELBQADggEBAECOlOUMv4h3oSuIjesD 83RGhvFRgYOuXhrbBS4oAv77RVodPfxOJ/QG30XD1oGqSam9sp5YKK/iQ+jb7QFz Hmgac+F/2ZYtR3NJs0ho7D3pv633HnwHVJpOGkKH8z4vHoUtoGpWjxG9Gs92HR7F eTupt3ydH0dRg2OZAD9mF0tfwIWXYI2yzZrTOPaxL2XYqL/lXLCGZHGjoBRMwRgI ttiVmFLPpyQHJzTlAGg6h/OcJa6bjXnNBRzR4AzWyGKFK6H1fVrzC7V4oQVS5TRs 50nGdhzqRMovL/X6vyq1PFRICmfG71a359aBScGQBLau6Yo437J0vFw6+Dn5r3Pe kDE= -----END CERTIFICATE-----Generated at Mon Mar 2 20:05:21 2026 by rpki-client