$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/D734CCEA1E0A11EF87335F33C4F9AE02.roa File: D734CCEA1E0A11EF87335F33C4F9AE02.roa (raw, json) Hash identifier: 0Dvz1Xg7o404n7QtLdxopJyG/BpV+3aI+/Po4MvWU6E= Subject key identifier: 13:77:D1:9B:D8:C3:CF:F1:92:15:AC:3A:E0:C1:60:F8:C4:8F:9F:7A Certificate issuer: /CN=A91FE75F/serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2 Certificate serial: 0335 Authority key identifier: 4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/D734CCEA1E0A11EF87335F33C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:57:15 +0000 ROA not before: Sun 20 Apr 2025 22:53:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142000 IP address blocks: 2001:df6:3580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.crl rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:16:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE75F, serialNumber=4D14E1AF22F53B22F56DEF02EB72EA5DD6BE77E2 Validity Not Before: Apr 20 22:53:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48c0b-3b42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e2:05:5d:75:28:9f:8e:d8:7e:69:2e:1f:27: 22:9a:78:e4:27:3a:f8:3c:0b:94:37:f1:69:e7:1e: 8c:21:41:44:7a:67:08:15:7d:fa:4d:9e:11:93:47: 93:3c:ba:c9:c8:48:f4:0e:8e:ff:9d:dc:53:f1:f3: fc:f9:4f:5d:80:ed:c7:66:93:0b:ea:bf:c3:83:fe: 79:a3:14:17:e9:c6:d3:21:4c:96:d6:47:93:a2:bd: a9:5d:9a:be:6e:67:9d:d0:74:12:4c:dc:b4:5f:1c: 02:fc:a5:92:13:c8:32:74:c3:cd:4e:1c:47:e6:94: ad:d1:cd:07:ab:92:7d:7f:4b:71:7e:ec:61:8c:5d: 33:cb:0b:24:7e:72:a7:78:3a:df:d4:0c:27:e5:7c: 11:58:69:67:fc:b3:e0:96:4c:6a:25:03:c8:e9:85: e9:4c:da:67:3d:27:32:f5:7e:2f:82:78:7e:fc:2f: 13:0b:e5:96:14:da:3f:75:da:17:85:be:72:a4:ad: 4f:b5:74:29:6b:ad:f6:07:96:ee:28:ff:1a:c3:86: b4:8c:0b:84:6c:fc:07:8f:96:e5:bb:2e:89:70:0a: d9:4c:52:a4:b4:bd:3a:3d:2f:98:66:02:84:37:64: 6f:fe:6e:13:02:f9:e4:c2:20:e9:69:2d:67:d8:cc: b2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:77:D1:9B:D8:C3:CF:F1:92:15:AC:3A:E0:C1:60:F8:C4:8F:9F:7A X509v3 Authority Key Identifier: keyid:4D:14:E1:AF:22:F5:3B:22:F5:6D:EF:02:EB:72:EA:5D:D6:BE:77:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/TRThryL1OyL1be8C63LqXda-d-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRThryL1OyL1be8C63LqXda-d-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE75F/AB9EB8CAA9F511EB8A492254C4F9AE02/D734CCEA1E0A11EF87335F33C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:3580::/48 Signature Algorithm: sha256WithRSAEncryption 80:34:72:85:a2:0b:d5:5b:8a:de:d9:70:b1:1d:1e:dc:10:56: 16:b1:91:90:5a:8f:2d:33:ee:e7:4a:5b:54:16:b1:75:6b:ec: 50:f3:2b:af:2d:7e:75:ee:83:5d:e1:5f:7c:0a:6f:d4:5d:42: 57:02:31:c4:8f:96:ce:55:a8:b7:9e:a2:f7:e2:66:64:0d:91: a2:9b:2b:6c:aa:75:5b:fe:33:2a:ff:fd:bf:7c:a8:8a:a8:65: 85:1e:dc:68:ca:ea:2d:70:15:d1:8b:90:f8:54:32:78:bf:39: 92:af:92:a5:f1:3c:9a:c1:e0:c8:2b:58:46:6e:17:f7:d3:ad: 37:67:99:41:d9:db:2b:5d:72:5d:58:f4:2a:79:92:9b:8a:74: e4:e9:5b:a2:aa:4e:c3:dc:69:db:56:1f:7e:5e:33:ed:8a:32: af:9a:33:14:cd:77:6b:84:00:24:98:f4:6e:02:61:65:a5:a8: 28:93:52:a6:b0:f0:f4:28:9d:b9:33:e9:5c:58:31:b1:d9:cb: 94:ba:39:c4:3f:e5:3b:a2:4e:4c:0a:61:c5:22:3f:cb:77:e1: 26:20:76:a3:b0:08:70:81:05:d0:f7:e0:86:a9:d8:a4:51:6b: 39:9e:9a:27:b3:de:7f:0d:3a:44:2d:b8:75:ad:f0:d5:27:16: 3a:02:79:75 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3NUYxMTAvBgNVBAUTKDREMTRFMUFGMjJGNTNCMjJGNTZERUYwMkVCNzJFQTVE RDZCRTc3RTIwHhcNMjUwNDIwMjI1MzMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGMwYi0zYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+IFXXUon47YfmkuHycimnjkJzr4PAuUN/Fp5x6MIUFEemcIFX36TZ4Rk0eT PLrJyEj0Do7/ndxT8fP8+U9dgO3HZpML6r/Dg/55oxQX6cbTIUyW1keTor2pXZq+ bmed0HQSTNy0XxwC/KWSE8gydMPNThxH5pSt0c0Hq5J9f0txfuxhjF0zywskfnKn eDrf1Awn5XwRWGln/LPglkxqJQPI6YXpTNpnPScy9X4vgnh+/C8TC+WWFNo/ddoX hb5ypK1PtXQpa632B5buKP8aw4a0jAuEbPwHj5bluy6JcArZTFKktL06PS+YZgKE N2Rv/m4TAvnkwiDpaS1n2MyyjQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFBN30ZvY w8/xkhWsOuDBYPjEj596MB8GA1UdIwQYMBaAFE0U4a8i9Tsi9W3vAuty6l3Wvnfi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTc1Ri9BQjlFQjhDQUE5 RjUxMUVCOEE0OTIyNTRDNEY5QUUwMi9UUlRocnlMMU95TDFiZThDNjNMcVhkYS1k LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RSVGhyeUwxT3lMMWJlOEM2M0xxWGRhLWQtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU3NUYvQUI5RUI4Q0FBOUY1MTFFQjhBNDkyMjU0QzRGOUFFMDIvRDczNENDRUEx RTBBMTFFRjg3MzM1RjMzQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9jWAMA0GCSqGSIb3DQEBCwUAA4IBAQCANHKFogvVW4re2XCx HR7cEFYWsZGQWo8tM+7nSltUFrF1a+xQ8yuvLX517oNd4V98Cm/UXUJXAjHEj5bO Vai3nqL34mZkDZGimytsqnVb/jMq//2/fKiKqGWFHtxoyuotcBXRi5D4VDJ4vzmS r5Kl8TyaweDIK1hGbhf30603Z5lB2dsrXXJdWPQqeZKbinTk6Vuiqk7D3GnbVh9+ XjPtijKvmjMUzXdrhAAkmPRuAmFlpagok1KmsPD0KJ25M+lcWDGx2cuUujnEP+U7 ok5MCmHFIj/Ld+EmIHajsAhwgQXQ9+CGqdikUWs5npons95/DTpELbh1rfDVJxY6 Anl1 -----END CERTIFICATE-----Generated at Mon Mar 2 05:55:44 2026 by rpki-client