$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFBAF/70FCA772C37C11F0B518A532C4F9AE02/C7200E0EC37D11F09171F578C4F9AE02.roa File: C7200E0EC37D11F09171F578C4F9AE02.roa (raw, json) Hash identifier: E6omI9lqZzM/PwLCS0UMdFdpwNRWOrVUdR04/HJ2Es8= Subject key identifier: 02:00:13:33:89:13:F2:D0:F6:B5:27:D3:AB:AE:39:C2:20:9A:45:CA Certificate issuer: /CN=A91FFBAF/serialNumber=00AF60185D1FB9A08A58B77EF40481AC380AF1B1 Certificate serial: 38 Authority key identifier: 00:AF:60:18:5D:1F:B9:A0:8A:58:B7:7E:F4:04:81:AC:38:0A:F1:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AK9gGF0fuaCKWLd-9ASBrDgK8bE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFBAF/70FCA772C37C11F0B518A532C4F9AE02/C7200E0EC37D11F09171F578C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:02:01 +0000 ROA not before: Mon 17 Nov 2025 06:22:23 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154352 IP address blocks: 2001:df6:4b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFBAF/70FCA772C37C11F0B518A532C4F9AE02/AK9gGF0fuaCKWLd-9ASBrDgK8bE.crl rsync://rpki.apnic.net/member_repository/A91FFBAF/70FCA772C37C11F0B518A532C4F9AE02/AK9gGF0fuaCKWLd-9ASBrDgK8bE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AK9gGF0fuaCKWLd-9ASBrDgK8bE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFBAF, serialNumber=00AF60185D1FB9A08A58B77EF40481AC380AF1B1 Validity Not Before: Nov 17 06:22:23 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d658-6876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:76:e4:fa:dd:28:fa:e9:3e:2d:25:b6:bf:0e: 13:45:69:7c:be:0e:c4:91:a1:09:c4:0d:a1:63:9a: 8c:3d:08:c8:70:28:ce:17:d6:e9:2c:cb:78:c3:75: 54:c9:e9:41:34:c3:fe:a8:55:98:9f:61:1d:93:fb: fb:73:10:8b:48:9d:2a:d3:3c:5d:03:38:cb:13:7b: 72:c4:11:17:d8:1b:a9:78:08:e8:be:44:ae:4b:2c: 77:37:b6:11:05:09:f2:b8:71:81:72:df:6f:c0:b0: a1:f5:09:70:de:05:d3:28:9f:aa:6b:e5:18:af:f7: 3d:79:c1:ed:e5:b3:c3:d0:13:4c:9e:7a:28:13:7b: a4:ea:67:f0:b3:d8:77:a0:30:7e:80:3f:c9:68:9b: 44:8d:4d:f5:50:b4:9e:72:5c:db:70:f2:1c:dc:90: dd:ec:bf:49:f4:a2:71:9e:39:6a:b6:7e:3d:c5:8f: f8:ca:2e:48:5a:50:2d:37:e6:7c:a0:98:06:5e:53: 30:3c:5f:36:03:0f:21:4a:ef:09:a1:28:d7:48:14: 47:00:cc:51:a5:23:51:bf:00:7a:71:28:81:a0:b8: 55:86:1b:f6:e6:26:1d:d5:31:0c:82:c6:e2:28:ec: 0c:53:c7:ce:20:a9:ba:6f:bf:9b:59:7e:12:58:d0: c8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:00:13:33:89:13:F2:D0:F6:B5:27:D3:AB:AE:39:C2:20:9A:45:CA X509v3 Authority Key Identifier: keyid:00:AF:60:18:5D:1F:B9:A0:8A:58:B7:7E:F4:04:81:AC:38:0A:F1:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFBAF/70FCA772C37C11F0B518A532C4F9AE02/AK9gGF0fuaCKWLd-9ASBrDgK8bE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AK9gGF0fuaCKWLd-9ASBrDgK8bE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFBAF/70FCA772C37C11F0B518A532C4F9AE02/C7200E0EC37D11F09171F578C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:4b40::/48 Signature Algorithm: sha256WithRSAEncryption 1a:d8:ac:b7:a6:66:5d:b0:f3:a5:f4:18:26:f8:fd:eb:53:c2: 63:f7:db:0d:b0:4a:28:fe:a8:d2:7d:ef:ed:18:e5:db:ae:29: b3:db:2c:c3:84:09:9b:28:f7:59:88:d8:4e:f1:9a:a3:52:a4: 11:f8:7a:e0:79:48:3d:73:80:29:b6:b0:68:0f:db:5f:19:1e: c6:36:95:bf:8d:ff:32:d6:85:c2:12:3e:5e:f6:2f:25:2d:0d: 6b:7c:3d:27:48:91:3f:87:1e:6c:13:83:d5:6a:4e:68:34:bf: 96:99:10:d0:93:1f:4a:6b:68:ad:7a:54:39:1a:8c:84:e4:59: e5:ab:82:2b:34:60:da:f1:5f:96:ea:98:75:3f:30:f6:65:07: 84:52:03:e6:06:43:1b:cf:3a:90:f4:2a:2b:b6:24:d0:6f:9d: 39:45:5e:5e:6a:65:42:e2:1f:a8:c7:80:50:8c:9b:a9:c9:31: 8e:db:c9:28:d9:8e:55:a4:0a:40:a6:fc:8d:5b:33:fc:50:f4: 54:a1:1a:d2:bf:34:80:96:c2:62:9d:1b:e6:fe:18:b1:03:41: 4f:03:d4:5b:2b:af:55:41:49:60:bd:e6:97:e8:61:88:e5:dc: 2f:5a:96:09:1c:86:24:f6:c0:07:34:7e:ac:35:d3:48:9c:ba: 05:62:79:47 -----BEGIN CERTIFICATE----- MIIFPjCCBCagAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RkJBRjExMC8GA1UEBRMoMDBBRjYwMTg1RDFGQjlBMDhBNThCNzdFRjQwNDgxQUMz ODBBRjFCMTAeFw0yNTExMTcwNjIyMjNaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNjU4LTY4NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyduT63Sj66T4tJba/DhNFaXy+DsSRoQnEDaFjmow9CMhwKM4X1uksy3jDdVTJ 6UE0w/6oVZifYR2T+/tzEItInSrTPF0DOMsTe3LEERfYG6l4COi+RK5LLHc3thEF CfK4cYFy32/AsKH1CXDeBdMon6pr5Riv9z15we3ls8PQE0yeeigTe6TqZ/Cz2Heg MH6AP8lom0SNTfVQtJ5yXNtw8hzckN3sv0n0onGeOWq2fj3Fj/jKLkhaUC035nyg mAZeUzA8XzYDDyFK7wmhKNdIFEcAzFGlI1G/AHpxKIGguFWGG/bmJh3VMQyCxuIo 7AxTx84gqbpvv5tZfhJY0MgRAgMBAAGjggJjMIICXzAdBgNVHQ4EFgQUAgATM4kT 8tD2tSfTq645wiCaRcowHwYDVR0jBBgwFoAUAK9gGF0fuaCKWLd+9ASBrDgK8bEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGQkFGLzcwRkNBNzcyQzM3 QzExRjBCNTE4QTUzMkM0RjlBRTAyL0FLOWdHRjBmdWFDS1dMZC05QVNCckRnSzhi RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQUs5Z0dGMGZ1YUNLV0xkLTlBU0JyRGdLOGJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkJBRi83MEZDQTc3MkMzN0MxMUYwQjUxOEE1MzJDNEY5QUUwMi9DNzIwMEUwRUMz N0QxMUYwOTE3MUY1NzhDNEY5QUUwMi5yb2EwIgYIKwYBBQUHAQcBAf8EEzARMA8E AgACMAkDBwAgAQ32S0AwDQYJKoZIhvcNAQELBQADggEBABrYrLemZl2w86X0GCb4 /etTwmP32w2wSij+qNJ97+0Y5duuKbPbLMOECZso91mI2E7xmqNSpBH4euB5SD1z gCm2sGgP218ZHsY2lb+N/zLWhcISPl72LyUtDWt8PSdIkT+HHmwTg9VqTmg0v5aZ ENCTH0praK16VDkajITkWeWrgis0YNrxX5bqmHU/MPZlB4RSA+YGQxvPOpD0Kiu2 JNBvnTlFXl5qZULiH6jHgFCMm6nJMY7bySjZjlWkCkCm/I1bM/xQ9FShGtK/NICW wmKdG+b+GLEDQU8D1Fsrr1VBSWC95pfoYYjl3C9algkchiT2wAc0fqw100icugVi eUc= -----END CERTIFICATE-----Generated at Mon Mar 2 00:26:15 2026 by rpki-client