$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/32BE7D842F2C11F18141A2BDA4833773.roa File: 32BE7D842F2C11F18141A2BDA4833773.roa (raw, json) Hash identifier: gWophYTgpDz5CpRcrdMiyVhJRPw2gvb2kob0bfrvmwk= Subject key identifier: FE:8E:4F:ED:0E:44:66:2A:18:39:26:5B:13:CC:99:09:99:27:97:47 Certificate issuer: /CN=A91FDB80/serialNumber=8D668AFD3E03E70B8449881FA350131BACAC4856 Certificate serial: 0762 Authority key identifier: 8D:66:8A:FD:3E:03:E7:0B:84:49:88:1F:A3:50:13:1B:AC:AC:48:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWaK_T4D5wuESYgfo1ATG6ysSFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/32BE7D842F2C11F18141A2BDA4833773.roa Signing time: Fri 03 Apr 2026 07:10:30 +0000 ROA not before: Fri 03 Apr 2026 07:10:30 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 141689 IP address blocks: 2001:df5:dc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/jWaK_T4D5wuESYgfo1ATG6ysSFY.crl rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/jWaK_T4D5wuESYgfo1ATG6ysSFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWaK_T4D5wuESYgfo1ATG6ysSFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDB80, serialNumber=8D668AFD3E03E70B8449881FA350131BACAC4856 Validity Not Before: Apr 3 07:10:30 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69cf67e6-5d7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:df:54:eb:aa:bc:29:b3:61:89:32:83:c9:7a: 58:32:f6:78:e0:28:1d:a5:40:0e:5e:56:0c:9d:a1: de:0a:3f:90:fd:14:be:36:5f:dc:5b:81:05:03:a9: bd:47:24:dd:de:f4:4f:89:95:43:0b:84:da:3b:d1: f6:4d:3e:19:ae:6a:b1:44:9f:3b:74:39:5c:e2:35: dd:a5:da:17:d9:be:32:94:8a:66:03:b3:55:ad:f4: 0f:30:74:8d:ca:86:59:0f:af:16:a7:4e:55:ee:34: 3f:8a:4a:5d:3a:8f:81:11:75:a0:84:3d:53:73:92: 6d:01:d4:0a:86:6e:a4:c8:fe:d9:b4:19:a6:a7:cd: 45:87:19:a0:22:03:1c:e4:1b:cc:f6:ee:55:3e:bf: 47:19:fb:c3:5b:34:bd:ed:a6:8d:f1:56:3b:41:fb: e5:eb:69:39:20:9d:ba:91:94:d5:09:17:a2:b4:5f: 44:0b:c1:28:eb:93:a7:44:27:8f:12:d1:dc:51:33: 5b:dd:85:56:3c:ce:32:fa:93:bd:5b:3c:11:8d:65: 4a:2c:83:79:d6:0b:c5:cb:e3:76:86:b1:9e:5e:f3: d6:1d:73:be:85:fe:ac:21:77:0d:ab:1a:cb:8d:d2: 6c:aa:2d:6f:97:07:01:3a:e0:69:6b:52:39:8c:1c: 2a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8E:4F:ED:0E:44:66:2A:18:39:26:5B:13:CC:99:09:99:27:97:47 X509v3 Authority Key Identifier: keyid:8D:66:8A:FD:3E:03:E7:0B:84:49:88:1F:A3:50:13:1B:AC:AC:48:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/jWaK_T4D5wuESYgfo1ATG6ysSFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWaK_T4D5wuESYgfo1ATG6ysSFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/32BE7D842F2C11F18141A2BDA4833773.roa sbgp-ipAddrBlock: critical IPv6: 2001:df5:dc80::/48 Signature Algorithm: sha256WithRSAEncryption 6a:8b:0a:cb:df:90:9a:27:91:53:61:60:23:51:46:fc:fc:3d: ae:a0:f6:45:b1:17:49:1d:70:d1:28:5c:d4:05:97:6a:7e:7c: 8f:d1:93:dc:03:3c:16:f1:55:72:fe:4b:37:31:64:9f:6b:8d: a3:60:c5:af:40:fc:90:a2:5c:35:6a:7b:2d:79:3d:15:fc:a6: d3:e2:dd:98:3c:8d:a1:84:2e:dd:9b:af:b1:84:a0:ed:09:93: 95:0b:c2:39:8d:6d:91:32:3d:52:08:f5:86:c5:03:17:ad:2b: 93:ef:b8:56:42:db:1e:7a:02:ed:8b:4d:c8:15:56:a7:3b:58: ca:0c:d4:10:30:fa:d0:5b:33:12:a9:90:65:ec:97:96:60:1e: 64:2c:51:4c:9b:41:c8:bf:35:8b:99:ab:5a:36:0f:17:30:22: 5a:88:40:f0:b4:e2:9c:9e:c5:e9:1e:41:b9:20:67:86:c8:0f: e1:5b:4e:3b:01:45:ba:e0:c0:75:3c:30:53:79:83:b9:91:06: 6a:d8:40:2c:4b:5d:e7:f1:4c:fc:34:ad:fb:8e:a2:2e:6c:ee: 50:24:f9:e5:4e:c8:82:85:01:b8:5a:cc:01:e2:48:14:37:c6: e0:e1:c0:55:72:fb:24:6a:61:0e:ec:d2:27:39:0c:ba:72:3f: 86:bb:42:6e -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRCODAxMTAvBgNVBAUTKDhENjY4QUZEM0UwM0U3MEI4NDQ5ODgxRkEzNTAxMzFC QUNBQzQ4NTYwHhcNMjYwNDAzMDcxMDMwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNjdlNi01ZDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6d9U66q8KbNhiTKDyXpYMvZ44CgdpUAOXlYMnaHeCj+Q/RS+Nl/cW4EFA6m9 RyTd3vRPiZVDC4TaO9H2TT4ZrmqxRJ87dDlc4jXdpdoX2b4ylIpmA7NVrfQPMHSN yoZZD68Wp05V7jQ/ikpdOo+BEXWghD1Tc5JtAdQKhm6kyP7ZtBmmp81FhxmgIgMc 5BvM9u5VPr9HGfvDWzS97aaN8VY7Qfvl62k5IJ26kZTVCReitF9EC8Eo65OnRCeP EtHcUTNb3YVWPM4y+pO9WzwRjWVKLIN51gvFy+N2hrGeXvPWHXO+hf6sIXcNqxrL jdJsqi1vlwcBOuBpa1I5jBwqiwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFP6OT+0O RGYqGDkmWxPMmQmZJ5dHMB8GA1UdIwQYMBaAFI1miv0+A+cLhEmIH6NQExusrEhW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREI4MC9CRTlGNjFBMDY0 NTMxMUVCQUY3NzREMzJDNEY5QUUwMi9qV2FLX1Q0RDV3dUVTWWdmbzFBVEc2eXNT RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pXYUtfVDRENXd1RVNZZ2ZvMUFURzZ5c1NGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRCODAvQkU5RjYxQTA2NDUzMTFFQkFGNzc0RDMyQzRGOUFFMDIvMzJCRTdEODQy RjJDMTFGMTgxNDFBMkJEQTQ4MzM3NzMucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9dyAMA0GCSqGSIb3DQEBCwUAA4IBAQBqiwrL35CaJ5FTYWAj UUb8/D2uoPZFsRdJHXDRKFzUBZdqfnyP0ZPcAzwW8VVy/ks3MWSfa42jYMWvQPyQ olw1ansteT0V/KbT4t2YPI2hhC7dm6+xhKDtCZOVC8I5jW2RMj1SCPWGxQMXrSuT 77hWQtseegLti03IFVanO1jKDNQQMPrQWzMSqZBl7JeWYB5kLFFMm0HIvzWLmata Ng8XMCJaiEDwtOKcnsXpHkG5IGeGyA/hW047AUW64MB1PDBTeYO5kQZq2EAsS13n 8Uz8NK37jqIubO5QJPnlTsiChQG4WswB4kgUN8bg4cBVcvskamEO7NInOQy6cj+G u0Ju -----END CERTIFICATE-----Generated at Sun Apr 5 21:04:17 2026 by rpki-client