$ rpki-client -vvf rpki.apnic.net/member_repository/A911FCFC/0EF3B3887D3E11EB9EDF687CC4F9AE02/3A542BE0BC7511EBBB084D27C4F9AE02.roa File: 3A542BE0BC7511EBBB084D27C4F9AE02.roa (raw, json) Hash identifier: vU5jNjRODCqGNcivjz4BbyUmgkkjcxcY1t79rERXbLE= Subject key identifier: 07:F0:2A:F3:26:95:1D:C2:92:09:39:24:36:62:CC:C8:FB:DC:16:66 Certificate issuer: /CN=A911FCFC/serialNumber=3D265E401231437A910EC21FE4ED4EE3B1269C8D Certificate serial: 070B Authority key identifier: 3D:26:5E:40:12:31:43:7A:91:0E:C2:1F:E4:ED:4E:E3:B1:26:9C:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSZeQBIxQ3qRDsIf5O1O47EmnI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FCFC/0EF3B3887D3E11EB9EDF687CC4F9AE02/3A542BE0BC7511EBBB084D27C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:43:44 +0000 ROA not before: Mon 28 Apr 2025 23:03:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 44103 IP address blocks: 2001:df6:2480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FCFC/0EF3B3887D3E11EB9EDF687CC4F9AE02/PSZeQBIxQ3qRDsIf5O1O47EmnI0.crl rsync://rpki.apnic.net/member_repository/A911FCFC/0EF3B3887D3E11EB9EDF687CC4F9AE02/PSZeQBIxQ3qRDsIf5O1O47EmnI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSZeQBIxQ3qRDsIf5O1O47EmnI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 21:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FCFC, serialNumber=3D265E401231437A910EC21FE4ED4EE3B1269C8D Validity Not Before: Apr 28 23:03:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40a50-c03d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9b:fa:dc:ba:b4:75:9a:ee:ab:15:23:39:1b: 50:9d:d8:3a:6d:20:32:a8:91:40:e3:74:d6:64:54: 50:82:0a:8f:e6:64:52:63:be:4b:34:fb:ae:37:2e: c8:bf:05:de:36:a1:09:d8:e8:c9:99:20:21:4e:69: 58:b5:8a:77:a3:c7:e7:1f:63:37:bc:39:76:dd:b7: c7:48:4b:8a:15:5c:2b:ed:8e:11:82:03:50:8f:89: f4:d5:83:83:74:4a:29:d7:cf:6a:77:ae:dc:07:91: b0:f9:32:33:99:93:d8:5f:21:b6:8d:8d:bc:76:37: b0:b7:fe:56:53:12:95:06:ef:21:19:c9:39:6b:df: e3:63:90:11:fd:22:34:42:f2:9a:9e:8c:d2:42:7e: be:85:fb:f3:c7:47:5c:bb:a8:e4:62:d3:bb:a4:b5: d9:f1:ef:ca:e3:b2:fd:6d:fc:75:e3:ce:58:d3:d9: 3c:1d:b2:69:be:2c:29:c0:8b:aa:70:78:f4:d3:4c: 09:1c:88:1c:3e:44:0d:36:b2:62:96:f8:f2:fd:cb: 03:64:f5:e6:d1:06:78:fa:9f:f1:bf:0c:60:2a:14: 98:7a:44:10:37:18:49:cd:06:8c:3b:8b:7b:ca:53: 61:b2:4f:28:45:3c:fc:d3:24:61:a1:e0:a9:64:98: 67:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F0:2A:F3:26:95:1D:C2:92:09:39:24:36:62:CC:C8:FB:DC:16:66 X509v3 Authority Key Identifier: keyid:3D:26:5E:40:12:31:43:7A:91:0E:C2:1F:E4:ED:4E:E3:B1:26:9C:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FCFC/0EF3B3887D3E11EB9EDF687CC4F9AE02/PSZeQBIxQ3qRDsIf5O1O47EmnI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PSZeQBIxQ3qRDsIf5O1O47EmnI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FCFC/0EF3B3887D3E11EB9EDF687CC4F9AE02/3A542BE0BC7511EBBB084D27C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df6:2480::/48 Signature Algorithm: sha256WithRSAEncryption 86:d6:a6:89:49:2f:51:b3:67:85:c6:6f:3d:83:bb:e7:8b:b8: d7:7a:23:7d:c6:1a:62:16:82:bd:ae:b3:2d:f9:15:a7:7d:42: 77:3f:c1:a4:3a:29:04:07:1c:3f:bf:4a:7f:3e:4b:2c:71:42: 50:b6:76:9d:c6:17:ac:db:4d:25:ba:87:63:2f:e4:52:02:88: d9:5f:c0:4b:6c:8b:fe:23:9e:18:57:41:f5:0c:b6:4d:64:e8: 57:c5:30:b0:c4:91:97:e9:59:01:a7:36:01:0e:b6:58:8c:d9: 01:54:a0:e5:9f:8f:ef:ed:c6:f4:69:a0:9b:96:19:38:4d:d9: 97:96:c9:db:25:4c:8e:0b:c8:e1:50:0f:b5:82:7f:58:b7:ac: b7:86:0b:be:43:b8:13:a4:ed:6f:f5:5f:0e:2c:05:c5:92:79: 65:b0:df:1d:76:f8:e6:44:1d:c3:00:1a:37:c3:75:7d:42:52: 45:84:43:e3:8a:e6:5d:a3:ad:46:a9:17:a6:bb:77:1e:56:e2: 41:08:e2:be:f6:3f:f3:84:ff:31:4e:d9:20:ad:9d:92:98:46: 07:05:26:80:b5:ef:4b:ac:4e:c8:46:8e:2f:18:e0:7b:fb:f4: bc:1f:c4:c0:01:07:24:75:ff:76:d4:92:df:05:08:db:4c:f3: 27:91:d4:b0 -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZDRkMxMTAvBgNVBAUTKDNEMjY1RTQwMTIzMTQzN0E5MTBFQzIxRkU0RUQ0RUUz QjEyNjlDOEQwHhcNMjUwNDI4MjMwMzE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGE1MC1jMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45v63Lq0dZruqxUjORtQndg6bSAyqJFA43TWZFRQggqP5mRSY75LNPuuNy7I vwXeNqEJ2OjJmSAhTmlYtYp3o8fnH2M3vDl23bfHSEuKFVwr7Y4RggNQj4n01YOD dEop189qd67cB5Gw+TIzmZPYXyG2jY28djewt/5WUxKVBu8hGck5a9/jY5AR/SI0 QvKanozSQn6+hfvzx0dcu6jkYtO7pLXZ8e/K47L9bfx1485Y09k8HbJpviwpwIuq cHj000wJHIgcPkQNNrJilvjy/csDZPXm0QZ4+p/xvwxgKhSYekQQNxhJzQaMO4t7 ylNhsk8oRTz80yRhoeCpZJhntQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFAfwKvMm lR3Ckgk5JDZizMj73BZmMB8GA1UdIwQYMBaAFD0mXkASMUN6kQ7CH+TtTuOxJpyN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkNGQy8wRUYzQjM4ODdE M0UxMUVCOUVERjY4N0NDNEY5QUUwMi9QU1plUUJJeFEzcVJEc0lmNU8xTzQ3RW1u STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTWmVRQkl4UTNxUkRzSWY1TzFPNDdFbW5JMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZDRkMvMEVGM0IzODg3RDNFMTFFQjlFREY2ODdDQzRGOUFFMDIvM0E1NDJCRTBC Qzc1MTFFQkJCMDg0RDI3QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9iSAMA0GCSqGSIb3DQEBCwUAA4IBAQCG1qaJSS9Rs2eFxm89 g7vni7jXeiN9xhpiFoK9rrMt+RWnfUJ3P8GkOikEBxw/v0p/PksscUJQtnadxhes 200luodjL+RSAojZX8BLbIv+I54YV0H1DLZNZOhXxTCwxJGX6VkBpzYBDrZYjNkB VKDln4/v7cb0aaCblhk4TdmXlsnbJUyOC8jhUA+1gn9Yt6y3hgu+Q7gTpO1v9V8O LAXFknllsN8ddvjmRB3DABo3w3V9QlJFhEPjiuZdo61GqRemu3ceVuJBCOK+9j/z hP8xTtkgrZ2SmEYHBSaAte9LrE7IRo4vGOB7+/S8H8TAAQckdf921JLfBQjbTPMn kdSw -----END CERTIFICATE-----Generated at Fri Mar 13 15:57:23 2026 by rpki-client