$ rpki-client -vvf rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa File: 89D7E6869E9211EF8726F76AC4F9AE02.roa (raw, json) Hash identifier: 7DlAURl7K2EyYXCsMTrF23T5auNxyW4sqWbcdHgz/XE= Subject key identifier: 71:2C:4A:03:EE:73:FC:BD:D5:69:58:2F:6A:37:EA:3E:86:DD:56:99 Certificate issuer: /CN=A913B4BE/serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Certificate serial: 0198 Authority key identifier: DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa Signing time: Fri 03 Apr 2026 04:37:55 +0000 ROA not before: Fri 03 Apr 2026 04:37:55 +0000 ROA not after: Sat 01 Aug 2026 00:00:00 +0000 asID: 152482 IP address blocks: 2001:df3:7940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:50:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B4BE, serialNumber=DD36E45C71D3D92B3CD1A72D5F5AB325B346ADCA Validity Not Before: Apr 3 04:37:55 2026 GMT Not After : Aug 1 00:00:00 2026 GMT Subject: CN=69cf4422-a908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:54:36:c4:21:8a:9a:4a:64:26:bb:b7:fd:3b: 38:18:e7:84:fa:c7:98:bf:81:d2:0e:0c:71:af:6a: b8:ef:ef:a0:c7:cb:d9:2b:5e:6e:66:70:03:eb:a2: 4f:f5:2c:21:98:64:72:11:f0:0a:b4:b5:f8:73:92: 1c:3d:ab:4f:5a:06:85:58:b8:f8:18:f5:9a:0c:e2: 56:01:e1:8a:fc:16:87:02:78:a7:2c:86:60:72:3e: 70:8c:c9:ec:37:51:3c:0b:65:5a:88:e8:24:e2:4f: f2:08:07:60:4a:c4:8a:f7:85:0e:d0:ff:82:d5:e4: 3c:7d:cc:5c:98:8a:41:1e:8f:44:d7:df:9d:6b:6d: 7d:4d:18:21:21:a0:59:5a:dc:29:42:25:21:74:05: b4:e3:ca:3a:b1:0c:b3:68:a6:8f:78:ad:31:10:40: 10:6e:18:e9:e4:d7:44:3a:9d:6d:1f:f1:ff:61:5e: 32:8f:26:59:8c:5d:e5:3f:c1:4b:4f:3e:94:f3:0d: d4:40:27:eb:03:6e:86:98:6e:b2:ed:4b:6c:b1:d1: 70:db:7a:68:41:c5:48:3b:06:ef:53:9e:b9:cb:1f: 80:f2:4a:a9:2f:5e:ba:65:1e:13:60:09:45:f8:20: 6a:85:28:2a:93:4b:9e:71:e1:85:b1:df:c5:a2:0b: 34:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2C:4A:03:EE:73:FC:BD:D5:69:58:2F:6A:37:EA:3E:86:DD:56:99 X509v3 Authority Key Identifier: keyid:DD:36:E4:5C:71:D3:D9:2B:3C:D1:A7:2D:5F:5A:B3:25:B3:46:AD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/3TbkXHHT2Ss80actX1qzJbNGrco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3TbkXHHT2Ss80actX1qzJbNGrco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B4BE/78BD3224CCF711EE9E89D67AC4F9AE02/89D7E6869E9211EF8726F76AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:7940::/48 Signature Algorithm: sha256WithRSAEncryption 54:60:c6:6f:0f:ca:8b:14:ec:51:63:34:f0:41:54:50:ff:f2: fd:fe:2d:42:3b:39:f9:26:00:62:e8:89:1b:6f:63:6a:41:90: c9:68:ec:e3:c3:95:43:57:da:a3:3b:5f:97:47:b6:66:83:7a: 76:b6:91:64:63:b7:93:b3:c0:ad:75:66:5d:99:a2:7a:20:82: 2b:41:f3:9d:33:10:05:a2:e9:29:d3:0f:41:6f:1e:90:88:ff: fa:33:b4:72:7b:ed:7e:6c:20:ac:f1:20:ce:e8:d4:28:0a:55: a6:7c:ec:c4:c0:d3:28:b0:8f:13:63:83:f0:25:ea:49:2f:77: 13:8c:b4:72:72:f0:01:f8:7c:65:60:32:1d:87:71:0b:e6:e4: c8:90:55:ae:6a:5f:29:a5:ce:aa:e6:4f:f4:f8:cb:25:70:58: ee:4f:21:54:11:37:67:3d:44:3e:21:74:ae:dc:6b:0d:c8:5b: 7e:42:ac:aa:fe:2a:8b:0d:a3:ad:be:6c:71:75:fc:c8:dd:27: e1:8d:01:39:ed:b3:0a:4c:c9:13:03:a4:47:2f:e3:b4:99:a1: 89:c5:16:94:66:15:f2:d0:29:ff:80:fc:54:ad:f5:ae:1f:ea: d1:16:cd:50:ae:84:40:cf:69:00:a8:74:17:2d:24:2e:25:10: 99:33:9b:8e -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0QkUxMTAvBgNVBAUTKEREMzZFNDVDNzFEM0Q5MkIzQ0QxQTcyRDVGNUFCMzI1 QjM0NkFEQ0EwHhcNMjYwNDAzMDQzNzU1WhcNMjYwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmNDQyMi1hOTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmlQ2xCGKmkpkJru3/Ts4GOeE+seYv4HSDgxxr2q47++gx8vZK15uZnAD66JP 9SwhmGRyEfAKtLX4c5IcPatPWgaFWLj4GPWaDOJWAeGK/BaHAninLIZgcj5wjMns N1E8C2VaiOgk4k/yCAdgSsSK94UO0P+C1eQ8fcxcmIpBHo9E19+da219TRghIaBZ WtwpQiUhdAW048o6sQyzaKaPeK0xEEAQbhjp5NdEOp1tH/H/YV4yjyZZjF3lP8FL Tz6U8w3UQCfrA26GmG6y7UtssdFw23poQcVIOwbvU565yx+A8kqpL166ZR4TYAlF +CBqhSgqk0ueceGFsd/Fogs0cQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFHEsSgPu c/y91WlYL2o36j6G3VaZMB8GA1UdIwQYMBaAFN025Fxx09krPNGnLV9asyWzRq3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjRCRS83OEJEMzIyNEND RjcxMUVFOUU4OUQ2N0FDNEY5QUUwMi8zVGJrWEhIVDJTczgwYWN0WDFxekpiTkdy Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNUYmtYSEhUMlNzODBhY3RYMXF6SmJOR3Jjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0QkUvNzhCRDMyMjRDQ0Y3MTFFRTlFODlENjdBQzRGOUFFMDIvODlEN0U2ODY5 RTkyMTFFRjg3MjZGNzZBQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN83lAMA0GCSqGSIb3DQEBCwUAA4IBAQBUYMZvD8qLFOxRYzTw QVRQ//L9/i1COzn5JgBi6Ikbb2NqQZDJaOzjw5VDV9qjO1+XR7Zmg3p2tpFkY7eT s8CtdWZdmaJ6IIIrQfOdMxAFoukp0w9Bbx6QiP/6M7Rye+1+bCCs8SDO6NQoClWm fOzEwNMosI8TY4PwJepJL3cTjLRycvAB+HxlYDIdh3EL5uTIkFWual8ppc6q5k/0 +MslcFjuTyFUETdnPUQ+IXSu3GsNyFt+Qqyq/iqLDaOtvmxxdfzI3SfhjQE57bMK TMkTA6RHL+O0maGJxRaUZhXy0Cn/gPxUrfWuH+rRFs1QroRAz2kAqHQXLSQuJRCZ M5uO -----END CERTIFICATE-----Generated at Mon Apr 6 09:54:41 2026 by rpki-client