$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa File: AA778F4CAF8A11EEB167DB64C4F9AE02.roa (raw, json) Hash identifier: uZLI87yhkZqBREf9Dkw2+sZTis7hj3RLHWj7/G8COxk= Subject key identifier: 69:C7:19:E3:4C:9A:35:F4:C6:4D:26:CD:41:5F:77:CC:7E:BD:B0:CA Certificate issuer: /CN=A91A4B39/serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Certificate serial: 01CA Authority key identifier: 9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa Signing time: Wed 13 May 2026 04:36:08 +0000 ROA not before: Wed 13 May 2026 04:36:08 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 152322 IP address blocks: 2001:df3:5ac0::/49 maxlen: 49 2001:df3:5ac0:8000::/49 maxlen: 49 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 04:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=9CC88A86D0B37ECEE8D57657EF99789532680CDF Validity Not Before: May 13 04:36:08 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6a03ffb8-a533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:68:46:02:56:47:39:26:f3:24:c6:82:b3:2d: 09:98:06:f2:e9:88:f7:bb:a3:4c:ed:15:e6:a4:2c: 75:b5:e5:1b:6c:c9:35:ad:62:db:f5:70:f2:45:8b: ec:a7:43:cd:51:5c:9c:89:a0:81:0e:be:ca:1e:c4: 0f:a2:10:48:3e:a9:cd:f6:ea:ac:6c:ed:19:44:f9: 04:c9:06:80:17:ab:d4:bf:81:d0:27:a2:0d:18:99: dd:bf:64:a3:5f:0d:e6:8a:eb:58:d1:00:7f:d1:45: b2:fa:ce:dc:ae:b5:0c:fa:f3:b0:1b:e4:98:e0:ff: 9e:94:5a:67:7b:21:a7:c2:90:46:a7:16:d4:ac:2b: a7:c4:c0:0a:ba:5a:23:b1:66:fe:74:b0:1e:c3:10: 22:09:8f:e9:96:b8:11:5b:46:4f:6f:e5:2a:4f:3b: 8d:d6:3c:4c:f7:18:3d:a4:74:72:e6:11:18:64:46: 6c:1a:e2:19:78:f4:e5:9a:06:4d:c9:b0:2d:14:09: 62:42:32:44:e2:e5:98:7a:88:b6:8f:38:2f:ab:84: 55:bf:e1:e2:23:ca:15:13:df:27:65:33:b4:7f:5b: 8b:27:44:ae:3d:3a:ee:21:28:c7:db:b3:d0:a2:b8: 71:4e:71:d4:88:51:16:c9:2a:4f:0b:18:d8:34:c4: a3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C7:19:E3:4C:9A:35:F4:C6:4D:26:CD:41:5F:77:CC:7E:BD:B0:CA X509v3 Authority Key Identifier: keyid:9C:C8:8A:86:D0:B3:7E:CE:E8:D5:76:57:EF:99:78:95:32:68:0C:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/nMiKhtCzfs7o1XZX75l4lTJoDN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nMiKhtCzfs7o1XZX75l4lTJoDN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/FEF549E8AF1611EE8C48A74DC4F9AE02/AA778F4CAF8A11EEB167DB64C4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df3:5ac0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:63:b0:0a:84:de:35:a5:5d:c0:e0:61:5c:a2:7d:c0:45:fe: 2f:ec:56:dd:fe:db:ad:dc:08:7d:6b:65:f8:ba:af:1a:28:9e: da:0c:33:bc:3f:cf:e4:31:22:86:70:5e:9d:b7:3c:1c:ec:22: 67:2f:39:25:fa:07:c9:ef:59:83:7d:05:a2:e9:44:58:36:46: e3:bf:f4:b7:2b:0b:0f:cc:2e:a4:11:c7:51:c3:16:e3:b6:7a: f3:fd:a3:fc:54:50:23:2e:dc:b4:ff:12:7f:72:00:70:f6:c9: fc:72:94:63:f9:87:dd:89:87:fc:d6:0c:20:c0:30:ff:c1:1a: b6:7f:64:89:4a:bc:97:08:d5:b5:e7:14:fc:d2:9b:a5:3b:86: 0a:7d:c0:93:ff:96:b6:a2:d1:7e:5a:63:80:1a:63:19:26:ba: 0a:c0:c7:3d:a7:7f:35:4c:cd:e0:54:78:20:83:19:3c:2c:17: 5f:6b:07:9d:2c:59:7e:21:30:3a:ba:cf:5b:1d:49:22:e5:6f: 1a:8a:dc:70:7d:a6:eb:7f:9a:f3:9a:e0:4f:0d:d7:28:e3:ba: 15:40:b4:05:12:38:6d:5b:5e:bf:16:6b:ee:50:07:73:5f:89: 44:9c:d7:66:e8:10:3b:f7:0d:15:85:f2:23:a5:67:08:83:f5: 30:d1:df:ed -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKDlDQzg4QTg2RDBCMzdFQ0VFOEQ1NzY1N0VGOTk3ODk1 MzI2ODBDREYwHhcNMjYwNTEzMDQzNjA4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzZmZiOC1hNTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2hGAlZHOSbzJMaCsy0JmAby6Yj3u6NM7RXmpCx1teUbbMk1rWLb9XDyRYvs p0PNUVyciaCBDr7KHsQPohBIPqnN9uqsbO0ZRPkEyQaAF6vUv4HQJ6INGJndv2Sj Xw3miutY0QB/0UWy+s7crrUM+vOwG+SY4P+elFpneyGnwpBGpxbUrCunxMAKuloj sWb+dLAewxAiCY/plrgRW0ZPb+UqTzuN1jxM9xg9pHRy5hEYZEZsGuIZePTlmgZN ybAtFAliQjJE4uWYeoi2jzgvq4RVv+HiI8oVE98nZTO0f1uLJ0SuPTruISjH27PQ orhxTnHUiFEWySpPCxjYNMSjcwIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFGnHGeNM mjX0xk0mzUFfd8x+vbDKMB8GA1UdIwQYMBaAFJzIiobQs37O6NV2V++ZeJUyaAzf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS9GRUY1NDlFOEFG MTYxMUVFOEM0OEE3NERDNEY5QUUwMi9uTWlLaHRDemZzN28xWFpYNzVsNGxUSm9E TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25NaUtodEN6ZnM3bzFYWlg3NWw0bFRKb0ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMzkvRkVGNTQ5RThBRjE2MTFFRThDNDhBNzREQzRGOUFFMDIvQUE3NzhGNENB RjhBMTFFRUIxNjdEQjY0QzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN81rAMA0GCSqGSIb3DQEBCwUAA4IBAQBqY7AKhN41pV3A4GFc on3ARf4v7Fbd/tut3Ah9a2X4uq8aKJ7aDDO8P8/kMSKGcF6dtzwc7CJnLzkl+gfJ 71mDfQWi6URYNkbjv/S3KwsPzC6kEcdRwxbjtnrz/aP8VFAjLty0/xJ/cgBw9sn8 cpRj+YfdiYf81gwgwDD/wRq2f2SJSryXCNW15xT80pulO4YKfcCT/5a2otF+WmOA GmMZJroKwMc9p381TM3gVHgggxk8LBdfawedLFl+ITA6us9bHUki5W8aitxwfabr f5rzmuBPDdco47oVQLQFEjhtW16/FmvuUAdzX4lEnNdm6BA79w0VhfIjpWcIg/Uw 0d/t -----END CERTIFICATE-----Generated at Tue Jun 2 22:08:52 2026 by rpki-client