$ rpki-client -vvf rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/A242BED45E1511EFBBFB911EC4F9AE02.roa File: A242BED45E1511EFBBFB911EC4F9AE02.roa (raw, json) Hash identifier: xjdj17TdvEDkLf9+p3eEDDKwL+UFS4OGM0bjJjQEXIo= Subject key identifier: 80:E8:47:5D:9F:81:94:FC:95:A0:BC:25:CE:0F:7B:3E:76:97:A9:5A Certificate issuer: /CN=A91B673B/serialNumber=15CF50DB52B0F12F1A6E3B39633D482E09CFE35C Certificate serial: 0129 Authority key identifier: 15:CF:50:DB:52:B0:F1:2F:1A:6E:3B:39:63:3D:48:2E:09:CF:E3:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/A242BED45E1511EFBBFB911EC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:47:28 +0000 ROA not before: Fri 15 Aug 2025 06:44:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153166 IP address blocks: 2001:df4:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.crl rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 05:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B673B, serialNumber=15CF50DB52B0F12F1A6E3B39633D482E09CFE35C Validity Not Before: Aug 15 06:44:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a300-8ef2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b6:c6:9c:e4:f6:f8:15:22:53:bb:70:19:51: 86:97:0a:ed:47:f6:39:c3:dc:2f:1f:73:2d:09:11: 36:d2:12:47:8a:04:a9:57:e5:61:fa:64:5e:f0:c6: 32:66:69:5d:3b:a2:19:fc:10:19:f7:1e:7f:0a:d4: f7:14:e3:83:5c:cc:06:48:76:b5:06:7f:53:94:8e: a0:5c:31:b2:e9:50:a9:29:b9:92:4b:96:5e:b3:d7: c8:18:69:b9:76:5f:91:63:a7:93:2b:e4:8f:00:11: f0:8d:fb:aa:03:44:cc:9d:3d:87:55:2e:c4:09:f0: 8f:15:95:f0:62:a2:3d:04:97:f0:80:fa:af:a1:ea: 31:74:2a:4a:6b:79:2b:21:33:bb:bb:3b:97:96:9e: 7b:54:9a:d4:14:ec:c8:40:ab:47:61:30:c3:cf:6e: 68:6b:0c:40:bb:58:8e:7b:a5:ae:16:4d:b7:03:c8: 40:8c:86:9d:95:63:9b:63:69:38:bd:61:2d:75:2b: 9d:93:59:7d:bd:d8:39:c9:a9:96:2b:2a:84:9e:62: c8:9f:ad:7c:d4:11:ac:4d:27:d0:93:45:13:9f:c5: 50:d5:50:ea:26:5f:99:ea:36:da:f4:33:19:1b:9e: 02:b7:dd:42:45:4b:c6:3b:f9:89:7a:5c:0a:ab:fa: 7d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E8:47:5D:9F:81:94:FC:95:A0:BC:25:CE:0F:7B:3E:76:97:A9:5A X509v3 Authority Key Identifier: keyid:15:CF:50:DB:52:B0:F1:2F:1A:6E:3B:39:63:3D:48:2E:09:CF:E3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/A242BED45E1511EFBBFB911EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2001:df4:1040::/48 Signature Algorithm: sha256WithRSAEncryption 1d:63:bc:aa:c2:ad:27:99:32:68:2c:0d:07:92:2e:93:a1:9d: 92:f3:f5:4e:a2:0f:9a:44:45:ee:a7:49:6b:4a:c7:4d:d0:ee: c6:3b:bd:d1:d7:5d:84:4c:3a:29:4d:9b:d3:95:ca:27:66:84: 8f:2c:a5:e1:67:fd:dc:6f:e6:83:37:27:cc:71:4f:e9:10:28: bb:ee:b5:c0:5c:d7:52:c4:f8:ff:6a:ba:8c:d5:b7:7a:50:39: c0:a0:9e:b8:f8:7a:6e:93:04:a2:0b:d4:95:8c:d7:1d:f9:31: 6d:15:1e:d8:cc:9f:e9:97:2e:b9:7f:37:4d:24:5c:83:51:10: a7:7a:6b:68:52:3b:a0:a6:53:26:b2:fc:c4:25:ed:74:fe:fd: a5:4d:3a:c7:b8:0e:84:56:9a:82:3f:08:bf:e7:eb:31:65:2c: 88:e9:20:2a:53:eb:8a:c3:ab:5b:22:80:5a:7e:fc:ee:22:02: fe:dd:82:0c:64:54:f1:73:f9:b6:ab:ad:a8:18:46:88:3c:6e: e2:64:f9:31:1f:44:f2:5a:7b:09:d9:d8:81:b3:38:e4:f0:1a: e2:a5:78:c8:82:14:16:84:51:0e:d7:e2:50:76:21:fa:b0:03: ea:4d:6f:f5:42:94:7f:de:17:63:95:a8:13:86:dc:a5:7d:3a: 46:2f:11:0e -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3M0IxMTAvBgNVBAUTKDE1Q0Y1MERCNTJCMEYxMkYxQTZFM0IzOTYzM0Q0ODJF MDlDRkUzNUMwHhcNMjUwODE1MDY0NDIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTMwMC04ZWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurbGnOT2+BUiU7twGVGGlwrtR/Y5w9wvH3MtCRE20hJHigSpV+Vh+mRe8MYy ZmldO6IZ/BAZ9x5/CtT3FOODXMwGSHa1Bn9TlI6gXDGy6VCpKbmSS5Zes9fIGGm5 dl+RY6eTK+SPABHwjfuqA0TMnT2HVS7ECfCPFZXwYqI9BJfwgPqvoeoxdCpKa3kr ITO7uzuXlp57VJrUFOzIQKtHYTDDz25oawxAu1iOe6WuFk23A8hAjIadlWObY2k4 vWEtdSudk1l9vdg5yamWKyqEnmLIn6181BGsTSfQk0UTn8VQ1VDqJl+Z6jba9DMZ G54Ct91CRUvGO/mJelwKq/p9hQIDAQABo4ICYzCCAl8wHQYDVR0OBBYEFIDoR12f gZT8laC8Jc4Pez52l6laMB8GA1UdIwQYMBaAFBXPUNtSsPEvGm47OWM9SC4Jz+Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjczQi84MTJGMjEzNjVE RkUxMUVGOEM3RTgxN0JDNEY5QUUwMi9GYzlRMjFLdzhTOGFianM1WXoxSUxnblA0 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZjOVEyMUt3OFM4YWJqczVZejFJTGduUDQxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY3M0IvODEyRjIxMzY1REZFMTFFRjhDN0U4MTdCQzRGOUFFMDIvQTI0MkJFRDQ1 RTE1MTFFRkJCRkI5MTFFQzRGOUFFMDIucm9hMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcAIAEN9BBAMA0GCSqGSIb3DQEBCwUAA4IBAQAdY7yqwq0nmTJoLA0H ki6ToZ2S8/VOog+aREXup0lrSsdN0O7GO73R112ETDopTZvTlconZoSPLKXhZ/3c b+aDNyfMcU/pECi77rXAXNdSxPj/arqM1bd6UDnAoJ64+HpukwSiC9SVjNcd+TFt FR7YzJ/ply65fzdNJFyDURCnemtoUjugplMmsvzEJe10/v2lTTrHuA6EVpqCPwi/ 5+sxZSyI6SAqU+uKw6tbIoBafvzuIgL+3YIMZFTxc/m2q62oGEaIPG7iZPkxH0Ty WnsJ2diBszjk8BripXjIghQWhFEO1+JQdiH6sAPqTW/1QpR/3hdjlagThtylfTpG LxEO -----END CERTIFICATE-----Generated at Wed Mar 4 13:15:00 2026 by rpki-client