$ rpki-client -vvf rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/115DA80CBDFA11F0AC07856DC4F9AE02.roa File: 115DA80CBDFA11F0AC07856DC4F9AE02.roa (raw, json) Hash identifier: W13G9UJDUOXNhE35H+xQmcCjaFGO3pjeXgy05QF6k+E= Subject key identifier: 10:14:18:1B:8B:51:EB:AF:09:C6:E5:65:B7:2C:1D:ED:F9:0A:94:04 Certificate issuer: /CN=A91357FC/serialNumber=93E6CC9CBC94C6B4E8C7D98641830DE66391B9DF Certificate serial: 3B Authority key identifier: 93:E6:CC:9C:BC:94:C6:B4:E8:C7:D9:86:41:83:0D:E6:63:91:B9:DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k-bMnLyUxrTox9mGQYMN5mORud8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/115DA80CBDFA11F0AC07856DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:04:10 +0000 ROA not before: Mon 10 Nov 2025 05:56:58 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 135410 IP address blocks: 138.252.172.0/23 maxlen: 23 138.252.172.0/24 maxlen: 24 138.252.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.crl rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k-bMnLyUxrTox9mGQYMN5mORud8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91357FC, serialNumber=93E6CC9CBC94C6B4E8C7D98641830DE66391B9DF Validity Not Before: Nov 10 05:56:58 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d6da-603c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:17:82:14:1a:da:96:3d:6f:ba:48:05:09:3f: a6:b3:18:40:3e:af:1a:67:3b:bd:c9:0d:25:f7:6f: 16:27:8f:98:81:a0:50:0f:0b:55:bc:5e:83:48:65: 50:5a:c4:7d:e8:44:b8:0d:b9:e7:34:44:b6:4d:be: ea:ed:0d:65:f7:a0:09:4f:a9:30:c2:dc:39:d5:72: 58:61:d0:51:82:47:ea:cd:5f:9a:fd:ef:36:b0:04: e6:de:08:a1:30:bf:24:1a:25:26:fe:59:fe:83:d4: 50:ca:a9:13:7b:56:ac:ac:c0:8c:9b:5c:24:f8:1c: 2f:8a:44:76:9d:77:99:e7:61:40:0f:a1:28:45:3a: 59:62:e0:be:e0:a9:4d:9a:b7:bc:4c:bd:32:e0:50: 42:09:20:f5:09:dc:37:41:a4:79:9b:8f:eb:48:74: 0d:39:79:96:f9:80:85:03:56:7d:bd:1e:b7:e1:fa: 9f:f1:ec:12:63:5f:e9:1e:31:6b:80:61:6a:b9:84: 96:c7:76:85:f0:90:69:c1:a2:a7:ea:a4:ea:22:6a: 97:39:a4:7e:87:81:59:61:87:bc:24:55:07:17:1c: 14:1e:3b:3a:1c:40:be:20:ea:54:43:5c:d3:74:e9: 18:82:eb:6a:46:ea:05:e3:a9:ba:e8:e7:0a:44:f0: 78:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:14:18:1B:8B:51:EB:AF:09:C6:E5:65:B7:2C:1D:ED:F9:0A:94:04 X509v3 Authority Key Identifier: keyid:93:E6:CC:9C:BC:94:C6:B4:E8:C7:D9:86:41:83:0D:E6:63:91:B9:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/k-bMnLyUxrTox9mGQYMN5mORud8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k-bMnLyUxrTox9mGQYMN5mORud8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91357FC/884572D4BDF911F0B3E0526CC4F9AE02/115DA80CBDFA11F0AC07856DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.172.0/23 Signature Algorithm: sha256WithRSAEncryption 22:c7:df:2c:a7:74:da:4c:ae:45:bc:98:53:2b:a3:10:26:d7: 25:41:5a:fc:ba:fe:54:36:67:01:80:65:35:b9:6c:a6:16:e2: 68:f4:62:eb:22:b2:f6:38:92:f7:fa:5a:f3:26:42:59:4d:d1: 52:15:49:ba:29:a2:3e:0c:cc:77:bc:d5:40:98:60:08:3e:e8: fc:fe:e3:74:c1:d6:c1:72:95:87:12:c9:9e:78:e8:ec:2d:c6: 84:46:3f:5a:8d:d6:c1:d0:77:ab:0f:a3:73:cf:c7:a6:85:96: 1d:df:dc:69:69:0e:01:b7:f3:1a:26:3d:f0:cb:16:52:4c:04: bb:cc:6f:ed:fe:d9:c3:5d:f2:57:1a:f2:ba:10:80:72:80:7d: da:f1:18:8a:ad:54:55:24:62:5f:d0:e6:b5:dc:d7:14:0e:4a: a5:3c:e0:86:5d:28:b2:d5:6e:c1:5a:9e:8a:57:fd:e4:71:66: f7:1d:88:7f:6b:04:16:c6:c9:89:fe:2e:ab:5e:d4:dc:59:27: 14:c0:7a:8a:23:d3:a2:67:14:c5:46:df:05:b5:18:06:02:5f: d0:d7:cd:27:02:75:f5:f2:2f:b9:de:09:27:6f:ef:a4:f9:8b: a3:b5:49:80:a5:f4:cd:fb:19:aa:54:7a:15:9b:0f:17:bb:f5: 7e:5f:3f:64 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NTdGQzExMC8GA1UEBRMoOTNFNkNDOUNCQzk0QzZCNEU4QzdEOTg2NDE4MzBERTY2 MzkxQjlERjAeFw0yNTExMTAwNTU2NThaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNmRhLTYwM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxF4IUGtqWPW+6SAUJP6azGEA+rxpnO73JDSX3bxYnj5iBoFAPC1W8XoNIZVBa xH3oRLgNuec0RLZNvurtDWX3oAlPqTDC3DnVclhh0FGCR+rNX5r97zawBObeCKEw vyQaJSb+Wf6D1FDKqRN7VqyswIybXCT4HC+KRHadd5nnYUAPoShFOlli4L7gqU2a t7xMvTLgUEIJIPUJ3DdBpHmbj+tIdA05eZb5gIUDVn29Hrfh+p/x7BJjX+keMWuA YWq5hJbHdoXwkGnBoqfqpOoiapc5pH6HgVlhh7wkVQcXHBQeOzocQL4g6lRDXNN0 6RiC62pG6gXjqbro5wpE8HjzAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUEBQYG4tR 668JxuVltywd7fkKlAQwHwYDVR0jBBgwFoAUk+bMnLyUxrTox9mGQYMN5mORud8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1N0ZDLzg4NDU3MkQ0QkRG OTExRjBCM0UwNTI2Q0M0RjlBRTAyL2stYk1uTHlVeHJUb3g5bUdRWU1ONW1PUnVk OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvay1iTW5MeVV4clRveDltR1FZTU41bU9SdWQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTdGQy84ODQ1NzJENEJERjkxMUYwQjNFMDUyNkNDNEY5QUUwMi8xMTVEQTgwQ0JE RkExMUYwQUMwNzg1NkRDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/KwwDQYJKoZIhvcNAQELBQADggEBACLH3yyndNpMrkW8mFMroxAm 1yVBWvy6/lQ2ZwGAZTW5bKYW4mj0YusisvY4kvf6WvMmQllN0VIVSbopoj4MzHe8 1UCYYAg+6Pz+43TB1sFylYcSyZ546OwtxoRGP1qN1sHQd6sPo3PPx6aFlh3f3Glp DgG38xomPfDLFlJMBLvMb+3+2cNd8lca8roQgHKAfdrxGIqtVFUkYl/Q5rXc1xQO SqU84IZdKLLVbsFanopX/eRxZvcdiH9rBBbGyYn+Lqte1NxZJxTAeooj06JnFMVG 3wW1GAYCX9DXzScCdfXyL7neCSdv76T5i6O1SYCl9M37GapUehWbDxe79X5fP2Q= -----END CERTIFICATE-----Generated at Mon Mar 2 05:48:58 2026 by rpki-client