$ rpki-client -vvf rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/E9E80356AD6211EABEDF046AC4F9AE02.roa File: E9E80356AD6211EABEDF046AC4F9AE02.roa (raw, json) Hash identifier: oL+E2occgF2Rh0xxZmLpozavtSN8h7g27TX6pQxOEn0= Subject key identifier: 57:CB:05:62:8D:60:30:50:62:20:8D:B2:0E:A0:66:C2:01:CC:CB:22 Certificate issuer: /CN=A914F5BA/serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Certificate serial: 097A Authority key identifier: 14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/E9E80356AD6211EABEDF046AC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:33:13 +0000 ROA not before: Mon 26 May 2025 20:37:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137811 IP address blocks: 5.28.32.0/21 maxlen: 21 5.28.32.0/24 maxlen: 24 5.28.33.0/24 maxlen: 24 5.28.34.0/24 maxlen: 24 5.28.35.0/24 maxlen: 24 5.28.36.0/23 maxlen: 24 5.28.38.0/24 maxlen: 24 5.28.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2426 (0x97a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F5BA, serialNumber=1420F80709DDD3DFC3F511565503CEF4444BEDC3 Validity Not Before: May 26 20:37:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a407d9-d146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5b:4d:27:1d:71:b7:85:85:76:c3:8a:4a:82: a0:0e:a9:f3:e2:24:73:b9:4e:52:5e:e1:4e:83:60: a2:e6:65:6f:63:32:a4:8d:1a:59:38:48:c5:56:a5: 59:31:6d:22:47:3e:2f:f1:0c:f8:04:cd:c7:3a:2c: 7a:df:b8:70:27:84:1d:c7:7b:74:37:46:a1:06:e1: 1a:4c:9f:7b:26:7b:94:7b:ae:cd:5d:c6:34:df:20: ce:49:54:2b:6a:15:f8:1a:ae:38:a9:89:ac:6a:15: 8e:3e:4e:01:ce:b1:60:c4:08:55:50:d4:76:3f:7c: ab:b4:c8:00:fd:94:84:c1:fb:59:17:b8:31:c1:6c: fb:d1:fb:d9:da:f1:3a:fc:11:bd:6b:66:70:e9:74: b9:57:7a:43:f0:b3:b5:7f:21:df:00:f8:dc:b1:f3: 94:00:10:d4:7f:a9:28:c7:2a:21:38:1b:de:04:6c: c6:1a:f2:8f:85:e7:61:a9:e0:f2:4a:b1:59:c0:dd: aa:f7:a0:78:b7:ee:d3:10:ce:ad:a0:16:90:c1:90: 43:d2:25:e7:5a:f0:13:70:c3:42:eb:53:6e:ae:8c: 3b:49:21:13:b0:f0:20:55:75:78:fa:23:77:ad:d0: 8c:2d:88:7a:a8:42:9d:d5:0e:ed:11:f4:4e:f2:bc: 1a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CB:05:62:8D:60:30:50:62:20:8D:B2:0E:A0:66:C2:01:CC:CB:22 X509v3 Authority Key Identifier: keyid:14:20:F8:07:09:DD:D3:DF:C3:F5:11:56:55:03:CE:F4:44:4B:ED:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/FCD4Bwnd09_D9RFWVQPO9ERL7cM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/FCD4Bwnd09_D9RFWVQPO9ERL7cM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F5BA/049DCD22AD6111EA8F1A8D63C4F9AE02/E9E80356AD6211EABEDF046AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 5.28.32.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:7f:b4:0e:36:38:5d:80:c9:12:5c:48:66:8c:9e:61:d5:53: 7e:e8:cf:bd:d8:1b:62:45:3d:11:c7:00:0a:a3:8d:51:5f:5d: c7:f8:95:51:95:8f:6a:f9:eb:4d:87:bf:36:06:64:10:49:67: cb:4d:61:01:7c:ce:2c:e5:62:a6:04:7d:57:99:83:c8:68:f4: d9:92:1f:2c:da:8c:33:ae:ea:69:f2:f5:92:33:13:57:f2:bc: 59:59:7e:c9:7f:62:17:70:02:8c:7f:e6:3b:89:ac:37:d5:be: d1:97:89:0e:67:ff:90:49:d6:ec:10:d1:97:df:d0:6d:82:37: 7d:57:01:2b:3e:82:3a:ce:1b:93:f1:bc:9d:d5:2f:36:3a:e7: a3:37:61:33:12:d9:ce:ac:58:85:82:a6:39:81:ad:34:4a:00: 02:f1:d1:c9:4c:01:b3:6c:91:a7:f6:e9:49:99:b4:83:36:a1: 02:d2:1d:07:d9:59:ff:81:7e:c3:b6:12:dc:f8:dd:67:2e:bf: ba:21:14:10:9d:a5:d7:02:a4:5f:d1:b9:4a:db:72:ce:79:85: 68:d1:ec:04:4d:27:f3:07:ba:8c:b0:56:4e:b9:a7:65:d5:dc: 09:53:5f:b9:09:46:ae:6e:1c:8b:1d:98:87:3a:13:55:35:db: 7b:3f:81:c5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY1QkExMTAvBgNVBAUTKDE0MjBGODA3MDlEREQzREZDM0Y1MTE1NjU1MDNDRUY0 NDQ0QkVEQzMwHhcNMjUwNTI2MjAzNzEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdkOS1kMTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FtNJx1xt4WFdsOKSoKgDqnz4iRzuU5SXuFOg2Ci5mVvYzKkjRpZOEjFVqVZ MW0iRz4v8Qz4BM3HOix637hwJ4Qdx3t0N0ahBuEaTJ97JnuUe67NXcY03yDOSVQr ahX4Gq44qYmsahWOPk4BzrFgxAhVUNR2P3yrtMgA/ZSEwftZF7gxwWz70fvZ2vE6 /BG9a2Zw6XS5V3pD8LO1fyHfAPjcsfOUABDUf6koxyohOBveBGzGGvKPhedhqeDy SrFZwN2q96B4t+7TEM6toBaQwZBD0iXnWvATcMNC61Nurow7SSETsPAgVXV4+iN3 rdCMLYh6qEKd1Q7tEfRO8rwanQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFfLBWKN YDBQYiCNsg6gZsIBzMsiMB8GA1UdIwQYMBaAFBQg+AcJ3dPfw/URVlUDzvRES+3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjVCQS8wNDlEQ0QyMkFE NjExMUVBOEYxQThENjNDNEY5QUUwMi9GQ0Q0QnduZDA5X0Q5UkZXVlFQTzlFUkw3 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0ZDRDRCd25kMDlfRDlSRldWUVBPOUVSTDdjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEY1QkEvMDQ5RENEMjJBRDYxMTFFQThGMUE4RDYzQzRGOUFFMDIvRTlFODAzNTZB RDYyMTFFQUJFREYwNDZBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDBRwgMA0GCSqGSIb3DQEBCwUAA4IBAQB6f7QONjhdgMkSXEhmjJ5h 1VN+6M+92BtiRT0RxwAKo41RX13H+JVRlY9q+etNh782BmQQSWfLTWEBfM4s5WKm BH1XmYPIaPTZkh8s2owzrupp8vWSMxNX8rxZWX7Jf2IXcAKMf+Y7iaw31b7Rl4kO Z/+QSdbsENGX39Btgjd9VwErPoI6zhuT8byd1S82OuejN2EzEtnOrFiFgqY5ga00 SgAC8dHJTAGzbJGn9ulJmbSDNqEC0h0H2Vn/gX7DthLc+N1nLr+6IRQQnaXXAqRf 0blK23LOeYVo0ewETSfzB7qMsFZOuadl1dwJU1+5CUaubhyLHZiHOhNVNdt7P4HF -----END CERTIFICATE-----Generated at Mon Mar 2 03:59:08 2026 by rpki-client