$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/12A52794DD1211F0B41550BC5F6F56BC.roa File: 12A52794DD1211F0B41550BC5F6F56BC.roa (raw, json) Hash identifier: poFkQcNLaPe2AFd5eZOfOml2iDaf3YW9G1N1COGbd/Q= Subject key identifier: CA:1C:84:11:09:2B:15:A3:CA:22:2F:2C:53:24:C4:9D:FF:2B:01:BB Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: 86 Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/12A52794DD1211F0B41550BC5F6F56BC.roa Signing time: Sun 01 Mar 2026 18:32:19 +0000 ROA not before: Fri 19 Dec 2025 19:36:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 984 IP address blocks: 72.57.135.0/24 maxlen: 24 72.57.136.0/21 maxlen: 24 72.57.144.0/24 maxlen: 24 72.57.145.0/24 maxlen: 24 72.57.146.0/23 maxlen: 24 72.57.148.0/22 maxlen: 24 72.57.152.0/23 maxlen: 24 72.57.154.0/24 maxlen: 24 72.57.155.0/24 maxlen: 24 72.57.156.0/22 maxlen: 24 72.57.160.0/22 maxlen: 24 72.57.164.0/24 maxlen: 24 72.57.165.0/24 maxlen: 24 72.57.166.0/23 maxlen: 24 72.57.168.0/21 maxlen: 24 72.57.176.0/22 maxlen: 24 72.57.180.0/24 maxlen: 24 72.57.181.0/24 maxlen: 24 72.57.182.0/23 maxlen: 24 72.57.184.0/23 maxlen: 24 72.57.186.0/23 maxlen: 24 72.57.188.0/22 maxlen: 24 72.57.192.0/22 maxlen: 24 72.57.196.0/22 maxlen: 24 72.57.200.0/21 maxlen: 24 72.57.208.0/20 maxlen: 24 72.57.224.0/22 maxlen: 24 72.57.228.0/22 maxlen: 24 72.57.232.0/22 maxlen: 24 72.57.236.0/23 maxlen: 24 72.57.238.0/23 maxlen: 24 72.57.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: Dec 19 19:36:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48633-57bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:5c:3b:9e:ca:de:94:a7:64:cb:89:cb:62:30: c0:e8:b5:e7:30:f5:3e:51:4a:38:8f:82:f5:d9:85: c2:41:60:26:c5:a6:ac:51:5c:ab:1d:97:99:ee:2e: 4f:98:ca:58:22:f0:c3:cb:33:51:de:98:e4:5f:69: be:87:37:92:7a:e0:81:09:fb:14:39:9c:2c:2d:77: c4:c5:3f:4c:43:18:be:1b:47:c4:b3:3f:0c:9a:3b: 3b:5d:ea:fd:ec:b0:82:3c:a0:48:39:d2:d3:55:ec: 37:a2:80:5c:37:b5:28:62:0d:cb:0a:70:37:8d:f7: e4:58:a1:ca:8e:79:be:55:92:a1:09:18:d7:c1:38: 64:2e:e5:4b:98:bd:9b:75:96:aa:75:a8:3e:59:a2: 1d:b5:b8:9f:4b:8e:2a:39:ea:45:02:ec:c6:b0:4d: b9:5f:a6:89:f7:14:e2:45:63:68:7b:85:46:4a:f5: 49:7c:1b:18:09:72:55:c9:22:21:cd:69:e3:6d:f2: 21:16:7e:53:f6:e3:19:e4:f5:a7:82:2c:7e:e0:02: 6b:24:b0:32:b9:27:66:9d:73:6c:78:39:20:fa:22: e7:b2:1b:67:52:f7:d6:07:33:12:e3:6e:d9:15:83: ab:d2:b5:9f:22:c0:59:ac:0b:1e:92:06:2f:1e:48: cd:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:1C:84:11:09:2B:15:A3:CA:22:2F:2C:53:24:C4:9D:FF:2B:01:BB X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/12A52794DD1211F0B41550BC5F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 72.57.135.0-72.57.255.255 Signature Algorithm: sha256WithRSAEncryption 47:65:00:7b:0c:b8:bb:cb:e3:28:4d:04:dc:00:b7:84:d0:2b: 2e:40:d6:c6:1f:b1:93:bd:55:5a:3d:52:92:b9:d0:a2:66:a9: bf:b2:30:ae:2d:9a:a0:dd:a2:7f:9e:17:89:78:8e:18:08:48: 30:c4:e8:7a:bf:70:1a:e7:fa:e1:b5:34:a6:12:eb:09:b3:2b: 69:ea:bf:c8:2a:96:c3:56:3d:1b:3e:5d:45:f4:f3:57:54:b5: 36:2c:1f:15:db:a0:5e:bd:e2:2d:ac:e9:a8:ae:00:7e:fe:5b: c3:a7:ee:27:d8:c2:2a:3a:9d:09:8e:34:d8:6f:02:34:01:78: dc:73:d8:ce:e5:c4:6a:f5:8d:82:32:c5:7b:6f:ab:74:35:36: cf:c9:cd:e5:b8:be:cf:9d:06:3e:82:42:93:1e:cc:b7:45:0b: 0b:c0:64:d5:5f:8d:09:1f:0b:29:44:fc:1b:95:74:c4:29:cf: 71:4a:ec:bb:da:e1:c7:d1:8f:a6:06:04:58:f5:98:79:37:61: 92:18:04:c8:91:46:e7:bc:85:56:1c:24:f4:df:eb:1e:d8:a1: 41:6f:bb:39:ad:16:15:c6:a9:8a:a5:a1:13:e5:fe:9a:d7:51: 2b:a3:92:c5:7e:86:a8:d7:7c:38:e1:c6:f3:f9:df:61:b5:a7: a5:fa:20:d5 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4RTcxMTAvBgNVBAUTKDNENjIxNkQ1NUNCNTRGQzlCNTcwRjlGMjVGOUFERDBG Mzc2OUI0REUwHhcNMjUxMjE5MTkzNjU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYzMy01N2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjlw7nsrelKdky4nLYjDA6LXnMPU+UUo4j4L12YXCQWAmxaasUVyrHZeZ7i5P mMpYIvDDyzNR3pjkX2m+hzeSeuCBCfsUOZwsLXfExT9MQxi+G0fEsz8Mmjs7Xer9 7LCCPKBIOdLTVew3ooBcN7UoYg3LCnA3jffkWKHKjnm+VZKhCRjXwThkLuVLmL2b dZaqdag+WaIdtbifS44qOepFAuzGsE25X6aJ9xTiRWNoe4VGSvVJfBsYCXJVySIh zWnjbfIhFn5T9uMZ5PWngix+4AJrJLAyuSdmnXNseDkg+iLnshtnUvfWBzMS427Z FYOr0rWfIsBZrAsekgYvHkjNJwIDAQABo4ICZzCCAmMwHQYDVR0OBBYEFMochBEJ KxWjyiIvLFMkxJ3/KwG7MB8GA1UdIwQYMBaAFD1iFtVctU/JtXD58l+a3Q83abTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzhFNy9DNjJCMjk4Njkz NDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi9QV0lXMVZ5MVQ4bTFjUG55WDVyZER6ZHB0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4RTcvQzYyQjI5ODY5MzQyMTFGMEE5ODc3ODNCQzRGOUFFMDIvMTJBNTI3OTRE RDEyMTFGMEI0MTU1MEJDNUY2RjU2QkMucm9hMCYGCCsGAQUFBwEHAQH/BBcwFTAT BAIAATANMAsDBABIOYcDAwFIODANBgkqhkiG9w0BAQsFAAOCAQEAR2UAewy4u8vj KE0E3AC3hNArLkDWxh+xk71VWj1SkrnQomapv7Iwri2aoN2if54XiXiOGAhIMMTo er9wGuf64bU0phLrCbMraeq/yCqWw1Y9Gz5dRfTzV1S1NiwfFdugXr3iLazpqK4A fv5bw6fuJ9jCKjqdCY402G8CNAF43HPYzuXEavWNgjLFe2+rdDU2z8nN5bi+z50G PoJCkx7Mt0ULC8Bk1V+NCR8LKUT8G5V0xCnPcUrsu9rhx9GPpgYEWPWYeTdhkhgE yJFG57yFVhwk9N/rHtihQW+7Oa0WFcapiqWhE+X+mtdRK6OSxX6GqNd8OOHG8/nf YbWnpfog1Q== -----END CERTIFICATE-----Generated at Mon Mar 2 20:16:45 2026 by rpki-client