$ rpki-client -vvf rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/2B7DA728397E11F19603F3529B833773.roa File: 2B7DA728397E11F19603F3529B833773.roa (raw, json) Hash identifier: 6jcLP2Ff5kNHQzJq73ID1QGceVd0PGeFk+UxM9roUcg= Subject key identifier: 43:E9:6C:EF:93:52:EB:31:42:B1:D1:AB:1A:35:EF:C7:D1:EC:78:15 Certificate issuer: /CN=A91647ED/serialNumber=D5D0D8E1F03D5100889F4180A65F550A0D580B85 Certificate serial: 58 Authority key identifier: D5:D0:D8:E1:F0:3D:51:00:88:9F:41:80:A6:5F:55:0A:0D:58:0B:85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1dDY4fA9UQCIn0GApl9VCg1YC4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/2B7DA728397E11F19603F3529B833773.roa Signing time: Thu 16 Apr 2026 10:25:40 +0000 ROA not before: Thu 16 Apr 2026 10:25:40 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136597 IP address blocks: 138.252.102.0/23 maxlen: 23 138.252.102.0/24 maxlen: 24 138.252.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/1dDY4fA9UQCIn0GApl9VCg1YC4U.crl rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/1dDY4fA9UQCIn0GApl9VCg1YC4U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1dDY4fA9UQCIn0GApl9VCg1YC4U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 10:25:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91647ED, serialNumber=D5D0D8E1F03D5100889F4180A65F550A0D580B85 Validity Not Before: Apr 16 10:25:40 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69e0b924-2c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f7:c0:b4:26:d0:cc:0c:b3:53:ab:de:04:1d: cf:e5:05:7a:9b:a5:af:63:77:d9:e2:46:88:40:f7: 8d:23:b7:63:51:f7:23:c3:b9:7c:25:f0:a7:f7:21: a6:3d:01:f8:ae:fd:42:3f:45:fd:70:d6:5d:e5:c3: da:9d:0e:84:30:a1:28:d6:90:92:ae:e8:81:e3:d0: 0f:0b:2e:a3:0e:8b:57:0d:87:cb:5c:dd:ac:7b:fc: af:08:fc:d5:90:84:50:37:fe:32:1c:30:84:0b:b0: 42:ab:59:0c:69:83:f2:20:8e:13:b3:82:4c:c0:cc: 9e:a2:52:89:2a:95:d5:b0:87:03:ff:32:a4:da:5d: 04:76:f3:83:ec:59:67:c8:86:8b:7b:ce:ac:3d:f0: b5:54:78:02:70:91:b8:6b:23:bc:3e:ef:de:ab:f5: 57:fb:f2:b8:ae:d0:78:9f:df:a3:3d:19:97:e7:fd: 12:a6:b0:af:fd:ee:ca:be:11:13:94:53:91:5d:20: 3e:0c:a8:ec:6e:0f:7b:3d:a5:ef:fe:ce:95:43:b8: 9d:c8:60:88:d6:40:b4:99:2d:9c:e0:2d:59:af:ce: 1a:af:75:10:fa:c4:3f:3a:00:0f:69:b0:87:08:f1: f3:ad:96:a0:67:50:e6:37:e3:85:d2:31:e3:7e:da: da:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:E9:6C:EF:93:52:EB:31:42:B1:D1:AB:1A:35:EF:C7:D1:EC:78:15 X509v3 Authority Key Identifier: keyid:D5:D0:D8:E1:F0:3D:51:00:88:9F:41:80:A6:5F:55:0A:0D:58:0B:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/1dDY4fA9UQCIn0GApl9VCg1YC4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1dDY4fA9UQCIn0GApl9VCg1YC4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/2B7DA728397E11F19603F3529B833773.roa sbgp-ipAddrBlock: critical IPv4: 138.252.102.0/23 Signature Algorithm: sha256WithRSAEncryption 81:b7:f7:19:60:e1:c0:c0:0c:ab:0f:44:e2:c4:92:a0:2a:d9: 40:7e:16:a5:02:45:4c:cf:40:c9:d2:c5:e5:34:26:b7:f3:b3: f8:4a:9e:2f:6c:ef:93:1e:67:b4:04:c0:b5:6b:bf:f8:0d:37: 51:a2:8a:a6:60:b8:ba:5b:8d:13:41:ef:19:ef:02:f2:d0:99: 9e:04:75:2d:0c:5f:ae:23:af:e7:0d:47:fd:49:40:f3:e2:fe: 52:09:b1:c2:87:4f:49:77:51:65:5c:fe:73:6c:3b:51:fb:2b: 30:ff:67:18:1e:10:bf:72:68:57:c6:b7:d0:6b:e2:b0:5e:c0: c8:7d:2a:c7:5f:9f:eb:f6:4d:3e:fc:90:1b:a8:38:bf:42:10: e1:e3:03:24:b8:66:49:d7:d6:55:59:4a:72:b3:35:67:53:b7: 9a:92:f3:85:e2:dd:86:4c:4f:e1:8b:9c:a9:a3:15:72:a7:f9: 60:a0:9b:f1:23:1f:14:75:6a:0a:15:35:8c:68:c8:3d:22:03: 2b:e9:cd:bd:64:4d:a2:ec:92:5d:fb:5f:ef:ca:47:cc:54:5a: d3:bf:9e:c3:46:72:f2:de:9d:c0:bf:bc:d3:8f:6c:2e:e0:23: 28:e5:a1:25:1e:7e:da:52:aa:79:d2:3a:62:19:bd:ee:d8:6b: 9f:10:d5:2d -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDdFRDExMC8GA1UEBRMoRDVEMEQ4RTFGMDNENTEwMDg4OUY0MTgwQTY1RjU1MEEw RDU4MEI4NTAeFw0yNjA0MTYxMDI1NDBaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZTBiOTI0LTJjNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO98C0JtDMDLNTq94EHc/lBXqbpa9jd9niRohA940jt2NR9yPDuXwl8Kf3IaY9 Afiu/UI/Rf1w1l3lw9qdDoQwoSjWkJKu6IHj0A8LLqMOi1cNh8tc3ax7/K8I/NWQ hFA3/jIcMIQLsEKrWQxpg/IgjhOzgkzAzJ6iUokqldWwhwP/MqTaXQR284PsWWfI hot7zqw98LVUeAJwkbhrI7w+796r9Vf78riu0Hif36M9GZfn/RKmsK/97sq+EROU U5FdID4MqOxuD3s9pe/+zpVDuJ3IYIjWQLSZLZzgLVmvzhqvdRD6xD86AA9psIcI 8fOtlqBnUOY344XSMeN+2toRAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUQ+ls75NS 6zFCsdGrGjXvx9HseBUwHwYDVR0jBBgwFoAU1dDY4fA9UQCIn0GApl9VCg1YC4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0N0VEL0M5QzYyREE0Q0I4 MDExRjBBNjhFNTQxQ0M0RjlBRTAyLzFkRFk0ZkE5VVFDSW4wR0FwbDlWQ2cxWUM0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMWREWTRmQTlVUUNJbjBHQXBsOVZDZzFZQzRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDdFRC9DOUM2MkRBNENCODAxMUYwQTY4RTU0MUNDNEY5QUUwMi8yQjdEQTcyODM5 N0UxMUYxOTYwM0YzNTI5QjgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/GYwDQYJKoZIhvcNAQELBQADggEBAIG39xlg4cDADKsPROLEkqAq 2UB+FqUCRUzPQMnSxeU0Jrfzs/hKni9s75MeZ7QEwLVrv/gNN1GiiqZguLpbjRNB 7xnvAvLQmZ4EdS0MX64jr+cNR/1JQPPi/lIJscKHT0l3UWVc/nNsO1H7KzD/Zxge EL9yaFfGt9Br4rBewMh9Ksdfn+v2TT78kBuoOL9CEOHjAyS4ZknX1lVZSnKzNWdT t5qS84Xi3YZMT+GLnKmjFXKn+WCgm/EjHxR1agoVNYxoyD0iAyvpzb1kTaLskl37 X+/KR8xUWtO/nsNGcvLencC/vNOPbC7gIyjloSUeftpSqnnSOmIZve7Ya58Q1S0= -----END CERTIFICATE-----Generated at Fri Apr 17 07:36:35 2026 by rpki-client