$ rpki-client -vvf rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/CE34BEF810A111F195BE013C393D8C67.roa File: CE34BEF810A111F195BE013C393D8C67.roa (raw, json) Hash identifier: rDiCsLkX8LztFPRKhHu/8w/OO3VhnMwZmTtx/fy38wU= Subject key identifier: D7:A5:C5:BB:09:B2:94:5B:8E:C2:53:47:8B:05:57:87:33:C8:60:29 Certificate issuer: /CN=A91647ED/serialNumber=D5D0D8E1F03D5100889F4180A65F550A0D580B85 Certificate serial: 37 Authority key identifier: D5:D0:D8:E1:F0:3D:51:00:88:9F:41:80:A6:5F:55:0A:0D:58:0B:85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1dDY4fA9UQCIn0GApl9VCg1YC4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/CE34BEF810A111F195BE013C393D8C67.roa Signing time: Sun 01 Mar 2026 06:01:37 +0000 ROA not before: Mon 23 Feb 2026 10:26:00 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141217 IP address blocks: 138.252.102.0/23 maxlen: 23 138.252.102.0/24 maxlen: 24 138.252.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/1dDY4fA9UQCIn0GApl9VCg1YC4U.crl rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/1dDY4fA9UQCIn0GApl9VCg1YC4U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1dDY4fA9UQCIn0GApl9VCg1YC4U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:03:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91647ED, serialNumber=D5D0D8E1F03D5100889F4180A65F550A0D580B85 Validity Not Before: Feb 23 10:26:00 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d641-44ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d3:0f:cc:7f:6d:79:4a:05:5e:c5:82:af:e5: f1:e0:f2:ba:b5:90:26:ba:81:3f:d7:70:b7:47:b6: e5:0c:56:5a:fd:94:db:6c:6b:e7:27:ca:29:2e:60: 7d:8d:d7:48:3a:e5:b8:23:c7:8f:d5:7d:13:98:bf: 17:b7:da:aa:87:0a:10:04:d7:06:eb:f7:86:43:95: 68:f6:6d:b6:c6:99:57:40:e5:07:d5:79:0b:da:37: 90:d7:42:05:24:ce:69:5f:96:36:f0:5b:e2:1d:d0: e6:ca:82:9a:a1:81:d2:d0:87:da:86:14:4e:0e:e3: a1:3a:54:48:81:53:c0:3d:9a:9e:2a:a7:07:41:4c: ed:16:97:3a:d2:37:db:f8:43:bd:1f:71:ef:e0:7d: 56:35:e0:eb:b1:63:49:59:b4:c4:04:16:5e:a1:33: 39:0c:b2:8e:19:66:9c:81:d7:d8:f7:0a:13:4c:57: 0d:d0:cc:3f:d5:79:ce:4d:e2:ea:14:b4:74:6c:1c: 63:78:57:7e:a8:15:32:0a:f5:42:04:c0:fb:f6:26: 55:69:31:b2:45:3d:f9:bd:b8:1f:5c:0c:c1:b0:6c: 8e:8e:4f:c3:80:24:82:1c:0d:19:42:bd:12:ec:c3: fb:d4:ee:75:bb:80:2d:f7:ce:01:ab:ed:53:02:15: eb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A5:C5:BB:09:B2:94:5B:8E:C2:53:47:8B:05:57:87:33:C8:60:29 X509v3 Authority Key Identifier: keyid:D5:D0:D8:E1:F0:3D:51:00:88:9F:41:80:A6:5F:55:0A:0D:58:0B:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/1dDY4fA9UQCIn0GApl9VCg1YC4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1dDY4fA9UQCIn0GApl9VCg1YC4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91647ED/C9C62DA4CB8011F0A68E541CC4F9AE02/CE34BEF810A111F195BE013C393D8C67.roa sbgp-ipAddrBlock: critical IPv4: 138.252.102.0/23 Signature Algorithm: sha256WithRSAEncryption 10:6c:5b:55:fb:a1:c1:c7:bd:6f:6e:9a:0a:fb:60:4d:c0:3c: dd:29:f3:c2:02:cb:1f:dc:31:03:4e:e6:19:e2:fb:19:69:e3: c0:27:38:0c:14:04:76:32:3f:40:ed:03:a0:1c:90:4d:a1:81: 0d:70:a7:b9:3c:6d:c2:81:bd:9a:6b:fd:17:13:46:49:fa:a9: e7:90:93:0d:3f:e5:8b:ec:2d:39:d7:b2:05:5e:59:b4:41:65: 7b:d6:43:4b:6a:fe:52:eb:54:5e:33:b5:e0:07:b8:ab:d9:df: 4f:0f:e0:20:b4:de:36:2a:10:0e:f2:40:65:14:57:1c:f5:e7: c9:a3:08:88:ba:4d:6c:65:c1:bf:b1:33:95:26:cb:2d:14:5e: e1:5d:e0:15:01:50:29:70:71:00:b0:5c:14:03:9b:75:44:f5: 24:7e:62:99:b7:8b:45:8d:e1:08:98:3e:a5:c3:99:51:a6:f7: 51:a3:cf:e4:6b:54:64:e6:30:96:a5:16:2c:c0:f4:e3:1c:f7: b0:91:9a:6e:db:a8:b4:53:47:ae:71:15:50:d4:09:42:1c:ee: d3:01:3d:24:4d:bb:6a:6c:bf:0e:65:45:90:49:52:df:d3:b5: 9f:e6:0e:65:a2:1f:17:0d:1f:d7:84:35:ef:44:fa:26:17:b4: ee:7f:cf:e7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NDdFRDExMC8GA1UEBRMoRDVEMEQ4RTFGMDNENTEwMDg4OUY0MTgwQTY1RjU1MEEw RDU4MEI4NTAeFw0yNjAyMjMxMDI2MDBaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNjQxLTQ0YWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR0w/Mf215SgVexYKv5fHg8rq1kCa6gT/XcLdHtuUMVlr9lNtsa+cnyikuYH2N 10g65bgjx4/VfROYvxe32qqHChAE1wbr94ZDlWj2bbbGmVdA5QfVeQvaN5DXQgUk zmlfljbwW+Id0ObKgpqhgdLQh9qGFE4O46E6VEiBU8A9mp4qpwdBTO0WlzrSN9v4 Q70fce/gfVY14OuxY0lZtMQEFl6hMzkMso4ZZpyB19j3ChNMVw3QzD/Vec5N4uoU tHRsHGN4V36oFTIK9UIEwPv2JlVpMbJFPfm9uB9cDMGwbI6OT8OAJIIcDRlCvRLs w/vU7nW7gC33zgGr7VMCFet1AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU16XFuwmy lFuOwlNHiwVXhzPIYCkwHwYDVR0jBBgwFoAU1dDY4fA9UQCIn0GApl9VCg1YC4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY0N0VEL0M5QzYyREE0Q0I4 MDExRjBBNjhFNTQxQ0M0RjlBRTAyLzFkRFk0ZkE5VVFDSW4wR0FwbDlWQ2cxWUM0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMWREWTRmQTlVUUNJbjBHQXBsOVZDZzFZQzRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDdFRC9DOUM2MkRBNENCODAxMUYwQTY4RTU0MUNDNEY5QUUwMi9DRTM0QkVGODEw QTExMUYxOTVCRTAxM0MzOTNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/GYwDQYJKoZIhvcNAQELBQADggEBABBsW1X7ocHHvW9umgr7YE3A PN0p88ICyx/cMQNO5hni+xlp48AnOAwUBHYyP0DtA6AckE2hgQ1wp7k8bcKBvZpr /RcTRkn6qeeQkw0/5YvsLTnXsgVeWbRBZXvWQ0tq/lLrVF4zteAHuKvZ308P4CC0 3jYqEA7yQGUUVxz158mjCIi6TWxlwb+xM5Umyy0UXuFd4BUBUClwcQCwXBQDm3VE 9SR+Ypm3i0WN4QiYPqXDmVGm91Gjz+RrVGTmMJalFizA9OMc97CRmm7bqLRTR65x FVDUCUIc7tMBPSRNu2psvw5lRZBJUt/TtZ/mDmWiHxcNH9eENe9E+iYXtO5/z+c= -----END CERTIFICATE-----Generated at Mon Mar 2 09:58:26 2026 by rpki-client