$ rpki-client -vvf rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa File: 535DB56CD1AF11F0A278C10CC4F9AE02.roa (raw, json) Hash identifier: BXUEY5m+3lonf61CO2Aq4e6KwB/tUlOeMJ88DFpi710= Subject key identifier: EB:85:17:7E:25:10:10:8F:A2:5C:AF:9F:8F:90:C1:B9:7D:2D:86:54 Certificate issuer: /CN=A91652B5/serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Certificate serial: 42 Authority key identifier: FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:12:46 +0000 ROA not before: Tue 09 Dec 2025 07:09:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154315 IP address blocks: 138.252.96.0/23 maxlen: 23 138.252.96.0/24 maxlen: 24 138.252.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652B5, serialNumber=FD49A51346A2F7AC811B00AD62EBEF0E94A2A1B2 Validity Not Before: Dec 9 07:09:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a59ade-e0ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:b5:a6:bf:da:4e:02:cc:8a:83:61:a4:2b:53: f0:02:74:8c:51:3f:67:e8:7a:99:12:2e:80:8a:f7: 97:70:2b:8e:af:8e:39:3e:ad:72:2e:39:41:fe:90: c5:e2:7e:cf:16:e3:a4:1b:6c:47:5b:46:19:19:6f: a1:ed:b0:ad:56:fd:ba:7e:8b:86:89:f1:55:77:31: 64:e9:d8:88:db:e6:ee:b4:79:22:4b:26:68:21:a6: 1f:5a:e0:2f:35:f6:0b:90:ba:48:61:94:6d:35:42: b7:90:e3:8b:43:d2:4b:8e:31:2b:4a:f1:a4:2a:71: 99:d8:e7:9d:78:80:84:c7:ad:03:bc:63:25:66:93: 09:7d:6f:d0:79:14:33:be:8a:d5:16:ab:76:11:75: d6:e1:1d:79:c5:c1:66:e5:57:2b:17:00:c7:88:bc: 19:4d:2b:be:9c:25:26:68:a1:90:4c:dc:fc:7a:31: dc:9d:f9:af:93:c9:37:cc:e1:81:f5:99:b3:f5:08: 11:66:7d:80:9b:88:a0:cb:a2:d9:b1:1c:43:16:17: 06:6b:fd:45:0b:87:d4:c2:f4:73:3c:65:e9:9a:22: 42:78:13:9b:09:6d:c5:73:ac:3c:b5:df:69:2b:32: 70:74:1c:c3:1f:bb:96:fb:41:9b:36:47:0c:60:0c: 94:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:85:17:7E:25:10:10:8F:A2:5C:AF:9F:8F:90:C1:B9:7D:2D:86:54 X509v3 Authority Key Identifier: keyid:FD:49:A5:13:46:A2:F7:AC:81:1B:00:AD:62:EB:EF:0E:94:A2:A1:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/_UmlE0ai96yBGwCtYuvvDpSiobI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_UmlE0ai96yBGwCtYuvvDpSiobI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652B5/6679D8BEC5B211F08622792BC4F9AE02/535DB56CD1AF11F0A278C10CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.96.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:5b:0c:77:ad:05:ee:ff:7e:a9:29:af:f4:77:3f:e9:f4:12: e2:e3:5f:8b:8a:a9:20:9a:14:6c:1e:92:f7:dc:07:bb:76:d3: 37:b2:27:2b:1d:36:8e:ae:77:76:66:32:44:4a:9e:15:f7:83: 9f:34:6c:fc:10:11:e2:9d:1b:1a:d4:d5:7b:da:08:0f:7e:5a: 48:0d:ef:c9:44:fc:d2:ef:fc:33:13:cc:7f:cc:75:bc:6f:39: be:87:96:73:d6:ae:10:1c:83:3e:37:9c:24:26:65:2e:8c:17: 15:91:14:7e:13:03:b5:ea:d5:02:7d:31:d2:32:65:25:49:48: 49:7d:9d:79:c4:68:90:9b:d4:1a:5d:5a:de:25:7f:aa:6a:de: 92:8b:20:6c:a0:c9:12:ef:8f:91:dc:d5:d9:cd:b5:30:3a:72: 20:c1:6d:a0:1d:25:c3:9b:3d:42:17:6a:dd:20:c2:ca:c0:f0: f6:4c:80:5b:e0:b1:a1:99:c6:74:17:7c:24:eb:bc:27:f9:37: ed:1b:1e:72:f3:53:09:02:be:76:76:b6:c9:9b:7d:af:3c:82: e8:e3:57:d3:46:ff:f4:d6:b3:3d:d9:d5:88:a9:d3:d8:44:f3: 40:80:68:87:f3:45:b0:4f:54:9b:2b:27:0c:82:06:7c:8a:da: 03:fb:7f:bc -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTJCNTExMC8GA1UEBRMoRkQ0OUE1MTM0NkEyRjdBQzgxMUIwMEFENjJFQkVGMEU5 NEEyQTFCMjAeFw0yNTEyMDkwNzA5NDJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5YWRlLWUwZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCKtaa/2k4CzIqDYaQrU/ACdIxRP2foepkSLoCK95dwK46vjjk+rXIuOUH+kMXi fs8W46QbbEdbRhkZb6HtsK1W/bp+i4aJ8VV3MWTp2Ijb5u60eSJLJmghph9a4C81 9guQukhhlG01QreQ44tD0kuOMStK8aQqcZnY5514gITHrQO8YyVmkwl9b9B5FDO+ itUWq3YRddbhHXnFwWblVysXAMeIvBlNK76cJSZooZBM3Px6Mdyd+a+TyTfM4YH1 mbP1CBFmfYCbiKDLotmxHEMWFwZr/UULh9TC9HM8ZemaIkJ4E5sJbcVzrDy132kr MnB0HMMfu5b7QZs2RwxgDJT/AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU64UXfiUQ EI+iXK+fj5DBuX0thlQwHwYDVR0jBBgwFoAU/UmlE0ai96yBGwCtYuvvDpSiobIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MkI1LzY2NzlEOEJFQzVC MjExRjA4NjIyNzkyQkM0RjlBRTAyL19VbWxFMGFpOTZ5Qkd3Q3RZdXZ2RHBTaW9i SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX1VtbEUwYWk5NnlCR3dDdFl1dnZEcFNpb2JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTJCNS82Njc5RDhCRUM1QjIxMUYwODYyMjc5MkJDNEY5QUUwMi81MzVEQjU2Q0Qx QUYxMUYwQTI3OEMxMENDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/GAwDQYJKoZIhvcNAQELBQADggEBAG5bDHetBe7/fqkpr/R3P+n0 EuLjX4uKqSCaFGwekvfcB7t20zeyJysdNo6ud3ZmMkRKnhX3g580bPwQEeKdGxrU 1XvaCA9+WkgN78lE/NLv/DMTzH/MdbxvOb6HlnPWrhAcgz43nCQmZS6MFxWRFH4T A7Xq1QJ9MdIyZSVJSEl9nXnEaJCb1BpdWt4lf6pq3pKLIGygyRLvj5Hc1dnNtTA6 ciDBbaAdJcObPUIXat0gwsrA8PZMgFvgsaGZxnQXfCTrvCf5N+0bHnLzUwkCvnZ2 tsmbfa88gujjV9NG//TWsz3Z1Yip09hE80CAaIfzRbBPVJsrJwyCBnyK2gP7f7w= -----END CERTIFICATE-----Generated at Tue Mar 3 00:40:27 2026 by rpki-client