$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/54EDB8542E1811EBB4E80B1FC4F9AE02.roa File: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (raw, json) Hash identifier: DcUVTslaphrLk/KxLHZep4B5CcXBtF/qJ6P0bf4shk0= Subject key identifier: 78:3A:03:42:2B:78:F2:F3:58:41:B6:56:BB:70:D5:92:E5:C9:20:FE Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0B37 Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/54EDB8542E1811EBB4E80B1FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:27:52 +0000 ROA not before: Fri 28 Mar 2025 20:01:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4628 IP address blocks: 192.154.17.0/24 maxlen: 24 192.154.18.0/23 maxlen: 24 192.154.20.0/22 maxlen: 24 192.169.32.0/24 maxlen: 24 192.169.34.0/24 maxlen: 24 192.169.37.0/24 maxlen: 24 192.169.38.0/24 maxlen: 24 192.169.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2871 (0xb37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Mar 28 20:01:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a40698-2799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1b:89:03:7f:54:20:88:a8:66:a9:e4:37:f8: dc:ee:e8:61:1c:85:0d:43:1a:59:ff:04:7a:9a:8d: 9a:2a:8b:4c:88:ac:19:f2:a9:0b:5a:e7:c8:bf:12: f6:31:0d:5b:e3:d8:32:50:3c:d2:38:2a:bf:a1:ec: 7a:ef:8d:3b:45:c7:49:93:d2:31:1a:e9:3a:5b:bc: 26:fd:2e:2a:6a:38:31:a7:30:a1:d8:75:b6:5a:69: 15:1b:7f:cf:c5:f7:e4:18:5d:f2:9d:26:51:48:ed: 3a:17:75:b4:4f:64:df:d5:01:13:b6:65:b6:15:24: 03:9a:06:c1:18:66:f1:e6:7d:e2:c0:ef:8f:1e:c2: fe:22:93:b2:35:29:93:dd:07:81:a9:3f:41:e5:c3: fe:50:c0:60:f7:5a:5a:70:04:28:e9:9d:c4:02:66: a5:7a:86:f5:62:28:a2:87:67:db:eb:57:a1:ab:c8: 2f:93:26:53:10:a5:ce:2c:4f:d6:04:3e:ad:50:5d: 5d:60:35:0b:4c:7c:36:c5:05:e2:e3:51:7a:0e:65: e8:33:d6:9a:46:4e:e5:ae:bb:6d:3b:46:0e:d5:e2: a5:7c:a6:c7:38:e0:00:c4:25:74:87:07:3c:58:0e: 26:f3:b4:9b:94:54:ef:19:7c:64:45:8d:e1:c4:0d: 8f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:3A:03:42:2B:78:F2:F3:58:41:B6:56:BB:70:D5:92:E5:C9:20:FE X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/54EDB8542E1811EBB4E80B1FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.154.17.0-192.154.23.255 192.169.32.0/24 192.169.34.0/24 192.169.37.0-192.169.38.255 192.169.41.0/24 Signature Algorithm: sha256WithRSAEncryption 80:1a:16:97:c8:71:56:e1:53:db:e3:b4:b5:f9:d7:67:0c:3e: 54:f2:13:68:b2:f7:a7:9c:d8:a7:7a:ac:82:9f:32:2a:18:b6: f1:dd:b7:20:e4:98:de:11:6c:97:bd:5f:a3:37:0b:39:d7:7d: dc:32:a4:1b:f3:29:b4:a7:f3:16:e5:a1:2d:26:2a:67:ff:3a: ad:c9:68:13:5b:09:6f:0d:67:b5:de:e8:d0:9e:74:97:d5:9b: 92:b8:c6:4f:bb:a5:b7:71:80:b2:41:da:5d:42:6b:da:81:f3: fb:5e:43:b3:a0:c2:4f:a0:26:8c:23:d4:f0:ec:1f:d2:6f:d2: ab:b5:80:59:38:45:b0:26:b3:db:49:10:2f:78:58:c4:cd:f9: db:02:2c:01:2d:7b:9f:d1:e4:92:48:cd:f7:bd:ed:1f:75:b4: 43:1e:60:1d:f4:c9:db:39:82:a5:94:9d:2e:f7:7d:6c:28:49: 4c:32:30:56:d2:fe:9a:e5:20:f8:cf:cf:b4:50:fc:07:35:bd: 6a:62:83:51:6d:b8:3d:bd:d0:c8:54:04:53:3b:31:8a:99:9c: 59:4b:23:fe:ec:ab:97:6e:e6:2d:11:fd:64:a8:ed:cd:48:aa: d7:13:65:9f:dd:8d:5e:92:2b:ef:00:c6:a8:78:50:f0:da:9c: 41:2d:fe:b2 -----BEGIN CERTIFICATE----- MIIFZDCCBEygAwIBAgICCzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUwMzI4MjAwMTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDY5OC0yNzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhuJA39UIIioZqnkN/jc7uhhHIUNQxpZ/wR6mo2aKotMiKwZ8qkLWufIvxL2 MQ1b49gyUDzSOCq/oex67407RcdJk9IxGuk6W7wm/S4qajgxpzCh2HW2WmkVG3/P xffkGF3ynSZRSO06F3W0T2Tf1QETtmW2FSQDmgbBGGbx5n3iwO+PHsL+IpOyNSmT 3QeBqT9B5cP+UMBg91pacAQo6Z3EAmaleob1Yiiih2fb61ehq8gvkyZTEKXOLE/W BD6tUF1dYDULTHw2xQXi41F6DmXoM9aaRk7lrrttO0YO1eKlfKbHOOAAxCV0hwc8 WA4m87SblFTvGXxkRY3hxA2PwwIDAQABo4ICiDCCAoQwHQYDVR0OBBYEFHg6A0Ir ePLzWEG2Vrtw1ZLlySD+MB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ3QTIvQUVEM0QzNUU1OTQyMTFFQTkzNkZDRTQzQzRGOUFFMDIvNTRFREI4NTQy RTE4MTFFQkI0RTgwQjFGQzRGOUFFMDIucm9hMEcGCCsGAQUFBwEHAQH/BDgwNjA0 BAIAATAuMAwDBADAmhEDBAPAmhADBADAqSADBADAqSIwDAMEAMCpJQMEAMCpJgME AMCpKTANBgkqhkiG9w0BAQsFAAOCAQEAgBoWl8hxVuFT2+O0tfnXZww+VPITaLL3 p5zYp3qsgp8yKhi28d23IOSY3hFsl71fozcLOdd93DKkG/MptKfzFuWhLSYqZ/86 rcloE1sJbw1ntd7o0J50l9WbkrjGT7ult3GAskHaXUJr2oHz+15Ds6DCT6AmjCPU 8Owf0m/Sq7WAWThFsCaz20kQL3hYxM352wIsAS17n9HkkkjN973tH3W0Qx5gHfTJ 2zmCpZSdLvd9bChJTDIwVtL+muUg+M/PtFD8BzW9amKDUW24Pb3QyFQEUzsxipmc WUsj/uyrl27mLRH9ZKjtzUiq1xNln92NXpIr7wDGqHhQ8NqcQS3+sg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:03 2026 by rpki-client