$ rpki-client -vvf rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa File: 5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa (raw, json) Hash identifier: WoeOR+zlZASpmeTPc2cNATAqH5VHw3bRg4XkQfACANw= Subject key identifier: 6D:FA:59:33:C7:16:DE:7B:C0:BB:45:46:61:6B:8B:C1:68:D4:20:76 Certificate issuer: /CN=A91A05BF/serialNumber=E3E0017568E8871F4E8879B1062AAED72C34F23A Certificate serial: 47 Authority key identifier: E3:E0:01:75:68:E8:87:1F:4E:88:79:B1:06:2A:AE:D7:2C:34:F2:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4-ABdWjohx9OiHmxBiqu1yw08jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:11:39 +0000 ROA not before: Tue 28 Oct 2025 04:20:45 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152565 IP address blocks: 138.252.100.0/23 maxlen: 23 138.252.100.0/24 maxlen: 24 138.252.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/4-ABdWjohx9OiHmxBiqu1yw08jo.crl rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/4-ABdWjohx9OiHmxBiqu1yw08jo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4-ABdWjohx9OiHmxBiqu1yw08jo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:48:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A05BF, serialNumber=E3E0017568E8871F4E8879B1062AAED72C34F23A Validity Not Before: Oct 28 04:20:45 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d89b-7cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:79:7a:21:f7:a7:2e:ff:1e:bc:9a:5f:4a:fb: 2d:4d:e4:90:39:02:03:3b:0a:07:76:b3:f9:eb:98: db:4d:1b:22:c1:19:37:b7:88:97:6a:1d:2e:03:da: 7f:81:ed:fb:cb:b3:42:9b:75:7b:8c:37:d2:97:7c: fa:ee:78:41:2a:0d:cd:fb:fb:12:4b:5e:bc:a9:8b: 92:9c:32:ed:44:69:c6:36:78:6f:af:f4:3e:3e:8b: 13:56:14:6f:17:10:7b:85:16:6c:6e:5e:96:6c:50: 21:92:f3:c4:e6:71:66:f1:15:6d:4e:5e:19:a0:6d: 0d:aa:b9:cd:7d:26:72:e1:9d:2f:6f:ed:d3:82:44: 47:e8:86:8c:7b:8c:9b:4d:e6:2d:10:5d:00:3f:4e: eb:eb:ec:9d:68:f5:95:9c:68:8a:74:53:be:39:c5: 12:71:c1:53:46:06:41:8b:92:61:23:d7:e4:ec:f1: 93:7c:7a:b4:67:eb:b1:dd:bf:68:e6:a0:00:8c:ab: f9:ba:35:82:57:ca:4a:b0:6b:f1:f2:26:af:05:65: 68:91:06:d8:b3:16:aa:1a:f4:15:99:40:f7:d9:2f: 6a:de:6d:ee:f5:66:65:d3:e2:af:be:f1:4c:a0:c3: 6d:77:d4:30:b4:0d:6a:29:44:0c:b3:ab:84:f5:3c: 3f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:FA:59:33:C7:16:DE:7B:C0:BB:45:46:61:6B:8B:C1:68:D4:20:76 X509v3 Authority Key Identifier: keyid:E3:E0:01:75:68:E8:87:1F:4E:88:79:B1:06:2A:AE:D7:2C:34:F2:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/4-ABdWjohx9OiHmxBiqu1yw08jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4-ABdWjohx9OiHmxBiqu1yw08jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.100.0/23 Signature Algorithm: sha256WithRSAEncryption 04:02:80:1f:4a:ec:31:75:3d:2e:8a:84:12:26:54:f7:2f:2f: c6:be:fd:63:37:4c:b7:8e:aa:78:e9:2a:5d:28:c6:2b:ed:f8: 25:6d:49:72:50:28:df:47:f4:b8:e6:83:7e:bb:87:a3:26:d4: 39:9a:10:11:16:40:21:80:94:e9:6b:b1:af:a5:83:80:fe:95: 97:cc:35:25:fe:d7:e3:35:31:d2:99:e2:4e:60:8f:a0:b9:05: ff:79:7f:32:71:35:8d:56:06:fe:8e:3e:8a:0c:25:3e:c5:9e: 4b:72:2b:6b:9b:3f:ef:c1:9a:d3:e2:c6:95:f0:45:86:d0:3d: c6:dd:ad:d2:64:3a:3f:42:28:86:99:ab:38:a4:8b:9f:b4:53: bf:06:f2:b2:52:84:47:d0:17:89:11:9c:3b:71:d7:50:cc:13: 42:20:c4:c0:c3:ff:86:22:29:ef:cf:37:c4:0f:9e:74:26:7e: 73:57:a1:34:f3:4b:1f:3d:9d:dc:4d:09:68:f3:c7:a1:d8:00: ea:eb:11:55:a5:62:a3:7a:b2:15:68:f1:2f:a7:e3:ee:d9:13: bd:2d:1e:f4:9f:dc:0a:eb:44:b6:20:ed:a3:cb:75:f4:6c:5e: 96:9f:84:57:30:f8:ac:a4:8c:2b:46:1f:a5:d2:08:76:39:38: 32:6c:a0:63 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDVCRjExMC8GA1UEBRMoRTNFMDAxNzU2OEU4ODcxRjRFODg3OUIxMDYyQUFFRDcy QzM0RjIzQTAeFw0yNTEwMjgwNDIwNDVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODliLTdjZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2eXoh96cu/x68ml9K+y1N5JA5AgM7Cgd2s/nrmNtNGyLBGTe3iJdqHS4D2n+B 7fvLs0KbdXuMN9KXfPrueEEqDc37+xJLXrypi5KcMu1EacY2eG+v9D4+ixNWFG8X EHuFFmxuXpZsUCGS88TmcWbxFW1OXhmgbQ2quc19JnLhnS9v7dOCREfohox7jJtN 5i0QXQA/Tuvr7J1o9ZWcaIp0U745xRJxwVNGBkGLkmEj1+Ts8ZN8erRn67Hdv2jm oACMq/m6NYJXykqwa/HyJq8FZWiRBtizFqoa9BWZQPfZL2rebe71ZmXT4q++8Uyg w2131DC0DWopRAyzq4T1PD8PAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUbfpZM8cW 3nvAu0VGYWuLwWjUIHYwHwYDVR0jBBgwFoAU4+ABdWjohx9OiHmxBiqu1yw08jow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwNUJGLzE4MTM2RDhBQjNC NDExRjBCNjkxN0YwRUM0RjlBRTAyLzQtQUJkV2pvaHg5T2lIbXhCaXF1MXl3MDhq by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNC1BQmRXam9oeDlPaUhteEJpcXUxeXcwOGpvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDVCRi8xODEzNkQ4QUIzQjQxMUYwQjY5MTdGMEVDNEY5QUUwMi81RkM4Q0QwNEIz QjUxMUYwQkYxQTBCNTRDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/GQwDQYJKoZIhvcNAQELBQADggEBAAQCgB9K7DF1PS6KhBImVPcv L8a+/WM3TLeOqnjpKl0oxivt+CVtSXJQKN9H9Ljmg367h6Mm1DmaEBEWQCGAlOlr sa+lg4D+lZfMNSX+1+M1MdKZ4k5gj6C5Bf95fzJxNY1WBv6OPooMJT7FnktyK2ub P+/BmtPixpXwRYbQPcbdrdJkOj9CKIaZqziki5+0U78G8rJShEfQF4kRnDtx11DM E0IgxMDD/4YiKe/PN8QPnnQmfnNXoTTzSx89ndxNCWjzx6HYAOrrEVWlYqN6shVo 8S+n4+7ZE70tHvSf3ArrRLYg7aPLdfRsXpafhFcw+KykjCtGH6XSCHY5ODJsoGM= -----END CERTIFICATE-----Generated at Mon Mar 2 09:01:57 2026 by rpki-client