$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3686C7DAEF6411F0BA166417586F56BC.roa File: 3686C7DAEF6411F0BA166417586F56BC.roa (raw, json) Hash identifier: jzKLKA2C6CSEFUoGVlWFnAg+skEdfy1gPl5zWkziWcc= Subject key identifier: 33:CA:C3:F5:10:15:CB:B1:08:24:48:5E:E7:2C:61:9C:7C:5E:26:E3 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0857 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3686C7DAEF6411F0BA166417586F56BC.roa Signing time: Sun 01 Mar 2026 21:15:54 +0000 ROA not before: Mon 12 Jan 2026 03:10:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150323 IP address blocks: 138.252.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2135 (0x857) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Jan 12 03:10:14 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4ac8a-fb45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a9:f5:7e:23:5a:03:a4:08:3b:3a:f7:4d:87: 6f:33:3a:5b:77:64:6f:52:e8:b5:06:c4:0e:7b:6f: 86:db:d4:5b:9f:b0:fc:28:13:f4:77:36:e1:ee:b0: dc:73:0f:da:7f:8f:34:58:be:7e:c6:e1:74:dc:82: f2:38:45:c9:56:17:b1:4c:9c:cb:8c:1b:be:b6:5c: 30:2b:5c:94:16:57:ee:d5:4c:f5:41:16:30:67:ac: 14:87:26:08:8d:29:2a:39:7f:7b:ae:e1:3c:99:e9: 1b:26:4d:e6:7d:11:44:f6:0c:a7:a8:cf:97:f2:74: 91:59:a3:f2:e3:5c:58:07:f4:c3:6f:59:b2:52:4b: 53:ad:5e:5e:35:e7:c8:69:fa:95:4f:25:f0:74:65: de:4c:6e:5d:4b:3e:b2:c3:57:8e:82:07:82:73:f7: c2:85:7e:db:62:06:c3:0b:4d:8b:6b:8f:34:4e:0b: cf:88:41:cd:d8:45:1c:33:97:0e:20:f9:33:5f:2f: 6b:a4:2e:14:0e:02:10:42:9f:b1:1b:84:fd:15:28: e9:d6:03:a1:ab:ca:6c:d8:4b:30:77:d4:96:ed:19: 37:4a:ae:4a:6e:a1:68:4f:f6:57:3d:8e:eb:89:70: 02:bd:4f:13:6b:99:7e:01:b6:ec:1f:8a:9d:3c:1c: 1b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CA:C3:F5:10:15:CB:B1:08:24:48:5E:E7:2C:61:9C:7C:5E:26:E3 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3686C7DAEF6411F0BA166417586F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.218.0/23 Signature Algorithm: sha256WithRSAEncryption 29:ac:a8:72:98:8c:60:db:6d:b7:fe:1b:b4:48:54:15:14:03: 71:26:59:d7:de:cd:8a:1d:9a:ce:17:12:30:a0:82:a4:6d:35: d9:f1:c6:15:7e:b9:d7:ec:fa:d9:2d:f4:ca:bf:9c:d0:66:57: 48:e0:3d:fe:df:50:c1:6d:ff:a3:a2:73:72:7b:94:78:01:e8: da:fd:09:8a:60:01:c1:39:7b:e1:98:e8:12:95:a9:4d:9b:1f: d7:40:1c:9d:75:46:7b:07:ec:24:b3:4a:54:b6:95:c3:b9:56: d1:66:24:30:d3:b9:ee:34:6f:bd:ab:1e:cf:a5:0d:9a:a2:3a: 44:9e:e1:97:46:3f:c7:8e:e7:bd:4b:e2:60:a1:1d:97:9d:ad: 4d:f8:7f:0a:b2:d7:39:fc:c1:a8:d7:53:c5:f1:88:63:b7:b9: ae:8b:c4:b5:af:70:63:3c:ae:19:71:bd:5b:00:aa:42:03:ab: 67:cd:e7:bf:62:94:a0:f6:92:c8:d0:ff:64:26:1f:4a:32:92: 2d:ad:93:e0:2f:a1:39:dc:10:19:79:b8:90:bd:b3:ab:c1:17: ad:4e:e3:c2:8f:e5:90:8e:17:1d:b6:98:da:59:62:8e:15:87: 3a:72:bd:1f:a8:c7:63:de:22:b2:dc:1b:fa:50:4c:e8:34:2e: d4:e7:49:5a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwMTEyMDMxMDE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWM4YS1mYjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqan1fiNaA6QIOzr3TYdvMzpbd2RvUui1BsQOe2+G29Rbn7D8KBP0dzbh7rDc cw/af480WL5+xuF03ILyOEXJVhexTJzLjBu+tlwwK1yUFlfu1Uz1QRYwZ6wUhyYI jSkqOX97ruE8mekbJk3mfRFE9gynqM+X8nSRWaPy41xYB/TDb1myUktTrV5eNefI afqVTyXwdGXeTG5dSz6yw1eOggeCc/fChX7bYgbDC02La480TgvPiEHN2EUcM5cO IPkzXy9rpC4UDgIQQp+xG4T9FSjp1gOhq8ps2Eswd9SW7Rk3Sq5KbqFoT/ZXPY7r iXACvU8Ta5l+AbbsH4qdPBwbCQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDPKw/UQ FcuxCCRIXucsYZx8XibjMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMzY4NkM3REFF RjY0MTFGMEJBMTY2NDE3NTg2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBivzaMA0GCSqGSIb3DQEBCwUAA4IBAQAprKhymIxg2223/hu0SFQV FANxJlnX3s2KHZrOFxIwoIKkbTXZ8cYVfrnX7PrZLfTKv5zQZldI4D3+31DBbf+j onNye5R4Aeja/QmKYAHBOXvhmOgSlalNmx/XQByddUZ7B+wks0pUtpXDuVbRZiQw 07nuNG+9qx7PpQ2aojpEnuGXRj/Hjue9S+JgoR2Xna1N+H8Kstc5/MGo11PF8Yhj t7mui8S1r3BjPK4Zcb1bAKpCA6tnzee/YpSg9pLI0P9kJh9KMpItrZPgL6E53BAZ ebiQvbOrwRetTuPCj+WQjhcdtpjaWWKOFYc6cr0fqMdj3iKy3Bv6UEzoNC7U50la -----END CERTIFICATE-----Generated at Mon Mar 2 04:24:29 2026 by rpki-client