$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/1AE323249F2D11EC897FD30CC4F9AE02.roa File: 1AE323249F2D11EC897FD30CC4F9AE02.roa (raw, json) Hash identifier: KTSt+ZHRMgLJ8/R5wENqUSR1L1JAi9WdX/iu4I2PtVw= Subject key identifier: 8D:11:0E:6D:DB:F6:9F:B4:5B:52:E5:2A:FD:62:BC:0E:D6:99:69:53 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 0425 Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/1AE323249F2D11EC897FD30CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:17:42 +0000 ROA not before: Wed 09 Jul 2025 01:37:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140718 IP address blocks: 103.152.32.0/24 maxlen: 24 2001:df3:f380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Jul 9 01:37:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58df6-ec98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:c1:58:46:0e:8c:6b:9a:52:9b:67:d2:c4: 93:d2:64:9a:aa:ce:fc:23:48:aa:b1:7f:72:05:12: 40:c5:71:a6:aa:e5:04:21:32:d5:73:64:d8:5a:5b: 22:29:71:2a:b0:f0:44:3c:69:12:d4:35:37:3c:ba: e0:7b:18:61:6e:8e:8b:13:c6:0a:55:b3:91:3c:af: 76:54:cc:8c:6d:d1:a6:c3:ac:06:35:62:00:03:82: 2c:3c:27:24:aa:e5:02:6a:cd:e1:98:57:20:23:ff: cc:70:26:e6:8f:79:39:61:0f:b0:50:db:d8:c2:77: 5a:39:37:8b:2d:ac:6c:b6:81:f3:6f:79:09:60:da: dd:92:53:0f:4b:86:ba:33:36:6c:12:4f:62:74:d1: 37:54:7c:0e:5f:ad:2f:cd:a0:a3:0a:bd:f0:1c:ef: 0b:5f:ae:e4:7e:fd:ef:0a:dd:df:ea:8f:39:b0:a2: 3e:bd:5d:34:48:b0:99:f9:cf:1b:e1:95:2a:6a:d2: 24:32:be:17:4a:19:a2:3a:04:71:b4:24:a6:8b:b1: b7:fe:b2:a4:6f:7c:0c:eb:c6:7f:ca:89:19:bc:cf: ad:bf:22:d0:d5:5e:ef:33:b6:79:7b:a1:22:f7:34: de:9a:cc:6c:34:c9:89:41:68:83:4a:32:52:71:9c: 5f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:11:0E:6D:DB:F6:9F:B4:5B:52:E5:2A:FD:62:BC:0E:D6:99:69:53 X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/1AE323249F2D11EC897FD30CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.32.0/24 IPv6: 2001:df3:f380::/48 Signature Algorithm: sha256WithRSAEncryption 25:27:90:7f:32:00:f8:fa:81:5c:7f:5f:53:66:4b:c5:9b:35: 7d:ac:a8:b3:6b:d0:d3:f0:23:a4:1c:bc:ce:0c:5c:5d:e8:12: e4:73:18:ee:44:4b:00:f3:4f:04:41:88:97:1e:93:20:35:14: 7a:0f:d0:57:58:1e:68:4d:33:92:dd:b2:b5:fd:6a:52:e3:7f: 54:5f:6d:cb:d5:19:f5:68:f4:18:73:d7:eb:85:3c:bb:cf:79: 1f:64:6e:c1:f4:8f:14:f3:aa:2b:1a:05:62:2e:da:37:46:97: 3f:a8:f4:86:c3:5d:75:ff:ec:80:8a:fe:72:8f:fc:c3:db:d2: a5:36:2a:fc:93:a9:27:58:cf:a1:7f:bf:a8:52:33:98:df:4d: b8:f6:dd:7f:2d:ea:7a:4b:f3:d7:40:3c:0c:f2:bf:3e:df:ba: 8c:47:dc:bb:6b:83:bf:91:ce:63:07:b3:f2:5c:a9:89:09:40: 8e:ed:99:af:04:88:ee:5c:57:2b:ee:96:9d:c9:46:c3:11:ff: 62:af:d9:f8:fc:99:2a:77:ce:26:2d:8b:da:01:05:a6:d8:31: 37:07:24:05:b2:bd:19:a4:b0:e0:b6:a2:d7:ea:57:2d:90:7d: 09:69:cf:bf:cc:47:92:78:1e:73:15:4d:27:6c:c1:63:c0:68: f3:48:4b:de -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwNzA5MDEzNzMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGRmNi1lYzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H7BWEYOjGuaUptn0sST0mSaqs78I0iqsX9yBRJAxXGmquUEITLVc2TYWlsi KXEqsPBEPGkS1DU3PLrgexhhbo6LE8YKVbORPK92VMyMbdGmw6wGNWIAA4IsPCck quUCas3hmFcgI//McCbmj3k5YQ+wUNvYwndaOTeLLaxstoHzb3kJYNrdklMPS4a6 MzZsEk9idNE3VHwOX60vzaCjCr3wHO8LX67kfv3vCt3f6o85sKI+vV00SLCZ+c8b 4ZUqatIkMr4XShmiOgRxtCSmi7G3/rKkb3wM68Z/yokZvM+tvyLQ1V7vM7Z5e6Ei 9zTemsxsNMmJQWiDSjJScZxfbQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFI0RDm3b 9p+0W1LlKv1ivA7WmWlTMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVGNDUvNUQ4QjlCODI5RjJBMTFFQ0E3Q0ZBRDBBQzRGOUFFMDIvMUFFMzIzMjQ5 RjJEMTFFQzg5N0ZEMzBDQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAZ5ggMA8EAgACMAkDBwAgAQ3z84AwDQYJKoZIhvcNAQELBQADggEB ACUnkH8yAPj6gVx/X1NmS8WbNX2sqLNr0NPwI6QcvM4MXF3oEuRzGO5ESwDzTwRB iJcekyA1FHoP0FdYHmhNM5LdsrX9alLjf1RfbcvVGfVo9Bhz1+uFPLvPeR9kbsH0 jxTzqisaBWIu2jdGlz+o9IbDXXX/7ICK/nKP/MPb0qU2KvyTqSdYz6F/v6hSM5jf Tbj23X8t6npL89dAPAzyvz7fuoxH3Ltrg7+RzmMHs/JcqYkJQI7tma8EiO5cVyvu lp3JRsMR/2Kv2fj8mSp3ziYti9oBBabYMTcHJAWyvRmksOC2otfqVy2QfQlpz7/M R5J4HnMVTSdswWPAaPNIS94= -----END CERTIFICATE-----Generated at Mon Mar 2 20:55:56 2026 by rpki-client