$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/AF2E6AE2C03B11F09EE7012FC4F9AE02.roa File: AF2E6AE2C03B11F09EE7012FC4F9AE02.roa (raw, json) Hash identifier: X+3wJMfk1XJRp+yqbhiP7HWaocFMU1AXSgdZNrsdlvo= Subject key identifier: F2:38:87:73:0D:74:ED:2C:42:03:D2:06:49:71:A8:C4:67:CC:75:95 Certificate issuer: /CN=A91BCA5B/serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Certificate serial: 3C Authority key identifier: 5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/AF2E6AE2C03B11F09EE7012FC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:04:53 +0000 ROA not before: Thu 13 Nov 2025 02:54:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136765 IP address blocks: 138.252.62.0/24 maxlen: 24 138.252.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:54:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCA5B, serialNumber=5D4F412AE48010FE5487F018F171A9C6469D9AC5 Validity Not Before: Nov 13 02:54:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a3d704-6d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:00:9c:88:7c:26:d0:ee:2c:33:5c:ba:40:5b: e6:0e:31:48:36:f6:1c:83:ff:82:62:ee:01:4d:27: ac:56:5b:45:5a:4e:4d:4a:13:f5:20:3f:5d:af:f4: 47:41:21:c9:5c:bb:f1:35:68:9d:6f:38:3a:67:7f: 1e:55:3e:cf:9b:28:b4:33:64:a3:0f:80:04:8b:0e: 20:8d:e1:77:d7:72:0a:4c:22:b3:2f:a8:e1:cc:ca: bf:5d:0a:0d:19:e3:72:4a:8d:28:ea:02:6d:0f:aa: 2d:da:85:f3:cc:62:4d:1d:6e:ed:1e:6e:b2:cb:f8: 91:4f:e7:a4:e6:e4:ea:e7:98:d9:11:9f:8d:f8:07: b5:91:5e:14:9c:20:a9:ea:42:d5:1c:a1:bb:d1:db: 77:43:92:f6:52:d0:c0:7f:b4:34:dd:60:44:9f:e9: ee:54:da:77:9b:9f:72:0e:2f:17:dc:50:a9:29:5f: a6:4a:c5:b9:3e:c8:ba:01:99:44:62:dc:e4:e9:fa: d3:bf:6e:6f:a9:c0:78:1a:77:54:de:24:34:5e:a9: 31:a6:29:80:1e:d5:bc:f6:37:19:df:a8:18:7f:0f: 00:a1:60:18:e1:14:16:53:a6:9b:57:42:99:bb:cf: e3:ab:a8:4a:15:cb:55:a6:6a:3b:85:2f:08:05:96: b8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:38:87:73:0D:74:ED:2C:42:03:D2:06:49:71:A8:C4:67:CC:75:95 X509v3 Authority Key Identifier: keyid:5D:4F:41:2A:E4:80:10:FE:54:87:F0:18:F1:71:A9:C6:46:9D:9A:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/XU9BKuSAEP5Uh_AY8XGpxkadmsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XU9BKuSAEP5Uh_AY8XGpxkadmsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCA5B/D25D868EC03A11F088A3462CC4F9AE02/AF2E6AE2C03B11F09EE7012FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.62.0/23 Signature Algorithm: sha256WithRSAEncryption 67:a0:13:c6:41:fb:0d:86:cf:93:e9:22:a3:92:8d:17:0c:96: c4:0e:8f:77:3b:00:a7:b6:8d:ef:c7:30:91:de:27:78:26:ea: ff:51:cf:ab:75:0e:01:52:6c:5e:07:5f:69:31:e1:62:3a:54: 25:d0:47:a5:ac:5f:3d:44:d1:9d:d9:8d:59:79:8f:00:c7:e2: eb:95:c6:75:fc:0a:f5:07:f5:c8:f2:ef:be:e5:72:33:05:43: b6:44:b9:a0:b9:3b:78:bd:74:ca:40:80:4a:14:76:cc:8b:7b: 0b:a0:20:9f:5f:e8:a6:5a:f2:19:cc:4c:57:ae:a6:7c:0e:02: 37:65:8e:52:f0:7b:5d:08:5c:37:7c:68:08:40:50:85:c0:ab: 7b:33:65:68:cd:c3:ee:45:fa:7a:a8:42:40:22:1b:af:8c:d4: 2f:2b:d7:b2:df:dd:16:19:df:d3:21:52:2c:ed:1e:9a:88:c8: 6c:9c:07:91:28:ba:15:2c:88:76:58:b5:04:1b:cb:23:12:cf: 12:30:d3:c1:5a:fa:0b:51:d5:85:ef:9c:cc:f5:90:d8:73:10: b5:0d:53:4c:fd:d9:16:d7:f5:bb:73:c1:a7:bf:66:b4:03:cc: 97:6e:fb:5e:c0:5e:66:0a:ad:2e:24:ae:6b:b7:09:b3:2f:93: 4c:c8:e6:87 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC Q0E1QjExMC8GA1UEBRMoNUQ0RjQxMkFFNDgwMTBGRTU0ODdGMDE4RjE3MUE5QzY0 NjlEOUFDNTAeFw0yNTExMTMwMjU0NTlaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNzA0LTZkOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBAJyIfCbQ7iwzXLpAW+YOMUg29hyD/4Ji7gFNJ6xWW0VaTk1KE/UgP12v9EdB Iclcu/E1aJ1vODpnfx5VPs+bKLQzZKMPgASLDiCN4XfXcgpMIrMvqOHMyr9dCg0Z 43JKjSjqAm0Pqi3ahfPMYk0dbu0ebrLL+JFP56Tm5OrnmNkRn434B7WRXhScIKnq QtUcobvR23dDkvZS0MB/tDTdYESf6e5U2nebn3IOLxfcUKkpX6ZKxbk+yLoBmURi 3OTp+tO/bm+pwHgad1TeJDReqTGmKYAe1bz2NxnfqBh/DwChYBjhFBZTpptXQpm7 z+OrqEoVy1WmajuFLwgFlrhfAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU8jiHcw10 7SxCA9IGSXGoxGfMdZUwHwYDVR0jBBgwFoAUXU9BKuSAEP5Uh/AY8XGpxkadmsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDQTVCL0QyNUQ4NjhFQzAz QTExRjA4OEEzNDYyQ0M0RjlBRTAyL1hVOUJLdVNBRVA1VWhfQVk4WEdweGthZG1z VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFU5Qkt1U0FFUDVVaF9BWThYR3B4a2FkbXNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0E1Qi9EMjVEODY4RUMwM0ExMUYwODhBMzQ2MkNDNEY5QUUwMi9BRjJFNkFFMkMw M0IxMUYwOUVFNzAxMkZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/D4wDQYJKoZIhvcNAQELBQADggEBAGegE8ZB+w2Gz5PpIqOSjRcM lsQOj3c7AKe2je/HMJHeJ3gm6v9Rz6t1DgFSbF4HX2kx4WI6VCXQR6WsXz1E0Z3Z jVl5jwDH4uuVxnX8CvUH9cjy777lcjMFQ7ZEuaC5O3i9dMpAgEoUdsyLewugIJ9f 6KZa8hnMTFeupnwOAjdljlLwe10IXDd8aAhAUIXAq3szZWjNw+5F+nqoQkAiG6+M 1C8r17Lf3RYZ39MhUiztHpqIyGycB5EouhUsiHZYtQQbyyMSzxIw08Fa+gtR1YXv nMz1kNhzELUNU0z92RbX9btzwae/ZrQDzJdu+17AXmYKrS4krmu3CbMvk0zI5oc= -----END CERTIFICATE-----Generated at Mon Mar 2 02:10:54 2026 by rpki-client