$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD7A3/861B1112C52411F0956ADD1AC4F9AE02/127C35B4C52511F09456F21BC4F9AE02.roa File: 127C35B4C52511F09456F21BC4F9AE02.roa (raw, json) Hash identifier: wyxXuyIC5WUaxAyzD2PyMOcBQ4OB6Gp2VhwVjUIddbE= Subject key identifier: FB:84:44:7E:9D:AA:0C:F2:91:FF:36:EB:4D:F2:53:B2:EC:2D:D8:C8 Certificate issuer: /CN=A91BD7A3/serialNumber=312575DE4D4643FADFAE48876DF4567D7D7C6856 Certificate serial: 36 Authority key identifier: 31:25:75:DE:4D:46:43:FA:DF:AE:48:87:6D:F4:56:7D:7D:7C:68:56 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MSV13k1GQ_rfrkiHbfRWfX18aFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD7A3/861B1112C52411F0956ADD1AC4F9AE02/127C35B4C52511F09456F21BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:00:10 +0000 ROA not before: Wed 19 Nov 2025 08:52:27 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 154351 IP address blocks: 138.252.184.0/23 maxlen: 23 138.252.184.0/24 maxlen: 24 138.252.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD7A3/861B1112C52411F0956ADD1AC4F9AE02/MSV13k1GQ_rfrkiHbfRWfX18aFY.crl rsync://rpki.apnic.net/member_repository/A91BD7A3/861B1112C52411F0956ADD1AC4F9AE02/MSV13k1GQ_rfrkiHbfRWfX18aFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MSV13k1GQ_rfrkiHbfRWfX18aFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD7A3, serialNumber=312575DE4D4643FADFAE48876DF4567D7D7C6856 Validity Not Before: Nov 19 08:52:27 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d5ea-e2b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e7:2f:39:f1:05:cd:27:a7:bb:9f:c7:49:53: 29:f9:31:3d:9c:37:c8:f3:82:62:61:3c:cc:27:c2: 0b:d4:04:c7:76:b7:69:79:04:67:0c:ab:86:f5:5d: 33:bb:b4:f5:00:ff:7f:e4:24:d2:78:fc:19:c8:b7: bc:a2:4b:7d:31:c3:5c:90:52:f1:e8:f8:42:04:62: fa:2a:a4:60:17:65:55:d1:71:3c:f6:ff:16:ec:0c: ab:df:73:a5:46:5c:d3:60:b1:09:49:cb:5e:3e:bc: cd:1c:60:25:32:36:16:39:d2:2a:ff:8c:3a:76:48: 2c:23:69:0c:2a:1c:66:3b:12:0d:ec:b1:53:3d:77: f3:00:ad:cc:a5:e7:7e:f4:3d:9f:25:d0:bb:38:d6: 96:ba:39:e8:a3:c6:ce:2c:95:fd:f4:ff:86:ce:06: 32:17:7c:5e:a7:a7:eb:30:f1:19:6e:23:4c:b6:26: c1:aa:50:02:d2:6a:85:f4:bd:fb:ec:91:cd:8b:89: 3e:9b:35:ef:54:82:bd:a8:15:24:ae:a8:99:fd:8c: 38:89:78:06:96:1d:45:c7:ec:f1:32:64:a5:4e:dd: 0a:a7:ad:2c:24:3a:7e:55:85:a8:ef:33:eb:b1:8f: 96:1d:5d:f7:6e:cd:be:ff:77:10:d7:24:dc:c5:fb: e5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:84:44:7E:9D:AA:0C:F2:91:FF:36:EB:4D:F2:53:B2:EC:2D:D8:C8 X509v3 Authority Key Identifier: keyid:31:25:75:DE:4D:46:43:FA:DF:AE:48:87:6D:F4:56:7D:7D:7C:68:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD7A3/861B1112C52411F0956ADD1AC4F9AE02/MSV13k1GQ_rfrkiHbfRWfX18aFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MSV13k1GQ_rfrkiHbfRWfX18aFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD7A3/861B1112C52411F0956ADD1AC4F9AE02/127C35B4C52511F09456F21BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.184.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:b6:d1:77:65:dd:ad:f6:68:06:96:ab:31:0f:ba:1d:7a:04: 4a:5c:da:ff:b9:de:e6:da:47:30:45:e4:a9:16:3e:68:6b:fa: b1:e2:3a:a5:80:a4:99:35:2b:73:62:01:27:56:49:b1:7d:84: da:96:09:6c:27:b3:c6:57:ef:85:10:3d:4e:26:4d:dd:4b:ec: cb:26:49:1d:24:28:28:97:c1:50:71:20:c9:f0:c1:d2:63:38: d6:1b:74:8c:d4:98:fb:5d:66:ed:3c:c3:0f:90:1c:04:6d:4b: 89:b9:5c:44:ee:fb:2c:ac:e0:e1:c5:2e:5f:ea:f7:48:71:3c: 10:9a:dc:d4:5c:ea:15:b9:cd:ae:bd:e1:89:1b:10:51:aa:a5: 0b:a3:ac:47:7d:c4:f3:06:ff:2a:6a:25:e5:a7:fa:86:83:e6: 48:36:e4:55:18:4f:4d:18:3c:3e:4a:03:00:4c:05:ea:45:4d: 2b:01:68:0e:fc:38:76:fb:5a:2a:61:89:2b:30:b0:65:38:b3: 6b:94:1f:59:31:9d:dd:b8:4b:1d:48:5a:04:41:15:3d:52:c0: 82:f3:fe:3c:e0:3b:b7:ca:b9:2a:34:4c:38:2e:c1:c9:62:86: 36:56:af:5d:8d:db:36:e2:88:fc:0d:3d:fe:c8:33:1a:d3:7f: 91:76:bc:59 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RDdBMzExMC8GA1UEBRMoMzEyNTc1REU0RDQ2NDNGQURGQUU0ODg3NkRGNDU2N0Q3 RDdDNjg1NjAeFw0yNTExMTkwODUyMjdaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNWVhLWUyYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf5y858QXNJ6e7n8dJUyn5MT2cN8jzgmJhPMwnwgvUBMd2t2l5BGcMq4b1XTO7 tPUA/3/kJNJ4/BnIt7yiS30xw1yQUvHo+EIEYvoqpGAXZVXRcTz2/xbsDKvfc6VG XNNgsQlJy14+vM0cYCUyNhY50ir/jDp2SCwjaQwqHGY7Eg3ssVM9d/MArcyl5370 PZ8l0Ls41pa6Oeijxs4slf30/4bOBjIXfF6np+sw8RluI0y2JsGqUALSaoX0vfvs kc2LiT6bNe9Ugr2oFSSuqJn9jDiJeAaWHUXH7PEyZKVO3QqnrSwkOn5VhajvM+ux j5YdXfduzb7/dxDXJNzF++WhAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU+4REfp2q DPKR/zbrTfJTsuwt2MgwHwYDVR0jBBgwFoAUMSV13k1GQ/rfrkiHbfRWfX18aFYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJEN0EzLzg2MUIxMTEyQzUy NDExRjA5NTZBREQxQUM0RjlBRTAyL01TVjEzazFHUV9yZnJraUhiZlJXZlgxOGFG WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVNWMTNrMUdRX3JmcmtpSGJmUldmWDE4YUZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDdBMy84NjFCMTExMkM1MjQxMUYwOTU2QUREMUFDNEY5QUUwMi8xMjdDMzVCNEM1 MjUxMUYwOTQ1NkYyMUJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/LgwDQYJKoZIhvcNAQELBQADggEBACq20Xdl3a32aAaWqzEPuh16 BEpc2v+53ubaRzBF5KkWPmhr+rHiOqWApJk1K3NiASdWSbF9hNqWCWwns8ZX74UQ PU4mTd1L7MsmSR0kKCiXwVBxIMnwwdJjONYbdIzUmPtdZu08ww+QHARtS4m5XETu +yys4OHFLl/q90hxPBCa3NRc6hW5za694YkbEFGqpQujrEd9xPMG/ypqJeWn+oaD 5kg25FUYT00YPD5KAwBMBepFTSsBaA78OHb7WiphiSswsGU4s2uUH1kxnd24Sx1I WgRBFT1SwILz/jzgO7fKuSo0TDguwclihjZWr12N2zbiiPwNPf7IMxrTf5F2vFk= -----END CERTIFICATE-----Generated at Mon Mar 2 19:54:09 2026 by rpki-client