$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2DB/0CA77FD6C43511F08138F07DC4F9AE02/FD88540EF5E311F0AB8204204D6F56BC.roa File: FD88540EF5E311F0AB8204204D6F56BC.roa (raw, json) Hash identifier: 15B38ymuojJsU1lBlmAxw+iYaANkqD35wxiK+F+Bx6E= Subject key identifier: A1:39:05:B8:A0:57:BC:6B:55:83:D6:AD:91:0C:16:11:6C:68:8F:6B Certificate issuer: /CN=A91BF2DB/serialNumber=CF215AC911CAA52065C7EC4AC7957835382BE3ED Certificate serial: 3C Authority key identifier: CF:21:5A:C9:11:CA:A5:20:65:C7:EC:4A:C7:95:78:35:38:2B:E3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zyFayRHKpSBlx-xKx5V4NTgr4-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2DB/0CA77FD6C43511F08138F07DC4F9AE02/FD88540EF5E311F0AB8204204D6F56BC.roa Signing time: Sun 01 Mar 2026 06:04:58 +0000 ROA not before: Tue 20 Jan 2026 09:49:15 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137211 IP address blocks: 138.252.228.0/23 maxlen: 23 138.252.228.0/24 maxlen: 24 138.252.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2DB/0CA77FD6C43511F08138F07DC4F9AE02/zyFayRHKpSBlx-xKx5V4NTgr4-0.crl rsync://rpki.apnic.net/member_repository/A91BF2DB/0CA77FD6C43511F08138F07DC4F9AE02/zyFayRHKpSBlx-xKx5V4NTgr4-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zyFayRHKpSBlx-xKx5V4NTgr4-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2DB, serialNumber=CF215AC911CAA52065C7EC4AC7957835382BE3ED Validity Not Before: Jan 20 09:49:15 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a3d70a-f51e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ef:a1:9f:c6:75:d5:51:19:01:ee:6c:6c:c7: 49:bc:ef:13:e1:96:e8:14:ed:ec:14:35:15:ad:74: f0:b5:b1:03:fd:20:6d:7c:85:e6:42:d3:36:ac:21: 3d:e0:3e:97:ed:7a:dd:f7:ed:76:f8:50:13:ae:17: 1f:35:2f:f4:4b:e4:dc:e7:d3:e0:56:f0:14:73:b8: ce:95:b3:21:e8:cc:0c:96:d0:b4:14:ac:19:3d:c4: 36:f4:62:68:b2:e0:cb:79:33:8e:9d:cd:90:a3:61: af:10:ef:1f:31:fe:99:b1:59:9e:b5:2d:a8:a4:50: 29:ac:0f:38:1a:f9:ee:07:56:5b:6c:1f:ab:26:09: f8:b4:8c:a0:5d:ad:e0:98:3e:20:21:a7:b4:1b:ea: aa:43:cb:bf:9c:21:cd:b4:46:94:e6:84:4b:7f:a5: a6:a6:94:b0:7c:52:e4:b9:e6:7a:58:96:6c:89:16: 63:25:04:0f:ef:eb:eb:75:e9:84:be:9d:e1:84:73: 07:d4:56:5a:90:c2:4b:b6:78:8f:a0:67:e6:6e:1a: c7:0c:0d:16:93:07:5b:54:e6:b8:4f:f0:27:7c:a8: 8a:3f:c7:f1:df:14:cc:39:66:d4:e2:0b:d3:2e:74: c2:64:e8:4a:ed:e2:d0:d1:4b:40:25:7a:ed:9e:d7: ae:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:39:05:B8:A0:57:BC:6B:55:83:D6:AD:91:0C:16:11:6C:68:8F:6B X509v3 Authority Key Identifier: keyid:CF:21:5A:C9:11:CA:A5:20:65:C7:EC:4A:C7:95:78:35:38:2B:E3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2DB/0CA77FD6C43511F08138F07DC4F9AE02/zyFayRHKpSBlx-xKx5V4NTgr4-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zyFayRHKpSBlx-xKx5V4NTgr4-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2DB/0CA77FD6C43511F08138F07DC4F9AE02/FD88540EF5E311F0AB8204204D6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.228.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:fe:5b:3f:58:b5:5b:d3:9c:ee:58:f6:a1:90:be:99:68:ea: 80:d3:9f:e4:07:42:50:05:df:2b:76:8d:d8:b2:d5:a9:28:5a: 16:ee:c1:2c:e8:4d:cc:d7:10:13:23:92:af:52:bd:35:f5:d9: 60:86:40:c1:2a:73:e4:27:19:c5:60:c0:88:9e:4c:65:c4:af: b1:72:f8:45:b7:06:47:25:64:1f:58:70:c6:00:56:82:7a:71: b8:64:be:7e:d6:23:a1:f1:cf:7d:a9:90:d8:4e:b4:76:8d:97: 87:40:2a:c7:4d:cb:ce:88:6b:3e:ca:de:cb:b1:2c:c5:03:2a: 6a:50:3e:fb:e8:e0:96:26:5e:ff:2c:a4:29:4c:6a:f0:a2:97: 66:ef:6b:cc:6c:0f:1b:e6:6c:10:78:e3:52:f8:59:5d:b5:c1: b9:e3:8f:d2:d1:68:0d:92:d6:bf:63:c4:42:c5:80:0c:50:e7: eb:c6:21:03:6c:e2:9a:e6:e5:6f:94:35:5e:0b:6d:ad:6e:48: 7f:e1:62:c9:da:a8:1d:a3:a1:9e:28:ac:09:8a:3c:63:a5:a6: 53:15:eb:ed:9e:ac:2b:3f:9a:3f:24:77:c6:28:be:dc:6b:0d: 4b:6c:c8:c0:6f:96:54:77:8a:48:8a:94:71:f0:59:bd:df:1e: a1:94:31:d9 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RjJEQjExMC8GA1UEBRMoQ0YyMTVBQzkxMUNBQTUyMDY1QzdFQzRBQzc5NTc4MzUz ODJCRTNFRDAeFw0yNjAxMjAwOTQ5MTVaFw0yNzAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNzBhLWY1MWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC076GfxnXVURkB7mxsx0m87xPhlugU7ewUNRWtdPC1sQP9IG18heZC0zasIT3g Ppftet337Xb4UBOuFx81L/RL5Nzn0+BW8BRzuM6VsyHozAyW0LQUrBk9xDb0Ymiy 4Mt5M46dzZCjYa8Q7x8x/pmxWZ61LaikUCmsDzga+e4HVltsH6smCfi0jKBdreCY PiAhp7Qb6qpDy7+cIc20RpTmhEt/paamlLB8UuS55npYlmyJFmMlBA/v6+t16YS+ neGEcwfUVlqQwku2eI+gZ+ZuGscMDRaTB1tU5rhP8Cd8qIo/x/HfFMw5ZtTiC9Mu dMJk6Ert4tDRS0Aleu2e166PAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUoTkFuKBX vGtVg9atkQwWEWxoj2swHwYDVR0jBBgwFoAUzyFayRHKpSBlx+xKx5V4NTgr4+0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJGMkRCLzBDQTc3RkQ2QzQz NTExRjA4MTM4RjA3REM0RjlBRTAyL3p5RmF5UkhLcFNCbHgteEt4NVY0TlRncjQt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvenlGYXlSSEtwU0JseC14S3g1VjROVGdyNC0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjJEQi8wQ0E3N0ZENkM0MzUxMUYwODEzOEYwN0RDNEY5QUUwMi9GRDg4NTQwRUY1 RTMxMUYwQUI4MjA0MjA0RDZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/OQwDQYJKoZIhvcNAQELBQADggEBAB3+Wz9YtVvTnO5Y9qGQvplo 6oDTn+QHQlAF3yt2jdiy1akoWhbuwSzoTczXEBMjkq9SvTX12WCGQMEqc+QnGcVg wIieTGXEr7Fy+EW3BkclZB9YcMYAVoJ6cbhkvn7WI6Hxz32pkNhOtHaNl4dAKsdN y86Iaz7K3suxLMUDKmpQPvvo4JYmXv8spClMavCil2bva8xsDxvmbBB441L4WV21 wbnjj9LRaA2S1r9jxELFgAxQ5+vGIQNs4prm5W+UNV4Lba1uSH/hYsnaqB2joZ4o rAmKPGOlplMV6+2erCs/mj8kd8YovtxrDUtsyMBvllR3ikiKlHHwWb3fHqGUMdk= -----END CERTIFICATE-----Generated at Mon Mar 2 20:51:14 2026 by rpki-client