$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A4857438FC7C11EF9988DB39C4F9AE02.roa File: A4857438FC7C11EF9988DB39C4F9AE02.roa (raw, json) Hash identifier: EK90wZgG6Wn7qBnC1Nm9OXhPfhSulwKRfsFnJn65QA8= Subject key identifier: 03:12:35:6F:78:B5:72:98:62:88:2A:46:07:08:45:20:A4:F3:D9:BE Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 6142 Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A4857438FC7C11EF9988DB39C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:39:20 +0000 ROA not before: Wed 30 Apr 2025 20:29:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152136 IP address blocks: 210.0.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24898 (0x6142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: Apr 30 20:29:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a487d8-d387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:26:4d:e2:7f:46:fd:2d:a9:6a:7c:3e:98:fd: f5:55:dc:25:ee:c1:6e:5c:11:be:1a:d4:ed:05:70: 9c:93:15:c2:5b:12:9b:5c:55:f9:7f:96:76:f1:39: 28:5e:29:85:0e:1b:b2:8f:33:60:1a:3f:5b:02:8a: 85:a6:d8:1d:51:b2:1e:e6:0d:d9:20:55:01:3d:df: 02:4b:dc:b8:44:aa:1a:7c:84:9b:a3:f1:9f:83:51: 67:51:91:65:6e:51:ee:ac:2a:05:f9:b5:03:7b:ff: 21:86:cd:ef:e8:20:3c:a2:62:42:5a:d5:a4:1d:7e: c6:2a:d3:a9:f5:1e:c6:e0:17:50:22:70:2a:29:5f: e9:49:f5:92:28:e3:26:30:c2:3b:17:01:6c:d6:ef: ba:aa:65:20:dd:c6:45:e7:7c:5c:62:94:c6:f8:14: 6d:11:65:e7:6b:0e:f9:05:fd:b3:be:26:a5:b7:46: c6:7b:1e:cf:07:91:a9:ea:99:da:f1:f1:93:99:ca: 6b:48:bf:aa:f2:2c:50:ba:1c:c9:ed:c2:a1:66:c0: f5:ad:31:e2:11:36:88:b3:a4:ca:54:df:68:d8:3b: 4f:73:36:d0:db:a7:df:31:cb:67:1c:0e:2a:c3:e7: d1:b6:b3:bc:de:c3:35:70:b2:22:25:0b:22:13:7a: a7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:12:35:6F:78:B5:72:98:62:88:2A:46:07:08:45:20:A4:F3:D9:BE X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/A4857438FC7C11EF9988DB39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.0.238.0/24 Signature Algorithm: sha256WithRSAEncryption 30:f3:da:2b:a3:0c:db:57:9a:73:27:7a:14:e8:e1:4b:4c:ab: 67:b2:e2:81:8d:5b:ab:64:d8:0d:d3:2d:97:f8:94:c1:f4:c5: 45:a3:47:64:28:bc:e2:75:3e:8a:43:bc:a4:5b:58:0a:f8:13: bf:0a:18:6b:5c:35:8f:13:ee:cb:b8:54:ec:aa:ad:04:d3:60: dd:56:a4:d1:96:b5:1d:07:f7:17:ca:56:e2:94:cf:9a:91:d2: 89:00:32:20:16:7c:1f:0b:09:d5:d5:ff:e6:42:9e:9d:53:d5: bd:18:11:be:08:1f:82:1c:d5:b2:4e:24:25:c8:03:67:42:40: 0e:5c:62:cd:93:6c:9e:bb:25:cc:b0:a4:82:78:58:e6:23:6b: 5f:17:6f:e1:94:c3:33:62:83:da:38:86:77:4d:45:2d:c8:a5: c2:00:65:a4:ab:f2:af:9c:1c:86:ce:48:c9:30:db:8a:22:0f: e6:49:c2:18:10:78:6e:aa:d1:98:a3:c7:d3:a3:b4:26:b7:2c: c3:4c:57:2f:d6:90:46:65:1c:cd:a9:7c:79:de:5b:d5:13:ed: fc:56:a9:3e:ca:2c:6e:32:79:60:73:64:91:08:9e:35:f0:83: 82:d3:62:1f:1a:3c:18:ea:04:18:b5:4a:1d:93:78:e1:d1:4c: 3e:96:9b:1c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICYUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNDMwMjAyOTExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdkOC1kMzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiZN4n9G/S2panw+mP31Vdwl7sFuXBG+GtTtBXCckxXCWxKbXFX5f5Z28Tko XimFDhuyjzNgGj9bAoqFptgdUbIe5g3ZIFUBPd8CS9y4RKoafISbo/Gfg1FnUZFl blHurCoF+bUDe/8hhs3v6CA8omJCWtWkHX7GKtOp9R7G4BdQInAqKV/pSfWSKOMm MMI7FwFs1u+6qmUg3cZF53xcYpTG+BRtEWXnaw75Bf2zvialt0bGex7PB5Gp6pna 8fGTmcprSL+q8ixQuhzJ7cKhZsD1rTHiETaIs6TKVN9o2DtPczbQ26ffMctnHA4q w+fRtrO83sM1cLIiJQsiE3qnyQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAMSNW94 tXKYYogqRgcIRSCk89m+MB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvQTQ4NTc0MzhG QzdDMTFFRjk5ODhEQjM5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA0gDuMA0GCSqGSIb3DQEBCwUAA4IBAQAw89orowzbV5pzJ3oU6OFL TKtnsuKBjVurZNgN0y2X+JTB9MVFo0dkKLzidT6KQ7ykW1gK+BO/ChhrXDWPE+7L uFTsqq0E02DdVqTRlrUdB/cXylbilM+akdKJADIgFnwfCwnV1f/mQp6dU9W9GBG+ CB+CHNWyTiQlyANnQkAOXGLNk2yeuyXMsKSCeFjmI2tfF2/hlMMzYoPaOIZ3TUUt yKXCAGWkq/KvnByGzkjJMNuKIg/mScIYEHhuqtGYo8fTo7QmtyzDTFcv1pBGZRzN qXx53lvVE+38Vqk+yixuMnlgc2SRCJ418IOC02IfGjwY6gQYtUodk3jh0Uw+lpsc -----END CERTIFICATE-----Generated at Mon Mar 2 04:06:50 2026 by rpki-client