$ rpki-client -vvf rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/06ED25D2A7CF11F0927DA829C4F9AE02.roa File: 06ED25D2A7CF11F0927DA829C4F9AE02.roa (raw, json) Hash identifier: x1p58QyGOEEZzvkP+F1o5eBxOfZdy5EZehyc+fW6wlE= Subject key identifier: A4:40:79:DF:F0:B3:19:0D:64:4E:BA:9B:E7:3C:4E:DA:42:A7:CE:29 Certificate issuer: /CN=A91C430B/serialNumber=D19BB68E3CCDC4B78CE36F87F94E7F7105123A24 Certificate serial: 4E Authority key identifier: D1:9B:B6:8E:3C:CD:C4:B7:8C:E3:6F:87:F9:4E:7F:71:05:12:3A:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/06ED25D2A7CF11F0927DA829C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:15:07 +0000 ROA not before: Mon 13 Oct 2025 00:54:51 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154295 IP address blocks: 138.252.40.0/23 maxlen: 23 138.252.40.0/24 maxlen: 24 138.252.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.crl rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:42:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C430B, serialNumber=D19BB68E3CCDC4B78CE36F87F94E7F7105123A24 Validity Not Before: Oct 13 00:54:51 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d96b-925d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2d:1d:7b:90:e2:47:94:1f:17:bc:af:ab:67: 7f:15:e0:dd:d6:09:69:f0:33:ec:0c:1e:cb:1c:e7: c9:c7:bd:e8:25:4b:95:51:b6:ee:c7:45:27:b5:c0: 52:ba:41:ad:3b:c9:20:02:cb:78:b2:4f:42:7f:8e: f6:df:0d:cd:8b:3d:7d:06:4f:e1:0d:a4:0e:32:94: d9:b4:4c:7c:54:0f:4b:f0:35:60:d8:bb:f5:0d:6e: 4c:ea:71:bb:14:40:4a:be:ca:69:e3:b7:62:aa:bc: c9:80:f2:09:b3:26:f5:e8:81:78:41:6e:40:3f:73: 68:6f:88:e7:f3:62:7d:b8:c6:88:9e:b4:4f:97:3a: 6c:42:b3:6d:54:61:66:53:a9:66:12:fb:06:27:27: e1:b8:c1:0d:51:73:01:38:57:8f:57:4e:96:cc:8e: aa:d8:95:4c:6b:72:23:a5:e5:8a:bc:de:0c:15:49: be:a4:e6:f0:86:e8:e1:6e:91:1b:95:a6:2b:c3:2b: fc:63:95:ac:a6:5b:d5:2c:e9:a2:7a:0b:5e:66:73: e8:e0:2b:1f:1b:73:e3:81:72:18:f4:36:6c:4f:63: e1:37:7a:c8:f8:15:09:b0:11:2a:c2:95:bc:73:e8: e9:1d:32:ee:bd:04:cc:77:8c:16:97:7b:10:9f:13: 09:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:40:79:DF:F0:B3:19:0D:64:4E:BA:9B:E7:3C:4E:DA:42:A7:CE:29 X509v3 Authority Key Identifier: keyid:D1:9B:B6:8E:3C:CD:C4:B7:8C:E3:6F:87:F9:4E:7F:71:05:12:3A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/06ED25D2A7CF11F0927DA829C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.40.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:93:5f:80:db:21:70:26:09:ad:98:e1:4e:88:3d:15:02:11: 4e:95:d8:d5:fa:ce:08:07:36:07:48:42:26:c6:30:9a:7d:6d: 3b:1e:32:6b:83:27:10:9e:ba:a3:34:37:49:c0:f8:b6:13:e8: 5e:49:0c:7f:bf:e0:5b:f1:d2:c4:ce:35:cd:74:2e:af:75:6f: 8c:9d:5f:56:a1:ad:cd:d0:40:a7:73:12:8c:e9:5b:37:5a:f4: 43:ba:a1:36:34:37:99:e9:04:b1:36:90:95:91:9a:ba:72:22: ef:ce:84:f7:de:28:a8:7d:ef:12:7b:72:22:e3:bb:90:e3:4a: 33:de:25:ab:26:3f:d5:e3:71:bb:34:4d:09:34:10:32:e1:c9: 7d:64:0e:97:90:f8:ad:f0:b3:9c:2a:69:1f:55:33:93:3b:f2: 47:ed:20:0c:9f:73:1b:48:91:e7:9c:b4:b2:e0:7c:32:85:74: 39:cb:8a:58:a0:99:36:a2:c6:44:27:6d:d1:ef:4f:53:b1:61: ba:cd:ba:62:40:18:55:4a:cc:08:85:f9:7a:50:5e:36:6f:c7: 4a:b9:b3:e8:31:30:e0:0e:f3:7a:51:7c:ba:da:4b:a0:ad:48: 11:6b:d2:6d:95:ef:2c:48:24:aa:2f:d1:84:18:e8:ba:6a:44: 02:b2:d8:27 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDMwQjExMC8GA1UEBRMoRDE5QkI2OEUzQ0NEQzRCNzhDRTM2Rjg3Rjk0RTdGNzEw NTEyM0EyNDAeFw0yNTEwMTMwMDU0NTFaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTZiLTkyNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDLR17kOJHlB8XvK+rZ38V4N3WCWnwM+wMHssc58nHveglS5VRtu7HRSe1wFK6 Qa07ySACy3iyT0J/jvbfDc2LPX0GT+ENpA4ylNm0THxUD0vwNWDYu/UNbkzqcbsU QEq+ymnjt2KqvMmA8gmzJvXogXhBbkA/c2hviOfzYn24xoietE+XOmxCs21UYWZT qWYS+wYnJ+G4wQ1RcwE4V49XTpbMjqrYlUxrciOl5Yq83gwVSb6k5vCG6OFukRuV pivDK/xjlaymW9Us6aJ6C15mc+jgKx8bc+OBchj0NmxPY+E3esj4FQmwESrClbxz 6OkdMu69BMx3jBaXexCfEwlfAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUpEB53/Cz GQ1kTrqb5zxO2kKnzikwHwYDVR0jBBgwFoAU0Zu2jjzNxLeM42+H+U5/cQUSOiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MzBCLzgyMzZFMjYwQTdD RTExRjA5Nzg5NDUyOEM0RjlBRTAyLzBadTJqanpOeExlTTQyLUgtVTVfY1FVU09p US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMFp1Mmpqek54TGVNNDItSC1VNV9jUVVTT2lRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDMwQi84MjM2RTI2MEE3Q0UxMUYwOTc4OTQ1MjhDNEY5QUUwMi8wNkVEMjVEMkE3 Q0YxMUYwOTI3REE4MjlDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/CgwDQYJKoZIhvcNAQELBQADggEBAHqTX4DbIXAmCa2Y4U6IPRUC EU6V2NX6zggHNgdIQibGMJp9bTseMmuDJxCeuqM0N0nA+LYT6F5JDH+/4Fvx0sTO Nc10Lq91b4ydX1ahrc3QQKdzEozpWzda9EO6oTY0N5npBLE2kJWRmrpyIu/OhPfe KKh97xJ7ciLju5DjSjPeJasmP9Xjcbs0TQk0EDLhyX1kDpeQ+K3ws5wqaR9VM5M7 8kftIAyfcxtIkeectLLgfDKFdDnLiligmTaixkQnbdHvT1OxYbrNumJAGFVKzAiF +XpQXjZvx0q5s+gxMOAO83pRfLraS6CtSBFr0m2V7yxIJKov0YQY6LpqRAKy2Cc= -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:39 2026 by rpki-client