$ rpki-client -vvf rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/9DB152BEBAE311F0A6981134C4F9AE02.roa File: 9DB152BEBAE311F0A6981134C4F9AE02.roa (raw, json) Hash identifier: PA9hOk6V6IhWEIDuuD3b5sMWQ+ZypkTpM3DoKTzEmx8= Subject key identifier: 72:D0:A9:DE:3B:E0:C2:2B:D1:77:06:14:C7:C7:C8:2B:1B:75:4A:9F Certificate issuer: /CN=A91C78A7/serialNumber=1C5968586CB4C7E283F1419F5850468EDA559682 Certificate serial: 4D Authority key identifier: 1C:59:68:58:6C:B4:C7:E2:83:F1:41:9F:58:50:46:8E:DA:55:96:82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/9DB152BEBAE311F0A6981134C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:14:40 +0000 ROA not before: Thu 06 Nov 2025 07:38:41 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133770 IP address blocks: 138.252.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.crl rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C78A7, serialNumber=1C5968586CB4C7E283F1419F5850468EDA559682 Validity Not Before: Nov 6 07:38:41 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d94f-bf84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3c:44:29:5e:5c:34:81:62:0a:f1:0b:fa:da: 98:f8:f4:6c:d8:a6:b7:55:55:06:66:35:f7:59:1f: 5b:0b:f3:0f:1f:f2:5d:5a:27:a6:f4:20:ad:a8:8e: e8:ec:9b:f8:eb:d2:12:ea:9c:03:36:51:f4:5c:26: a9:d8:3d:97:92:9f:d6:6f:66:10:f8:2f:8d:f5:25: ab:44:88:b0:7a:6d:5b:81:d0:d9:9d:6a:30:82:97: ff:94:e5:2d:85:c7:ae:bf:1a:7d:f5:a4:2b:4e:eb: 8a:60:dd:a1:1e:7f:df:e7:d2:e6:a6:d6:8e:40:95: 84:fd:7f:11:af:8e:39:b5:90:98:cf:6b:72:60:fa: 77:6a:b5:77:40:92:7d:e7:20:37:08:15:67:a3:c8: 40:02:d0:82:15:65:9d:a4:02:7a:49:0b:a2:12:a7: af:bc:19:d9:7c:a4:9b:10:3d:6d:7c:64:d2:c1:36: 3d:fd:d4:2b:c8:71:c4:ed:9a:8e:82:4c:59:7f:63: f7:2a:a8:39:08:78:85:28:d0:16:6a:ed:c4:37:60: 4e:12:36:0e:0f:87:58:50:7e:2c:47:81:b0:16:bf: 37:99:6e:1d:f4:76:16:82:30:3d:8d:b1:e4:1c:e2: f8:7b:0c:8a:90:9a:60:74:f1:9f:16:02:47:37:6f: 7f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:D0:A9:DE:3B:E0:C2:2B:D1:77:06:14:C7:C7:C8:2B:1B:75:4A:9F X509v3 Authority Key Identifier: keyid:1C:59:68:58:6C:B4:C7:E2:83:F1:41:9F:58:50:46:8E:DA:55:96:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/HFloWGy0x-KD8UGfWFBGjtpVloI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HFloWGy0x-KD8UGfWFBGjtpVloI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C78A7/FAE96C4AB62011F0A749211FC4F9AE02/9DB152BEBAE311F0A6981134C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.121.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:30:79:0e:21:ef:3d:1a:71:b1:f6:3b:08:c6:c2:59:07:c6: 44:96:fc:ec:fb:22:2e:bb:56:4f:a6:c1:ab:20:bc:fe:28:94: 22:e2:e1:62:6f:5e:98:b3:e1:8c:02:42:f9:da:94:7e:bc:84: 1d:18:4b:8e:77:e9:e6:68:f0:5b:56:1d:e7:36:2f:65:fd:ab: ab:4e:1e:a5:c4:1a:81:bd:66:97:cd:85:58:bb:c1:15:b5:ba: 11:06:47:ff:cd:52:89:5e:b7:d3:7f:75:d7:77:d6:6d:37:3f: 81:da:da:68:ef:1a:2e:0a:91:73:d7:d3:01:05:0b:b9:d1:26: e4:0a:a1:3f:60:c7:5e:e9:b2:2b:e0:ad:ba:ab:9f:aa:c3:36: 43:50:df:f0:a0:fe:26:d3:65:c7:4e:46:9b:f0:f9:e2:ce:18: df:41:31:4c:85:b1:42:58:2f:3a:8f:84:1b:fc:92:ab:50:dd: 33:1e:09:ca:a6:11:b1:34:63:79:e5:c6:4f:98:ac:25:b8:78: b5:3f:2f:ae:0d:cf:04:aa:a8:a6:e6:b4:2b:db:a3:ba:19:01: 09:b3:89:82:be:36:c9:20:08:dc:01:03:10:a5:3d:da:d4:79: 18:2b:3d:c0:4a:e3:03:a8:20:76:ea:38:ac:58:7d:1e:c6:2c: 76:3e:ea:6f -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NzhBNzExMC8GA1UEBRMoMUM1OTY4NTg2Q0I0QzdFMjgzRjE0MTlGNTg1MDQ2OEVE QTU1OTY4MjAeFw0yNTExMDYwNzM4NDFaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTRmLWJmODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4PEQpXlw0gWIK8Qv62pj49GzYprdVVQZmNfdZH1sL8w8f8l1aJ6b0IK2ojujs m/jr0hLqnAM2UfRcJqnYPZeSn9ZvZhD4L431JatEiLB6bVuB0NmdajCCl/+U5S2F x66/Gn31pCtO64pg3aEef9/n0uam1o5AlYT9fxGvjjm1kJjPa3Jg+ndqtXdAkn3n IDcIFWejyEAC0IIVZZ2kAnpJC6ISp6+8Gdl8pJsQPW18ZNLBNj391CvIccTtmo6C TFl/Y/cqqDkIeIUo0BZq7cQ3YE4SNg4Ph1hQfixHgbAWvzeZbh30dhaCMD2NseQc 4vh7DIqQmmB08Z8WAkc3b38PAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUctCp3jvg wivRdwYUx8fIKxt1Sp8wHwYDVR0jBBgwFoAUHFloWGy0x+KD8UGfWFBGjtpVloIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3OEE3L0ZBRTk2QzRBQjYy MDExRjBBNzQ5MjExRkM0RjlBRTAyL0hGbG9XR3kweC1LRDhVR2ZXRkJHanRwVmxv SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSEZsb1dHeTB4LUtEOFVHZldGQkdqdHBWbG9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzhBNy9GQUU5NkM0QUI2MjAxMUYwQTc0OTIxMUZDNEY5QUUwMi85REIxNTJCRUJB RTMxMUYwQTY5ODExMzRDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/HkwDQYJKoZIhvcNAQELBQADggEBAEwweQ4h7z0acbH2OwjGwlkH xkSW/Oz7Ii67Vk+mwasgvP4olCLi4WJvXpiz4YwCQvnalH68hB0YS4536eZo8FtW Hec2L2X9q6tOHqXEGoG9ZpfNhVi7wRW1uhEGR//NUolet9N/ddd31m03P4Ha2mjv Gi4KkXPX0wEFC7nRJuQKoT9gx17psivgrbqrn6rDNkNQ3/Cg/ibTZcdORpvw+eLO GN9BMUyFsUJYLzqPhBv8kqtQ3TMeCcqmEbE0Y3nlxk+YrCW4eLU/L64NzwSqqKbm tCvbo7oZAQmziYK+NskgCNwBAxClPdrUeRgrPcBK4wOoIHbqOKxYfR7GLHY+6m8= -----END CERTIFICATE-----Generated at Mon Mar 2 03:50:02 2026 by rpki-client