$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa File: 385E3308639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: 0bGa7qwaQqLqzqDxmPaGeqcbf035gj9OYtayxkHARUQ= Subject key identifier: 2C:B3:CB:94:59:5A:DC:CC:27:36:77:AC:C8:06:29:6F:B4:7A:6F:E3 Certificate issuer: /CN=A91CA735/serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Certificate serial: 0129 Authority key identifier: BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:12:32 +0000 ROA not before: Thu 17 Apr 2025 05:44:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135102 IP address blocks: 147.124.12.0/22 maxlen: 24 160.25.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Validity Not Before: Apr 17 05:44:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59ad0-9da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ff:21:58:0f:a6:c1:33:7c:1f:f0:8f:96:6b: e4:4e:c1:bd:80:3b:53:d0:8b:44:80:51:92:a5:f6: 16:fd:84:8f:41:56:5a:f9:15:35:05:fb:7f:1e:d1: 95:52:42:77:7d:74:32:54:c6:ad:25:c9:da:cd:51: 9a:45:91:08:8a:f0:64:43:51:0e:9a:f9:db:53:b1: 7e:7c:72:c2:f5:b5:3e:11:8e:e8:75:91:43:9a:75: a8:d2:f8:b7:9a:ac:6c:16:ec:58:e9:c5:19:1b:6b: 04:dc:68:cf:6c:f6:7e:65:5e:81:3f:54:a9:a9:5d: f3:07:d8:33:64:b0:79:9d:74:51:7a:a8:d1:7f:38: 40:ed:15:c2:33:b3:e4:b6:3b:ef:e8:8c:72:aa:a4: 79:af:ee:df:2c:19:d9:39:b9:a2:5d:a8:85:84:ff: 70:25:d6:23:bd:4c:31:9e:37:03:f7:ed:c9:96:81: 9c:ca:3f:ad:4f:04:10:c2:1d:77:a3:0e:20:2a:4e: 9a:f5:a6:7a:d9:60:e4:55:1a:f8:f7:09:6a:41:16: d6:d1:68:02:37:cb:fe:5b:64:87:ed:98:ae:fd:f9: b6:1e:55:1e:57:72:7d:00:7d:fb:15:9c:c2:1e:4f: 34:69:dd:a1:3b:be:38:0b:d4:43:d7:fc:65:f6:7f: d2:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B3:CB:94:59:5A:DC:CC:27:36:77:AC:C8:06:29:6F:B4:7A:6F:E3 X509v3 Authority Key Identifier: keyid:BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 147.124.12.0/22 160.25.254.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:c7:7d:e5:77:b0:ed:02:68:78:36:eb:44:83:92:1c:7a:ae: 9c:eb:9a:67:9f:b3:fc:30:5a:d3:f0:e1:44:4c:af:0d:63:e4: 63:a2:7b:b9:b8:5a:75:3f:de:84:7e:bc:74:dd:c9:c1:6c:dc: a5:27:b2:e0:b7:19:bb:83:86:57:75:ff:9a:97:b3:aa:52:11: 10:fc:0d:83:3e:24:47:41:26:8a:79:94:85:52:b2:81:2a:d3: f1:d6:76:96:73:16:3b:85:fe:09:0d:08:fc:47:70:51:28:94: f4:12:97:f4:aa:6d:53:3e:40:3d:f2:5a:36:c2:26:8f:9b:22: 3c:a9:0d:59:88:e6:09:62:62:e8:74:8c:18:d4:68:96:2d:c7: 4c:ec:05:bc:7d:db:a1:5f:64:34:2f:d9:fb:0b:2d:6b:bf:53: 9a:25:ce:3f:35:0a:a2:2b:fc:08:a1:d6:d5:d6:cd:50:3c:ac: 89:54:39:7d:0b:f6:7f:21:1c:76:c6:a1:0d:0a:bd:bd:0f:62: 6a:5c:ee:14:4e:d8:7d:45:60:48:a1:77:a3:fe:c8:53:d2:d0: bf:d8:e4:72:ff:40:46:c3:66:50:e8:f8:7c:86:d7:7a:db:df: 43:65:c8:0f:cb:d3:b1:b1:9a:7e:1f:e8:1b:27:fb:ba:91:ef: 54:c8:4c:e3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKEJCM0JENUQ3RTE5OTI0RDg2MkI2QTQxQkYzNEM3RkRC QkJFOTFDNkQwHhcNMjUwNDE3MDU0NDUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWFkMC05ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf8hWA+mwTN8H/CPlmvkTsG9gDtT0ItEgFGSpfYW/YSPQVZa+RU1Bft/HtGV UkJ3fXQyVMatJcnazVGaRZEIivBkQ1EOmvnbU7F+fHLC9bU+EY7odZFDmnWo0vi3 mqxsFuxY6cUZG2sE3GjPbPZ+ZV6BP1SpqV3zB9gzZLB5nXRReqjRfzhA7RXCM7Pk tjvv6IxyqqR5r+7fLBnZObmiXaiFhP9wJdYjvUwxnjcD9+3JloGcyj+tTwQQwh13 ow4gKk6a9aZ62WDkVRr49wlqQRbW0WgCN8v+W2SH7Ziu/fm2HlUeV3J9AH37FZzC Hk80ad2hO744C9RD1/xl9n/SkQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCyzy5RZ WtzMJzZ3rMgGKW+0em/jMB8GA1UdIwQYMBaAFLs71dfhmSTYYrakG/NMf9u76Rxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9DN0Y0NDFDNjYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi91enZWMS1HWkpOaGl0cVFiODB4XzI3dnBI RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3V6dlYxLUdaSk5oaXRxUWI4MHhfMjd2cEhHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E3MzUvQzdGNDQxQzY2MzlCMTFFRjlCNEQyQTVEQzRGOUFFMDIvMzg1RTMzMDg2 MzlEMTFFRkI2Njg3NzVGQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCk3wMAwQBoBn+MA0GCSqGSIb3DQEBCwUAA4IBAQAqx33ld7DtAmh4 NutEg5Iceq6c65pnn7P8MFrT8OFETK8NY+Rjonu5uFp1P96Efrx03cnBbNylJ7Lg txm7g4ZXdf+al7OqUhEQ/A2DPiRHQSaKeZSFUrKBKtPx1naWcxY7hf4JDQj8R3BR KJT0Epf0qm1TPkA98lo2wiaPmyI8qQ1ZiOYJYmLodIwY1GiWLcdM7AW8fduhX2Q0 L9n7Cy1rv1OaJc4/NQqiK/wIodbV1s1QPKyJVDl9C/Z/IRx2xqENCr29D2JqXO4U Tth9RWBIoXej/shT0tC/2ORy/0BGw2ZQ6Ph8htd6299DZcgPy9OxsZp+H+gbJ/u6 ke9UyEzj -----END CERTIFICATE-----Generated at Mon Mar 2 23:39:31 2026 by rpki-client