$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa File: 38D25300639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: orwyoS8UfNw3CU4v8yNK3/VV+51QmqRq4/4q/snL/As= Subject key identifier: C9:01:88:C2:E1:F5:52:79:A3:4A:96:2D:45:E4:E0:90:57:23:FB:38 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: 0128 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:12:29 +0000 ROA not before: Wed 01 Oct 2025 13:23:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135102 IP address blocks: 2401:9ce0::/44 maxlen: 48 2401:9ce0:10::/44 maxlen: 48 2401:9ce0:20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Oct 1 13:23:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a59acd-b9db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fd:5c:4e:bc:bf:66:2b:5b:88:19:21:23:ae: e8:15:f0:14:4f:3b:01:37:0c:c2:88:f6:f2:e0:7b: a6:3c:6d:71:dc:69:cc:9d:15:b9:59:0f:c9:13:b8: 99:99:4a:d1:6e:f8:0c:47:5b:ad:5e:e8:cf:d4:17: 83:61:79:77:ee:ba:b4:62:cf:45:26:b2:89:40:d1: 5e:b2:d3:ad:85:e9:b5:ea:d6:1e:e0:ba:0a:09:44: 95:e2:29:17:c5:b6:33:a7:36:fe:55:e0:56:ad:76: fc:60:61:cb:cb:9f:b5:c9:f1:08:f6:52:61:80:a4: ae:e7:7b:8c:56:f3:16:f8:68:f5:31:b9:02:4f:18: c6:66:ef:eb:36:98:5c:46:aa:c2:44:9b:bb:e5:cb: 52:1b:8e:c0:46:f2:ee:e9:fa:1e:b4:b6:04:b6:fd: 7f:aa:09:1b:a5:76:90:11:1b:ea:11:48:2d:a4:31: 4a:43:cc:b8:cc:73:cc:43:f5:e9:3d:24:6a:b4:41: 02:b3:6c:8d:e8:0a:ca:01:eb:5e:ed:0c:ec:f1:cb: 57:57:e5:d4:17:5c:65:09:68:be:4b:a7:b8:71:bf: c6:05:f1:6e:ff:ec:4c:ec:ca:42:62:d9:ef:cf:69: 15:79:a6:26:87:f3:f3:74:d3:34:36:88:89:07:03: b4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:01:88:C2:E1:F5:52:79:A3:4A:96:2D:45:E4:E0:90:57:23:FB:38 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv6: 2401:9ce0::-2401:9ce0:2f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 7f:a3:5b:d6:42:fb:0b:4e:29:86:20:dd:65:98:3f:d0:f3:25: 09:83:ab:d9:7f:a5:5d:db:b8:8a:0f:ea:01:af:87:d3:32:6e: bc:05:a8:09:e8:10:67:02:66:c5:10:f6:53:a0:71:a7:b8:95: fc:8b:ca:09:31:65:e3:47:cd:71:48:47:61:16:11:e8:16:16: 6b:a5:52:5a:a8:f3:61:00:d5:82:5b:2f:5f:ff:10:e9:c2:a7: 6b:29:2e:44:42:78:eb:c6:13:4f:09:08:a3:a1:35:3c:a8:0f: cc:59:fb:b5:43:29:95:fb:75:5b:ae:e3:e2:a4:9b:15:ce:eb: 49:ca:65:be:27:41:7b:91:cc:30:91:53:74:48:f5:c3:b0:cb: 98:36:63:d9:dd:06:6d:f0:80:85:e9:50:6e:35:f0:5f:85:af: 90:01:c8:15:d5:5d:47:03:3a:dd:ef:21:1a:7d:94:56:2b:73: ed:e9:ec:2b:4e:af:47:52:e3:6f:be:98:49:20:63:75:f7:63: 5f:7f:d4:8f:22:0b:89:e7:1f:95:18:6b:a4:eb:dd:d7:8c:88: 9a:36:2a:04:0c:3a:51:4c:b7:e8:73:56:98:a5:9b:fb:27:d3: 2f:f1:23:71:1d:7c:24:74:5f:e4:65:82:c8:ea:29:53:be:e7: 26:d0:8b:c4 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUxMDAxMTMyMzM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWFjZC1iOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf1cTry/ZitbiBkhI67oFfAUTzsBNwzCiPby4HumPG1x3GnMnRW5WQ/JE7iZ mUrRbvgMR1utXujP1BeDYXl37rq0Ys9FJrKJQNFestOthem16tYe4LoKCUSV4ikX xbYzpzb+VeBWrXb8YGHLy5+1yfEI9lJhgKSu53uMVvMW+Gj1MbkCTxjGZu/rNphc RqrCRJu75ctSG47ARvLu6foetLYEtv1/qgkbpXaQERvqEUgtpDFKQ8y4zHPMQ/Xp PSRqtEECs2yN6ArKAete7Qzs8ctXV+XUF1xlCWi+S6e4cb/GBfFu/+xM7MpCYtnv z2kVeaYmh/PzdNM0NoiJBwO0RQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFMkBiMLh 9VJ5o0qWLUXk4JBXI/s4MB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E3MzUvRDBFOUIxRUU2MzlCMTFFRjlCNEQyQTVEQzRGOUFFMDIvMzhEMjUzMDA2 MzlEMTFFRkI2Njg3NzVGQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAAjASMBADBQUkAZzgAwcEJAGc4AAgMA0GCSqGSIb3DQEBCwUAA4IBAQB/o1vW QvsLTimGIN1lmD/Q8yUJg6vZf6Vd27iKD+oBr4fTMm68BagJ6BBnAmbFEPZToHGn uJX8i8oJMWXjR81xSEdhFhHoFhZrpVJaqPNhANWCWy9f/xDpwqdrKS5EQnjrxhNP CQijoTU8qA/MWfu1QymV+3VbruPipJsVzutJymW+J0F7kcwwkVN0SPXDsMuYNmPZ 3QZt8ICF6VBuNfBfha+QAcgV1V1HAzrd7yEafZRWK3Pt6ewrTq9HUuNvvphJIGN1 92Nff9SPIguJ5x+VGGuk693XjIiaNioEDDpRTLfoc1aYpZv7J9Mv8SNxHXwkdF/k ZYLI6ilTvucm0IvE -----END CERTIFICATE-----Generated at Tue Mar 3 01:15:13 2026 by rpki-client