$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/1104D6A2AF1611F0AF70E679C4F9AE02.roa File: 1104D6A2AF1611F0AF70E679C4F9AE02.roa (raw, json) Hash identifier: /VVN1pVbvBgJGM41ZpQK+E66Yb+yIlM6xDFzrudcVdc= Subject key identifier: DB:C8:33:9B:61:05:CB:C5:35:C4:D0:CB:AD:16:BD:3C:18:DB:DF:C5 Certificate issuer: /CN=A91CB6E8/serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Certificate serial: 4F Authority key identifier: 5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/1104D6A2AF1611F0AF70E679C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:15:12 +0000 ROA not before: Wed 22 Oct 2025 07:09:36 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134204 IP address blocks: 138.252.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB6E8, serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Validity Not Before: Oct 22 07:09:36 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d970-9889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9d:b7:48:79:b9:db:19:92:49:34:d0:a6:8d: 34:aa:a4:c0:63:69:6f:4b:12:25:cc:14:5d:eb:60: 76:0a:4d:b9:97:e0:01:ae:c2:b3:eb:6d:7d:89:44: ce:16:e2:46:16:dc:43:08:ee:49:2e:92:29:07:40: 34:b1:ab:50:52:95:12:72:d3:fd:14:d5:61:a7:34: ca:a7:5c:6f:4c:14:8e:fe:14:99:ff:7a:37:9b:10: c3:38:66:e5:a5:a0:42:6a:68:8b:93:e6:d4:90:8f: 84:66:27:77:59:08:da:f4:83:e4:40:a7:0a:d6:b0: 1e:e8:33:82:d9:1d:29:37:eb:d6:8b:97:c0:bf:93: 01:8c:77:b9:7c:53:2f:d9:54:0b:a1:06:f9:0d:c4: 7b:85:33:5f:b0:48:19:1f:82:48:f9:25:1a:c4:cd: 46:cf:c0:d3:2d:3e:d9:af:9a:95:95:4a:16:4e:16: e8:eb:a9:02:26:4e:c9:39:57:18:53:12:ea:39:76: 2b:38:5f:ba:21:03:7c:97:72:ab:f6:89:2c:0f:6b: 7c:91:0b:aa:77:82:5e:9b:a2:75:f8:e8:e2:48:b8: 6a:eb:37:9c:16:c1:6f:69:db:f2:df:18:8f:f7:99: f6:a7:c1:2e:46:cf:0b:08:52:ed:72:31:1b:e2:0f: 1b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C8:33:9B:61:05:CB:C5:35:C4:D0:CB:AD:16:BD:3C:18:DB:DF:C5 X509v3 Authority Key Identifier: keyid:5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/1104D6A2AF1611F0AF70E679C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.84.0/24 Signature Algorithm: sha256WithRSAEncryption 01:1b:49:85:93:9f:5a:38:a9:a8:85:32:7d:ef:fc:c0:d5:65: 58:b0:8e:fd:fd:8a:9b:5f:43:bc:41:c3:3a:ce:71:75:d9:ff: 13:a8:3c:88:63:a3:32:97:d0:87:19:09:e1:eb:a7:48:e3:c0: f6:3f:5c:98:21:25:01:fb:f6:c9:a8:20:bb:a5:01:0a:53:37: 4d:d8:56:38:33:24:f0:fc:72:88:d4:c3:ec:cc:30:a7:88:d0: 1c:31:e4:ac:c0:49:78:99:7d:b0:86:e2:b9:30:09:08:fa:6d: f0:2a:b8:7a:d2:6a:0b:5e:b7:1a:ba:6e:99:f9:06:36:bd:88: aa:42:7d:e3:bb:fd:df:fd:5a:30:60:3b:ab:af:ca:d3:6b:16: 73:1e:9c:e0:49:00:e2:cb:87:05:77:e6:dd:bf:2a:f2:1d:3b: 49:2f:8c:f2:ac:97:0a:f7:47:3e:63:5b:51:77:60:57:c2:98: ae:58:2b:e0:38:c4:d6:f5:a9:39:6c:da:14:51:a5:60:5e:55: 53:b3:93:be:8e:3b:a5:57:9e:b1:58:38:be:29:56:da:6b:48: 26:eb:6d:7c:33:be:88:47:d9:e6:ec:bb:c5:60:52:c2:34:5a: e1:ca:e7:e3:5c:5e:1f:68:ad:22:a0:25:6d:bb:98:c6:ad:10: 2c:4b:c6:9d -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjZFODExMC8GA1UEBRMoNURERkREMzgzMTU2RkE1QjY1MzQxMTJFOUM4RTE1M0JC MjAwNTdDNjAeFw0yNTEwMjIwNzA5MzZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTcwLTk4ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLnbdIebnbGZJJNNCmjTSqpMBjaW9LEiXMFF3rYHYKTbmX4AGuwrPrbX2JRM4W 4kYW3EMI7kkukikHQDSxq1BSlRJy0/0U1WGnNMqnXG9MFI7+FJn/ejebEMM4ZuWl oEJqaIuT5tSQj4RmJ3dZCNr0g+RApwrWsB7oM4LZHSk369aLl8C/kwGMd7l8Uy/Z VAuhBvkNxHuFM1+wSBkfgkj5JRrEzUbPwNMtPtmvmpWVShZOFujrqQImTsk5VxhT Euo5dis4X7ohA3yXcqv2iSwPa3yRC6p3gl6bonX46OJIuGrrN5wWwW9p2/LfGI/3 mfanwS5GzwsIUu1yMRviDxvLAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU28gzm2EF y8U1xNDLrRa9PBjb38UwHwYDVR0jBBgwFoAUXd/dODFW+ltlNBEunI4VO7IAV8Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCNkU4L0Y5QjAyODg4QUVG RTExRjA4OEI5OUMyN0M0RjlBRTAyL1hkX2RPREZXLWx0bE5CRXVuSTRWTzdJQVY4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGRfZE9ERlctbHRsTkJFdW5JNFZPN0lBVjhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjZFOC9GOUIwMjg4OEFFRkUxMUYwODhCOTlDMjdDNEY5QUUwMi8xMTA0RDZBMkFG MTYxMUYwQUY3MEU2NzlDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/FQwDQYJKoZIhvcNAQELBQADggEBAAEbSYWTn1o4qaiFMn3v/MDV ZViwjv39iptfQ7xBwzrOcXXZ/xOoPIhjozKX0IcZCeHrp0jjwPY/XJghJQH79smo ILulAQpTN03YVjgzJPD8cojUw+zMMKeI0Bwx5KzASXiZfbCG4rkwCQj6bfAquHrS agtetxq6bpn5Bja9iKpCfeO7/d/9WjBgO6uvytNrFnMenOBJAOLLhwV35t2/KvId O0kvjPKslwr3Rz5jW1F3YFfCmK5YK+A4xNb1qTls2hRRpWBeVVOzk76OO6VXnrFY OL4pVtprSCbrbXwzvohH2ebsu8VgUsI0WuHK5+NcXh9orSKgJW27mMatECxLxp0= -----END CERTIFICATE-----Generated at Mon Mar 2 00:26:34 2026 by rpki-client