$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/65FAD636AF1411F0BE4BF94FC4F9AE02.roa File: 65FAD636AF1411F0BE4BF94FC4F9AE02.roa (raw, json) Hash identifier: 9hr6Mrcekj4wBtLXcM+jj6TwfopvR4qZFirKjaGVgSI= Subject key identifier: E8:AA:18:C2:92:12:B8:84:F8:DC:52:C5:1D:85:8D:C7:E8:38:68:FA Certificate issuer: /CN=A91CB6E8/serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Certificate serial: 4E Authority key identifier: 5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/65FAD636AF1411F0BE4BF94FC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:15:11 +0000 ROA not before: Wed 22 Oct 2025 06:57:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154308 IP address blocks: 138.252.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB6E8, serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Validity Not Before: Oct 22 06:57:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d96f-96f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ec:58:1b:28:cd:51:c1:a1:8b:ef:c5:cc:16: 38:3d:8a:75:9f:63:12:6f:d0:db:29:5c:88:bc:73: 57:2d:09:57:a2:83:ba:0a:14:6c:5c:dd:71:0b:e4: cf:d4:bf:3b:3b:37:6a:b5:38:19:2c:7c:e1:69:cf: 29:ee:46:c5:fa:09:1d:59:06:bd:78:11:80:cc:9a: 10:9c:38:96:b1:e7:9e:a7:30:a9:7d:0f:ce:0d:97: 7e:34:b8:75:9d:fc:c9:77:15:53:cc:61:99:cf:15: 9f:5f:c1:09:78:e8:8b:4b:0e:39:27:f7:27:1e:43: 6d:e8:02:d2:a5:11:f0:87:1f:b9:ca:98:66:9c:22: 57:e3:f2:c6:73:7d:06:aa:1c:cf:ac:13:51:2c:12: c4:b9:3a:5c:f9:37:e5:ef:ff:08:13:de:52:19:2d: a6:6d:52:bb:ec:fb:ae:91:3f:0f:36:a7:2a:8b:bb: 53:84:c4:b2:41:43:a1:3f:ec:f4:70:dd:03:d8:80: 15:bb:5f:8d:a5:f2:36:85:57:6d:85:eb:d2:a2:e2: 30:4e:56:77:a5:62:f2:ad:0a:d8:d6:df:30:b6:16: 36:0a:05:51:89:34:85:de:d0:10:54:ac:d9:d4:62: b4:3d:67:92:5c:70:26:09:c0:22:7f:a2:37:6d:46: ad:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:AA:18:C2:92:12:B8:84:F8:DC:52:C5:1D:85:8D:C7:E8:38:68:FA X509v3 Authority Key Identifier: keyid:5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/65FAD636AF1411F0BE4BF94FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.85.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:b4:68:c5:e9:b3:d1:92:e9:03:40:2f:03:c5:a1:e8:d1:ec: 3d:51:76:b3:ab:aa:3d:6c:e4:6d:0b:35:68:b9:8e:a8:03:fa: 5a:3f:ea:40:43:54:fd:88:1b:c9:74:e3:bb:c5:2d:f6:50:08: c4:fc:4b:8d:e5:8b:d6:24:17:39:95:62:90:53:86:0d:a8:dc: 62:cc:fb:ff:b7:68:f5:23:9e:be:e5:f7:c5:c2:a3:e8:b0:40: 6b:59:1f:22:7e:3e:fc:54:35:63:91:34:54:b2:f3:20:da:a4: c1:ea:ab:70:a6:a6:1c:7f:40:ec:bc:4f:42:bf:84:2c:84:f6: 48:21:0b:a9:a9:ca:5f:18:5e:77:20:b9:e8:f2:e2:ee:3e:af: 2e:0c:23:af:8c:85:fd:65:2b:8e:d5:57:58:8c:fb:c0:97:b3: de:8a:ea:14:56:f5:7a:fc:be:57:b0:f8:d8:f8:44:88:b1:fd: 6e:85:57:e6:15:c1:bb:c2:df:e9:91:ba:27:e6:ef:07:4c:55: d0:42:c4:0f:9d:ff:db:80:8a:48:d6:54:8d:ef:34:07:41:6a: 1f:1e:6e:2e:69:9f:e8:1f:45:fc:3d:f3:a4:8f:57:26:73:41: 72:39:50:a5:6d:5a:84:e3:ed:48:bf:0e:3c:c1:c6:6d:3b:a0: e4:9c:59:87 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjZFODExMC8GA1UEBRMoNURERkREMzgzMTU2RkE1QjY1MzQxMTJFOUM4RTE1M0JC MjAwNTdDNjAeFw0yNTEwMjIwNjU3MzlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTZmLTk2ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZ7FgbKM1RwaGL78XMFjg9inWfYxJv0NspXIi8c1ctCVeig7oKFGxc3XEL5M/U vzs7N2q1OBksfOFpzynuRsX6CR1ZBr14EYDMmhCcOJax556nMKl9D84Nl340uHWd /Ml3FVPMYZnPFZ9fwQl46ItLDjkn9yceQ23oAtKlEfCHH7nKmGacIlfj8sZzfQaq HM+sE1EsEsS5Olz5N+Xv/wgT3lIZLaZtUrvs+66RPw82pyqLu1OExLJBQ6E/7PRw 3QPYgBW7X42l8jaFV22F69Ki4jBOVnelYvKtCtjW3zC2FjYKBVGJNIXe0BBUrNnU YrQ9Z5JccCYJwCJ/ojdtRq2xAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU6KoYwpIS uIT43FLFHYWNx+g4aPowHwYDVR0jBBgwFoAUXd/dODFW+ltlNBEunI4VO7IAV8Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCNkU4L0Y5QjAyODg4QUVG RTExRjA4OEI5OUMyN0M0RjlBRTAyL1hkX2RPREZXLWx0bE5CRXVuSTRWTzdJQVY4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGRfZE9ERlctbHRsTkJFdW5JNFZPN0lBVjhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjZFOC9GOUIwMjg4OEFFRkUxMUYwODhCOTlDMjdDNEY5QUUwMi82NUZBRDYzNkFG MTQxMUYwQkU0QkY5NEZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/FUwDQYJKoZIhvcNAQELBQADggEBACy0aMXps9GS6QNALwPFoejR 7D1RdrOrqj1s5G0LNWi5jqgD+lo/6kBDVP2IG8l047vFLfZQCMT8S43li9YkFzmV YpBThg2o3GLM+/+3aPUjnr7l98XCo+iwQGtZHyJ+PvxUNWORNFSy8yDapMHqq3Cm phx/QOy8T0K/hCyE9kghC6mpyl8YXncguejy4u4+ry4MI6+Mhf1lK47VV1iM+8CX s96K6hRW9Xr8vlew+Nj4RIix/W6FV+YVwbvC3+mRuifm7wdMVdBCxA+d/9uAikjW VI3vNAdBah8ebi5pn+gfRfw986SPVyZzQXI5UKVtWoTj7Ui/DjzBxm07oOScWYc= -----END CERTIFICATE-----Generated at Mon Mar 2 00:26:35 2026 by rpki-client