$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/944C9A24AB4511F09AA0C458C4F9AE02.roa File: 944C9A24AB4511F09AA0C458C4F9AE02.roa (raw, json) Hash identifier: 4YrP0rl3gACg5qm8ArvUCizFJDOa1cfOGVN50zaYqQo= Subject key identifier: E7:8A:1D:2E:36:04:BB:59:71:6B:30:22:D4:07:52:D1:2C:85:CF:4C Certificate issuer: /CN=A91CC4A7/serialNumber=E42F5DEF2659B5E7FA2703768E9487EFDC595BB0 Certificate serial: 47 Authority key identifier: E4:2F:5D:EF:26:59:B5:E7:FA:27:03:76:8E:94:87:EF:DC:59:5B:B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5C9d7yZZtef6JwN2jpSH79xZW7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/944C9A24AB4511F09AA0C458C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:11:23 +0000 ROA not before: Fri 17 Oct 2025 10:39:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134738 IP address blocks: 138.252.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/5C9d7yZZtef6JwN2jpSH79xZW7A.crl rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/5C9d7yZZtef6JwN2jpSH79xZW7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5C9d7yZZtef6JwN2jpSH79xZW7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC4A7, serialNumber=E42F5DEF2659B5E7FA2703768E9487EFDC595BB0 Validity Not Before: Oct 17 10:39:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d88b-fb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fd:1d:2f:5a:c5:72:2b:33:52:d7:bf:7b:f5: 50:57:b6:3f:43:20:c5:84:40:59:f3:1c:1c:a8:c4: 33:66:00:c4:f9:55:92:d8:8a:69:6a:f2:34:39:77: fe:de:1a:e3:11:18:a4:dd:d1:67:c3:72:64:0b:bb: 5f:d3:36:8d:97:a4:5c:8b:3d:3a:f8:87:51:45:e5: f9:f4:0c:df:a3:08:92:8c:d5:ed:b8:89:f4:09:4f: ea:40:e1:6b:a9:3e:59:33:18:3f:fa:8a:9e:e1:db: e1:e9:0a:ab:8a:ca:04:0a:ff:ac:19:12:86:31:55: 6e:fd:63:3e:19:9a:81:35:ab:34:13:b0:35:f8:0d: d3:cc:7e:3e:92:fb:dc:83:c1:20:3e:f3:eb:25:c2: c6:f3:17:b5:30:65:c0:c8:1e:cb:31:e5:29:8b:41: b6:56:15:41:ad:8c:37:45:a9:1d:8d:87:8a:e8:f9: 64:e5:50:d4:36:3f:62:39:5b:82:67:ef:1f:55:f7: b2:e3:e0:49:4c:7f:34:d6:60:e3:e8:74:69:c8:67: 65:f9:44:17:d1:24:80:c8:06:c5:47:59:82:b8:bb: 75:4b:e4:7d:74:80:65:f7:28:1b:b7:7a:7b:2f:83: ce:3f:37:7a:da:26:4c:10:80:8b:78:78:f9:91:70: 79:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:8A:1D:2E:36:04:BB:59:71:6B:30:22:D4:07:52:D1:2C:85:CF:4C X509v3 Authority Key Identifier: keyid:E4:2F:5D:EF:26:59:B5:E7:FA:27:03:76:8E:94:87:EF:DC:59:5B:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/5C9d7yZZtef6JwN2jpSH79xZW7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5C9d7yZZtef6JwN2jpSH79xZW7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/944C9A24AB4511F09AA0C458C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.56.0/23 Signature Algorithm: sha256WithRSAEncryption 29:e5:81:bb:08:94:7a:16:6b:e1:bb:fb:3a:3d:a1:21:7f:a3: 19:18:d7:01:06:64:79:dc:f4:5d:bc:96:58:76:1e:00:bc:b1: 07:da:c9:c7:d6:58:7d:e1:a9:ea:1e:c6:b2:81:7c:df:1b:c2: 6f:a4:fa:1c:6a:d4:87:bd:6b:e6:4b:b6:f3:cd:94:1e:3e:5c: f1:05:df:2e:6a:7a:12:03:31:27:5d:f3:d5:58:86:84:d8:43: 61:aa:d1:49:b9:e4:be:c4:e7:ad:29:b2:1f:65:17:79:64:4e: 00:df:e8:61:62:cc:e9:8e:3d:04:ed:91:62:31:ff:14:09:64: d5:8a:c1:eb:03:e3:6c:57:49:67:e1:bb:ed:a0:a9:82:c3:18: c7:45:c6:18:17:e7:b7:bb:f1:e1:4e:90:61:13:c9:b4:9f:bf: 0c:86:69:07:b7:e3:09:7c:81:0a:bf:1c:75:56:e1:69:bb:5d: 40:29:10:54:29:dd:b9:94:47:d0:80:de:23:0c:ea:87:87:85: c5:47:62:5d:a5:3f:31:63:b3:fe:9a:e8:da:16:eb:4e:1e:f1: 4e:2d:cf:4e:9e:45:6b:74:49:f4:8d:67:1b:a9:31:c8:ec:fb: 91:bd:f5:75:36:90:aa:85:45:49:03:fe:48:64:de:73:76:83: 1a:d2:39:5c -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QzRBNzExMC8GA1UEBRMoRTQyRjVERUYyNjU5QjVFN0ZBMjcwMzc2OEU5NDg3RUZE QzU5NUJCMDAeFw0yNTEwMTcxMDM5MzhaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODhiLWZiMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDL/R0vWsVyKzNS17979VBXtj9DIMWEQFnzHByoxDNmAMT5VZLYimlq8jQ5d/7e GuMRGKTd0WfDcmQLu1/TNo2XpFyLPTr4h1FF5fn0DN+jCJKM1e24ifQJT+pA4Wup PlkzGD/6ip7h2+HpCquKygQK/6wZEoYxVW79Yz4ZmoE1qzQTsDX4DdPMfj6S+9yD wSA+8+slwsbzF7UwZcDIHssx5SmLQbZWFUGtjDdFqR2Nh4ro+WTlUNQ2P2I5W4Jn 7x9V97Lj4ElMfzTWYOPodGnIZ2X5RBfRJIDIBsVHWYK4u3VL5H10gGX3KBu3ensv g84/N3raJkwQgIt4ePmRcHmrAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU54odLjYE u1lxazAi1AdS0SyFz0wwHwYDVR0jBBgwFoAU5C9d7yZZtef6JwN2jpSH79xZW7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDNEE3L0ZBOThGQjNFQUI0 NDExRjA4NDNEMDY1N0M0RjlBRTAyLzVDOWQ3eVpadGVmNkp3TjJqcFNINzl4Wlc3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNUM5ZDd5Wlp0ZWY2SndOMmpwU0g3OXhaVzdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzRBNy9GQTk4RkIzRUFCNDQxMUYwODQzRDA2NTdDNEY5QUUwMi85NDRDOUEyNEFC NDUxMUYwOUFBMEM0NThDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/DgwDQYJKoZIhvcNAQELBQADggEBACnlgbsIlHoWa+G7+zo9oSF/ oxkY1wEGZHnc9F28llh2HgC8sQfaycfWWH3hqeoexrKBfN8bwm+k+hxq1Ie9a+ZL tvPNlB4+XPEF3y5qehIDMSdd89VYhoTYQ2Gq0Um55L7E560psh9lF3lkTgDf6GFi zOmOPQTtkWIx/xQJZNWKwesD42xXSWfhu+2gqYLDGMdFxhgX57e78eFOkGETybSf vwyGaQe34wl8gQq/HHVW4Wm7XUApEFQp3bmUR9CA3iMM6oeHhcVHYl2lPzFjs/6a 6NoW604e8U4tz06eRWt0SfSNZxupMcjs+5G99XU2kKqFRUkD/khk3nN2gxrSOVw= -----END CERTIFICATE-----Generated at Mon Mar 2 04:09:38 2026 by rpki-client