$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/341BBBECA99411F093BBAA15C4F9AE02.roa File: 341BBBECA99411F093BBAA15C4F9AE02.roa (raw, json) Hash identifier: PpvqloufX06LkcG9zYWZ5Pcx+1uUm6NtfRlAU1EzgwM= Subject key identifier: F0:C7:8A:36:2D:A0:8B:16:EF:34:E7:8D:76:BC:6F:F2:72:30:1D:11 Certificate issuer: /CN=A91CD0DE/serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Certificate serial: 48 Authority key identifier: B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/341BBBECA99411F093BBAA15C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:11:48 +0000 ROA not before: Wed 15 Oct 2025 06:57:25 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9484 IP address blocks: 138.252.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD0DE, serialNumber=B643FEB3032742148F3AF9C3539338D554937228 Validity Not Before: Oct 15 06:57:25 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d8a4-7f4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:83:aa:ff:1b:e7:a2:99:c5:d4:85:03:47: af:8f:bc:60:67:22:76:02:aa:18:b0:cc:0b:b4:c0: 0a:67:de:50:3f:bd:24:66:1b:3a:2c:2d:40:d4:a5: 96:34:86:8c:16:7a:5c:b1:7c:b4:b2:83:6c:1b:29: d8:57:5c:87:62:e4:96:a7:79:a5:77:27:c8:23:4f: 58:44:2f:4b:de:10:d1:aa:ab:1b:2a:df:7e:c4:92: 1b:1b:01:14:05:3d:b4:9e:b7:88:dc:b3:44:05:bd: b7:0a:9c:0a:e3:2a:14:3e:2c:73:82:e2:a6:af:95: 57:f8:97:7e:a3:32:3e:e9:37:d6:d0:ff:85:bf:2c: 82:0c:3d:0d:d3:10:3f:9c:40:f1:06:66:76:4e:4d: 47:56:ca:ce:d2:49:e9:97:96:2d:53:34:8d:5f:10: e1:79:f7:5e:c6:0c:48:7e:7f:41:f6:65:0b:82:7f: 5e:85:af:8f:91:cd:1e:b1:0c:c2:b9:e8:fc:1d:44: 5b:1c:18:7c:13:f2:9e:bf:92:f2:6e:f7:e3:e7:cc: ed:5d:e3:91:e4:33:54:c1:b9:21:79:37:96:48:fe: 32:27:db:11:37:12:75:f9:b2:69:29:93:c2:28:a6: a2:00:3f:c6:97:36:18:97:f4:83:4f:93:fb:a0:42: ff:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C7:8A:36:2D:A0:8B:16:EF:34:E7:8D:76:BC:6F:F2:72:30:1D:11 X509v3 Authority Key Identifier: keyid:B6:43:FE:B3:03:27:42:14:8F:3A:F9:C3:53:93:38:D5:54:93:72:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/tkP-swMnQhSPOvnDU5M41VSTcig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tkP-swMnQhSPOvnDU5M41VSTcig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/4F769D58A98F11F0B1FA5066C4F9AE02/341BBBECA99411F093BBAA15C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.28.0/23 Signature Algorithm: sha256WithRSAEncryption a6:f6:c7:1f:3a:49:ef:fe:1f:9c:5c:1c:6c:3a:be:61:e7:b7: 16:66:d7:b7:f3:af:54:19:e5:8c:63:2f:8a:55:de:91:3b:54: 49:d1:5a:6d:17:1e:19:da:da:84:c7:4b:8e:12:4a:e9:b0:a0: 5c:d3:ad:ca:69:00:02:55:d5:d7:f3:5b:73:c7:6b:cc:29:ab: 7a:d3:15:fd:63:79:03:87:15:e4:51:10:13:ea:aa:70:16:54: a3:1e:e2:80:4c:31:da:ff:51:6f:11:32:02:ad:14:eb:a1:b3: b5:77:ba:e5:81:b0:23:d7:cf:6e:a7:0f:b8:14:39:ce:4e:72: d9:cd:d1:84:5a:46:96:36:5c:62:3a:cf:2f:d1:37:31:43:85: 37:ff:e8:e3:d5:a7:c5:fd:47:ac:cf:1e:75:26:81:d5:fa:d8: f5:30:bf:38:c1:05:1d:ae:cb:4c:9c:13:53:7b:99:2b:1b:87: c7:2b:d9:24:33:05:d6:d9:d0:b3:e9:2d:22:63:e8:b8:50:83: ae:08:cd:18:83:01:d2:5d:24:6c:ac:7e:4b:e1:ce:ce:1f:b7: 31:74:8a:b1:85:cf:89:32:96:eb:79:e8:0b:af:ca:dd:6d:74: 29:87:1f:8f:28:84:68:7f:73:cc:82:3d:4b:e0:5a:b6:e2:73: d7:8a:28:63 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDBERTExMC8GA1UEBRMoQjY0M0ZFQjMwMzI3NDIxNDhGM0FGOUMzNTM5MzM4RDU1 NDkzNzIyODAeFw0yNTEwMTUwNjU3MjVaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOGE0LTdmNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdfIOq/xvnopnF1IUDR6+PvGBnInYCqhiwzAu0wApn3lA/vSRmGzosLUDUpZY0 howWelyxfLSyg2wbKdhXXIdi5JaneaV3J8gjT1hEL0veENGqqxsq337EkhsbARQF PbSet4jcs0QFvbcKnArjKhQ+LHOC4qavlVf4l36jMj7pN9bQ/4W/LIIMPQ3TED+c QPEGZnZOTUdWys7SSemXli1TNI1fEOF5917GDEh+f0H2ZQuCf16Fr4+RzR6xDMK5 6PwdRFscGHwT8p6/kvJu9+PnzO1d45HkM1TBuSF5N5ZI/jIn2xE3EnX5smkpk8Io pqIAP8aXNhiX9INPk/ugQv/fAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU8MeKNi2g ixbvNOeNdrxv8nIwHREwHwYDVR0jBBgwFoAUtkP+swMnQhSPOvnDU5M41VSTcigw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMERFLzRGNzY5RDU4QTk4 RjExRjBCMUZBNTA2NkM0RjlBRTAyL3RrUC1zd01uUWhTUE92bkRVNU00MVZTVGNp Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdGtQLXN3TW5RaFNQT3ZuRFU1TTQxVlNUY2lnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDBERS80Rjc2OUQ1OEE5OEYxMUYwQjFGQTUwNjZDNEY5QUUwMi8zNDFCQkJFQ0E5 OTQxMUYwOTNCQkFBMTVDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/BwwDQYJKoZIhvcNAQELBQADggEBAKb2xx86Se/+H5xcHGw6vmHn txZm17fzr1QZ5YxjL4pV3pE7VEnRWm0XHhna2oTHS44SSumwoFzTrcppAAJV1dfz W3PHa8wpq3rTFf1jeQOHFeRREBPqqnAWVKMe4oBMMdr/UW8RMgKtFOuhs7V3uuWB sCPXz26nD7gUOc5OctnN0YRaRpY2XGI6zy/RNzFDhTf/6OPVp8X9R6zPHnUmgdX6 2PUwvzjBBR2uy0ycE1N7mSsbh8cr2SQzBdbZ0LPpLSJj6LhQg64IzRiDAdJdJGys fkvhzs4ftzF0irGFz4kylut56Auvyt1tdCmHH48ohGh/c8yCPUvgWrbic9eKKGM= -----END CERTIFICATE-----Generated at Mon Mar 2 06:04:15 2026 by rpki-client