$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa File: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (raw, json) Hash identifier: yOJh/+loOwxOssiA6T+NoUiDgUYuEN8uooTJYRzMykM= Subject key identifier: 73:3E:2E:62:F6:44:FB:F8:08:58:6C:32:19:65:63:E2:15:29:DE:92 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 01D1 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:38:36 +0000 ROA not before: Tue 15 Apr 2025 03:39:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135520 IP address blocks: 192.43.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Apr 15 03:39:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3ecfc-5173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a4:c2:e8:98:a4:98:71:65:f0:e4:67:e9:e0: a9:99:4e:c8:3e:67:f2:b2:91:ff:d9:ef:c6:94:03: 9a:a1:fd:34:28:0d:4d:73:67:11:d9:dd:7a:28:c0: 8e:ba:6b:83:d5:26:15:eb:51:e5:dd:6e:95:81:01: 92:4e:c1:d6:79:58:af:5a:1c:19:a1:18:13:6c:82: 24:5d:cb:32:96:b2:d2:16:44:62:54:b2:aa:4d:a4: bb:47:fc:e9:6c:3a:96:cf:45:71:15:57:3e:e2:08: 39:ee:81:1d:fa:01:d0:f2:30:74:0c:04:cc:fd:e2: aa:29:20:22:ac:49:75:d6:a9:46:e2:fa:b3:5b:91: a5:40:43:b9:75:8f:6f:23:98:c1:4c:4e:48:3d:40: 5a:fa:7a:7a:20:66:a6:a7:e9:66:46:2d:81:ee:90: df:31:b6:d1:bc:a8:1d:4d:8e:ba:a4:f3:75:72:45: 66:34:d1:c9:76:f9:b2:bf:cf:f2:5b:8d:1a:07:3b: a3:31:d0:31:be:10:ad:2e:4c:5b:e7:95:61:06:16: 21:81:b0:df:c4:fa:9f:ca:8d:39:ac:b4:6f:87:93: b7:7c:d5:f1:1a:a7:62:d6:ba:3b:f2:37:1f:b0:ad: af:c2:79:f1:6d:6c:2b:4a:bf:6e:ce:dc:c9:65:5f: 97:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:3E:2E:62:F6:44:FB:F8:08:58:6C:32:19:65:63:E2:15:29:DE:92 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.43.226.0/24 Signature Algorithm: sha256WithRSAEncryption b4:01:a3:8a:c3:60:d2:87:f3:43:8f:32:cb:f2:e2:8f:02:0a: cc:8b:fb:94:23:10:97:37:25:09:dc:fc:c3:7d:26:60:c3:d4: 79:87:3f:1d:42:2e:c5:ed:67:2e:5f:31:fd:86:86:ba:42:39: 6b:a2:fc:0d:ed:95:d6:29:30:0e:ac:a1:c6:da:4e:29:21:1b: 07:c5:2c:8d:16:4a:50:1a:68:ee:2a:96:80:8d:5e:33:f2:05: 97:24:f5:e7:6f:5e:fc:58:93:1a:6b:a4:28:b1:9d:09:d9:11: 00:4a:f0:6d:ef:9b:e3:ef:81:07:86:07:9c:ee:2c:bb:b5:56: d8:3f:c8:5e:2c:76:1c:a6:c5:6f:c7:cf:69:fd:01:ae:55:13: 6c:a7:c8:8e:a5:83:f8:a0:4d:26:a0:37:1c:4f:3b:98:fc:57: d9:fa:53:33:8f:98:02:cc:b7:c2:08:cb:23:e9:9c:e0:c2:bc: ea:8d:cb:55:78:cd:fd:c6:5f:79:8a:8f:c9:93:c2:25:f9:6f: 04:90:04:11:dc:bc:92:f8:ca:8a:57:45:f0:ac:84:c7:28:d6: 9d:fb:14:c3:2f:1f:7e:33:87:bf:74:46:f5:fd:11:db:76:f9: 1c:cd:f2:32:d7:d9:b4:fb:bd:65:bd:00:7a:20:30:c0:cb:27: 58:21:50:bc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNDE1MDMzOTM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWNmYy01MTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KTC6JikmHFl8ORn6eCpmU7IPmfyspH/2e/GlAOaof00KA1Nc2cR2d16KMCO umuD1SYV61Hl3W6VgQGSTsHWeVivWhwZoRgTbIIkXcsylrLSFkRiVLKqTaS7R/zp bDqWz0VxFVc+4gg57oEd+gHQ8jB0DATM/eKqKSAirEl11qlG4vqzW5GlQEO5dY9v I5jBTE5IPUBa+np6IGamp+lmRi2B7pDfMbbRvKgdTY66pPN1ckVmNNHJdvmyv8/y W40aBzujMdAxvhCtLkxb55VhBhYhgbDfxPqfyo05rLRvh5O3fNXxGqdi1ro78jcf sK2vwnnxbWwrSr9uztzJZV+XbwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHM+LmL2 RPv4CFhsMhllY+IVKd6SMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQUFCMzNFNEM1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvM0I4REVGQkNC MkNEMTFFRkJFQjZBNTMyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAwCviMA0GCSqGSIb3DQEBCwUAA4IBAQC0AaOKw2DSh/NDjzLL8uKP AgrMi/uUIxCXNyUJ3PzDfSZgw9R5hz8dQi7F7WcuXzH9hoa6QjlrovwN7ZXWKTAO rKHG2k4pIRsHxSyNFkpQGmjuKpaAjV4z8gWXJPXnb178WJMaa6QosZ0J2REASvBt 75vj74EHhgec7iy7tVbYP8heLHYcpsVvx89p/QGuVRNsp8iOpYP4oE0moDccTzuY /FfZ+lMzj5gCzLfCCMsj6ZzgwrzqjctVeM39xl95io/Jk8Il+W8EkAQR3LyS+MqK V0XwrITHKNad+xTDLx9+M4e/dEb1/RHbdvkczfIy19m0+71lvQB6IDDAyydYIVC8 -----END CERTIFICATE-----Generated at Mon Mar 2 19:40:59 2026 by rpki-client