$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/9F7CD49AA55A11F0A8F84D83C4F9AE02.roa File: 9F7CD49AA55A11F0A8F84D83C4F9AE02.roa (raw, json) Hash identifier: uA1aNoLm5rRL4N33a7say9LydcTss2fD+OkvlysDqGo= Subject key identifier: 05:4B:A3:B6:44:CD:1D:78:D7:DA:E5:6E:BB:4B:69:EC:DA:63:D6:88 Certificate issuer: /CN=A91D4781/serialNumber=227620FFCBDFAC95D46E6A1DB317B08BA5628480 Certificate serial: 4C Authority key identifier: 22:76:20:FF:CB:DF:AC:95:D4:6E:6A:1D:B3:17:B0:8B:A5:62:84:80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/InYg_8vfrJXUbmodsxewi6VihIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/9F7CD49AA55A11F0A8F84D83C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:13:37 +0000 ROA not before: Thu 09 Oct 2025 21:55:09 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151660 IP address blocks: 138.252.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/InYg_8vfrJXUbmodsxewi6VihIA.crl rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/InYg_8vfrJXUbmodsxewi6VihIA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/InYg_8vfrJXUbmodsxewi6VihIA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4781, serialNumber=227620FFCBDFAC95D46E6A1DB317B08BA5628480 Validity Not Before: Oct 9 21:55:09 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d911-ffde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7a:41:ef:6b:eb:16:a8:ca:dc:51:8c:5b:dd: f1:ba:9a:5a:1e:bf:5d:3d:d3:93:47:26:1a:ba:60: 99:60:e0:59:05:c9:b1:66:28:d6:b6:27:4c:47:97: a0:28:75:29:9b:ca:7a:84:a3:66:79:83:ec:31:76: 4f:5d:d1:25:fc:43:f1:56:34:de:d4:08:0b:d9:b5: f4:5f:1f:2c:17:02:0a:60:91:16:fc:7b:04:30:36: 77:d7:9c:b0:0e:3c:f0:b1:be:ec:80:c0:f1:2e:7a: 73:42:6a:34:e6:79:ef:3d:ec:27:cb:aa:80:fc:2e: 91:34:8c:a3:70:74:e5:e2:ed:d5:44:cc:8a:d0:87: bc:0f:b7:3e:c2:6e:c1:2f:1b:09:48:4c:18:49:ec: 50:66:3e:de:c1:73:b4:11:c7:a2:1d:d5:b8:d7:b3: 53:a6:31:b6:b2:94:f3:96:1b:af:d3:96:41:75:43: 28:8f:2c:a4:7e:b0:63:56:64:63:67:d0:84:50:dc: c8:d5:cd:01:e7:4a:8b:14:10:e6:39:69:d9:d8:09: fe:b6:a4:b6:7a:1b:4b:41:18:d9:fd:96:d9:2a:18: 35:52:fd:38:63:96:c1:72:6a:0a:9a:60:51:0c:6e: f1:8d:aa:0d:39:1b:6e:5c:ed:b4:83:6e:09:4a:63: 87:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:4B:A3:B6:44:CD:1D:78:D7:DA:E5:6E:BB:4B:69:EC:DA:63:D6:88 X509v3 Authority Key Identifier: keyid:22:76:20:FF:CB:DF:AC:95:D4:6E:6A:1D:B3:17:B0:8B:A5:62:84:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/InYg_8vfrJXUbmodsxewi6VihIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/InYg_8vfrJXUbmodsxewi6VihIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/9F7CD49AA55A11F0A8F84D83C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.22.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:d9:66:2b:64:d8:23:93:98:44:32:79:93:ad:bf:de:87:37: 9e:d7:6a:99:63:be:eb:fa:3e:d2:ac:a5:cf:9b:51:14:24:4b: 04:e3:c7:ff:d8:07:ae:b4:85:ba:ae:b5:ea:23:d0:21:12:85: 30:b4:3e:a3:61:0f:9e:4a:3d:76:b2:34:f8:a1:68:0a:e6:44: 07:03:ee:1c:3d:a0:9b:ef:bb:cd:67:a6:d0:38:09:fb:8c:10: aa:b5:98:ad:99:4f:a3:a6:9b:80:de:29:3f:d3:4e:9a:b6:74: 56:0e:b6:20:23:e1:0e:e1:a5:73:ef:3c:19:d6:13:12:2c:d8: 24:b1:20:58:bc:26:90:3e:e3:6e:8a:07:2b:f9:34:65:3b:7a: ed:27:5a:ee:d2:e5:9a:cc:a1:c3:ee:60:ff:8f:e5:d7:28:a9: 2a:e0:2f:8d:71:cc:36:56:28:05:f3:3b:af:31:4d:e8:d4:df: 74:ec:3e:6b:21:71:de:cb:2e:4d:f4:24:be:55:29:81:23:94: 01:54:6c:c4:6e:56:d6:4c:99:59:b3:d7:aa:64:02:2e:8d:00: e3:72:de:e9:80:cb:40:04:47:80:63:86:35:02:0f:a3:62:7e: 40:52:2a:69:b3:59:8b:1b:40:19:7e:2f:e9:7d:11:c5:50:49: b5:30:57:3c -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDc4MTExMC8GA1UEBRMoMjI3NjIwRkZDQkRGQUM5NUQ0NkU2QTFEQjMxN0IwOEJB NTYyODQ4MDAeFw0yNTEwMDkyMTU1MDlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOTExLWZmZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4ekHva+sWqMrcUYxb3fG6mloev10905NHJhq6YJlg4FkFybFmKNa2J0xHl6Ao dSmbynqEo2Z5g+wxdk9d0SX8Q/FWNN7UCAvZtfRfHywXAgpgkRb8ewQwNnfXnLAO PPCxvuyAwPEuenNCajTmee897CfLqoD8LpE0jKNwdOXi7dVEzIrQh7wPtz7CbsEv GwlITBhJ7FBmPt7Bc7QRx6Id1bjXs1OmMbaylPOWG6/TlkF1QyiPLKR+sGNWZGNn 0IRQ3MjVzQHnSosUEOY5adnYCf62pLZ6G0tBGNn9ltkqGDVS/ThjlsFyagqaYFEM bvGNqg05G25c7bSDbglKY4enAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUBUujtkTN HXjX2uVuu0tp7Npj1ogwHwYDVR0jBBgwFoAUInYg/8vfrJXUbmodsxewi6VihIAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NzgxL0Q5MDA0MkNFQTQ4 RDExRjBBRDk3RjAxNkM0RjlBRTAyL0luWWdfOHZmckpYVWJtb2RzeGV3aTZWaWhJ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSW5ZZ184dmZySlhVYm1vZHN4ZXdpNlZpaElBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDc4MS9EOTAwNDJDRUE0OEQxMUYwQUQ5N0YwMTZDNEY5QUUwMi85RjdDRDQ5QUE1 NUExMUYwQThGODREODNDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/BYwDQYJKoZIhvcNAQELBQADggEBAHvZZitk2COTmEQyeZOtv96H N57Xapljvuv6PtKspc+bURQkSwTjx//YB660hbquteoj0CEShTC0PqNhD55KPXay NPihaArmRAcD7hw9oJvvu81nptA4CfuMEKq1mK2ZT6Omm4DeKT/TTpq2dFYOtiAj 4Q7hpXPvPBnWExIs2CSxIFi8JpA+426KByv5NGU7eu0nWu7S5ZrMocPuYP+P5dco qSrgL41xzDZWKAXzO68xTejU33TsPmshcd7LLk30JL5VKYEjlAFUbMRuVtZMmVmz 16pkAi6NAONy3umAy0AER4BjhjUCD6NifkBSKmmzWYsbQBl+L+l9EcVQSbUwVzw= -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:03 2026 by rpki-client