$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa File: 3C52563E781F11EE9787607FC4F9AE02.roa (raw, json) Hash identifier: IPSlPyfz0+bJclfH4V522k6JGFoLnfNN2pg5rNIteNo= Subject key identifier: D4:96:98:CD:BE:CF:FD:A1:3E:8D:51:4A:1B:7B:84:98:C8:09:36:4A Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0988 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa Signing time: Wed 08 Apr 2026 20:25:16 +0000 ROA not before: Wed 08 Apr 2026 20:25:16 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 26496 IP address blocks: 148.66.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 19:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Apr 8 20:25:16 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69d6b9ac-4c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:68:94:46:5b:e1:b5:4a:5e:49:87:a3:19:ac: 33:8d:60:9b:04:5e:82:c5:54:54:be:c4:67:c3:bc: bb:41:e8:d7:ee:db:3a:20:3d:4c:15:44:b8:e9:fb: 6c:e9:46:f1:46:4e:35:2f:ae:99:0c:f2:20:5d:2c: 53:6a:08:5a:3c:bb:bd:82:09:87:19:91:f8:83:5e: 89:e9:76:21:4e:e3:da:f6:88:67:3e:45:f2:87:c1: 3e:35:33:75:f7:71:31:14:6b:fa:45:a3:49:3b:6c: 29:67:c4:28:d8:8c:b2:e0:8a:a4:3d:33:1a:07:04: c5:91:ca:d3:01:62:03:f3:f3:bc:b7:ec:00:b1:17: f1:4a:f7:42:fb:15:83:8c:2f:7a:c3:f1:d6:3b:4e: 87:97:d5:d6:a0:da:75:8c:69:c3:72:a6:e1:cd:8a: 07:b9:d2:40:7b:c9:f2:45:7c:1f:fa:0b:f9:c6:80: ba:bb:d5:99:0a:9a:49:ff:2c:8d:15:16:57:e4:c6: 25:f0:89:ef:8e:e1:a9:27:03:c7:3c:d3:b9:97:c0: 39:de:72:4c:b2:be:5f:fc:54:55:b0:83:0a:a9:18: 48:b9:ad:15:20:13:a6:22:07:90:82:0f:1f:1f:85: e4:8b:56:ac:37:ad:62:5b:cf:3c:b8:f1:af:cc:08: 08:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:96:98:CD:BE:CF:FD:A1:3E:8D:51:4A:1B:7B:84:98:C8:09:36:4A X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 148.66.128.0/19 Signature Algorithm: sha256WithRSAEncryption 38:f2:a8:26:d3:97:df:6e:82:c5:3d:d6:b8:61:53:fd:1b:61: ad:fd:41:12:75:79:62:e8:9b:94:9c:b6:48:93:bf:4f:a3:fc: 4c:5c:a4:5a:5b:0a:6c:6d:65:ee:2f:b8:a5:34:c3:b8:a1:f0: d6:27:1b:90:37:f2:c4:62:f9:50:18:75:20:96:a3:01:f3:3f: 0d:ae:b2:3e:12:10:a2:da:64:8e:70:b2:8f:97:1e:24:53:54: 7f:44:fa:86:d0:e1:d9:0a:38:89:c2:9b:c0:df:86:fa:c5:ee: 06:30:a9:7c:57:4f:47:4d:36:ee:b9:9f:6b:31:49:d6:a5:99: 34:f0:d5:ce:da:13:5a:06:c6:d1:82:c2:6e:38:6d:da:ca:36: 53:10:13:1d:b8:d7:5c:80:af:0e:8d:a3:bc:ec:5c:db:a6:5a: db:72:8c:ac:83:cc:b1:a2:21:f0:c9:b6:bc:60:ed:13:fe:ab: eb:40:47:72:ce:fa:f8:36:b4:b8:08:ce:80:ba:7c:33:f8:17: 3c:26:14:fa:22:06:58:ef:71:c2:3b:6a:2a:aa:09:5c:a5:29: b2:b8:97:29:71:55:d6:d7:db:9d:2f:5d:4b:88:11:37:68:f4: 8b:09:71:15:db:05:a5:ab:13:9a:d7:7c:26:10:c1:c0:25:97: c1:a5:1e:70 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjYwNDA4MjAyNTE2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ2YjlhYy00YzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8WiURlvhtUpeSYejGawzjWCbBF6CxVRUvsRnw7y7QejX7ts6ID1MFUS46fts 6UbxRk41L66ZDPIgXSxTaghaPLu9ggmHGZH4g16J6XYhTuPa9ohnPkXyh8E+NTN1 93ExFGv6RaNJO2wpZ8Qo2Iyy4IqkPTMaBwTFkcrTAWID8/O8t+wAsRfxSvdC+xWD jC96w/HWO06Hl9XWoNp1jGnDcqbhzYoHudJAe8nyRXwf+gv5xoC6u9WZCppJ/yyN FRZX5MYl8InvjuGpJwPHPNO5l8A53nJMsr5f/FRVsIMKqRhIua0VIBOmIgeQgg8f H4Xki1asN61iW888uPGvzAgIiwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNSWmM2+ z/2hPo1RSht7hJjICTZKMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMDMxMTYzMTJBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvM0M1MjU2M0U3 ODFGMTFFRTk3ODc2MDdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFlEKAMA0GCSqGSIb3DQEBCwUAA4IBAQA48qgm05ffboLFPda4YVP9 G2Gt/UESdXli6JuUnLZIk79Po/xMXKRaWwpsbWXuL7ilNMO4ofDWJxuQN/LEYvlQ GHUglqMB8z8NrrI+EhCi2mSOcLKPlx4kU1R/RPqG0OHZCjiJwpvA34b6xe4GMKl8 V09HTTbuuZ9rMUnWpZk08NXO2hNaBsbRgsJuOG3ayjZTEBMduNdcgK8OjaO87Fzb plrbcoysg8yxoiHwyba8YO0T/qvrQEdyzvr4NrS4CM6Aunwz+Bc8JhT6IgZY73HC O2oqqglcpSmyuJcpcVXW19udL11LiBE3aPSLCXEV2wWlqxOa13wmEMHAJZfBpR5w -----END CERTIFICATE-----Generated at Fri Apr 17 11:56:24 2026 by rpki-client