$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa File: 3C52563E781F11EE9787607FC4F9AE02.roa (raw, json) Hash identifier: LUKRzU7QW2YNj5+vXJhIy/96ptb2p3qZK001FM4IvQY= Subject key identifier: 1A:49:CC:D9:4B:EE:D4:4E:7F:3C:18:0F:1B:4D:3D:8D:06:7B:6A:6F Certificate issuer: /CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Certificate serial: 0970 Authority key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:33:26 +0000 ROA not before: Fri 28 Mar 2025 21:13:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 26496 IP address blocks: 148.66.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2416 (0x970) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13 Validity Not Before: Mar 28 21:13:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a407e6-02ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3d:aa:b5:97:76:c9:67:1f:a4:6c:8e:c8:35: dd:6b:ee:d0:31:98:e8:46:cf:7b:2e:99:51:0c:d4: c8:63:1c:ce:70:18:b4:3a:90:6c:5f:28:04:11:5a: 77:70:87:67:32:30:f8:4e:36:db:dc:ad:a0:f5:bd: 1a:ab:c8:b7:06:1f:56:c2:1f:8d:bf:ad:79:c5:96: fb:7d:3b:e5:02:0c:b7:77:4c:34:a0:dc:40:b5:72: c2:89:2a:c8:5b:bd:5f:70:d8:bf:81:39:88:bd:47: 50:bf:d9:38:de:93:0e:19:1e:30:86:24:35:18:e9: 3c:6d:ae:22:be:8c:70:7f:15:24:dc:ce:b6:16:f1: 80:b9:b7:2e:7e:06:55:bf:4c:b3:c0:17:b8:1a:eb: 1e:a6:5d:11:36:0c:ef:23:2e:d7:e7:cf:6e:71:33: 1e:68:e3:28:b1:3e:53:72:2e:eb:45:50:98:48:68: d7:2f:89:be:81:ae:ab:78:79:8e:c9:41:e4:3e:16: d8:d2:42:fd:64:17:51:97:3a:18:82:ae:f3:34:97: 8c:07:4d:3a:81:42:fd:bf:ca:30:44:07:91:c7:f0: 7b:00:ff:b7:f7:29:f7:3e:32:50:b5:31:d1:84:10: 04:74:08:f4:c2:d3:0e:d4:f8:01:5f:da:ca:f7:a9: 06:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:49:CC:D9:4B:EE:D4:4E:7F:3C:18:0F:1B:4D:3D:8D:06:7B:6A:6F X509v3 Authority Key Identifier: keyid:1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/3C52563E781F11EE9787607FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 148.66.128.0/19 Signature Algorithm: sha256WithRSAEncryption b5:21:95:2b:dc:ac:40:32:a1:c9:bb:2b:60:4d:ca:56:c1:65: d8:a1:f9:da:c6:ad:1c:23:43:69:33:62:f1:92:c8:1c:f4:18: 71:d2:af:b3:18:60:fb:64:cd:12:62:bc:76:ac:43:91:4f:bc: ae:97:a5:8f:b4:0b:2e:18:f7:f2:06:2f:87:59:59:45:5e:be: 33:dd:0d:9d:2e:76:9f:71:e0:d1:82:63:0d:b0:9c:96:54:23: 39:c6:3a:a4:45:3f:3b:75:e0:59:32:1d:d4:c8:6d:da:09:3d: 4d:39:e4:89:00:c1:4f:e1:92:09:a7:af:58:ea:ef:7b:69:85: f6:3d:a9:c5:fd:f2:1d:e1:c1:67:cf:20:e8:7d:cf:4d:5b:96: dd:33:ea:a8:92:4b:47:4d:7c:07:5b:3d:ba:06:cb:bb:d2:83: af:85:97:ba:d2:d4:81:48:19:f6:7c:51:c2:ef:88:1e:7b:85: a6:da:fd:b4:7d:af:17:51:00:a7:89:cd:c8:81:0f:57:33:e2: cd:2b:43:36:13:9e:f1:ad:86:99:07:e4:bb:21:fb:25:46:d0: 19:ff:69:87:1f:cb:29:0b:44:0f:5a:24:c3:8f:8d:28:0a:8a: 4b:0a:b1:9f:9a:15:ff:b0:5e:3a:f1:c8:62:eb:9b:de:2e:fa: 83:29:3e:81 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKDFDQjRCRkQ5QzBBNzMyQkM4RjRBNjBDODY5NEM5MUY4 MzRDQUJDMTMwHhcNMjUwMzI4MjExMzQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdlNi0wMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzT2qtZd2yWcfpGyOyDXda+7QMZjoRs97LplRDNTIYxzOcBi0OpBsXygEEVp3 cIdnMjD4Tjbb3K2g9b0aq8i3Bh9Wwh+Nv615xZb7fTvlAgy3d0w0oNxAtXLCiSrI W71fcNi/gTmIvUdQv9k43pMOGR4whiQ1GOk8ba4ivoxwfxUk3M62FvGAubcufgZV v0yzwBe4Gusepl0RNgzvIy7X589ucTMeaOMosT5Tci7rRVCYSGjXL4m+ga6reHmO yUHkPhbY0kL9ZBdRlzoYgq7zNJeMB006gUL9v8owRAeRx/B7AP+39yn3PjJQtTHR hBAEdAj0wtMO1PgBX9rK96kGfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBpJzNlL 7tROfzwYDxtNPY0Ge2pvMB8GA1UdIwQYMBaAFBy0v9nApzK8j0pgyGlMkfg0yrwT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wMzExNjMxMkFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi9ITFNfMmNDbk1yeVBTbURJYVV5Ui1EVEt2 Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0hMU18yY0NuTXJ5UFNtRElhVXlSLURUS3ZCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMDMxMTYzMTJBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvM0M1MjU2M0U3 ODFGMTFFRTk3ODc2MDdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFlEKAMA0GCSqGSIb3DQEBCwUAA4IBAQC1IZUr3KxAMqHJuytgTcpW wWXYofnaxq0cI0NpM2Lxksgc9Bhx0q+zGGD7ZM0SYrx2rEORT7yul6WPtAsuGPfy Bi+HWVlFXr4z3Q2dLnafceDRgmMNsJyWVCM5xjqkRT87deBZMh3UyG3aCT1NOeSJ AMFP4ZIJp69Y6u97aYX2PanF/fId4cFnzyDofc9NW5bdM+qokktHTXwHWz26Bsu7 0oOvhZe60tSBSBn2fFHC74gee4Wm2v20fa8XUQCnic3IgQ9XM+LNK0M2E57xrYaZ B+S7IfslRtAZ/2mHH8spC0QPWiTDj40oCopLCrGfmhX/sF468chi65veLvqDKT6B -----END CERTIFICATE-----Generated at Mon Mar 2 07:48:11 2026 by rpki-client