$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/474BBE8AA5FF11F08004B67CC4F9AE02.roa File: 474BBE8AA5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: OAI+YN11U1PZfLdiNPQNMB7UXRmGheB6bQN72SIA05g= Subject key identifier: 7E:9C:4B:7B:79:44:C1:0A:25:AA:9E:4E:A2:6C:B9:B7:E7:FD:47:D9 Certificate issuer: /CN=A91E3493/serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Certificate serial: 69 Authority key identifier: 31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/474BBE8AA5FF11F08004B67CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:07 +0000 ROA not before: Tue 18 Nov 2025 22:44:52 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 139070 IP address blocks: 152.65.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Validity Not Before: Nov 18 22:44:52 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46e3e-f836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:aa:83:df:dc:cf:fe:b9:c9:6f:5b:61:9f:25: 7a:81:64:dd:bc:70:96:70:04:d2:f6:e5:2d:11:45: 17:68:43:21:22:f9:fc:17:6b:20:50:3c:a8:90:66: d3:3c:ba:da:9d:88:66:75:5e:12:aa:d5:38:85:8f: f9:d0:8f:e7:d1:36:54:bd:04:c2:1a:e6:0d:24:15: f5:02:77:3b:0a:1b:0a:f6:ae:07:d3:27:fe:6b:c8: b5:df:62:6b:7e:b5:e8:66:71:fd:6e:94:dd:4d:e2: 49:79:d9:34:66:e4:51:40:d5:fc:dd:44:58:4f:3b: f9:5c:6b:32:02:f9:0d:80:04:75:b5:f9:21:78:7d: af:09:9e:c3:84:5b:5e:b3:f9:95:a8:a4:bf:8b:a3: 59:91:01:be:7d:ea:7c:ed:fc:70:28:00:95:21:b7: cb:20:56:0e:bd:96:11:68:b8:de:31:ce:ec:8d:83: f5:fe:db:4e:11:3d:22:8b:30:64:b9:e6:a4:53:e6: 42:68:45:bb:4a:89:d2:d3:be:1e:59:46:af:f8:c5: 42:44:e1:fb:71:9d:a4:bf:6f:db:c6:68:15:af:87: 86:39:2c:06:18:6d:10:25:91:01:65:6f:b6:70:74: 4c:e7:09:b6:72:81:a2:27:a3:ee:2a:3d:4d:36:e7: ab:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:9C:4B:7B:79:44:C1:0A:25:AA:9E:4E:A2:6C:B9:B7:E7:FD:47:D9 X509v3 Authority Key Identifier: keyid:31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/474BBE8AA5FF11F08004B67CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.65.246.0/24 Signature Algorithm: sha256WithRSAEncryption 14:1b:0e:8d:13:dc:c6:29:bd:ca:3f:2e:3b:98:63:89:13:bd: 7c:3a:2c:4c:ca:ab:57:6b:70:1f:d4:98:92:aa:c8:63:55:e7: e2:79:d8:6a:39:27:2f:5e:d2:42:51:42:6f:de:1d:b6:2e:2a: 80:88:e5:c6:4b:3d:dc:d7:09:e4:7f:ea:ce:11:7b:7f:ac:c9: c2:f6:a2:cd:4c:91:07:67:60:7c:3c:b4:b4:69:97:11:1a:ab: be:dd:2e:9f:02:13:d0:b8:86:7e:58:bc:c0:d4:8f:fa:4d:4a: 2d:74:3d:3e:96:27:5f:24:ab:88:0f:f7:c4:f8:0a:00:79:88: 57:b5:2b:a6:aa:e5:7d:1b:82:f5:e3:62:88:b8:96:95:87:1b: 32:b3:a2:60:3c:b4:23:29:86:67:82:ee:ef:0a:67:da:aa:ca: ec:96:2e:c1:8c:a0:6c:28:a8:3c:b4:b2:a7:75:f6:04:25:da: 5a:8e:2d:0f:fd:64:f4:c6:51:3d:cd:2a:7c:88:a5:c4:45:74: 96:40:a1:e8:62:80:0a:50:35:62:6c:08:de:48:bc:56:05:0d: 99:9e:0f:08:3d:72:cf:2f:b4:83:5d:e9:8a:e7:19:10:a2:ac: f6:37:65:bd:f8:85:e9:41:09:9d:35:3a:fa:f6:fb:be:64:e7: aa:ba:78:9a -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzQ5MzExMC8GA1UEBRMoMzEzMTFDRkNDMTQwMUJENkQwRTZCNkIzOTE2N0I2NUMy MTA5MjExNDAeFw0yNTExMTgyMjQ0NTJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ2ZTNlLWY4MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnqoPf3M/+uclvW2GfJXqBZN28cJZwBNL25S0RRRdoQyEi+fwXayBQPKiQZtM8 utqdiGZ1XhKq1TiFj/nQj+fRNlS9BMIa5g0kFfUCdzsKGwr2rgfTJ/5ryLXfYmt+ tehmcf1ulN1N4kl52TRm5FFA1fzdRFhPO/lcazIC+Q2ABHW1+SF4fa8JnsOEW16z +ZWopL+Lo1mRAb596nzt/HAoAJUht8sgVg69lhFouN4xzuyNg/X+204RPSKLMGS5 5qRT5kJoRbtKidLTvh5ZRq/4xUJE4ftxnaS/b9vGaBWvh4Y5LAYYbRAlkQFlb7Zw dEznCbZygaIno+4qPU0256vZAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUfpxLe3lE wQolqp5Oomy5t+f9R9kwHwYDVR0jBBgwFoAUMTEc/MFAG9bQ5razkWe2XCEJIRQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNDkzL0U1MkMxNEMwOUZG QTExRjBCQUQ1MEI2MUM0RjlBRTAyL01URWNfTUZBRzliUTVyYXprV2UyWENFSklS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVRFY19NRkFHOWJRNXJhemtXZTJYQ0VKSVJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My9FNTJDMTRDMDlGRkExMUYwQkFENTBCNjFDNEY5QUUwMi80NzRCQkU4QUE1 RkYxMUYwODAwNEI2N0NDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACYQfYwDQYJKoZIhvcNAQELBQADggEBABQbDo0T3MYpvco/LjuYY4kT vXw6LEzKq1drcB/UmJKqyGNV5+J52Go5Jy9e0kJRQm/eHbYuKoCI5cZLPdzXCeR/ 6s4Re3+sycL2os1MkQdnYHw8tLRplxEaq77dLp8CE9C4hn5YvMDUj/pNSi10PT6W J18kq4gP98T4CgB5iFe1K6aq5X0bgvXjYoi4lpWHGzKzomA8tCMphmeC7u8KZ9qq yuyWLsGMoGwoqDy0sqd19gQl2lqOLQ/9ZPTGUT3NKnyIpcRFdJZAoehigApQNWJs CN5IvFYFDZmeDwg9cs8vtINd6YrnGRCirPY3Zb34helBCZ01Ovr2+75k56q6eJo= -----END CERTIFICATE-----Generated at Mon Mar 2 17:06:12 2026 by rpki-client