$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/485C422CA5FF11F08004B67CC4F9AE02.roa File: 485C422CA5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: ES3xbmOIjTGPeT8IfY1TCtnhdjiNJx4hr7CiNHyRg0w= Subject key identifier: 4A:80:A0:62:16:55:79:9A:45:42:A6:B8:6B:58:15:28:68:D9:E5:87 Certificate issuer: /CN=A91E3493/serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Certificate serial: 6B Authority key identifier: 31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/485C422CA5FF11F08004B67CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:08 +0000 ROA not before: Tue 18 Nov 2025 22:44:54 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 19527 IP address blocks: 152.65.192.0/18 maxlen: 21 152.65.192.0/19 maxlen: 24 152.65.224.0/20 maxlen: 24 152.65.240.0/21 maxlen: 24 152.65.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:31:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Validity Not Before: Nov 18 22:44:54 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46e40-e7b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9c:81:84:b7:46:07:ed:e7:20:bd:4f:cf:5b: a3:43:fd:6d:4c:ad:bb:b9:4f:4b:05:2c:ff:6b:98: 11:c7:8f:6b:d1:3f:9b:59:e6:44:47:26:f6:a7:b6: 8c:b5:9b:56:ae:a7:2c:5d:f0:f8:a0:ff:08:8a:5f: e6:89:05:ca:8a:22:27:af:ee:27:0b:ee:d8:77:99: 4a:ee:7c:90:99:f4:30:6c:9f:4c:e0:83:f9:50:2f: 5a:4b:f2:7d:ae:93:d9:e4:1f:17:65:fa:2a:80:b4: 00:57:1b:08:85:fd:f3:4c:cb:b2:4f:5f:f0:1a:05: 0b:03:d9:88:1e:cc:e4:6b:3b:76:fe:52:73:18:c5: 48:df:f9:61:17:1b:1f:84:fb:ae:9b:34:35:46:b3: e3:40:15:52:6a:6a:6c:a9:e0:d5:e2:e6:74:3a:fd: 24:f5:27:b5:b1:7d:98:35:57:e3:b0:06:dd:d2:16: d3:eb:d1:c2:77:ee:8d:a8:8f:3f:68:9e:5f:2a:e5: f5:75:b9:07:28:3f:5b:be:56:ed:f0:b1:9a:d7:6a: f5:11:f1:8e:43:41:d7:3d:58:10:ce:d3:32:e6:cd: 14:9d:40:30:68:2f:5a:79:ea:a9:59:0b:67:fc:42: 82:68:30:81:79:fb:a9:ec:78:fc:76:1b:7b:bd:3d: 0e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:80:A0:62:16:55:79:9A:45:42:A6:B8:6B:58:15:28:68:D9:E5:87 X509v3 Authority Key Identifier: keyid:31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/485C422CA5FF11F08004B67CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption ab:a8:c4:4e:e8:ca:75:38:50:6f:d8:f6:e3:f9:10:86:4c:2e: 5f:b3:1f:e0:b6:94:7d:66:a4:12:10:2d:d7:18:3a:64:39:f5: 97:cf:7c:d2:82:b5:c5:38:b6:04:d8:b7:cb:af:df:90:99:ec: e6:65:dd:2e:99:1b:60:33:54:b8:a5:b9:d4:4e:3e:d9:7e:2f: 9e:11:45:c0:69:8d:17:54:99:4b:e3:61:48:fe:bb:ce:d2:a4: e0:95:4f:94:a5:76:97:5f:2a:ee:2c:38:1c:39:2b:1b:e8:6b: cc:fb:e2:bf:54:cd:ad:7c:5b:d0:bf:ae:75:50:4b:13:06:62: f4:f3:93:da:eb:29:de:c3:3d:1e:ca:98:02:86:d8:20:ae:36: 62:6c:1d:e0:d4:a9:b5:fc:59:21:fb:26:d1:0d:78:71:cb:0d: eb:46:a7:d7:fb:94:16:c0:45:09:65:51:b8:b8:bf:12:90:b4: d9:a4:2a:a7:4c:f4:05:a5:b9:28:d1:c7:84:01:79:88:59:24: dd:ab:8f:d9:b4:f8:e5:54:20:98:da:17:dc:05:4d:df:cc:a8: fa:c2:49:29:60:10:c6:d0:8c:5f:13:94:42:91:90:d7:4b:13: a4:0b:99:09:ad:c7:7f:de:f4:33:4f:93:86:f3:9e:cb:8f:c5: 6f:91:59:9d -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzQ5MzExMC8GA1UEBRMoMzEzMTFDRkNDMTQwMUJENkQwRTZCNkIzOTE2N0I2NUMy MTA5MjExNDAeFw0yNTExMTgyMjQ0NTRaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ2ZTQwLWU3YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfnIGEt0YH7ecgvU/PW6ND/W1Mrbu5T0sFLP9rmBHHj2vRP5tZ5kRHJvantoy1 m1aupyxd8Pig/wiKX+aJBcqKIiev7icL7th3mUrufJCZ9DBsn0zgg/lQL1pL8n2u k9nkHxdl+iqAtABXGwiF/fNMy7JPX/AaBQsD2YgezORrO3b+UnMYxUjf+WEXGx+E +66bNDVGs+NAFVJqamyp4NXi5nQ6/ST1J7WxfZg1V+OwBt3SFtPr0cJ37o2ojz9o nl8q5fV1uQcoP1u+Vu3wsZrXavUR8Y5DQdc9WBDO0zLmzRSdQDBoL1p56qlZC2f8 QoJoMIF5+6nsePx2G3u9PQ43AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUSoCgYhZV eZpFQqa4a1gVKGjZ5YcwHwYDVR0jBBgwFoAUMTEc/MFAG9bQ5razkWe2XCEJIRQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNDkzL0U1MkMxNEMwOUZG QTExRjBCQUQ1MEI2MUM0RjlBRTAyL01URWNfTUZBRzliUTVyYXprV2UyWENFSklS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVRFY19NRkFHOWJRNXJhemtXZTJYQ0VKSVJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My9FNTJDMTRDMDlGRkExMUYwQkFENTBCNjFDNEY5QUUwMi80ODVDNDIyQ0E1 RkYxMUYwODAwNEI2N0NDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAaYQcAwDQYJKoZIhvcNAQELBQADggEBAKuoxE7oynU4UG/Y9uP5EIZM Ll+zH+C2lH1mpBIQLdcYOmQ59ZfPfNKCtcU4tgTYt8uv35CZ7OZl3S6ZG2AzVLil udROPtl+L54RRcBpjRdUmUvjYUj+u87SpOCVT5SldpdfKu4sOBw5Kxvoa8z74r9U za18W9C/rnVQSxMGYvTzk9rrKd7DPR7KmAKG2CCuNmJsHeDUqbX8WSH7JtENeHHL DetGp9f7lBbARQllUbi4vxKQtNmkKqdM9AWluSjRx4QBeYhZJN2rj9m0+OVUIJja F9wFTd/MqPrCSSlgEMbQjF8TlEKRkNdLE6QLmQmtx3/e9DNPk4bznsuPxW+RWZ0= -----END CERTIFICATE-----Generated at Mon Mar 2 14:29:25 2026 by rpki-client