$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/0359510CBE2711F08C3BFC4DC4F9AE02.roa File: 0359510CBE2711F08C3BFC4DC4F9AE02.roa (raw, json) Hash identifier: bg9OdmypdtmkD01MhIR8EeLLWoS84maV/i45F72hbDo= Subject key identifier: 58:58:8D:EC:EC:82:FE:55:C6:ED:F4:D0:D5:DC:E3:16:23:FB:88:E3 Certificate issuer: /CN=A91E3E8B/serialNumber=C217144291ADE1311AFB62D02E595037C8DAB5DC Certificate serial: 3B Authority key identifier: C2:17:14:42:91:AD:E1:31:1A:FB:62:D0:2E:59:50:37:C8:DA:B5:DC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/whcUQpGt4TEa-2LQLllQN8jatdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/0359510CBE2711F08C3BFC4DC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:04:16 +0000 ROA not before: Mon 10 Nov 2025 11:18:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133439 IP address blocks: 138.252.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/whcUQpGt4TEa-2LQLllQN8jatdw.crl rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/whcUQpGt4TEa-2LQLllQN8jatdw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/whcUQpGt4TEa-2LQLllQN8jatdw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E8B, serialNumber=C217144291ADE1311AFB62D02E595037C8DAB5DC Validity Not Before: Nov 10 11:18:42 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d6e0-88f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:68:a0:7d:52:91:36:c2:33:9f:5c:41:3f:18: 36:d9:b9:77:7d:00:74:44:fd:dd:41:99:50:03:58: 0d:aa:de:c6:eb:b5:aa:cd:40:1b:69:ae:0b:ff:69: e8:c2:98:9a:4a:ce:a2:d4:fb:97:55:4a:0a:f6:48: a6:e0:fb:56:73:7a:6d:ab:be:48:04:9a:6f:ea:7b: 37:63:1b:71:b0:b6:e0:e5:a6:2d:39:a5:33:f7:ac: eb:20:a3:51:98:91:2f:1e:3d:c5:c6:bb:8f:4d:30: b1:28:0a:b6:bf:87:a0:39:84:8f:c8:0c:42:2e:77: 3b:e7:85:7c:36:a6:ab:5d:9a:7a:97:c7:dc:52:e9: 88:00:53:67:20:a6:6b:0e:9f:43:1e:8e:17:15:63: 25:39:e2:16:1d:64:2f:20:81:9e:ef:e9:72:3c:29: 06:96:f6:b5:35:0a:ca:05:b2:af:a4:75:58:6f:e2: 29:8b:95:2a:8b:97:94:03:f3:7f:98:ee:de:10:69: 46:27:ab:da:f2:e3:01:8b:83:56:af:79:1e:09:9f: e1:16:ee:6d:6b:27:af:2f:96:7f:40:86:93:b6:47: be:3f:30:b3:34:ab:31:b6:d0:26:34:36:ea:d7:5a: a8:3d:09:6d:4d:12:63:ce:66:a1:93:c7:f9:5b:e4: 0e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:58:8D:EC:EC:82:FE:55:C6:ED:F4:D0:D5:DC:E3:16:23:FB:88:E3 X509v3 Authority Key Identifier: keyid:C2:17:14:42:91:AD:E1:31:1A:FB:62:D0:2E:59:50:37:C8:DA:B5:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/whcUQpGt4TEa-2LQLllQN8jatdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/whcUQpGt4TEa-2LQLllQN8jatdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E8B/FC75386ABE2111F0AFD5B519C4F9AE02/0359510CBE2711F08C3BFC4DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.115.0/24 Signature Algorithm: sha256WithRSAEncryption bc:5b:25:e1:10:6b:a2:07:e0:5d:e7:cf:96:03:44:80:b8:60: 22:36:fe:6e:8f:f3:b9:2e:18:1a:6b:84:51:ad:11:4f:15:71: 2a:27:2d:3b:8b:db:da:82:40:71:61:02:5d:5d:28:bc:86:ed: 7f:ad:29:c3:fd:a8:8b:56:1f:ff:fd:bb:f0:a5:bc:45:9e:2a: f2:35:b3:0f:1a:c1:8e:98:a6:56:37:cd:4c:33:4d:f0:2c:0d: 99:61:f1:cc:19:49:47:5b:6e:17:72:df:a7:70:bc:a3:2a:b2: bf:cd:fa:57:76:ee:f6:ea:15:6e:85:42:44:a9:ac:74:7b:05: 66:28:cc:a8:d2:1d:d1:41:b9:8a:4f:1f:c6:0d:9f:86:ea:79: 21:20:7f:68:df:7f:0f:f8:46:7f:6f:0f:6b:fb:07:69:5d:55: d8:0a:b6:49:00:3e:79:4c:7d:7b:c4:94:2f:69:1c:b2:4a:c2: 8b:fb:15:c2:ba:2e:ed:ca:38:59:a2:7d:72:78:d8:ca:eb:8b: 1c:e9:11:ae:2a:35:54:b6:1b:b0:64:38:11:16:cc:c9:05:dc: e2:f8:e4:7d:4f:06:04:d1:3f:f8:72:22:9d:96:7c:71:26:52: 0d:cd:ad:28:aa:eb:f3:65:b4:6a:75:02:32:a7:b6:79:1d:76: 0c:4c:94:08 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4QjExMC8GA1UEBRMoQzIxNzE0NDI5MUFERTEzMTFBRkI2MkQwMkU1OTUwMzdD OERBQjVEQzAeFw0yNTExMTAxMTE4NDJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNmUwLTg4ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtaKB9UpE2wjOfXEE/GDbZuXd9AHRE/d1BmVADWA2q3sbrtarNQBtprgv/aejC mJpKzqLU+5dVSgr2SKbg+1Zzem2rvkgEmm/qezdjG3GwtuDlpi05pTP3rOsgo1GY kS8ePcXGu49NMLEoCra/h6A5hI/IDEIudzvnhXw2pqtdmnqXx9xS6YgAU2cgpmsO n0MejhcVYyU54hYdZC8ggZ7v6XI8KQaW9rU1CsoFsq+kdVhv4imLlSqLl5QD83+Y 7t4QaUYnq9ry4wGLg1aveR4Jn+EW7m1rJ68vln9AhpO2R74/MLM0qzG20CY0NurX Wqg9CW1NEmPOZqGTx/lb5A71AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUWFiN7OyC /lXG7fTQ1dzjFiP7iOMwHwYDVR0jBBgwFoAUwhcUQpGt4TEa+2LQLllQN8jatdww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRThCL0ZDNzUzODZBQkUy MTExRjBBRkQ1QjUxOUM0RjlBRTAyL3doY1VRcEd0NFRFYS0yTFFMbGxRTjhqYXRk dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd2hjVVFwR3Q0VEVhLTJMUUxsbFFOOGphdGR3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0U4Qi9GQzc1Mzg2QUJFMjExMUYwQUZENUI1MTlDNEY5QUUwMi8wMzU5NTEwQ0JF MjcxMUYwOEMzQkZDNERDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/HMwDQYJKoZIhvcNAQELBQADggEBALxbJeEQa6IH4F3nz5YDRIC4 YCI2/m6P87kuGBprhFGtEU8VcSonLTuL29qCQHFhAl1dKLyG7X+tKcP9qItWH//9 u/ClvEWeKvI1sw8awY6YplY3zUwzTfAsDZlh8cwZSUdbbhdy36dwvKMqsr/N+ld2 7vbqFW6FQkSprHR7BWYozKjSHdFBuYpPH8YNn4bqeSEgf2jffw/4Rn9vD2v7B2ld VdgKtkkAPnlMfXvElC9pHLJKwov7FcK6Lu3KOFmifXJ42MrrixzpEa4qNVS2G7Bk OBEWzMkF3OL45H1PBgTRP/hyIp2WfHEmUg3NrSiq6/NltGp1AjKntnkddgxMlAg= -----END CERTIFICATE-----Generated at Mon Mar 2 00:26:47 2026 by rpki-client