$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/2E3A7CDCECB411F0B6919987656F56BC.roa File: 2E3A7CDCECB411F0B6919987656F56BC.roa (raw, json) Hash identifier: kTCwjps9JXKEexuvTBj7XMywtX0m9mqMVThPCXp01vw= Subject key identifier: E7:1B:F7:A8:AE:48:EB:E2:27:92:DD:C7:90:94:72:99:7D:24:5D:59 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 120E Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/2E3A7CDCECB411F0B6919987656F56BC.roa Signing time: Thu 02 Apr 2026 17:22:09 +0000 ROA not before: Thu 02 Apr 2026 17:22:09 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 153038 IP address blocks: 220.152.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4622 (0x120e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 2 17:22:09 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cea5c0-6cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c3:75:17:ad:96:80:ec:c2:15:73:5e:aa:c3: fd:ae:c1:a3:76:a5:02:78:c7:34:c5:15:3e:15:ae: 73:f3:75:ca:ff:0a:71:93:60:e9:e0:27:e7:30:a6: 28:c4:6b:ce:5f:6a:c5:d9:97:b6:57:38:54:9c:7b: 18:2e:18:dd:59:8f:17:d2:a7:08:69:39:ad:0b:d0: 8f:70:89:7e:7f:87:dd:5a:38:16:82:51:42:fb:b3: c6:a3:e0:78:fb:35:ce:3b:7e:b8:9b:01:cd:c0:12: 02:92:99:02:ba:2b:7d:c6:24:20:d9:d6:b7:4c:d5: b8:0b:c9:e5:c5:cb:54:af:d0:ad:a4:68:0d:02:40: d8:72:ae:7c:5c:ed:ea:98:81:0a:55:34:49:32:73: 85:c5:03:80:21:1b:69:07:3e:20:02:14:60:04:ee: bc:c0:6d:5b:73:d4:fa:57:d5:22:10:6b:fa:7f:5b: ab:2f:79:88:e1:2d:b8:8b:96:a7:80:7a:85:4b:ed: 1b:bc:17:5c:63:98:0f:08:3c:ea:ad:dc:d7:71:0d: ea:26:7d:16:78:40:d7:7b:c7:02:f5:cf:f6:c9:e4: a7:a8:0a:8a:dc:ee:bf:fd:c6:e0:04:e9:29:1b:1b: ad:62:c8:5d:bf:92:e0:10:95:71:02:4f:11:23:52: d1:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:1B:F7:A8:AE:48:EB:E2:27:92:DD:C7:90:94:72:99:7D:24:5D:59 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/2E3A7CDCECB411F0B6919987656F56BC.roa sbgp-ipAddrBlock: critical IPv4: 220.152.113.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:85:94:b0:1d:66:e1:5c:25:a7:0d:46:16:88:5f:64:e3:03: 65:a9:27:12:e2:f8:d6:22:b1:3d:ef:5f:67:6f:20:f5:67:cb: 60:3c:f7:ef:55:d0:78:03:c4:2b:26:41:8d:02:f2:5b:51:8f: ec:7a:03:86:7d:70:5b:14:22:ce:79:88:a0:67:52:c9:81:a0: ef:0e:68:2f:ed:4a:bd:d4:f3:61:1b:3f:8f:50:73:9b:27:2b: 0a:62:27:59:a6:a3:b2:c4:84:3c:24:d8:6c:1f:d1:93:9d:6e: 64:74:f1:7a:d1:ff:59:7e:21:21:56:ad:96:cb:48:02:97:6c: ef:68:e5:2b:2d:40:71:de:e7:90:39:73:df:c9:f5:92:7d:3e: 04:b3:4b:92:f3:ba:87:87:eb:4e:7d:1b:e9:3f:c5:31:95:1b: 4c:5e:3e:7d:a0:77:90:cf:ae:00:c8:01:dd:b5:db:ee:b1:84: 5e:02:d7:fc:db:e3:29:5e:fd:b7:d3:71:69:cd:9f:d1:bb:a5: d7:49:2f:03:dd:02:95:24:66:98:d6:f0:07:39:9c:3e:10:72: d8:09:f5:c4:9f:a6:84:8e:37:59:c5:65:14:b9:4c:9a:c3:96: 17:57:27:e0:ba:c2:a1:36:03:b8:d6:3a:5d:36:5a:ef:33:ab: 07:fd:a2:35 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjYwNDAyMTcyMjA5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNlYTVjMC02Y2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcN1F62WgOzCFXNeqsP9rsGjdqUCeMc0xRU+Fa5z83XK/wpxk2Dp4CfnMKYo xGvOX2rF2Ze2VzhUnHsYLhjdWY8X0qcIaTmtC9CPcIl+f4fdWjgWglFC+7PGo+B4 +zXOO364mwHNwBICkpkCuit9xiQg2da3TNW4C8nlxctUr9CtpGgNAkDYcq58XO3q mIEKVTRJMnOFxQOAIRtpBz4gAhRgBO68wG1bc9T6V9UiEGv6f1urL3mI4S24i5an gHqFS+0bvBdcY5gPCDzqrdzXcQ3qJn0WeEDXe8cC9c/2yeSnqAqK3O6//cbgBOkp GxutYshdv5LgEJVxAk8RI1LRYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOcb96iu SOviJ5Ldx5CUcpl9JF1ZMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMkUzQTdDRENF Q0I0MTFGMEI2OTE5OTg3NjU2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA3JhxMA0GCSqGSIb3DQEBCwUAA4IBAQB8hZSwHWbhXCWnDUYWiF9k 4wNlqScS4vjWIrE9719nbyD1Z8tgPPfvVdB4A8QrJkGNAvJbUY/segOGfXBbFCLO eYigZ1LJgaDvDmgv7Uq91PNhGz+PUHObJysKYidZpqOyxIQ8JNhsH9GTnW5kdPF6 0f9ZfiEhVq2Wy0gCl2zvaOUrLUBx3ueQOXPfyfWSfT4Es0uS87qHh+tOfRvpP8Ux lRtMXj59oHeQz64AyAHdtdvusYReAtf82+MpXv2303FpzZ/Ru6XXSS8D3QKVJGaY 1vAHOZw+EHLYCfXEn6aEjjdZxWUUuUyaw5YXVyfgusKhNgO41jpdNlrvM6sH/aI1 -----END CERTIFICATE-----Generated at Fri Apr 17 15:15:34 2026 by rpki-client