$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/2E3A7CDCECB411F0B6919987656F56BC.roa File: 2E3A7CDCECB411F0B6919987656F56BC.roa (raw, json) Hash identifier: 4utBjEApx20KJCzqd0eW5ajZ4NVkx31L9ZkE151uZUs= Subject key identifier: D2:7C:7D:B3:E3:05:63:FC:69:66:65:0A:2B:BE:37:BD:41:D8:89:A3 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 11F4 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/2E3A7CDCECB411F0B6919987656F56BC.roa Signing time: Sun 01 Mar 2026 18:35:54 +0000 ROA not before: Thu 08 Jan 2026 17:05:06 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153038 IP address blocks: 220.152.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4596 (0x11f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Jan 8 17:05:06 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a4870a-ea8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ab:04:2d:ca:5f:77:ea:63:34:66:93:ad:9d: 89:60:b4:91:09:50:85:83:b4:1c:77:37:4b:6b:04: a7:37:8e:98:e7:1a:a1:71:50:00:85:28:46:8a:96: 59:48:29:71:bc:62:cd:19:00:67:e8:be:05:0f:d0: 3f:dc:0f:5d:e0:bb:7b:69:3d:e5:fe:a2:7d:63:66: e6:0b:f2:69:75:58:ae:27:76:89:5c:8e:be:ab:e0: e1:55:40:7e:8b:8e:ca:ff:a8:71:f1:79:9f:bd:c2: 3c:34:b1:83:fb:c7:1b:6c:42:c5:b0:9d:cc:e9:96: b7:ac:76:87:52:70:65:44:77:95:fb:87:9e:9a:bc: 0e:3e:fc:5f:55:d7:7d:ab:37:bb:5f:3c:37:3c:d9: f0:6a:d0:5e:21:59:51:9f:91:fd:af:82:ad:d1:b8: b1:c4:b4:82:52:19:11:43:f1:6c:bb:a3:c1:b3:54: c0:d2:46:24:39:63:5d:c1:ab:5d:cf:31:d3:71:be: de:8f:cd:7e:5d:27:49:1d:a7:a0:e9:4a:25:f1:3e: 7f:95:51:d2:24:b6:ac:05:60:b0:e1:73:a6:a4:87: db:5e:33:52:75:4d:7c:87:bb:f6:ba:c9:ff:66:09: a3:c7:41:88:ab:23:b4:09:2d:ea:c7:cc:1f:75:3d: d2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:7C:7D:B3:E3:05:63:FC:69:66:65:0A:2B:BE:37:BD:41:D8:89:A3 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/2E3A7CDCECB411F0B6919987656F56BC.roa sbgp-ipAddrBlock: critical IPv4: 220.152.113.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:63:88:04:eb:6f:94:90:23:0c:2c:4e:01:7b:cb:ae:e3:3b: bb:e0:08:92:1d:18:e8:ad:ec:f4:92:df:57:21:b8:bb:27:ab: 03:85:81:8f:b4:88:e0:fe:65:95:3b:fc:27:89:51:10:32:c2: 64:a8:38:80:36:b4:9e:f0:9c:ed:d8:59:95:e8:d2:ba:e3:ab: 99:e4:e1:d2:03:dd:f7:01:3d:a8:9b:90:26:5e:1c:e0:7c:f9: 96:b6:e8:a4:7b:d6:a9:47:23:83:b8:82:14:c1:7e:17:73:46: f9:99:7e:23:36:06:ae:21:d7:80:21:f5:ad:6d:fd:fa:37:b0: 44:bc:68:27:a4:fa:b5:60:ec:00:c1:08:56:3d:08:51:4d:3a: cf:51:75:f1:45:0b:a1:c3:38:1c:ce:9f:22:8f:e8:c5:5d:c0: ba:13:5b:f6:c1:2c:c0:6a:b6:9b:32:ca:ac:89:51:18:da:74: 57:84:c7:98:49:e2:47:80:b0:b6:9f:5c:39:fa:cb:92:81:a8: f8:62:10:de:51:19:76:89:65:d9:e8:3c:6a:89:40:c1:09:5e: 79:55:ec:b4:8b:16:b3:c7:9b:25:b7:c4:44:08:32:59:a1:b6: 1f:38:4f:da:9e:6d:15:ee:a4:5a:bf:05:15:9f:a2:b5:1e:46: d2:18:01:d9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjYwMTA4MTcwNTA2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODcwYS1lYThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqsELcpfd+pjNGaTrZ2JYLSRCVCFg7QcdzdLawSnN46Y5xqhcVAAhShGipZZ SClxvGLNGQBn6L4FD9A/3A9d4Lt7aT3l/qJ9Y2bmC/JpdViuJ3aJXI6+q+DhVUB+ i47K/6hx8XmfvcI8NLGD+8cbbELFsJ3M6Za3rHaHUnBlRHeV+4eemrwOPvxfVdd9 qze7Xzw3PNnwatBeIVlRn5H9r4Kt0bixxLSCUhkRQ/Fsu6PBs1TA0kYkOWNdwatd zzHTcb7ej81+XSdJHaeg6Uol8T5/lVHSJLasBWCw4XOmpIfbXjNSdU18h7v2usn/ Zgmjx0GIqyO0CS3qx8wfdT3S1wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNJ8fbPj BWP8aWZlCiu+N71B2ImjMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMkUzQTdDRENF Q0I0MTFGMEI2OTE5OTg3NjU2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA3JhxMA0GCSqGSIb3DQEBCwUAA4IBAQAaY4gE62+UkCMMLE4Be8uu 4zu74AiSHRjorez0kt9XIbi7J6sDhYGPtIjg/mWVO/wniVEQMsJkqDiANrSe8Jzt 2FmV6NK646uZ5OHSA933AT2om5AmXhzgfPmWtuike9apRyODuIIUwX4Xc0b5mX4j NgauIdeAIfWtbf36N7BEvGgnpPq1YOwAwQhWPQhRTTrPUXXxRQuhwzgczp8ij+jF XcC6E1v2wSzAarabMsqsiVEY2nRXhMeYSeJHgLC2n1w5+suSgaj4YhDeURl2iWXZ 6DxqiUDBCV55Vey0ixazx5slt8RECDJZobYfOE/anm0V7qRavwUVn6K1HkbSGAHZ -----END CERTIFICATE-----Generated at Mon Mar 2 07:34:59 2026 by rpki-client