$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/C6212596B5FF11F0A3F6A41AC4F9AE02.roa File: C6212596B5FF11F0A3F6A41AC4F9AE02.roa (raw, json) Hash identifier: vjcVmpY5exF0KvvFr7MQCETy6G444Gcd8QqEnM4obso= Subject key identifier: 28:C7:96:5E:EA:06:A6:9E:B7:34:7F:58:25:62:D7:DA:98:67:73:4D Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 05AA Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/C6212596B5FF11F0A3F6A41AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:36:52 +0000 ROA not before: Wed 28 Jan 2026 23:19:28 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 4058 IP address blocks: 152.101.5.0/24 maxlen: 24 152.101.25.0/24 maxlen: 24 152.101.26.0/24 maxlen: 24 152.101.27.0/24 maxlen: 24 152.101.32.0/24 maxlen: 24 152.101.50.0/24 maxlen: 24 152.101.174.0/24 maxlen: 24 152.101.185.0/24 maxlen: 24 152.101.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1450 (0x5aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Jan 28 23:19:28 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a46b24-77ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:ee:8e:1e:4d:8e:e2:84:38:d7:d3:69:9e: 89:b3:32:e1:58:26:bf:90:84:a1:f4:72:6b:bd:25: c4:16:70:d2:2a:2d:e3:85:5c:c0:00:29:d3:42:af: ce:38:b0:47:70:9a:7e:39:28:6b:77:42:1d:cf:e9: 65:8a:b2:ac:d4:7b:0b:d7:b8:d3:5e:e9:99:eb:ac: 15:67:33:2a:fe:c9:8d:01:70:f1:f6:10:c1:7d:22: 79:46:d1:91:5e:c7:bf:52:b9:25:f5:63:0e:f9:59: 9b:f7:d4:be:37:24:6b:45:0b:bd:a8:ef:59:11:4e: 06:60:62:49:51:95:27:91:79:c9:95:db:be:8a:b7: 4c:9a:91:63:fa:68:17:21:9f:8e:86:38:9e:83:51: be:09:5f:a6:e5:7e:c5:12:37:6d:69:b7:93:ff:eb: cf:30:1a:4c:6d:1b:60:18:92:31:6e:d5:83:1f:ca: a7:e5:a0:b4:7e:c8:cb:57:de:2b:94:c6:3c:fd:77: b3:a7:af:ed:2c:1e:a1:7f:d4:53:8a:9a:77:74:e8: 97:8e:43:db:dc:ea:fb:20:38:40:75:93:52:be:fa: 78:65:12:14:c3:81:aa:f2:a9:46:77:fe:3f:2b:e8: 1c:53:04:16:cb:98:c9:83:50:d0:2c:88:82:d8:b1: a3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:C7:96:5E:EA:06:A6:9E:B7:34:7F:58:25:62:D7:DA:98:67:73:4D X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/C6212596B5FF11F0A3F6A41AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.101.5.0/24 152.101.25.0-152.101.27.255 152.101.32.0/24 152.101.50.0/24 152.101.174.0/24 152.101.185.0-152.101.186.255 Signature Algorithm: sha256WithRSAEncryption 13:25:88:8f:60:f0:d6:a6:cf:5f:6a:fe:90:3e:94:3e:14:b2: da:ed:bd:6b:79:c4:73:63:cf:12:ec:39:86:6b:92:20:b6:d7: b9:8a:53:a0:01:3a:01:c2:58:3a:a7:e2:c8:80:d7:12:48:3d: 82:0f:84:2c:c5:7c:9e:64:f2:24:0f:a2:fc:7d:3d:f9:cb:f5: 44:64:67:fe:1c:9c:e8:94:d7:c0:ad:cd:47:13:ec:97:7f:75: 06:f9:ff:8f:9e:14:1e:6f:4e:e5:21:90:10:6a:aa:18:42:90: b5:80:62:8d:48:86:e8:89:89:29:6b:c4:96:85:07:91:29:ff: 93:f2:77:92:0e:f8:90:6e:bf:de:5a:ca:3d:11:c4:da:a7:b7: bd:02:fd:b1:40:ba:c2:22:92:e7:8e:a7:ba:64:1b:1c:e8:3a: f9:43:6d:f2:11:93:a5:70:29:49:9d:03:ae:81:c5:77:98:cb: 54:b3:29:c0:b3:77:4b:66:cc:32:b8:01:c1:cf:c3:49:92:eb: 68:f0:4a:24:57:c0:b9:62:88:f3:d9:c7:20:1d:dd:1c:23:79: 0e:0f:04:24:4f:46:e0:67:2a:24:ff:53:94:a2:17:f0:91:d6: c5:ad:3e:7d:85:0c:60:18:38:9a:60:86:a8:0f:ed:dc:ab:a2: c5:ec:d2:40 -----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgICBaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjYwMTI4MjMxOTI4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmIyNC03N2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVHujh5NjuKEONfTaZ6JszLhWCa/kISh9HJrvSXEFnDSKi3jhVzAACnTQq/O OLBHcJp+OShrd0Idz+llirKs1HsL17jTXumZ66wVZzMq/smNAXDx9hDBfSJ5RtGR Xse/Urkl9WMO+Vmb99S+NyRrRQu9qO9ZEU4GYGJJUZUnkXnJldu+irdMmpFj+mgX IZ+Ohjieg1G+CV+m5X7FEjdtabeT/+vPMBpMbRtgGJIxbtWDH8qn5aC0fsjLV94r lMY8/Xezp6/tLB6hf9RTipp3dOiXjkPb3Or7IDhAdZNSvvp4ZRIUw4Gq8qlGd/4/ K+gcUwQWy5jJg1DQLIiC2LGjoQIDAQABo4ICjjCCAoowHQYDVR0OBBYEFCjHll7q BqaetzR/WCVi19qYZ3NNMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE2MjMvRDMxNjdGMEEwNjBDMTFFQ0FGNjc1MDQzQzRGOUFFMDIvQzYyMTI1OTZC NUZGMTFGMEEzRjZBNDFBQzRGOUFFMDIucm9hME0GCCsGAQUFBwEHAQH/BD4wPDA6 BAIAATA0AwQAmGUFMAwDBACYZRkDBAKYZRgDBACYZSADBACYZTIDBACYZa4wDAME AJhluQMEAJhlujANBgkqhkiG9w0BAQsFAAOCAQEAEyWIj2Dw1qbPX2r+kD6UPhSy 2u29a3nEc2PPEuw5hmuSILbXuYpToAE6AcJYOqfiyIDXEkg9gg+ELMV8nmTyJA+i /H09+cv1RGRn/hyc6JTXwK3NRxPsl391Bvn/j54UHm9O5SGQEGqqGEKQtYBijUiG 6ImJKWvEloUHkSn/k/J3kg74kG6/3lrKPRHE2qe3vQL9sUC6wiKS546numQbHOg6 +UNt8hGTpXApSZ0DroHFd5jLVLMpwLN3S2bMMrgBwc/DSZLraPBKJFfAuWKI89nH IB3dHCN5Dg8EJE9G4GcqJP9TlKIX8JHWxa0+fYUMYBg4mmCGqA/t3KuixezSQA== -----END CERTIFICATE-----Generated at Mon Mar 2 03:43:35 2026 by rpki-client