$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/53AEC77E8C7511F0BEEC137FC4F9AE02.roa File: 53AEC77E8C7511F0BEEC137FC4F9AE02.roa (raw, json) Hash identifier: TEkM5L9gYDSbXl7l7QCjyJ+tRJyP8a0ZBB6nUCwEyKY= Subject key identifier: D2:EA:AA:D0:C8:6B:C7:15:77:2B:A7:B7:52:6A:9F:16:C5:8D:CE:96 Certificate issuer: /CN=A91FB4F7/serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Certificate serial: 5A Authority key identifier: AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/53AEC77E8C7511F0BEEC137FC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:29:40 +0000 ROA not before: Mon 08 Sep 2025 05:33:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9348 IP address blocks: 136.154.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB4F7, serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Validity Not Before: Sep 8 05:33:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3dcd4-9de5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:44:74:d5:0d:bd:3d:63:3e:21:2d:4c:51:34: 95:6e:bd:74:29:51:82:30:d9:1f:48:39:93:0c:1a: ba:65:ff:24:8e:7a:ee:44:f4:7d:fd:9f:2c:bb:9f: 32:63:12:d3:1c:da:3b:37:a0:e3:76:c4:c0:96:21: 28:4f:0e:d2:31:62:4c:66:8f:41:97:9c:92:58:b0: 97:45:5f:7f:1f:be:eb:88:0b:a5:87:68:71:bf:3a: 3a:fd:05:6d:10:1d:21:ce:58:08:40:41:15:9a:2c: 68:40:03:ca:f2:e7:aa:a9:5e:d1:a1:a8:96:8e:01: 86:9d:4e:b5:d3:7b:d1:7d:73:5c:2a:10:ba:bf:e8: 47:32:95:d8:27:fd:4f:bf:24:17:93:b9:98:c9:11: 29:44:79:5c:69:5b:36:49:36:37:ea:31:ab:65:a3: d1:33:b5:d6:8a:50:b1:99:4a:69:ec:27:1f:64:d9: d3:3d:3d:73:69:32:88:16:32:64:e5:f0:96:49:f1: 0a:27:cc:ca:01:16:bb:99:9f:c8:0c:43:b9:53:20: 5e:5a:a4:55:b3:a8:50:ac:c3:55:9d:2c:db:27:1d: cc:11:cd:fb:2b:fa:f3:93:41:f6:57:bc:56:95:04: ad:42:4e:8d:98:00:e0:35:14:c8:d8:2d:e0:0e:b1: ae:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:EA:AA:D0:C8:6B:C7:15:77:2B:A7:B7:52:6A:9F:16:C5:8D:CE:96 X509v3 Authority Key Identifier: keyid:AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/53AEC77E8C7511F0BEEC137FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 136.154.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:20:45:2a:d2:ea:bc:a0:86:1e:1d:9f:cd:dc:6a:28:4c:2e: 8c:aa:8f:1a:28:95:2e:b4:a4:6a:12:fa:9b:f0:e1:8e:9e:44: 4f:7a:bd:37:2a:6f:de:9f:20:14:4e:97:83:94:0c:9f:83:89: 26:31:34:e8:ca:a3:25:e0:97:62:1f:4a:cf:3a:ee:10:bc:18: 88:41:63:8b:45:0e:dc:21:85:6e:ec:3c:a0:be:0f:08:24:98: a4:be:65:0e:d8:7f:6f:9f:0b:52:01:83:e7:b1:dd:38:72:87: 18:6d:66:9f:2d:05:cc:f5:b5:a2:03:ce:af:64:a2:9a:28:e6: 49:eb:87:39:de:18:12:1b:95:af:ce:f2:17:31:8c:43:87:6a: c4:7c:c2:53:1f:8b:9b:c3:4f:95:14:46:42:0c:63:7e:81:0c: c4:8d:ec:0b:2a:7a:52:4e:63:91:ef:ef:9c:d9:f8:71:85:e9: 56:03:51:75:23:cd:3e:2b:8c:d5:7f:94:f9:c8:b4:f1:e3:b7: 02:c8:cd:ef:7d:62:14:38:ee:14:6d:52:ea:c2:bd:99:7a:2d: 83:6b:27:b4:b6:9d:d2:94:8b:3f:ba:7d:64:34:07:1d:a7:27: 87:93:c3:b0:90:b2:eb:d0:2a:12:4d:c1:b8:39:6a:44:db:0c: 9a:67:09:2c -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjRGNzExMC8GA1UEBRMoQUM3Q0QxNjM2OUQ3MERBNjY3NTk5REEzNjhFMjAyNDI0 OUNCMDJGQzAeFw0yNTA5MDgwNTMzMTlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkY2Q0LTlkZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChRHTVDb09Yz4hLUxRNJVuvXQpUYIw2R9IOZMMGrpl/ySOeu5E9H39nyy7nzJj EtMc2js3oON2xMCWIShPDtIxYkxmj0GXnJJYsJdFX38fvuuIC6WHaHG/Ojr9BW0Q HSHOWAhAQRWaLGhAA8ry56qpXtGhqJaOAYadTrXTe9F9c1wqELq/6Ecyldgn/U+/ JBeTuZjJESlEeVxpWzZJNjfqMatlo9EztdaKULGZSmnsJx9k2dM9PXNpMogWMmTl 8JZJ8QonzMoBFruZn8gMQ7lTIF5apFWzqFCsw1WdLNsnHcwRzfsr+vOTQfZXvFaV BK1CTo2YAOA1FMjYLeAOsa7bAgMBAAGjggJfMIICWzAdBgNVHQ4EFgQU0uqq0Mhr xxV3K6e3UmqfFsWNzpYwHwYDVR0jBBgwFoAUrHzRY2nXDaZnWZ2jaOICQknLAvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNEY3LzEyQkFCODk2OEM2 RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFabldaMmphT0lDUWtuTEF2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvckh6UlkyblhEYVpuV1oyamFPSUNRa25MQXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjRGNy8xMkJBQjg5NjhDNkYxMUYwQkMwM0E4MjhDNEY5QUUwMi81M0FFQzc3RThD NzUxMUYwQkVFQzEzN0ZDNEY5QUUwMi5yb2EwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwCImjANBgkqhkiG9w0BAQsFAAOCAQEA0CBFKtLqvKCGHh2fzdxqKEwu jKqPGiiVLrSkahL6m/Dhjp5ET3q9Nypv3p8gFE6Xg5QMn4OJJjE06MqjJeCXYh9K zzruELwYiEFji0UO3CGFbuw8oL4PCCSYpL5lDth/b58LUgGD57HdOHKHGG1mny0F zPW1ogPOr2SimijmSeuHOd4YEhuVr87yFzGMQ4dqxHzCUx+Lm8NPlRRGQgxjfoEM xI3sCyp6Uk5jke/vnNn4cYXpVgNRdSPNPiuM1X+U+ci08eO3AsjN731iFDjuFG1S 6sK9mXotg2sntLad0pSLP7p9ZDQHHacnh5PDsJCy69AqEk3BuDlqRNsMmmcJLA== -----END CERTIFICATE-----Generated at Mon Mar 2 05:31:11 2026 by rpki-client