$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD4E2/14D2E7BAAEDA11F09D43E22EC4F9AE02/D08BF898AEDA11F09093014EC4F9AE02.roa File: D08BF898AEDA11F09093014EC4F9AE02.roa (raw, json) Hash identifier: KbzUtTPtGCQ3I/N5KWpd9MwtuQNamm+9Vruv3vtMr6A= Subject key identifier: 75:BA:E3:56:A5:AA:76:B3:98:E0:4D:3B:2A:D3:AD:0A:89:FA:E8:7F Certificate issuer: /CN=A91FD4E2/serialNumber=A7F77F2047D3568C043A338C7932B0A23C8F6871 Certificate serial: 49 Authority key identifier: A7:F7:7F:20:47:D3:56:8C:04:3A:33:8C:79:32:B0:A2:3C:8F:68:71 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p_d_IEfTVowEOjOMeTKwojyPaHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD4E2/14D2E7BAAEDA11F09D43E22EC4F9AE02/D08BF898AEDA11F09093014EC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:12:37 +0000 ROA not before: Tue 04 Nov 2025 02:09:49 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154309 IP address blocks: 138.252.80.0/23 maxlen: 23 138.252.80.0/24 maxlen: 24 138.252.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD4E2/14D2E7BAAEDA11F09D43E22EC4F9AE02/p_d_IEfTVowEOjOMeTKwojyPaHE.crl rsync://rpki.apnic.net/member_repository/A91FD4E2/14D2E7BAAEDA11F09D43E22EC4F9AE02/p_d_IEfTVowEOjOMeTKwojyPaHE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p_d_IEfTVowEOjOMeTKwojyPaHE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD4E2, serialNumber=A7F77F2047D3568C043A338C7932B0A23C8F6871 Validity Not Before: Nov 4 02:09:49 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d8d5-300f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:57:31:cf:62:0c:08:d5:41:77:7b:30:bb:9d: 9f:6c:29:79:30:7b:43:4d:06:c9:dd:7c:2b:15:5c: 6d:39:11:d4:18:78:ad:86:f0:c7:33:b4:72:3e:dc: 09:fa:68:41:aa:5c:64:fb:9f:2f:2a:99:e3:ee:e3: a8:63:b3:46:02:b5:fe:a9:c0:d9:df:31:32:76:2b: a6:18:ba:43:19:52:f8:d8:4c:6c:04:c0:70:43:3e: 05:bd:e2:fb:51:c0:8a:66:4e:f4:4a:3c:c0:f4:8d: ea:2f:f2:f0:63:b1:29:96:1a:7c:de:c8:4b:a4:83: 4d:ca:ea:9d:3e:ab:67:d2:3f:3d:99:d3:36:46:22: 80:e3:40:3c:2b:80:fe:f1:ed:86:b7:19:94:3f:77: 90:61:6b:ed:fd:ba:d7:5b:fc:fa:e7:53:de:66:c9: 0a:94:79:ce:90:e3:a1:7e:7b:5e:3a:3d:11:13:ea: d9:f7:cd:15:d7:86:9b:4f:9f:24:4b:c1:ec:6b:cd: 08:9b:00:3e:28:ec:17:a1:c3:9c:11:09:69:20:d8: 95:6a:8b:19:8f:8d:08:e7:32:c6:4e:f7:dd:4e:12: 4a:0a:0b:1b:e8:9c:84:ef:21:df:94:3b:22:ab:49: e1:47:94:54:96:ba:60:57:ea:64:c0:71:1b:32:1d: 7d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BA:E3:56:A5:AA:76:B3:98:E0:4D:3B:2A:D3:AD:0A:89:FA:E8:7F X509v3 Authority Key Identifier: keyid:A7:F7:7F:20:47:D3:56:8C:04:3A:33:8C:79:32:B0:A2:3C:8F:68:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD4E2/14D2E7BAAEDA11F09D43E22EC4F9AE02/p_d_IEfTVowEOjOMeTKwojyPaHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p_d_IEfTVowEOjOMeTKwojyPaHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD4E2/14D2E7BAAEDA11F09D43E22EC4F9AE02/D08BF898AEDA11F09093014EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.80.0/23 Signature Algorithm: sha256WithRSAEncryption 83:8a:59:55:04:48:22:3a:14:57:da:ef:5a:ba:e8:51:f0:12: 8d:ca:a2:bc:07:47:15:ab:dd:41:7c:0c:77:00:75:c5:ed:ac: ab:b0:d9:f6:0f:97:2a:87:28:59:dc:40:1f:7a:a9:41:1f:27: 3f:4b:22:e9:b3:03:dc:59:73:4c:c9:b1:15:f5:4a:ab:96:73: 06:ba:b4:91:a8:6b:e4:43:30:8f:f4:d6:02:9b:50:13:dd:21: c2:0d:10:3d:d3:0f:dd:fb:b4:d6:c1:42:47:38:a9:25:2b:e4: 98:91:e0:23:05:36:42:80:54:68:51:7a:fa:7c:11:35:99:5c: c9:f8:27:fd:e2:96:26:cc:58:e7:37:cf:2a:36:8a:a0:a7:51: 55:17:2e:29:aa:60:f3:7f:02:af:ad:22:42:72:4b:48:fc:43: c5:c6:47:c0:bb:c0:62:29:73:72:b8:51:e4:c2:ad:fe:a8:64: 7a:ef:9d:b7:09:39:4e:65:a3:f3:a1:67:5f:06:e9:6d:ad:4f: 2f:9f:fa:5f:3c:fa:fb:d4:ca:1b:05:7a:04:2f:8c:6f:07:47: ad:da:4d:78:eb:30:37:83:87:04:07:14:42:7f:92:85:c1:1a: 99:65:50:b1:95:70:75:fc:53:e1:d3:0b:65:26:39:62:96:76: a3:d8:a1:49 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RDRFMjExMC8GA1UEBRMoQTdGNzdGMjA0N0QzNTY4QzA0M0EzMzhDNzkzMkIwQTIz QzhGNjg3MTAeFw0yNTExMDQwMjA5NDlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkOGQ1LTMwMGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7VzHPYgwI1UF3ezC7nZ9sKXkwe0NNBsndfCsVXG05EdQYeK2G8McztHI+3An6 aEGqXGT7ny8qmePu46hjs0YCtf6pwNnfMTJ2K6YYukMZUvjYTGwEwHBDPgW94vtR wIpmTvRKPMD0jeov8vBjsSmWGnzeyEukg03K6p0+q2fSPz2Z0zZGIoDjQDwrgP7x 7Ya3GZQ/d5Bha+39utdb/PrnU95myQqUec6Q46F+e146PRET6tn3zRXXhptPnyRL wexrzQibAD4o7Behw5wRCWkg2JVqixmPjQjnMsZO991OEkoKCxvonITvId+UOyKr SeFHlFSWumBX6mTAcRsyHX2LAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUdbrjVqWq drOY4E07KtOtCon66H8wHwYDVR0jBBgwFoAUp/d/IEfTVowEOjOMeTKwojyPaHEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZENEUyLzE0RDJFN0JBQUVE QTExRjA5RDQzRTIyRUM0RjlBRTAyL3BfZF9JRWZUVm93RU9qT01lVEt3b2p5UGFI RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcF9kX0lFZlRWb3dFT2pPTWVUS3dvanlQYUhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDRFMi8xNEQyRTdCQUFFREExMUYwOUQ0M0UyMkVDNEY5QUUwMi9EMDhCRjg5OEFF REExMUYwOTA5MzAxNEVDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/FAwDQYJKoZIhvcNAQELBQADggEBAIOKWVUESCI6FFfa71q66FHw Eo3KorwHRxWr3UF8DHcAdcXtrKuw2fYPlyqHKFncQB96qUEfJz9LIumzA9xZc0zJ sRX1SquWcwa6tJGoa+RDMI/01gKbUBPdIcINED3TD937tNbBQkc4qSUr5JiR4CMF NkKAVGhRevp8ETWZXMn4J/3ilibMWOc3zyo2iqCnUVUXLimqYPN/Aq+tIkJyS0j8 Q8XGR8C7wGIpc3K4UeTCrf6oZHrvnbcJOU5lo/OhZ18G6W2tTy+f+l88+vvUyhsF egQvjG8HR63aTXjrMDeDhwQHFEJ/koXBGpllULGVcHX8U+HTC2UmOWKWdqPYoUk= -----END CERTIFICATE-----Generated at Mon Mar 2 05:49:00 2026 by rpki-client