$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFBAF/682B39A6C37C11F09DC5A532C4F9AE02/C6B0BA0EC37D11F0A205F578C4F9AE02.roa File: C6B0BA0EC37D11F0A205F578C4F9AE02.roa (raw, json) Hash identifier: +CmSda4T3YUnvvvrMYK818glj0vIe2epiTUr9j+GbE0= Subject key identifier: A1:FB:F7:69:E7:6E:E4:54:A0:96:AC:EF:D6:4C:E3:29:AB:A6:B5:86 Certificate issuer: /CN=A91FFBAF/serialNumber=B04DC7AB482333890C28A76575D8ADE6429C3FCB Certificate serial: 38 Authority key identifier: B0:4D:C7:AB:48:23:33:89:0C:28:A7:65:75:D8:AD:E6:42:9C:3F:CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sE3Hq0gjM4kMKKdlddit5kKcP8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFBAF/682B39A6C37C11F09DC5A532C4F9AE02/C6B0BA0EC37D11F0A205F578C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:02:05 +0000 ROA not before: Mon 17 Nov 2025 06:22:22 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154352 IP address blocks: 138.252.180.0/23 maxlen: 23 138.252.180.0/24 maxlen: 24 138.252.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFBAF/682B39A6C37C11F09DC5A532C4F9AE02/sE3Hq0gjM4kMKKdlddit5kKcP8s.crl rsync://rpki.apnic.net/member_repository/A91FFBAF/682B39A6C37C11F09DC5A532C4F9AE02/sE3Hq0gjM4kMKKdlddit5kKcP8s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sE3Hq0gjM4kMKKdlddit5kKcP8s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:55:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFBAF, serialNumber=B04DC7AB482333890C28A76575D8ADE6429C3FCB Validity Not Before: Nov 17 06:22:22 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3d65d-07ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:41:1e:e3:e6:26:fa:6d:1c:0d:ab:d1:8c:96: 31:f1:df:54:c0:40:95:24:f5:2e:9e:74:8b:8c:e6: 88:ba:7e:31:69:31:e7:87:3b:15:59:9c:79:cb:d0: d2:c6:a8:50:38:0a:5f:c8:b0:19:18:91:af:07:4d: 61:5e:03:72:c9:3d:ee:df:6f:4b:ce:12:6e:d9:9b: 7f:40:60:13:55:25:42:63:ee:37:19:b8:bb:04:8f: 24:a6:bb:f5:dc:85:5c:af:7e:fe:56:c6:c2:38:44: 95:b8:a8:0e:26:01:e9:4f:01:1f:ea:3e:39:dd:1e: 82:ab:a9:31:12:0b:53:e3:72:6e:88:7a:c0:e1:52: 41:fd:d2:0a:c8:22:4f:4b:17:31:6d:fc:cc:98:50: c9:b4:35:67:5d:b8:25:71:d2:2e:ec:c2:5e:c1:9c: cc:ac:97:8b:4c:31:91:6d:ae:66:45:3b:f0:62:d5: 1d:d5:50:5c:4e:c5:8c:c5:74:50:81:13:0a:f9:df: 59:ef:1c:3d:4e:ca:66:3e:37:90:0d:56:bf:fd:e1: 1b:34:45:39:76:cd:ab:3f:19:63:a0:bf:dd:36:9a: 81:79:a1:3b:88:e6:2f:ec:fd:92:b9:b8:2f:e3:92: 52:a7:de:cb:ab:5b:78:c4:2f:ae:10:23:7b:fb:58: 8c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:FB:F7:69:E7:6E:E4:54:A0:96:AC:EF:D6:4C:E3:29:AB:A6:B5:86 X509v3 Authority Key Identifier: keyid:B0:4D:C7:AB:48:23:33:89:0C:28:A7:65:75:D8:AD:E6:42:9C:3F:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFBAF/682B39A6C37C11F09DC5A532C4F9AE02/sE3Hq0gjM4kMKKdlddit5kKcP8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sE3Hq0gjM4kMKKdlddit5kKcP8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFBAF/682B39A6C37C11F09DC5A532C4F9AE02/C6B0BA0EC37D11F0A205F578C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.252.180.0/23 Signature Algorithm: sha256WithRSAEncryption 01:f1:aa:47:db:3f:0d:43:04:96:eb:ef:85:67:ae:f2:33:7c: fc:78:1f:e4:5e:c7:38:89:bd:75:57:d2:ee:dd:3a:41:25:a4: 26:fb:28:6d:80:ce:a2:80:40:44:5f:ea:03:00:62:55:18:39: 85:98:67:c7:61:e9:34:dc:f5:a7:ab:fb:7d:ed:ff:9d:d7:1a: 0c:fa:e4:36:07:00:54:ad:21:62:f1:df:17:c5:da:6d:0e:9f: 4f:ba:1f:45:b3:2c:cd:1c:9d:d2:e9:06:a1:87:c1:84:ce:df: fc:77:04:e5:67:6e:69:ab:0b:bc:e0:72:ad:bd:b3:ab:de:f5: 43:36:56:67:df:be:94:33:87:40:82:32:b6:ea:a9:76:d2:b4: 61:03:b6:df:51:a9:bc:65:1f:89:5b:c5:79:09:ec:cd:16:a9: d4:11:83:ee:80:9d:a1:f6:bb:2c:86:ce:2e:da:53:d2:2d:63: aa:e4:77:73:be:7c:3b:da:57:5c:b3:8f:ec:ac:a5:fd:f8:7c: e5:c0:85:29:c7:63:ce:e0:55:71:17:4e:42:f2:2e:39:4d:c3: a4:6a:a2:46:32:4e:6b:28:ac:8a:16:7a:d8:68:e2:14:78:0b: 54:42:27:18:83:97:da:50:fc:1f:73:72:a1:5c:f9:44:da:73: 86:00:13:32 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RkJBRjExMC8GA1UEBRMoQjA0REM3QUI0ODIzMzM4OTBDMjhBNzY1NzVEOEFERTY0 MjlDM0ZDQjAeFw0yNTExMTcwNjIyMjJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNjVkLTA3YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeQR7j5ib6bRwNq9GMljHx31TAQJUk9S6edIuM5oi6fjFpMeeHOxVZnHnL0NLG qFA4Cl/IsBkYka8HTWFeA3LJPe7fb0vOEm7Zm39AYBNVJUJj7jcZuLsEjySmu/Xc hVyvfv5WxsI4RJW4qA4mAelPAR/qPjndHoKrqTESC1Pjcm6IesDhUkH90grIIk9L FzFt/MyYUMm0NWdduCVx0i7swl7BnMysl4tMMZFtrmZFO/Bi1R3VUFxOxYzFdFCB Ewr531nvHD1OymY+N5ANVr/94Rs0RTl2zas/GWOgv902moF5oTuI5i/s/ZK5uC/j klKn3surW3jEL64QI3v7WIy/AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUofv3aedu 5FSglqzv1kzjKaumtYYwHwYDVR0jBBgwFoAUsE3Hq0gjM4kMKKdlddit5kKcP8sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGQkFGLzY4MkIzOUE2QzM3 QzExRjA5REM1QTUzMkM0RjlBRTAyL3NFM0hxMGdqTTRrTUtLZGxkZGl0NWtLY1A4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc0UzSHEwZ2pNNGtNS0tkbGRkaXQ1a0tjUDhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkJBRi82ODJCMzlBNkMzN0MxMUYwOURDNUE1MzJDNEY5QUUwMi9DNkIwQkEwRUMz N0QxMUYwQTIwNUY1NzhDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/LQwDQYJKoZIhvcNAQELBQADggEBAAHxqkfbPw1DBJbr74VnrvIz fPx4H+RexziJvXVX0u7dOkElpCb7KG2AzqKAQERf6gMAYlUYOYWYZ8dh6TTc9aer +33t/53XGgz65DYHAFStIWLx3xfF2m0On0+6H0WzLM0cndLpBqGHwYTO3/x3BOVn bmmrC7zgcq29s6ve9UM2VmffvpQzh0CCMrbqqXbStGEDtt9RqbxlH4lbxXkJ7M0W qdQRg+6AnaH2uyyGzi7aU9ItY6rkd3O+fDvaV1yzj+yspf34fOXAhSnHY87gVXEX TkLyLjlNw6RqokYyTmsorIoWetho4hR4C1RCJxiDl9pQ/B9zcqFc+UTac4YAEzI= -----END CERTIFICATE-----Generated at Mon Mar 2 03:49:02 2026 by rpki-client