$ rpki-client -vvf rpki.apnic.net/member_repository/A91133DE/169A838C1D0211F19BF09361033D8C67/3E65AB521D0311F1B8948CF0043D8C67.roa File: 3E65AB521D0311F1B8948CF0043D8C67.roa (raw, json) Hash identifier: sHNfG7PUkGQvb8cZheQ91puxBDfj8TkMgmzZhYPjhpA= Subject key identifier: F0:18:05:9B:AE:8C:52:08:C4:01:75:85:3A:B3:0A:0A:E6:E5:21:1C Certificate issuer: /CN=A91133DE/serialNumber=E26BF6F52D709FB36E837B9A834AC3ACC2F9B459 Certificate serial: 0B Authority key identifier: E2:6B:F6:F5:2D:70:9F:B3:6E:83:7B:9A:83:4A:C3:AC:C2:F9:B4:59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4mv29S1wn7Nug3uag0rDrML5tFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91133DE/169A838C1D0211F19BF09361033D8C67/3E65AB521D0311F1B8948CF0043D8C67.roa Signing time: Thu 26 Mar 2026 02:50:35 +0000 ROA not before: Thu 26 Mar 2026 02:50:35 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9983 IP address blocks: 144.53.0.0/16 maxlen: 16 144.53.243.0/24 maxlen: 24 144.53.244.0/24 maxlen: 24 144.53.254.0/24 maxlen: 24 144.53.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91133DE/169A838C1D0211F19BF09361033D8C67/4mv29S1wn7Nug3uag0rDrML5tFk.crl rsync://rpki.apnic.net/member_repository/A91133DE/169A838C1D0211F19BF09361033D8C67/4mv29S1wn7Nug3uag0rDrML5tFk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4mv29S1wn7Nug3uag0rDrML5tFk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 02:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91133DE, serialNumber=E26BF6F52D709FB36E837B9A834AC3ACC2F9B459 Validity Not Before: Mar 26 02:50:35 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69c49efb-6d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6f:8e:ab:2c:3d:78:2f:7c:34:66:dc:70:26: a8:f2:d6:b2:63:f4:8a:c8:b5:4f:e7:bf:c1:98:8a: f8:e4:54:44:0b:97:3f:79:e7:b8:85:e4:29:e0:48: 66:dd:a3:83:88:cf:0e:6f:b2:db:c1:a9:ef:b4:ba: 16:47:fa:8d:96:62:53:1a:f7:28:41:a0:c5:af:d2: 06:9b:9f:51:33:53:4f:7f:99:2d:07:33:df:63:eb: 40:fd:bd:64:cf:84:35:86:ac:f5:18:03:b5:20:94: c6:25:47:97:b3:f6:69:9b:6b:20:be:f4:eb:eb:d1: dc:26:f3:e7:5a:52:62:c5:9d:ea:a2:0a:9a:f6:06: dc:aa:f3:ab:31:d2:53:10:88:46:d8:c8:93:18:64: 26:e7:1a:da:63:f6:7a:94:4a:9f:9a:63:21:43:9d: af:f0:f0:26:82:f3:37:a7:a5:28:c4:b1:fb:cb:9a: b5:19:62:d6:7b:8a:23:45:1c:3c:3d:31:b0:d2:bc: 97:27:8e:9b:e5:0e:f7:b6:b6:90:5d:01:2f:a5:a1: 6d:23:fc:2b:38:bf:73:cd:d9:19:18:db:c3:17:39: 46:3e:5b:6f:79:53:e5:36:ee:e7:08:0d:27:d1:fa: 78:c7:c0:60:bc:96:ca:d2:80:27:65:88:90:db:a6: 41:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:18:05:9B:AE:8C:52:08:C4:01:75:85:3A:B3:0A:0A:E6:E5:21:1C X509v3 Authority Key Identifier: keyid:E2:6B:F6:F5:2D:70:9F:B3:6E:83:7B:9A:83:4A:C3:AC:C2:F9:B4:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91133DE/169A838C1D0211F19BF09361033D8C67/4mv29S1wn7Nug3uag0rDrML5tFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4mv29S1wn7Nug3uag0rDrML5tFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91133DE/169A838C1D0211F19BF09361033D8C67/3E65AB521D0311F1B8948CF0043D8C67.roa sbgp-ipAddrBlock: critical IPv4: 144.53.0.0/16 Signature Algorithm: sha256WithRSAEncryption a1:27:ba:bb:93:ad:d0:3b:53:7c:a8:09:c2:f5:a4:50:3e:bd: f3:08:8c:2d:04:94:79:31:f0:d1:a6:19:9b:b0:dd:d1:96:ad: a8:43:ee:ff:85:3c:5c:8a:af:81:6f:25:63:09:1d:99:a4:0f: 92:2e:58:58:bc:a1:6c:57:a8:13:43:c0:81:1d:ff:85:b1:ee: da:31:3c:32:4a:71:0b:19:c8:04:72:b1:1f:25:ac:9f:09:dd: 96:b3:76:30:a9:2f:54:49:1f:a9:59:92:94:7d:a5:8e:28:22: 9c:55:81:59:37:45:1a:50:10:f8:b6:a1:9d:4f:76:5c:1e:f2: 79:cc:4c:a4:64:28:a0:0b:c9:0d:34:b6:ac:67:1b:8b:c5:ad: c6:75:02:01:10:e6:63:b4:a7:0a:89:85:1d:d7:61:e9:8c:65: aa:30:53:b7:ea:5f:48:c6:3d:d0:88:a2:28:b5:40:8c:f3:4d: ba:e9:95:51:05:d8:30:65:30:55:3d:06:24:45:4b:79:1e:02: c0:83:9b:c0:68:0e:a2:bc:eb:5b:32:c6:be:a8:05:68:2d:7e: 14:4c:4e:68:da:07:00:f8:4a:44:9e:31:54:8e:01:3e:3d:4f: a4:8d:78:df:16:55:ad:20:33:32:c4:52:15:c6:15:e4:4c:3b: 5e:18:d4:4d -----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzNERTExMC8GA1UEBRMoRTI2QkY2RjUyRDcwOUZCMzZFODM3QjlBODM0QUMzQUND MkY5QjQ1OTAeFw0yNjAzMjYwMjUwMzVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzQ5ZWZiLTZkOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAb46rLD14L3w0ZtxwJqjy1rJj9IrItU/nv8GYivjkVEQLlz9557iF5CngSGbd o4OIzw5vstvBqe+0uhZH+o2WYlMa9yhBoMWv0gabn1EzU09/mS0HM99j60D9vWTP hDWGrPUYA7UglMYlR5ez9mmbayC+9Ovr0dwm8+daUmLFneqiCpr2Btyq86sx0lMQ iEbYyJMYZCbnGtpj9nqUSp+aYyFDna/w8CaC8zenpSjEsfvLmrUZYtZ7iiNFHDw9 MbDSvJcnjpvlDve2tpBdAS+loW0j/Cs4v3PN2RkY28MXOUY+W295U+U27ucIDSfR +njHwGC8lsrSgCdliJDbpkFDAgMBAAGjggJfMIICWzAdBgNVHQ4EFgQU8BgFm66M UgjEAXWFOrMKCublIRwwHwYDVR0jBBgwFoAU4mv29S1wn7Nug3uag0rDrML5tFkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzM0RFLzE2OUE4MzhDMUQw MjExRjE5QkYwOTM2MTAzM0Q4QzY3LzRtdjI5UzF3bjdOdWczdWFnMHJEck1MNXRG ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNG12MjlTMXduN051ZzN1YWcwckRyTUw1dEZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzNERS8xNjlBODM4QzFEMDIxMUYxOUJGMDkzNjEwMzNEOEM2Ny8zRTY1QUI1MjFE MDMxMUYxQjg5NDhDRjAwNDNEOEM2Ny5yb2EwHgYIKwYBBQUHAQcBAf8EDzANMAsE AgABMAUDAwCQNTANBgkqhkiG9w0BAQsFAAOCAQEAoSe6u5Ot0DtTfKgJwvWkUD69 8wiMLQSUeTHw0aYZm7Dd0ZatqEPu/4U8XIqvgW8lYwkdmaQPki5YWLyhbFeoE0PA gR3/hbHu2jE8MkpxCxnIBHKxHyWsnwndlrN2MKkvVEkfqVmSlH2ljiginFWBWTdF GlAQ+LahnU92XB7yecxMpGQooAvJDTS2rGcbi8WtxnUCARDmY7SnComFHddh6Yxl qjBTt+pfSMY90IiiKLVAjPNNuumVUQXYMGUwVT0GJEVLeR4CwIObwGgOorzrWzLG vqgFaC1+FExOaNoHAPhKRJ4xVI4BPj1PpI143xZVrSAzMsRSFcYV5Ew7XhjUTQ== -----END CERTIFICATE-----Generated at Thu Mar 26 22:22:27 2026 by rpki-client