$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/4489B3E24A7211F1B530687DA4833773.roa File: 4489B3E24A7211F1B530687DA4833773.roa (raw, json) Hash identifier: z1GCTMSeoTtl53x96HnbdQo08ptkoWQBqW55fFm8zso= Subject key identifier: A8:B5:23:2B:75:D8:DA:E9:E8:00:BE:69:23:8E:4A:B7:5A:65:29:5B Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: BC Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/4489B3E24A7211F1B530687DA4833773.roa Signing time: Tue 12 May 2026 15:21:16 +0000 ROA not before: Tue 12 May 2026 15:21:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9304 IP address blocks: 74.52.0.0/24 maxlen: 24 74.52.7.0/24 maxlen: 24 74.52.8.0/22 maxlen: 22 74.52.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 20:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: May 12 15:21:16 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a03456b-f70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:db:4a:04:97:02:bc:f2:99:dd:94:bc:41:b8: 33:58:12:4f:72:cc:f7:67:c4:7c:24:05:0d:1c:d1: f8:b8:e1:b5:5b:c9:61:17:bc:fa:d5:90:2c:54:f9: 06:f8:10:74:a8:fe:e6:16:9a:e8:e0:05:33:b1:0b: e1:b8:83:93:97:55:4f:26:46:9c:ea:f7:bc:f9:15: 1d:0e:d6:36:f1:2c:45:ad:be:dc:92:6b:0c:4a:8d: 9a:f0:12:99:74:81:02:88:af:49:d8:de:5e:75:c7: e2:a5:a6:67:ea:e6:e7:88:c3:3c:d2:e5:f3:ca:d6: 22:5c:6e:3a:29:a9:b6:33:9f:f6:75:37:12:1d:12: 36:19:ab:05:16:e4:a1:f6:53:3c:72:1e:e6:43:f6: df:c5:6e:3c:45:77:c0:83:81:95:80:8d:bb:84:55: 22:9d:c8:ab:b5:fc:ac:9e:b7:a0:73:9f:4c:f5:97: 0c:31:72:1a:59:fc:bc:aa:4b:bc:1e:80:8c:d8:31: b8:36:d7:76:35:ad:ee:7c:70:da:a3:46:5c:c3:d7: 2d:6a:25:4c:36:ad:03:a8:33:49:15:4d:04:1b:b4: 9c:85:cc:27:aa:3b:e2:9d:17:19:95:78:54:ec:1c: f5:fd:3f:58:b4:03:b0:2b:3e:2f:19:9e:c0:62:1b: 02:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:B5:23:2B:75:D8:DA:E9:E8:00:BE:69:23:8E:4A:B7:5A:65:29:5B X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/4489B3E24A7211F1B530687DA4833773.roa sbgp-ipAddrBlock: critical IPv4: 74.52.0.0/24 74.52.7.0-74.52.11.255 74.52.15.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:c4:24:cc:2f:99:fe:55:2f:52:b2:cc:2b:c1:6c:f4:02:03: 1f:c5:11:7a:fc:27:cb:fc:73:dd:b3:9b:68:1e:52:d1:e2:4e: 62:5a:70:cd:74:00:e6:02:e0:75:0c:15:95:5e:3d:1d:8e:da: 82:48:ea:3d:54:72:f9:39:cf:45:b4:b8:ee:37:97:a7:61:93: fb:fe:ab:f1:a0:b5:55:f1:5a:a5:fa:01:3f:60:aa:89:4b:6c: 4e:44:4d:a0:4b:b3:4c:e0:a6:be:eb:55:cd:d1:83:c0:a6:47: 15:20:6f:f9:f8:05:25:5a:ca:ab:5d:20:13:1a:5d:59:1e:3a: 8c:8f:bf:43:a0:d8:ed:45:64:9e:b2:75:26:0a:f7:be:c1:57: 1d:d1:8a:9b:16:c6:8a:0a:f5:45:de:82:ec:94:d1:3f:63:6d: 4c:f9:db:7f:39:3f:9e:99:a6:9d:3e:03:0e:e9:a1:f8:7b:83: 19:0c:23:49:42:6d:a6:5e:70:26:2c:85:44:c0:4d:89:04:65: 7e:eb:a2:84:de:d6:21:5b:81:3f:0b:23:7e:fc:63:05:6f:5e: 39:d4:01:a4:42:bf:b4:5d:8f:77:ab:86:4b:4d:51:4d:83:c2: 9e:82:5c:b0:ec:88:11:b3:4a:29:15:45:09:c8:6b:d9:73:be: 6c:77:27:24 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4RTcxMTAvBgNVBAUTKDNENjIxNkQ1NUNCNTRGQzlCNTcwRjlGMjVGOUFERDBG Mzc2OUI0REUwHhcNMjYwNTEyMTUyMTE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTAzNDU2Yi1mNzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjdtKBJcCvPKZ3ZS8QbgzWBJPcsz3Z8R8JAUNHNH4uOG1W8lhF7z61ZAsVPkG +BB0qP7mFpro4AUzsQvhuIOTl1VPJkac6ve8+RUdDtY28SxFrb7ckmsMSo2a8BKZ dIECiK9J2N5edcfipaZn6ubniMM80uXzytYiXG46Kam2M5/2dTcSHRI2GasFFuSh 9lM8ch7mQ/bfxW48RXfAg4GVgI27hFUincirtfysnregc59M9ZcMMXIaWfy8qku8 HoCM2DG4Ntd2Na3ufHDao0Zcw9ctaiVMNq0DqDNJFU0EG7SchcwnqjvinRcZlXhU 7Bz1/T9YtAOwKz4vGZ7AYhsC5QIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFKi1Iyt1 2Nrp6AC+aSOOSrdaZSlbMB8GA1UdIwQYMBaAFD1iFtVctU/JtXD58l+a3Q83abTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzhFNy9DNjJCMjk4Njkz NDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi9QV0lXMVZ5MVQ4bTFjUG55WDVyZER6ZHB0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4RTcvQzYyQjI5ODY5MzQyMTFGMEE5ODc3ODNCQzRGOUFFMDIvNDQ4OUIzRTI0 QTcyMTFGMUI1MzA2ODdEQTQ4MzM3NzMucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQASjQAMAwDBABKNAcDBAJKNAgDBABKNA8wDQYJKoZIhvcNAQELBQAD ggEBAI/EJMwvmf5VL1KyzCvBbPQCAx/FEXr8J8v8c92zm2geUtHiTmJacM10AOYC 4HUMFZVePR2O2oJI6j1Ucvk5z0W0uO43l6dhk/v+q/GgtVXxWqX6AT9gqolLbE5E TaBLs0zgpr7rVc3Rg8CmRxUgb/n4BSVayqtdIBMaXVkeOoyPv0Og2O1FZJ6ydSYK 977BVx3RipsWxooK9UXeguyU0T9jbUz52385P56Zpp0+Aw7pofh7gxkMI0lCbaZe cCYshUTATYkEZX7rooTe1iFbgT8LI378YwVvXjnUAaRCv7Rdj3erhktNUU2Dwp6C XLDsiBGzSikVRQnIa9lzvmx3JyQ= -----END CERTIFICATE-----Generated at Wed May 13 13:44:29 2026 by rpki-client