$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/5D563164AF3411EFB5B51A57C4F9AE02.roa File: 5D563164AF3411EFB5B51A57C4F9AE02.roa (raw, json) Hash identifier: QAfeG31AUJ9ysS7/jFhyhx6FaI+gxOiP1E4c7gwnNZ4= Subject key identifier: 15:FC:73:4D:CD:74:D7:09:F8:E6:7C:B5:41:03:88:C9:D2:19:C7:B5 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 10C8 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/5D563164AF3411EFB5B51A57C4F9AE02.roa Signing time: Fri 20 Mar 2026 08:19:01 +0000 ROA not before: Fri 20 Mar 2026 08:19:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9498 IP address blocks: 128.185.0.0/16 maxlen: 24 152.52.0.0/16 maxlen: 24 157.85.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4296 (0x10c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Mar 20 08:19:01 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69bd02f5-36d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4c:94:10:39:f1:4d:09:95:09:f9:b0:ec:63: f1:c6:37:31:3a:b8:a7:0e:e3:ad:41:3f:15:f9:d2: 86:af:d5:45:3c:48:f7:1c:41:2d:58:a1:11:91:5f: dc:de:14:df:00:26:74:aa:ed:52:79:60:32:44:42: 57:f2:2d:ef:0d:7d:0c:c3:0e:a9:8a:02:5c:d8:64: b4:58:33:b0:4b:ac:73:74:8e:97:0f:c4:56:50:e6: a8:94:94:1d:05:28:23:0d:57:55:2c:5a:ef:15:fa: 78:83:ba:98:8d:dd:6e:b1:98:e1:0a:26:02:7c:18: 7c:b2:c0:a7:a3:b8:e0:7f:2f:1b:e1:23:f8:1a:bb: d8:02:44:e1:68:1c:8e:16:49:37:e0:db:21:a7:96: c7:35:7a:4a:e5:3e:cf:e7:cf:6a:f8:4f:96:47:06: 55:20:b6:d2:14:e6:44:22:3b:a3:31:c5:6a:44:4a: bd:86:64:be:13:99:18:00:5f:09:02:4c:d3:b5:85: 83:cd:62:09:f8:c0:6e:be:11:e0:51:f2:70:7c:db: ba:d1:27:1f:ac:91:56:c9:d3:61:08:ec:a9:ff:3f: b9:10:30:f7:e7:c9:bb:1d:60:01:a1:2a:fa:be:1f: 35:e3:89:9d:ed:22:a8:9d:f4:cb:f1:a6:e7:c7:c7: cc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:FC:73:4D:CD:74:D7:09:F8:E6:7C:B5:41:03:88:C9:D2:19:C7:B5 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/5D563164AF3411EFB5B51A57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 128.185.0.0/16 152.52.0.0/16 157.85.0.0/19 Signature Algorithm: sha256WithRSAEncryption 4b:08:11:0a:9a:37:bb:83:8e:06:e1:a7:48:f7:38:33:2e:8d: 3c:ec:eb:d0:42:3f:06:e5:fe:68:b0:9b:f6:66:26:cf:e2:15: 2d:a4:f4:59:76:ab:89:f1:ee:ea:97:57:2a:eb:72:01:9d:17: 49:16:c8:a8:40:e3:d8:a7:39:5e:b3:87:89:4e:16:11:67:4a: af:fa:d7:d2:e2:ac:b7:fe:77:c3:ca:87:25:69:92:47:96:06: 11:9b:93:1a:0b:b9:aa:c5:38:b5:d7:26:27:a2:3b:1c:59:3c: 02:69:46:b0:0d:af:3e:58:4f:40:e8:4a:39:c3:b0:a9:af:b0: 5f:de:14:e9:95:b6:3b:06:7e:56:79:45:dc:88:f1:eb:13:28: 31:d8:5d:dd:07:43:05:15:12:48:8a:9d:98:7e:f0:4a:06:11: d0:b2:11:86:7a:9e:d8:1e:b7:15:71:38:82:1a:1b:a2:ee:00: b3:95:60:a2:4f:23:98:71:03:f3:2e:84:a8:e9:ec:74:6f:65: 3d:b8:64:de:77:59:b3:62:58:a4:a4:7e:9a:2f:10:c6:61:5f: 39:f0:39:ca:c5:05:99:d6:9c:e1:3d:ee:a8:64:e2:b5:3e:41: d6:41:e3:41:0c:ea:da:61:bb:14:a4:00:eb:d6:b7:f8:99:69: d4:87:1e:20 -----BEGIN CERTIFICATE----- MIIFRjCCBC6gAwIBAgICEMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjYwMzIwMDgxOTAxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJkMDJmNS0zNmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUyUEDnxTQmVCfmw7GPxxjcxOrinDuOtQT8V+dKGr9VFPEj3HEEtWKERkV/c 3hTfACZ0qu1SeWAyREJX8i3vDX0Mww6pigJc2GS0WDOwS6xzdI6XD8RWUOaolJQd BSgjDVdVLFrvFfp4g7qYjd1usZjhCiYCfBh8ssCno7jgfy8b4SP4GrvYAkThaByO Fkk34Nshp5bHNXpK5T7P589q+E+WRwZVILbSFOZEIjujMcVqREq9hmS+E5kYAF8J AkzTtYWDzWIJ+MBuvhHgUfJwfNu60ScfrJFWydNhCOyp/z+5EDD358m7HWABoSr6 vh8144md7SKonfTL8abnx8fMtQIDAQABo4ICajCCAmYwHQYDVR0OBBYEFBX8c03N dNcJ+OZ8tUEDiMnSGce1MB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvMkE1OTQwRjI0QkIzMTFFOUFCMTUxQzE3QzRGOUFFMDIvNUQ1NjMxNjRB RjM0MTFFRkI1QjUxQTU3QzRGOUFFMDIucm9hMCkGCCsGAQUFBwEHAQH/BBowGDAW BAIAATAQAwMAgLkDAwCYNAMEBZ1VADANBgkqhkiG9w0BAQsFAAOCAQEASwgRCpo3 u4OOBuGnSPc4My6NPOzr0EI/BuX+aLCb9mYmz+IVLaT0WXarifHu6pdXKutyAZ0X SRbIqEDj2Kc5XrOHiU4WEWdKr/rX0uKst/53w8qHJWmSR5YGEZuTGgu5qsU4tdcm J6I7HFk8AmlGsA2vPlhPQOhKOcOwqa+wX94U6ZW2OwZ+VnlF3Ijx6xMoMdhd3QdD BRUSSIqdmH7wSgYR0LIRhnqe2B63FXE4ghobou4As5Vgok8jmHED8y6EqOnsdG9l Pbhk3ndZs2JYpKR+mi8QxmFfOfA5ysUFmdac4T3uqGTitT5B1kHjQQzq2mG7FKQA 69a3+Jlp1IceIA== -----END CERTIFICATE-----Generated at Fri Mar 27 01:13:38 2026 by rpki-client