$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB9EF/878723E6C84F11F08BEBCD0BC4F9AE02/E57517B0C84F11F0B9AA990CC4F9AE02.roa File: E57517B0C84F11F0B9AA990CC4F9AE02.roa (raw, json) Hash identifier: PoRqLZ1iDKniKKiDSN0IaMYeEcnEhdUqkDtLadUJ/NE= Subject key identifier: A8:AE:D3:0C:09:3A:EC:01:9E:1D:FF:9B:BD:F2:48:38:6C:1E:F6:CE Certificate issuer: /CN=A91BB9EF/serialNumber=34F4676C0663839147973D4C869B49DC8C6640F3 Certificate serial: 38 Authority key identifier: 34:F4:67:6C:06:63:83:91:47:97:3D:4C:86:9B:49:DC:8C:66:40:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPRnbAZjg5FHlz1MhptJ3IxmQPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB9EF/878723E6C84F11F08BEBCD0BC4F9AE02/E57517B0C84F11F0B9AA990CC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:33:38 +0000 ROA not before: Sun 23 Nov 2025 09:37:16 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154269 IP address blocks: 43.248.254.0/23 maxlen: 24 2001:df6:2740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB9EF/878723E6C84F11F08BEBCD0BC4F9AE02/NPRnbAZjg5FHlz1MhptJ3IxmQPM.crl rsync://rpki.apnic.net/member_repository/A91BB9EF/878723E6C84F11F08BEBCD0BC4F9AE02/NPRnbAZjg5FHlz1MhptJ3IxmQPM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPRnbAZjg5FHlz1MhptJ3IxmQPM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB9EF, serialNumber=34F4676C0663839147973D4C869B49DC8C6640F3 Validity Not Before: Nov 23 09:37:16 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a59fc2-a9c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:09:5f:70:a1:d1:58:52:d3:61:10:13:f0:0a: fe:84:bc:0b:fb:d4:15:5f:40:bc:a8:95:a9:f3:6c: 8a:aa:b2:42:61:7c:e8:52:d3:6a:c5:ac:96:87:4a: 80:34:92:c9:68:88:1f:87:51:ee:4f:4f:f4:70:20: 64:7f:ab:2c:ea:c0:2f:77:20:c7:20:73:bb:a7:58: 9f:01:89:e1:96:d6:7a:c8:40:03:d0:58:74:8d:de: 8c:31:da:14:7a:65:48:60:76:9e:73:d4:eb:3f:86: 5a:94:d8:2d:08:02:e6:97:1c:f8:ba:f1:97:5e:4d: 32:e7:f7:47:1e:74:e5:35:ce:ca:c9:46:9d:81:72: 25:d8:ab:45:3d:5e:cd:6f:7b:e9:51:47:89:8e:63: b5:0d:41:be:2a:ba:98:81:85:53:e2:b8:2f:49:70: 30:bb:4d:03:99:80:cc:89:95:9e:5f:16:dd:19:14: 4a:5d:81:5e:5a:53:8c:2a:e8:96:7b:3e:b0:92:68: b2:81:ac:a3:20:05:fc:7e:95:97:92:ea:65:14:f6: 8e:27:23:9d:a0:90:37:2b:7c:19:7c:fb:74:50:18: b6:eb:4a:3b:7a:93:db:84:cf:9a:f6:79:1e:8d:b8: 0e:1d:50:c9:f2:f3:bc:b3:f2:cb:d4:25:9d:10:6f: b9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:AE:D3:0C:09:3A:EC:01:9E:1D:FF:9B:BD:F2:48:38:6C:1E:F6:CE X509v3 Authority Key Identifier: keyid:34:F4:67:6C:06:63:83:91:47:97:3D:4C:86:9B:49:DC:8C:66:40:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB9EF/878723E6C84F11F08BEBCD0BC4F9AE02/NPRnbAZjg5FHlz1MhptJ3IxmQPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NPRnbAZjg5FHlz1MhptJ3IxmQPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB9EF/878723E6C84F11F08BEBCD0BC4F9AE02/E57517B0C84F11F0B9AA990CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.248.254.0/23 IPv6: 2001:df6:2740::/48 Signature Algorithm: sha256WithRSAEncryption 94:25:7d:5e:02:5f:89:55:d8:30:80:98:fc:67:0f:cc:e2:f6: ac:c4:93:51:aa:74:f3:29:8b:6b:16:61:07:68:95:58:c9:3e: 57:20:9b:81:d9:af:af:e3:1d:0a:61:ab:d7:4f:a7:82:8f:50: ba:75:2d:ca:f2:f1:58:41:d4:3d:cb:7a:2b:f1:eb:ab:c6:5b: 86:dd:81:15:86:93:c4:f2:0b:95:b4:4b:36:fa:8d:b4:8c:77: e8:b3:bb:08:24:64:8a:0e:c9:b1:a6:48:75:ab:9b:76:22:1c: 48:85:6c:82:68:f4:3a:c2:cc:44:c0:17:6f:23:6a:90:1c:0b: 2e:32:6e:76:bd:04:d6:76:56:ac:25:79:d9:46:f2:de:8b:f2: c8:3d:8b:d9:6a:e7:ab:5e:e2:ef:82:92:3b:3c:8d:33:cb:23: d6:b9:d2:62:8d:5d:df:12:c6:dc:c5:2f:f8:5b:69:f1:f8:46: dd:80:90:c5:40:86:de:09:ce:48:17:b6:ce:fd:1b:7d:ec:02: dc:8d:5d:88:0a:8e:20:1d:a8:79:20:ac:cc:a5:e7:49:24:02: 89:4f:29:d8:51:24:24:b2:5b:43:d6:85:ba:cd:16:9d:35:d8: 99:60:45:3c:52:95:d8:79:ed:57:8d:e7:59:63:e0:c0:d3:5b: 8b:f4:af:7a -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjlFRjExMC8GA1UEBRMoMzRGNDY3NkMwNjYzODM5MTQ3OTczRDRDODY5QjQ5REM4 QzY2NDBGMzAeFw0yNTExMjMwOTM3MTZaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5ZmMyLWE5YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeCV9wodFYUtNhEBPwCv6EvAv71BVfQLyolanzbIqqskJhfOhS02rFrJaHSoA0 ksloiB+HUe5PT/RwIGR/qyzqwC93IMcgc7unWJ8BieGW1nrIQAPQWHSN3owx2hR6 ZUhgdp5z1Os/hlqU2C0IAuaXHPi68ZdeTTLn90cedOU1zsrJRp2BciXYq0U9Xs1v e+lRR4mOY7UNQb4qupiBhVPiuC9JcDC7TQOZgMyJlZ5fFt0ZFEpdgV5aU4wq6JZ7 PrCSaLKBrKMgBfx+lZeS6mUU9o4nI52gkDcrfBl8+3RQGLbrSjt6k9uEz5r2eR6N uA4dUMny87yz8svUJZ0Qb7mvAgMBAAGjggJxMIICbTAdBgNVHQ4EFgQUqK7TDAk6 7AGeHf+bvfJIOGwe9s4wHwYDVR0jBBgwFoAUNPRnbAZjg5FHlz1MhptJ3IxmQPMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCOUVGLzg3ODcyM0U2Qzg0 RjExRjA4QkVCQ0QwQkM0RjlBRTAyL05QUm5iQVpqZzVGSGx6MU1ocHRKM0l4bVFQ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTlBSbmJBWmpnNUZIbHoxTWhwdEozSXhtUVBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjlFRi84Nzg3MjNFNkM4NEYxMUYwOEJFQkNEMEJDNEY5QUUwMi9FNTc1MTdCMEM4 NEYxMUYwQjlBQTk5MENDNEY5QUUwMi5yb2EwMAYIKwYBBQUHAQcBAf8EITAfMAwE AgABMAYDBAEr+P4wDwQCAAIwCQMHACABDfYnQDANBgkqhkiG9w0BAQsFAAOCAQEA lCV9XgJfiVXYMICY/GcPzOL2rMSTUap08ymLaxZhB2iVWMk+VyCbgdmvr+MdCmGr 10+ngo9QunUtyvLxWEHUPct6K/Hrq8Zbht2BFYaTxPILlbRLNvqNtIx36LO7CCRk ig7JsaZIdaubdiIcSIVsgmj0OsLMRMAXbyNqkBwLLjJudr0E1nZWrCV52Uby3ovy yD2L2Wrnq17i74KSOzyNM8sj1rnSYo1d3xLG3MUv+Ftp8fhG3YCQxUCG3gnOSBe2 zv0bfewC3I1diAqOIB2oeSCszKXnSSQCiU8p2FEkJLJbQ9aFus0WnTXYmWBFPFKV 2HntV43nWWPgwNNbi/Sveg== -----END CERTIFICATE-----Generated at Fri Mar 27 04:47:41 2026 by rpki-client