$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa File: A0DEDD52FDF811EEA4D57274C4F9AE02.roa (raw, json) Hash identifier: hT0A2KRW/3QOLTyxBn8Un7aA6iluT3rc/l0TDSw8688= Subject key identifier: 53:D6:9C:AA:42:2E:FA:38:61:CB:93:5B:6A:E7:48:CD:BC:4A:9A:91 Certificate issuer: /CN=A91BEBE9/serialNumber=0FAB4EF9828F4AF267C16D8AD4710A8EEC9BBBAE Certificate serial: 0214 Authority key identifier: 0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:00:29 +0000 ROA not before: Sun 29 Jun 2025 02:50:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 217.10.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 02:14:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBE9, serialNumber=0FAB4EF9828F4AF267C16D8AD4710A8EEC9BBBAE Validity Not Before: Jun 29 02:50:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a4386d-4c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d5:48:16:ef:eb:20:40:2d:ba:a7:25:4d:d0: 5a:97:db:d6:24:94:db:23:b2:68:3c:11:b3:3b:cc: b7:f4:89:19:ff:13:8b:8d:9a:10:44:34:0b:bc:ef: e7:d6:d8:17:c6:89:2b:02:f3:db:70:0c:49:35:87: 25:f7:df:83:2d:10:ad:e5:59:04:8e:52:5e:14:10: f2:e6:6c:04:cd:a9:27:a9:ee:50:0a:7b:13:08:72: e0:05:f8:bd:49:da:ae:05:6f:ef:6d:2e:ec:a3:f4: 78:e8:51:28:8c:8c:c7:08:c9:74:5b:dd:b5:0e:b7: 9e:35:cc:5e:ac:65:c6:e6:4b:25:d9:13:a1:ab:2a: 1d:02:a8:b1:bc:98:8c:e4:aa:1e:be:10:fe:b4:01: 07:69:dc:a8:5a:ae:ac:f4:5f:53:2a:a1:76:09:d1: 54:64:63:f9:50:65:08:ca:15:d9:2c:b3:e9:70:7d: 86:84:cc:b6:dc:a6:3b:24:6f:e8:01:3f:13:7e:3c: cd:51:27:98:cb:94:50:86:a9:ab:01:56:f6:28:f9: 7a:46:08:26:ce:d4:94:6e:a2:16:f8:db:28:a9:84: 02:39:da:f4:1f:68:2a:fb:d6:41:a4:fe:83:77:bb: 68:b6:fe:c1:f1:95:e7:46:d2:d8:e2:18:04:fa:c9: 92:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D6:9C:AA:42:2E:FA:38:61:CB:93:5B:6A:E7:48:CD:BC:4A:9A:91 X509v3 Authority Key Identifier: keyid:0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 217.10.231.0/24 Signature Algorithm: sha256WithRSAEncryption 35:60:b1:83:77:de:86:06:1a:22:ba:96:1d:bc:90:6a:d1:25: 3e:06:3e:c9:79:41:d2:34:03:2e:4c:53:a6:7b:a8:95:5e:3f: e3:3a:51:bb:ed:a0:a8:08:b1:45:17:17:97:5e:16:74:e7:e1: 71:81:b8:39:19:d3:23:fd:dc:e6:00:95:ea:d8:fa:92:d6:29: da:fa:e3:a6:6d:7b:de:a8:4d:47:cb:25:38:15:b1:47:64:d1: b4:dd:8f:a8:67:78:82:4c:60:c9:70:99:59:06:57:18:1b:05: f5:c2:ed:15:58:4d:ba:1d:11:af:73:55:a7:73:65:01:c0:6a: f2:60:e6:86:a6:a2:d2:d6:2a:a6:0d:e6:42:fb:39:c9:88:66: 87:d9:a0:5e:85:1e:11:11:11:b8:85:ce:76:f3:94:28:dd:c4: 8f:e7:cf:c0:5a:a4:78:48:3a:56:ac:ea:ee:ff:4c:25:79:98: fc:c6:db:e8:8a:9a:e3:a2:b9:a7:07:29:96:4e:87:62:33:97: d2:1b:33:d1:fb:f5:79:27:9c:3e:85:fc:83:b8:48:c0:1c:0c: 67:48:57:63:fe:f1:7d:e9:fd:5a:97:7f:2a:23:9a:58:b5:ba: e8:68:57:78:06:77:c0:19:f3:99:59:3d:8f:24:0e:90:9d:a6: af:b3:2e:32 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCRTkxMTAvBgNVBAUTKDBGQUI0RUY5ODI4RjRBRjI2N0MxNkQ4QUQ0NzEwQThF RUM5QkJCQUUwHhcNMjUwNjI5MDI1MDQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mzg2ZC00YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tVIFu/rIEAtuqclTdBal9vWJJTbI7JoPBGzO8y39IkZ/xOLjZoQRDQLvO/n 1tgXxokrAvPbcAxJNYcl99+DLRCt5VkEjlJeFBDy5mwEzaknqe5QCnsTCHLgBfi9 SdquBW/vbS7so/R46FEojIzHCMl0W921DreeNcxerGXG5ksl2ROhqyodAqixvJiM 5KoevhD+tAEHadyoWq6s9F9TKqF2CdFUZGP5UGUIyhXZLLPpcH2GhMy23KY7JG/o AT8TfjzNUSeYy5RQhqmrAVb2KPl6RggmztSUbqIW+NsoqYQCOdr0H2gq+9ZBpP6D d7totv7B8ZXnRtLY4hgE+smShQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFPWnKpC Lvo4YcuTW2rnSM28SpqRMB8GA1UdIwQYMBaAFA+rTvmCj0ryZ8FtitRxCo7sm7uu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJFOS85NEM5Qjg3ODAw NUQxMUVFQkU3QTkyNDFDNEY5QUUwMi9ENnRPLVlLUFN2Sm53VzJLMUhFS2p1eWJ1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q2dE8tWUtQU3ZKbndXMksxSEVLanV5YnU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCRTkvOTRDOUI4NzgwMDVEMTFFRUJFN0E5MjQxQzRGOUFFMDIvQTBERURENTJG REY4MTFFRUE0RDU3Mjc0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA2QrnMA0GCSqGSIb3DQEBCwUAA4IBAQA1YLGDd96GBhoiupYdvJBq 0SU+Bj7JeUHSNAMuTFOme6iVXj/jOlG77aCoCLFFFxeXXhZ05+Fxgbg5GdMj/dzm AJXq2PqS1ina+uOmbXveqE1HyyU4FbFHZNG03Y+oZ3iCTGDJcJlZBlcYGwX1wu0V WE26HRGvc1Wnc2UBwGryYOaGpqLS1iqmDeZC+znJiGaH2aBehR4RERG4hc5285Qo 3cSP58/AWqR4SDpWrOru/0wleZj8xtvoiprjormnBymWTodiM5fSGzPR+/V5J5w+ hfyDuEjAHAxnSFdj/vF96f1al38qI5pYtbroaFd4BnfAGfOZWT2PJA6Qnaavsy4y -----END CERTIFICATE-----Generated at Thu Mar 26 01:53:24 2026 by rpki-client