$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa File: 385E3308639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: 0vmeJ1iL7e6hYhnzYUSLaMYlPBJJr+kSninwLceSGqA= Subject key identifier: F0:17:A5:12:85:0A:A3:F5:29:E2:0C:A7:42:1E:95:AB:C9:3F:6C:E5 Certificate issuer: /CN=A91CA735/serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Certificate serial: 0134 Authority key identifier: BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa Signing time: Tue 17 Mar 2026 02:22:11 +0000 ROA not before: Tue 17 Mar 2026 02:22:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135102 IP address blocks: 147.124.12.0/22 maxlen: 24 160.25.254.0/23 maxlen: 24 167.254.236.0/22 maxlen: 24 192.65.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Validity Not Before: Mar 17 02:22:11 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69b8bad3-c1f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:90:ba:1e:30:53:a3:04:c2:e0:e4:7e:21:e8: 28:23:36:38:68:03:17:e6:0a:bc:23:42:37:d2:88: 0f:48:08:aa:c5:50:c3:34:be:93:9f:c4:73:86:68: 53:c8:47:f6:1e:e1:06:70:9e:26:d7:59:d4:68:5f: 7d:60:2c:54:4d:bf:26:38:07:d4:a2:96:7d:81:42: b5:21:c4:c9:f7:36:8f:22:37:cd:7b:88:68:be:f3: 1c:a7:0d:6a:86:2a:c9:d0:70:f7:b9:4e:a9:eb:23: ac:6f:45:3b:17:12:a9:5e:95:8e:5a:d7:3b:26:df: 2f:9c:20:3f:97:1d:80:ea:81:9e:f0:ec:e6:3c:4c: f7:0f:9d:69:e6:f8:4f:76:e1:ea:ef:75:11:6d:7a: 87:d9:89:27:1b:a3:e2:47:e5:33:97:3c:3a:10:9b: ff:9b:00:99:bb:a6:af:f8:52:95:f3:63:09:c3:3f: 38:cd:36:e4:a1:a0:74:32:e3:7e:e0:c2:46:26:ba: f5:90:9c:c6:06:ff:fe:2e:99:70:b4:b4:41:71:6b: 4f:aa:ec:c6:ce:90:95:33:52:57:ed:38:ff:a5:19: 56:57:5b:50:5c:7c:bd:2a:9b:b5:d4:ed:e1:08:be: bd:0d:01:2a:41:72:67:5f:13:85:69:a0:32:4c:65: a9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:17:A5:12:85:0A:A3:F5:29:E2:0C:A7:42:1E:95:AB:C9:3F:6C:E5 X509v3 Authority Key Identifier: keyid:BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 147.124.12.0/22 160.25.254.0/23 167.254.236.0/22 192.65.2.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:ae:6d:66:6d:a9:09:e4:a4:2b:10:b4:c7:f2:4f:3f:e8:73: 55:13:e2:b5:53:ff:9c:33:a6:d7:d1:41:07:49:f0:0f:05:3c: 8e:2a:f7:f6:b9:ee:f3:03:5b:54:71:7f:81:50:e5:28:b3:11: 68:bf:ae:67:36:c7:4c:93:5e:40:2b:6e:a8:f6:a7:4e:f9:8f: b3:93:4b:34:a6:56:40:12:29:6e:e1:f9:2d:cf:9c:05:d5:13: 5a:d5:0f:75:ce:d5:ca:00:10:7c:9c:f9:9d:51:c8:42:b1:eb: 38:b8:06:42:6f:bf:78:ad:3b:eb:a7:9b:94:79:16:20:68:83: 2f:b4:fb:03:03:7e:59:09:bd:e3:45:1b:af:cc:0c:f8:7c:18: d9:6d:4f:f0:fb:ea:80:38:2f:f2:88:df:59:90:fc:46:74:3a: d6:28:3b:6e:12:77:37:dd:50:d2:91:72:4c:8b:c5:ce:06:7b: 07:2f:1a:42:f9:a8:9d:3c:87:cb:83:c3:45:a1:86:6f:ba:a2: 35:be:ee:56:79:1b:01:cb:0d:fc:30:3b:04:52:c0:ef:de:29: 15:b0:b3:54:9e:54:f8:e6:2f:47:34:d6:11:cc:b7:77:4e:b5: c0:ae:ea:0d:d4:62:a8:6c:05:3f:8b:a8:1c:ed:52:86:92:0a: 26:3a:11:ad -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKEJCM0JENUQ3RTE5OTI0RDg2MkI2QTQxQkYzNEM3RkRC QkJFOTFDNkQwHhcNMjYwMzE3MDIyMjExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWI4YmFkMy1jMWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJC6HjBTowTC4OR+IegoIzY4aAMX5gq8I0I30ogPSAiqxVDDNL6Tn8RzhmhT yEf2HuEGcJ4m11nUaF99YCxUTb8mOAfUopZ9gUK1IcTJ9zaPIjfNe4hovvMcpw1q hirJ0HD3uU6p6yOsb0U7FxKpXpWOWtc7Jt8vnCA/lx2A6oGe8OzmPEz3D51p5vhP duHq73URbXqH2YknG6PiR+Uzlzw6EJv/mwCZu6av+FKV82MJwz84zTbkoaB0MuN+ 4MJGJrr1kJzGBv/+LplwtLRBcWtPquzGzpCVM1JX7Tj/pRlWV1tQXHy9Kpu11O3h CL69DQEqQXJnXxOFaaAyTGWpSwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFPAXpRKF CqP1KeIMp0IelavJP2zlMB8GA1UdIwQYMBaAFLs71dfhmSTYYrakG/NMf9u76Rxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9DN0Y0NDFDNjYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi91enZWMS1HWkpOaGl0cVFiODB4XzI3dnBI RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3V6dlYxLUdaSk5oaXRxUWI4MHhfMjd2cEhHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E3MzUvQzdGNDQxQzY2MzlCMTFFRjlCNEQyQTVEQzRGOUFFMDIvMzg1RTMzMDg2 MzlEMTFFRkI2Njg3NzVGQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCk3wMAwQBoBn+AwQCp/7sAwQBwEECMA0GCSqGSIb3DQEBCwUAA4IB AQAdrm1mbakJ5KQrELTH8k8/6HNVE+K1U/+cM6bX0UEHSfAPBTyOKvf2ue7zA1tU cX+BUOUosxFov65nNsdMk15AK26o9qdO+Y+zk0s0plZAEilu4fktz5wF1RNa1Q91 ztXKABB8nPmdUchCses4uAZCb794rTvrp5uUeRYgaIMvtPsDA35ZCb3jRRuvzAz4 fBjZbU/w++qAOC/yiN9ZkPxGdDrWKDtuEnc33VDSkXJMi8XOBnsHLxpC+aidPIfL g8NFoYZvuqI1vu5WeRsByw38MDsEUsDv3ikVsLNUnlT45i9HNNYRzLd3TrXAruoN 1GKobAU/i6gc7VKGkgomOhGt -----END CERTIFICATE-----Generated at Thu Mar 26 18:01:25 2026 by rpki-client