$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa File: 385E3308639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: Fnrzq7m6wcAibloFVT3LYW9hmnnYycjMml274xEl91I= Subject key identifier: 93:A1:99:0F:0B:2E:8C:76:90:42:AD:87:B9:15:71:05:F1:A3:D2:41 Certificate issuer: /CN=A91CA735/serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Certificate serial: 0155 Authority key identifier: BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa Signing time: Wed 13 May 2026 05:34:00 +0000 ROA not before: Wed 13 May 2026 05:34:00 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 135102 IP address blocks: 147.124.12.0/22 maxlen: 24 160.25.254.0/23 maxlen: 24 167.254.236.0/22 maxlen: 24 192.65.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=BB3BD5D7E19924D862B6A41BF34C7FDBBBE91C6D Validity Not Before: May 13 05:34:00 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a040d48-bd8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:da:90:38:f2:4a:cc:a8:5d:1a:78:23:58:11: 8b:e1:49:e4:43:a5:37:9a:4c:b7:91:2c:79:44:42: b1:b1:03:eb:3a:ea:37:7d:90:a8:42:b9:23:ca:31: da:7d:82:94:e6:35:9f:b9:45:27:91:c2:b1:c3:da: bf:7f:61:f8:02:1b:e2:db:cf:bc:d6:55:e9:20:08: aa:c4:3c:8b:75:37:63:eb:40:ef:f1:3e:6e:f7:e3: c5:0e:41:9a:b1:a2:24:69:ca:cf:f6:28:3a:ff:66: b6:7a:70:2b:2b:0b:bf:1a:7f:5d:bf:f7:7d:01:2e: 6b:77:09:b9:77:fb:4f:60:e0:55:39:df:fb:d7:ba: 3a:fa:f2:b8:e4:8c:8a:d1:e8:41:8f:94:44:5d:d1: e7:12:bb:e7:d8:c5:66:51:9c:7f:43:8d:ae:bf:2f: ec:7f:d4:b9:58:8d:98:38:7d:23:ad:02:68:40:79: 34:34:8a:fa:d3:f3:48:57:6d:cf:ba:7c:d1:61:4e: 37:8d:f4:93:d1:5a:72:81:f5:de:a9:cf:64:77:c7: 5f:e3:3c:e8:aa:cc:b3:22:d2:9a:72:2f:c2:9e:20: 59:9a:8a:cb:32:6e:5b:03:22:46:1a:f7:c2:9c:20: e8:bb:64:22:6f:6f:10:0b:54:46:5a:fd:8a:36:e5: e4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A1:99:0F:0B:2E:8C:76:90:42:AD:87:B9:15:71:05:F1:A3:D2:41 X509v3 Authority Key Identifier: keyid:BB:3B:D5:D7:E1:99:24:D8:62:B6:A4:1B:F3:4C:7F:DB:BB:E9:1C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/uzvV1-GZJNhitqQb80x_27vpHG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/uzvV1-GZJNhitqQb80x_27vpHG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/C7F441C6639B11EF9B4D2A5DC4F9AE02/385E3308639D11EFB668775FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 147.124.12.0/22 160.25.254.0/23 167.254.236.0/22 192.65.2.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:9b:51:11:27:00:20:ef:5b:b6:de:8e:a5:1a:25:a6:a1:25: a1:a7:b5:76:e3:76:28:82:65:dc:37:be:e9:54:32:b1:a9:5f: 4f:01:35:bc:4c:36:a4:fe:f8:c0:d4:bb:17:79:a4:f4:89:6d: 0d:32:97:ca:a5:af:b9:fc:ed:4a:39:48:8f:3b:1a:65:95:42: 5d:01:04:24:94:f7:b8:ba:9f:fd:ef:1f:6c:c4:be:b1:b4:3d: 30:4e:1c:68:e2:c1:36:02:2d:d7:2b:04:5d:08:a7:9b:ad:a8: 22:cf:8f:65:a4:37:b1:7d:d3:48:83:c7:27:a2:4d:a9:79:3a: fd:88:47:b9:3c:5e:55:3d:46:c4:b2:1b:65:cb:d9:41:42:b4: d8:a7:b2:2e:2b:fe:d6:04:95:ea:bd:cf:6e:75:75:6a:ce:80: 4a:d2:bd:12:13:13:66:91:23:21:09:57:f1:84:f7:19:07:96: 8e:96:55:ac:c1:61:b9:e1:f3:81:a2:6b:89:88:10:8a:bb:a4: d7:ec:86:44:34:ef:06:d2:0f:45:0a:4e:5b:e1:ff:eb:f8:9a: 51:07:91:34:06:ca:d8:44:2f:fe:33:2a:78:9a:8a:c1:6b:eb: 11:e9:bc:26:f5:e9:3f:32:10:c8:30:7e:fc:4d:a0:21:09:3e: 90:84:33:20 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKEJCM0JENUQ3RTE5OTI0RDg2MkI2QTQxQkYzNEM3RkRC QkJFOTFDNkQwHhcNMjYwNTEzMDUzNDAwWhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA0MGQ0OC1iZDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9NqQOPJKzKhdGngjWBGL4UnkQ6U3mky3kSx5REKxsQPrOuo3fZCoQrkjyjHa fYKU5jWfuUUnkcKxw9q/f2H4Ahvi28+81lXpIAiqxDyLdTdj60Dv8T5u9+PFDkGa saIkacrP9ig6/2a2enArKwu/Gn9dv/d9AS5rdwm5d/tPYOBVOd/717o6+vK45IyK 0ehBj5REXdHnErvn2MVmUZx/Q42uvy/sf9S5WI2YOH0jrQJoQHk0NIr60/NIV23P unzRYU43jfST0VpygfXeqc9kd8df4zzoqsyzItKaci/CniBZmorLMm5bAyJGGvfC nCDou2Qib28QC1RGWv2KNuXk8wIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFJOhmQ8L Lox2kEKth7kVcQXxo9JBMB8GA1UdIwQYMBaAFLs71dfhmSTYYrakG/NMf9u76Rxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9DN0Y0NDFDNjYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi91enZWMS1HWkpOaGl0cVFiODB4XzI3dnBI RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3V6dlYxLUdaSk5oaXRxUWI4MHhfMjd2cEhHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E3MzUvQzdGNDQxQzY2MzlCMTFFRjlCNEQyQTVEQzRGOUFFMDIvMzg1RTMzMDg2 MzlEMTFFRkI2Njg3NzVGQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCk3wMAwQBoBn+AwQCp/7sAwQBwEECMA0GCSqGSIb3DQEBCwUAA4IB AQBem1ERJwAg71u23o6lGiWmoSWhp7V243YogmXcN77pVDKxqV9PATW8TDak/vjA 1LsXeaT0iW0NMpfKpa+5/O1KOUiPOxpllUJdAQQklPe4up/97x9sxL6xtD0wThxo 4sE2Ai3XKwRdCKebragiz49lpDexfdNIg8cnok2peTr9iEe5PF5VPUbEshtly9lB QrTYp7IuK/7WBJXqvc9udXVqzoBK0r0SExNmkSMhCVfxhPcZB5aOllWswWG54fOB omuJiBCKu6TX7IZENO8G0g9FCk5b4f/r+JpRB5E0BsrYRC/+Myp4morBa+sR6bwm 9ek/MhDIMH78TaAhCT6QhDMg -----END CERTIFICATE-----Generated at Wed May 13 19:42:35 2026 by rpki-client