$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/BC582AA44FEA11EFBFC72970C4F9AE02.roa File: BC582AA44FEA11EFBFC72970C4F9AE02.roa (raw, json) Hash identifier: Cda0MK+6iqN4L35gscpypsNwXSkKEYBYtWqfzM3ZWbM= Subject key identifier: 69:BA:3A:43:FE:C3:88:0F:1B:54:18:8C:9D:84:7F:83:6E:0F:FB:71 Certificate issuer: /CN=A91CE3C4/serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Certificate serial: 073E Authority key identifier: FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/BC582AA44FEA11EFBFC72970C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:30:53 +0000 ROA not before: Wed 30 Apr 2025 22:33:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 163.47.92.0/24 maxlen: 24 163.47.93.0/24 maxlen: 24 163.47.94.0/24 maxlen: 24 163.47.95.0/24 maxlen: 24 2400:cc00:3000::/48 maxlen: 48 2400:cc00:3001::/48 maxlen: 48 2400:cc00:3002::/48 maxlen: 48 2400:cc00:3005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1854 (0x73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3C4, serialNumber=FCAD461157DF681C050BD3BEEEA2EACDFB6D524B Validity Not Before: Apr 30 22:33:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5910d-0a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:97:4c:27:35:4c:b2:dd:c4:d9:d6:62:1f:90: 9e:53:5c:94:24:09:32:69:86:9c:51:2e:96:19:81: 9f:5f:a4:c1:ba:ee:b1:fe:f1:07:1c:75:d8:e7:bf: 29:0f:72:88:78:7f:67:01:80:17:23:87:3c:06:74: f8:28:ac:3c:6c:a8:64:7f:9d:55:f6:15:5a:38:28: 46:55:b4:c8:f0:6b:8b:d7:35:70:d4:31:24:4a:a6: a7:9d:86:8d:b6:9f:bc:9d:8f:05:f1:55:60:61:10: 12:06:f0:20:6a:8f:29:63:b1:b8:4c:ba:46:37:9e: ad:37:f1:14:43:53:5e:ff:4e:fb:08:c0:3a:51:e6: 34:17:99:9a:60:08:2a:68:bb:20:c0:06:56:b8:ee: 01:55:fe:8f:4f:e2:c5:62:13:c1:01:85:29:74:19: f5:d8:36:d9:38:ec:40:01:18:ae:d5:47:c0:31:58: 94:db:d6:fd:9c:c1:ab:30:41:0b:b5:e7:75:8c:ef: 61:80:9f:d4:6b:fe:90:9b:29:45:8e:1b:db:28:cc: cc:86:c7:e2:e3:77:bc:43:36:c0:b8:34:25:bf:ee: e6:e2:c6:6f:1c:4c:76:36:ff:73:5a:14:c3:5f:07: 5b:39:a6:9a:7b:12:20:fc:b3:43:c1:ae:4a:7e:6d: 15:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BA:3A:43:FE:C3:88:0F:1B:54:18:8C:9D:84:7F:83:6E:0F:FB:71 X509v3 Authority Key Identifier: keyid:FC:AD:46:11:57:DF:68:1C:05:0B:D3:BE:EE:A2:EA:CD:FB:6D:52:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/_K1GEVffaBwFC9O-7qLqzfttUks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_K1GEVffaBwFC9O-7qLqzfttUks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3C4/7692278A7F9711EBADDC5F15C4F9AE02/BC582AA44FEA11EFBFC72970C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.47.92.0/22 IPv6: 2400:cc00:3000::-2400:cc00:3002:ffff:ffff:ffff:ffff:ffff 2400:cc00:3005::/48 Signature Algorithm: sha256WithRSAEncryption 40:71:bf:9e:38:4c:7a:83:c2:9d:c3:5f:34:a6:dc:fe:f8:89: 7b:5e:7a:64:33:58:9e:bb:e7:89:36:a4:9b:75:4f:66:26:5c: 73:fa:0a:42:54:0f:a8:e2:75:26:43:dc:ff:c4:e4:b7:ce:bf: c1:e4:b0:f9:a4:f0:7b:9a:86:30:15:32:46:c4:c7:b6:40:d1: c4:b7:0a:69:6b:5d:cd:c5:29:27:db:16:d2:96:d1:c9:86:66: 92:35:d8:55:29:a8:40:16:d0:c3:6c:3f:17:41:cb:c5:67:0f: e9:f3:8c:64:62:16:ca:d7:bb:c9:48:71:de:03:95:2b:97:59: 1a:77:86:ac:54:e5:b9:ad:ff:68:34:57:7a:9f:1c:f9:8d:63: 13:9f:99:ad:c5:c7:6d:41:20:72:a9:d2:4a:04:ba:64:03:06: 29:d4:40:99:60:c9:ee:ce:fa:51:1a:bf:98:75:0c:15:0e:3b: 7d:70:07:8c:58:42:3a:92:1e:ac:fd:a6:fc:01:bd:11:93:7b: 56:73:3c:3d:e7:75:93:94:8c:45:32:ed:f2:6d:79:56:50:e2: 7d:7e:fa:37:28:4a:84:cd:70:16:bc:63:c8:7f:ee:a2:5a:26: d9:2d:57:3e:f4:b6:50:a0:3e:20:e4:d4:1c:f1:41:fa:b9:3f: ce:ea:b2:33 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICBz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQzQxMTAvBgNVBAUTKEZDQUQ0NjExNTdERjY4MUMwNTBCRDNCRUVFQTJFQUNE RkI2RDUyNEIwHhcNMjUwNDMwMjIzMzU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTEwZC0wYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkZdMJzVMst3E2dZiH5CeU1yUJAkyaYacUS6WGYGfX6TBuu6x/vEHHHXY578p D3KIeH9nAYAXI4c8BnT4KKw8bKhkf51V9hVaOChGVbTI8GuL1zVw1DEkSqannYaN tp+8nY8F8VVgYRASBvAgao8pY7G4TLpGN56tN/EUQ1Ne/077CMA6UeY0F5maYAgq aLsgwAZWuO4BVf6PT+LFYhPBAYUpdBn12DbZOOxAARiu1UfAMViU29b9nMGrMEEL ted1jO9hgJ/Ua/6QmylFjhvbKMzMhsfi43e8QzbAuDQlv+7m4sZvHEx2Nv9zWhTD XwdbOaaaexIg/LNDwa5Kfm0VEwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFGm6OkP+ w4gPG1QYjJ2Ef4NuD/txMB8GA1UdIwQYMBaAFPytRhFX32gcBQvTvu6i6s37bVJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNDNC83NjkyMjc4QTdG OTcxMUVCQUREQzVGMTVDNEY5QUUwMi9fSzFHRVZmZmFCd0ZDOU8tN3FMcXpmdHRV a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19LMUdFVmZmYUJ3RkM5Ty03cUxxemZ0dFVrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UzQzQvNzY5MjI3OEE3Rjk3MTFFQkFEREM1RjE1QzRGOUFFMDIvQkM1ODJBQTQ0 RkVBMTFFRkJGQzcyOTcwQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAM BAIAATAGAwQCoy9cMCIEAgACMBwwEQMGBCQAzAAwAwcAJADMADACAwcAJADMADAF MA0GCSqGSIb3DQEBCwUAA4IBAQBAcb+eOEx6g8Kdw180ptz++Il7XnpkM1ieu+eJ NqSbdU9mJlxz+gpCVA+o4nUmQ9z/xOS3zr/B5LD5pPB7moYwFTJGxMe2QNHEtwpp a13NxSkn2xbSltHJhmaSNdhVKahAFtDDbD8XQcvFZw/p84xkYhbK17vJSHHeA5Ur l1kad4asVOW5rf9oNFd6nxz5jWMTn5mtxcdtQSByqdJKBLpkAwYp1ECZYMnuzvpR Gr+YdQwVDjt9cAeMWEI6kh6s/ab8Ab0Rk3tWczw953WTlIxFMu3ybXlWUOJ9fvo3 KEqEzXAWvGPIf+6iWibZLVc+9LZQoD4g5NQc8UH6uT/O6rIz -----END CERTIFICATE-----Generated at Thu Mar 26 17:19:51 2026 by rpki-client