$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/A5E6E422A8E511F0A46A7729C4F9AE02.roa File: A5E6E422A8E511F0A46A7729C4F9AE02.roa (raw, json) Hash identifier: Uf6HZPRPVaJl/FDZZQpXyev2o8OHPg1QV6rsUx5DyWU= Subject key identifier: BF:BF:02:C3:35:DB:AA:C6:ED:5B:45:6D:27:6A:AC:DB:31:71:39:9F Certificate issuer: /CN=A91E33AA/serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Certificate serial: 87 Authority key identifier: 57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/A5E6E422A8E511F0A46A7729C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:44:05 +0000 ROA not before: Tue 14 Oct 2025 11:55:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134732 IP address blocks: 165.101.132.0/23 maxlen: 23 165.101.132.0/24 maxlen: 24 165.101.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Validity Not Before: Oct 14 11:55:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a58615-a24a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7b:eb:aa:7a:de:10:1a:b2:02:ec:5b:35:ce: 2a:84:7e:59:ea:3b:01:86:6e:42:f8:2a:62:64:d5: de:95:36:25:8d:d1:d1:82:b6:01:66:42:e4:f4:e9: ce:d9:8b:ff:de:c5:ef:3d:7f:19:0a:0c:d8:36:25: 10:49:c8:51:a2:5c:cd:3e:0c:e4:07:35:2d:a5:86: 5b:97:32:40:c3:a7:8d:dc:14:dd:fb:6d:1a:8a:29: d4:8f:7b:ad:40:23:14:af:83:ab:6a:58:75:93:a9: 01:ce:4a:38:c5:cb:63:ce:cf:ce:60:b2:f2:12:2b: 6a:f3:eb:0c:95:ec:45:9d:5b:03:1a:8a:47:0c:92: 16:fb:d2:a0:7c:dc:74:5b:c4:d5:4f:dc:ef:72:cf: b0:08:88:36:fe:4e:85:c4:b7:12:c2:5e:3b:7d:b9: 1d:81:f8:a2:55:08:7c:e2:8e:87:10:4b:31:fd:3e: 9d:ba:ea:d2:f3:66:d3:a7:89:2f:c4:22:c7:ec:30: 04:88:0e:e5:6b:f6:9c:7f:68:9f:fb:45:41:d0:fa: 04:ff:97:2b:2e:ff:bd:42:11:3a:34:41:b2:52:6b: 3e:cd:c2:d2:61:04:2a:39:cb:f3:5b:af:ea:26:3a: f9:62:e7:53:0d:23:06:00:df:4f:ef:56:ab:39:38: aa:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BF:02:C3:35:DB:AA:C6:ED:5B:45:6D:27:6A:AC:DB:31:71:39:9F X509v3 Authority Key Identifier: keyid:57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/A5E6E422A8E511F0A46A7729C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.132.0/23 Signature Algorithm: sha256WithRSAEncryption b3:5f:07:30:11:68:65:1d:50:8a:7c:c0:7f:b4:b4:c1:16:6e: 6c:ca:9b:7c:8a:f9:fa:8c:83:2e:39:09:43:38:12:34:69:5e: 11:13:e5:0c:8e:a7:1a:28:c7:b5:fc:36:04:1b:4f:4c:75:c6: 49:c9:5f:c6:89:ee:2e:47:03:7f:64:b7:78:1e:32:76:e2:f4: a8:90:fb:1b:0c:91:20:6f:52:a0:49:fa:2a:cf:39:7f:7c:b6: 92:6a:08:cf:dd:ba:bb:5d:d9:9e:6a:a2:b7:65:40:dd:7a:35: be:48:4d:4a:38:36:62:c9:d1:78:45:88:bb:b7:53:1a:72:a6: 8d:85:40:46:57:1e:4b:4e:33:2c:05:5a:df:d8:0c:e6:3e:02: d5:9b:e6:f8:b8:8b:0a:4c:ac:4f:f1:19:6a:54:c1:00:95:0a: 44:6a:90:a0:56:b7:d4:a1:ee:56:3c:3a:51:e1:03:01:4a:bf: fd:85:ad:d4:84:24:6c:a3:4e:16:f7:c9:3f:d2:a1:54:97:24: ee:3b:a2:c6:2d:29:85:a7:4e:07:b1:ad:fe:e9:87:06:d7:e1: 65:62:c3:a1:b0:2a:2b:fc:28:1c:c7:8e:23:62:f3:f0:4c:5b: b0:1f:ac:c3:22:7a:0e:36:68:61:1e:a2:0f:23:33:cc:46:55: 85:63:a4:b0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzQUExMTAvBgNVBAUTKDU3NERCM0Q2MjVERTg0MjAyRTNBQzlDMUMzRDVCMDc3 NEQ2Qjc4RTMwHhcNMjUxMDE0MTE1NTUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODYxNS1hMjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXvrqnreEBqyAuxbNc4qhH5Z6jsBhm5C+CpiZNXelTYljdHRgrYBZkLk9OnO 2Yv/3sXvPX8ZCgzYNiUQSchRolzNPgzkBzUtpYZblzJAw6eN3BTd+20aiinUj3ut QCMUr4Oralh1k6kBzko4xctjzs/OYLLyEitq8+sMlexFnVsDGopHDJIW+9KgfNx0 W8TVT9zvcs+wCIg2/k6FxLcSwl47fbkdgfiiVQh84o6HEEsx/T6duurS82bTp4kv xCLH7DAEiA7la/acf2if+0VB0PoE/5crLv+9QhE6NEGyUms+zcLSYQQqOcvzW6/q Jjr5YudTDSMGAN9P71arOTiqJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL+/AsM1 26rG7VtFbSdqrNsxcTmfMB8GA1UdIwQYMBaAFFdNs9Yl3oQgLjrJwcPVsHdNa3jj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzNBQS80OUExQTg3ODU5 NjcxMUYwOEM0MDc5MkNDNEY5QUUwMi9WMDJ6MWlYZWhDQXVPc25CdzlXd2QwMXJl T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1YwMnoxaVhlaENBdU9zbkJ3OVd3ZDAxcmVPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTMzQUEvNDlBMUE4Nzg1OTY3MTFGMDhDNDA3OTJDQzRGOUFFMDIvQTVFNkU0MjJB OEU1MTFGMEE0NkE3NzI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWWEMA0GCSqGSIb3DQEBCwUAA4IBAQCzXwcwEWhlHVCKfMB/tLTB Fm5sypt8ivn6jIMuOQlDOBI0aV4RE+UMjqcaKMe1/DYEG09MdcZJyV/Gie4uRwN/ ZLd4HjJ24vSokPsbDJEgb1KgSfoqzzl/fLaSagjP3bq7XdmeaqK3ZUDdejW+SE1K ODZiydF4RYi7t1MacqaNhUBGVx5LTjMsBVrf2AzmPgLVm+b4uIsKTKxP8RlqVMEA lQpEapCgVrfUoe5WPDpR4QMBSr/9ha3UhCRso04W98k/0qFUlyTuO6LGLSmFp04H sa3+6YcG1+FlYsOhsCor/Cgcx44jYvPwTFuwH6zDInoONmhhHqIPIzPMRlWFY6Sw -----END CERTIFICATE-----Generated at Fri Mar 27 05:00:48 2026 by rpki-client