$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa File: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (raw, json) Hash identifier: 2CxBlSEZ4s9h+CG+sdkPtbZiMyYV71gXHZ/DNWmS4OY= Subject key identifier: C2:A9:F9:BF:B0:AA:01:16:1E:4C:AF:8F:B6:F5:0A:75:5E:D7:01:2A Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 0AF3 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa Signing time: Mon 02 Mar 2026 05:07:51 +0000 ROA not before: Wed 06 Aug 2025 20:31:26 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 16509 IP address blocks: 58.181.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C, serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Aug 6 20:31:26 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a51b27-55b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:3b:74:93:20:2a:f6:fc:16:ca:1b:d5:17:0c: 1a:81:2b:fd:96:76:ae:7c:8f:69:bc:1e:f8:6e:c2: dc:f3:67:b4:9d:fa:98:0b:8e:f8:2f:d3:c7:d0:e9: e3:f8:85:77:d9:b9:a5:10:ea:db:12:34:3a:4d:9a: d9:ce:95:ec:88:60:cb:c9:3b:1f:4d:29:1d:33:7b: 21:86:4a:59:33:83:ae:80:02:0e:15:9a:91:6a:5d: 7a:1b:ac:4c:2a:b9:75:ad:04:d5:2d:7d:12:fa:75: 3a:63:d4:49:36:70:03:df:d8:2e:2b:1a:87:b1:f3: 4d:fd:63:17:84:f9:c4:05:f9:36:3b:7a:03:64:78: b4:f8:91:65:91:2e:07:15:c0:91:96:64:ea:ae:ae: 68:c0:92:c5:66:a3:4c:65:bc:68:5d:ad:ab:33:0e: e6:7d:ee:a9:77:b3:00:ae:5e:c3:ea:7d:f3:9a:d7: 23:29:23:77:1d:69:45:b4:c9:4f:c7:bb:f6:38:2f: 94:68:c4:1b:b4:85:4a:f8:dc:86:79:4c:d0:f9:e8: e1:45:c1:44:2a:ea:b2:43:50:93:27:dc:0b:2e:ff: cb:91:c1:39:af:3c:2a:ea:11:18:38:ae:9c:6f:d3: 2e:8a:d3:da:6c:d2:11:83:2a:f7:85:83:71:50:bc: 1b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A9:F9:BF:B0:AA:01:16:1E:4C:AF:8F:B6:F5:0A:75:5E:D7:01:2A X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.181.95.0/24 Signature Algorithm: sha256WithRSAEncryption 46:2b:e2:bd:e5:e0:8f:5a:4d:dd:7f:34:97:fe:a1:9b:eb:1c: 7a:79:56:83:92:95:04:ad:41:47:1d:9e:18:ef:95:45:e8:30: 51:0f:1f:8d:2c:ea:cd:e3:23:1b:dc:f7:0f:8f:7d:48:3e:cb: cb:9a:d5:87:ab:e6:00:51:7d:c8:7e:6a:4a:94:5d:0e:84:a3: 85:60:80:4d:44:92:45:42:40:3e:ce:26:2c:42:16:1d:ad:e6: 5e:da:ec:d0:d6:aa:c2:9b:dd:e6:ba:d5:d7:c2:0d:67:fa:9c: b7:ca:17:5b:64:d5:c1:71:ca:12:f6:e9:56:ea:c5:ca:ee:d7: 35:b5:92:76:0c:d4:ce:a7:fa:9e:af:82:bb:22:72:b6:d1:95: ab:e2:a8:c7:b6:ef:ed:ed:83:6a:71:3a:5b:ff:18:5b:de:1c: 1c:05:22:f0:56:ab:0c:6e:27:17:99:41:af:8e:90:d5:15:b4: dc:09:a6:81:cb:ab:ca:8b:b1:70:b8:ec:e4:06:45:99:06:5c: 9b:9b:84:0b:e7:4d:3b:23:5f:8a:d5:92:58:7a:67:51:e9:a2: 43:c2:04:8d:e5:78:40:2f:ac:02:16:4b:cd:87:7e:0b:05:f6: bf:f5:ed:7d:06:43:eb:6d:cb:b7:93:e7:9e:91:85:b3:a5:bd: fb:79:dd:73 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjUwODA2MjAzMTI2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MWIyNy01NWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTt0kyAq9vwWyhvVFwwagSv9lnaufI9pvB74bsLc82e0nfqYC474L9PH0Onj +IV32bmlEOrbEjQ6TZrZzpXsiGDLyTsfTSkdM3shhkpZM4OugAIOFZqRal16G6xM Krl1rQTVLX0S+nU6Y9RJNnAD39guKxqHsfNN/WMXhPnEBfk2O3oDZHi0+JFlkS4H FcCRlmTqrq5owJLFZqNMZbxoXa2rMw7mfe6pd7MArl7D6n3zmtcjKSN3HWlFtMlP x7v2OC+UaMQbtIVK+NyGeUzQ+ejhRcFEKuqyQ1CTJ9wLLv/LkcE5rzwq6hEYOK6c b9MuitPabNIRgyr3hYNxULwbdwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMKp+b+w qgEWHkyvj7b1CnVe1wEqMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTczNEMvQTczMjM1RUM3M0MyMTFFQTlENDBCODg1QzRGOUFFMDIvQTNENTBCMkVB M0RCMTFFQTk4QkM1RDQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAOrVfMA0GCSqGSIb3DQEBCwUAA4IBAQBGK+K95eCPWk3dfzSX/qGb 6xx6eVaDkpUErUFHHZ4Y75VF6DBRDx+NLOrN4yMb3PcPj31IPsvLmtWHq+YAUX3I fmpKlF0OhKOFYIBNRJJFQkA+ziYsQhYdreZe2uzQ1qrCm93mutXXwg1n+py3yhdb ZNXBccoS9ulW6sXK7tc1tZJ2DNTOp/qer4K7InK20ZWr4qjHtu/t7YNqcTpb/xhb 3hwcBSLwVqsMbicXmUGvjpDVFbTcCaaBy6vKi7FwuOzkBkWZBlybm4QL5007I1+K 1ZJYemdR6aJDwgSN5XhAL6wCFkvNh34LBfa/9e19BkPrbcu3k+eekYWzpb37ed1z -----END CERTIFICATE-----Generated at Thu Mar 26 07:01:31 2026 by rpki-client