$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa File: 399480C4ACD011F08828DD7BC4F9AE02.roa (raw, json) Hash identifier: faAWxuL02WBDF7lhFM/mV+aG3ZsWz2hDnEoq4EKfApA= Subject key identifier: 52:4D:50:CD:30:74:EF:5F:F4:5B:F8:41:87:A3:C4:4E:7F:26:6E:F3 Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 78 Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:53:07 +0000 ROA not before: Sun 09 Nov 2025 07:05:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 147180 IP address blocks: 49.213.32.0/24 maxlen: 24 49.213.33.0/24 maxlen: 24 2001:df5:f9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Nov 9 07:05:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a453-2408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e3:0b:db:bd:b1:a3:eb:db:2e:b5:d9:79:89: 76:92:18:c8:82:da:e2:f8:8a:70:56:87:69:d3:5c: d0:5a:a9:b7:7d:12:3c:3a:96:cd:eb:56:9e:a8:6d: eb:64:65:e6:bc:bf:2a:b6:9b:b8:5f:e4:d7:40:ff: ad:f0:5b:f5:7b:f7:8c:9d:3d:8f:3b:b1:59:9a:4e: ad:e2:3d:bd:a9:65:e4:55:86:ee:20:9d:d9:16:37: 31:bb:5e:06:41:ab:4d:07:81:d6:b3:6e:5e:5e:6a: b5:a9:63:d9:9b:bd:ba:e6:fb:d1:dd:d3:2a:ea:e8: 41:76:37:86:89:fc:74:f8:c0:fe:a4:1f:0b:1d:e5: cb:e9:90:0e:a1:b2:81:99:b7:2e:0e:71:89:9e:7a: 11:32:ac:7a:42:32:94:61:d5:05:b7:cf:f4:3a:52: 3b:25:6b:22:b6:03:36:9f:8a:d0:1f:dd:e6:c2:c7: ad:40:d3:94:54:53:07:13:39:e6:23:ac:82:72:3c: 48:0a:85:f3:ef:42:89:df:d4:30:82:b7:b5:10:82: 31:f1:44:34:42:ec:30:95:cd:25:3e:37:47:b2:6c: d5:9f:6c:38:40:5c:ae:ee:9c:6d:64:cd:1d:2d:ea: b1:e7:b8:27:bb:c9:e4:d6:d9:33:fc:5e:65:4a:0a: b8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4D:50:CD:30:74:EF:5F:F4:5B:F8:41:87:A3:C4:4E:7F:26:6E:F3 X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.213.32.0/23 IPv6: 2001:df5:f9c0::/48 Signature Algorithm: sha256WithRSAEncryption 9e:fa:05:8d:b0:7e:1d:c9:af:2e:15:c6:7c:b6:32:64:0c:c7: 25:05:78:1f:20:a8:82:5f:48:1a:a8:8b:b7:27:f4:f7:6c:c3: 6f:58:36:1c:61:95:74:4c:81:dc:85:22:82:0c:f4:2c:2e:e0: c1:d4:0a:3d:b4:74:a5:52:f6:96:11:b5:5a:a8:2d:96:67:f0: be:ef:88:dc:b3:10:90:88:0d:74:54:69:00:e2:67:3c:5a:c6: 04:59:64:35:02:3d:a6:a4:47:9c:a0:1b:ec:2f:fe:63:62:41: 30:45:e9:b9:0f:21:b1:4f:b9:c3:b1:76:e5:7e:62:d0:9d:71: 2d:28:01:15:74:d6:b1:77:e9:0a:09:28:c6:c9:97:ff:f5:3e: 04:05:fd:f7:34:ef:7b:86:c1:e6:91:45:73:5b:f3:98:cb:6d: 34:3f:64:53:c3:2a:82:8c:60:b2:33:8f:a5:6d:fe:d7:94:aa: 33:78:a0:37:7c:3c:c6:4a:aa:79:fb:ff:f6:12:98:73:06:ea: 7a:e5:3d:e3:39:b7:6b:7f:49:b7:bc:67:44:cb:5f:df:79:9e: 9c:30:89:96:3b:5b:90:06:97:fb:b2:6a:67:30:ee:a6:5c:bd: 6d:b4:a9:e4:fc:31:eb:c4:d9:74:53:b8:f7:fd:78:70:71:9f: 86:0a:ee:1c -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNTExMDkwNzA1MThaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhNDUzLTI0MDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn4wvbvbGj69sutdl5iXaSGMiC2uL4inBWh2nTXNBaqbd9Ejw6ls3rVp6obetk Zea8vyq2m7hf5NdA/63wW/V794ydPY87sVmaTq3iPb2pZeRVhu4gndkWNzG7XgZB q00Hgdazbl5earWpY9mbvbrm+9Hd0yrq6EF2N4aJ/HT4wP6kHwsd5cvpkA6hsoGZ ty4OcYmeehEyrHpCMpRh1QW3z/Q6UjslayK2AzafitAf3ebCx61A05RUUwcTOeYj rIJyPEgKhfPvQonf1DCCt7UQgjHxRDRC7DCVzSU+N0eybNWfbDhAXK7unG1kzR0t 6rHnuCe7yeTW2TP8XmVKCrjjAgMBAAGjggJxMIICbTAdBgNVHQ4EFgQUUk1QzTB0 71/0W/hBh6PETn8mbvMwHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDBFMC8zRkJCNUUwNDdCNTMxMUYwOUI1NDg0NUZDNEY5QUUwMi8zOTk0ODBDNEFD RDAxMUYwODgyOEREN0JDNEY5QUUwMi5yb2EwMAYIKwYBBQUHAQcBAf8EITAfMAwE AgABMAYDBAEx1SAwDwQCAAIwCQMHACABDfX5wDANBgkqhkiG9w0BAQsFAAOCAQEA nvoFjbB+HcmvLhXGfLYyZAzHJQV4HyCogl9IGqiLtyf092zDb1g2HGGVdEyB3IUi ggz0LC7gwdQKPbR0pVL2lhG1Wqgtlmfwvu+I3LMQkIgNdFRpAOJnPFrGBFlkNQI9 pqRHnKAb7C/+Y2JBMEXpuQ8hsU+5w7F25X5i0J1xLSgBFXTWsXfpCgkoxsmX//U+ BAX99zTve4bB5pFFc1vzmMttND9kU8MqgoxgsjOPpW3+15SqM3igN3w8xkqqefv/ 9hKYcwbqeuU94zm3a39Jt7xnRMtf33menDCJljtbkAaX+7JqZzDuply9bbSp5Pwx 68TZdFO49/14cHGfhgruHA== -----END CERTIFICATE-----Generated at Thu Mar 26 04:08:37 2026 by rpki-client