$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/F43C291A59B711F186CA4B50C0833773.roa File: F43C291A59B711F186CA4B50C0833773.roa (raw, json) Hash identifier: 7CU9NDub2/4I1kPbc14cNlm39zQ38TTs6MubOAc+vA8= Subject key identifier: 54:64:52:22:98:32:5A:8F:15:5D:22:B0:D7:2B:FF:12:A4:2E:45:7B Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: CD Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/F43C291A59B711F186CA4B50C0833773.roa Signing time: Wed 27 May 2026 10:36:44 +0000 ROA not before: Wed 27 May 2026 10:36:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 23532 IP address blocks: 74.52.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Jun 2026 20:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: May 27 10:36:44 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a16c93c-7a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ab:83:1d:3b:a2:f0:97:f4:bc:33:78:00:27: 5c:d1:ef:19:a4:bf:b7:3f:94:32:3f:0f:68:88:a0: 03:16:88:37:a6:aa:c0:3e:b9:4c:f6:02:ea:d4:2a: e2:b3:c9:5d:68:68:f5:3e:42:29:72:da:97:ce:42: b4:99:0f:ce:12:57:50:cd:78:0b:c6:30:16:da:f2: 3e:65:9a:19:40:05:27:07:26:43:84:8d:f2:84:cc: 37:bf:d2:77:20:a2:bb:f8:82:92:d9:bf:c8:23:af: e5:f4:b4:78:0b:2d:61:af:e4:f2:f3:a4:ab:3a:55: 6c:24:2b:c2:8d:5a:c9:09:61:82:b6:b6:d6:64:71: 3e:ef:e4:75:a4:25:70:fb:66:2f:8b:56:57:0a:b8: cb:d5:35:14:17:28:7b:46:92:72:9e:4d:ed:13:57: f1:66:38:43:4f:56:2d:d7:b1:22:f6:20:f6:c9:ca: f1:67:a5:b4:b5:61:6e:7f:eb:22:7b:1c:57:c7:30: 0c:59:1f:b5:ea:3e:f9:48:65:ae:ca:af:db:17:95: 4f:71:e1:0f:1d:8b:70:d1:a6:6a:c7:46:5b:84:24: fd:d0:d2:77:da:0b:4a:b5:74:8c:b9:1a:5c:3e:66: 59:4b:38:05:b3:89:74:00:75:ba:f3:18:0b:d9:04: 6c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:64:52:22:98:32:5A:8F:15:5D:22:B0:D7:2B:FF:12:A4:2E:45:7B X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/F43C291A59B711F186CA4B50C0833773.roa sbgp-ipAddrBlock: critical IPv4: 74.52.2.0/24 Signature Algorithm: sha256WithRSAEncryption 71:17:21:e3:44:e0:f9:e6:3b:53:b6:57:bd:c9:04:a4:72:25: a2:21:e9:dc:51:0d:92:7e:ee:72:86:d9:66:e1:72:e5:18:84: 93:0a:ef:f5:9a:8b:90:39:cc:97:66:22:b3:6e:f9:bd:ed:81: b7:28:ad:2f:0d:03:68:2c:66:04:2d:41:46:df:c8:b6:82:7e: 0d:99:e5:23:90:20:2c:dd:f4:92:6f:f9:37:d5:c9:39:48:0c: 77:ec:ff:a4:06:18:22:a4:43:7d:f8:1f:cd:f3:b5:da:f3:d1: ca:a9:8f:1e:e2:0c:97:cb:be:82:70:c5:59:d6:c9:ea:bd:97: f6:7c:22:e5:ed:da:73:3a:2c:bc:90:68:9d:65:06:59:f7:ef: 24:a2:78:d8:d1:6c:b6:ef:9a:94:25:59:97:16:75:d3:cf:98: 49:7b:b1:2d:77:32:93:6a:35:6e:6e:85:8f:3e:37:f9:b1:9d: c6:d3:bb:2c:bd:8d:a4:20:b5:ad:b0:32:f0:74:70:a6:a9:4c: 43:a7:ac:7e:9b:1a:47:ad:10:53:4b:0b:35:50:9c:c6:04:09: 2d:b7:98:74:a7:64:86:b9:5d:0e:b4:31:1f:07:16:9e:88:05: 7a:e4:ab:c8:b6:96:18:ea:88:ac:1b:ad:e9:a2:91:05:a5:9a: 88:41:ca:4d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4RTcxMTAvBgNVBAUTKDNENjIxNkQ1NUNCNTRGQzlCNTcwRjlGMjVGOUFERDBG Mzc2OUI0REUwHhcNMjYwNTI3MTAzNjQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2YzkzYy03YTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtauDHTui8Jf0vDN4ACdc0e8ZpL+3P5QyPw9oiKADFog3pqrAPrlM9gLq1Cri s8ldaGj1PkIpctqXzkK0mQ/OEldQzXgLxjAW2vI+ZZoZQAUnByZDhI3yhMw3v9J3 IKK7+IKS2b/II6/l9LR4Cy1hr+Ty86SrOlVsJCvCjVrJCWGCtrbWZHE+7+R1pCVw +2Yvi1ZXCrjL1TUUFyh7RpJynk3tE1fxZjhDT1Yt17Ei9iD2ycrxZ6W0tWFuf+si exxXxzAMWR+16j75SGWuyq/bF5VPceEPHYtw0aZqx0ZbhCT90NJ32gtKtXSMuRpc PmZZSzgFs4l0AHW68xgL2QRsoQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFRkUiKY MlqPFV0isNcr/xKkLkV7MB8GA1UdIwQYMBaAFD1iFtVctU/JtXD58l+a3Q83abTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzhFNy9DNjJCMjk4Njkz NDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi9QV0lXMVZ5MVQ4bTFjUG55WDVyZER6ZHB0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4RTcvQzYyQjI5ODY5MzQyMTFGMEE5ODc3ODNCQzRGOUFFMDIvRjQzQzI5MUE1 OUI3MTFGMTg2Q0E0QjUwQzA4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQASjQCMA0GCSqGSIb3DQEBCwUAA4IBAQBxFyHjROD55jtTtle9yQSk ciWiIencUQ2Sfu5yhtlm4XLlGISTCu/1mouQOcyXZiKzbvm97YG3KK0vDQNoLGYE LUFG38i2gn4NmeUjkCAs3fSSb/k31ck5SAx37P+kBhgipEN9+B/N87Xa89HKqY8e 4gyXy76CcMVZ1snqvZf2fCLl7dpzOiy8kGidZQZZ9+8konjY0Wy275qUJVmXFnXT z5hJe7EtdzKTajVuboWPPjf5sZ3G07ssvY2kILWtsDLwdHCmqUxDp6x+mxpHrRBT Sws1UJzGBAktt5h0p2SGuV0OtDEfBxaeiAV65KvItpYY6oisG63popEFpZqIQcpN -----END CERTIFICATE-----Generated at Wed Jun 3 04:34:50 2026 by rpki-client