$ rpki-client -vvf rpki.apnic.net/member_repository/A911695A/5A797140C8F111F080EE3776C4F9AE02/1DF3803AEEC611F0B6553517716F56BC.roa File: 1DF3803AEEC611F0B6553517716F56BC.roa (raw, json) Hash identifier: ATMgVxPSynGqWdcAfi8xFi3AYSDzSjTxt/zALkRAATU= Subject key identifier: 2D:0E:B8:9D:1F:DE:7E:94:19:D3:3C:D4:CD:31:32:3E:C4:3C:3A:68 Certificate issuer: /CN=A911695A/serialNumber=2226627B73E51546B3BD510E0E2A0DEAA8252078 Certificate serial: 42 Authority key identifier: 22:26:62:7B:73:E5:15:46:B3:BD:51:0E:0E:2A:0D:EA:A8:25:20:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiZie3PlFUazvVEODioN6qglIHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911695A/5A797140C8F111F080EE3776C4F9AE02/1DF3803AEEC611F0B6553517716F56BC.roa Signing time: Mon 02 Mar 2026 04:39:33 +0000 ROA not before: Sun 11 Jan 2026 08:18:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 20473 IP address blocks: 138.252.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911695A/5A797140C8F111F080EE3776C4F9AE02/IiZie3PlFUazvVEODioN6qglIHg.crl rsync://rpki.apnic.net/member_repository/A911695A/5A797140C8F111F080EE3776C4F9AE02/IiZie3PlFUazvVEODioN6qglIHg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiZie3PlFUazvVEODioN6qglIHg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911695A, serialNumber=2226627B73E51546B3BD510E0E2A0DEAA8252078 Validity Not Before: Jan 11 08:18:32 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a51485-b08f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9d:d3:15:51:27:bc:25:eb:c1:25:8a:57:48: 20:08:34:dc:f4:64:2e:01:e1:d8:dc:b1:81:08:ba: 4c:10:f1:96:a6:bc:8a:86:9d:6b:e1:55:07:25:25: f6:53:52:24:97:c8:f5:24:4f:89:05:18:0b:74:29: cd:ef:7c:3a:cb:3b:43:ed:ed:d3:48:51:79:dc:9b: 52:48:07:3d:85:47:e1:b0:ef:f2:0a:d5:5e:b1:a8: a4:99:89:dd:2e:3f:ae:18:4c:54:e1:79:ae:b2:17: d2:47:7f:7e:77:31:c7:e7:3e:00:b3:f0:88:bb:ee: b2:aa:d7:ea:4b:b7:dd:aa:48:ec:aa:3c:d7:3b:b9: 4b:9f:9c:b0:22:e5:b4:f7:f6:db:67:6b:86:64:0b: 2d:ce:a5:ad:0e:42:2a:19:0d:f2:81:cb:7c:7c:ff: bc:0f:2a:2f:c9:75:d1:ea:6c:12:26:8c:7b:6f:c2: b5:aa:42:58:59:85:0e:8b:1f:56:b1:44:59:85:16: 32:3f:c0:04:9d:c6:17:54:c5:72:0d:9f:7d:c0:57: 5f:ab:0a:f1:46:d9:6e:60:8f:74:74:da:c5:ee:47: e5:dd:40:23:a1:82:d4:af:12:6c:65:b4:74:4e:ab: 1a:82:6c:4f:a3:23:b2:e1:2c:f7:c9:f8:2f:34:de: 7f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0E:B8:9D:1F:DE:7E:94:19:D3:3C:D4:CD:31:32:3E:C4:3C:3A:68 X509v3 Authority Key Identifier: keyid:22:26:62:7B:73:E5:15:46:B3:BD:51:0E:0E:2A:0D:EA:A8:25:20:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911695A/5A797140C8F111F080EE3776C4F9AE02/IiZie3PlFUazvVEODioN6qglIHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IiZie3PlFUazvVEODioN6qglIHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911695A/5A797140C8F111F080EE3776C4F9AE02/1DF3803AEEC611F0B6553517716F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.93.0/24 Signature Algorithm: sha256WithRSAEncryption 85:33:06:d5:c2:77:07:aa:46:83:0e:5e:cd:11:d5:42:f3:9c: 40:9b:ab:32:56:6a:b7:40:c5:7f:2a:92:54:0c:15:2f:ac:19: 1c:f5:93:18:5b:4c:fb:17:e3:29:2c:81:08:8c:66:c9:a8:57: ef:ce:ca:a2:79:30:db:bb:67:38:12:b6:1d:dd:47:af:ca:e6: 58:14:be:5c:44:7f:7c:c6:76:6a:f4:54:bc:5c:db:0e:94:da: 1c:17:c7:a0:2f:66:62:46:22:12:db:28:62:e2:35:35:01:78: f9:17:84:47:e0:c2:c6:45:70:cc:ac:b9:89:33:68:15:4c:f9: 6e:01:8d:cf:0c:4a:ff:ed:1b:d6:85:5c:1c:2e:04:af:8f:bd: 46:a1:a4:a1:32:fc:03:c7:f5:76:13:20:fb:45:b5:65:15:62: 8b:01:33:0d:43:58:7c:61:a1:5f:b9:59:3a:c0:39:02:c0:1a: 4b:dd:07:fe:dd:50:be:42:c6:5f:dd:b4:4a:74:ed:a5:7c:c9: f8:26:6d:6c:46:bf:72:61:42:fc:e5:8d:f5:9f:f1:27:9f:37: 8b:c8:cd:45:a5:8d:fc:a7:24:59:74:84:a5:16:18:2d:6d:dd: b3:12:fb:0d:6e:8c:bf:27:14:c9:1d:19:f7:d1:28:3a:b3:4e: 1f:5a:81:bd -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Njk1QTExMC8GA1UEBRMoMjIyNjYyN0I3M0U1MTU0NkIzQkQ1MTBFMEUyQTBERUFB ODI1MjA3ODAeFw0yNjAxMTEwODE4MzJaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTUxNDg1LWIwOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwndMVUSe8JevBJYpXSCAINNz0ZC4B4djcsYEIukwQ8ZamvIqGnWvhVQclJfZT UiSXyPUkT4kFGAt0Kc3vfDrLO0Pt7dNIUXncm1JIBz2FR+Gw7/IK1V6xqKSZid0u P64YTFThea6yF9JHf353McfnPgCz8Ii77rKq1+pLt92qSOyqPNc7uUufnLAi5bT3 9ttna4ZkCy3Opa0OQioZDfKBy3x8/7wPKi/JddHqbBImjHtvwrWqQlhZhQ6LH1ax RFmFFjI/wASdxhdUxXINn33AV1+rCvFG2W5gj3R02sXuR+XdQCOhgtSvEmxltHRO qxqCbE+jI7LhLPfJ+C803n8PAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQULQ64nR/e fpQZ0zzUzTEyPsQ8OmgwHwYDVR0jBBgwFoAUIiZie3PlFUazvVEODioN6qglIHgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2OTVBLzVBNzk3MTQwQzhG MTExRjA4MEVFMzc3NkM0RjlBRTAyL0lpWmllM1BsRlVhenZWRU9EaW9ONnFnbElI Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWlaaWUzUGxGVWF6dlZFT0Rpb042cWdsSUhnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Njk1QS81QTc5NzE0MEM4RjExMUYwODBFRTM3NzZDNEY5QUUwMi8xREYzODAzQUVF QzYxMUYwQjY1NTM1MTc3MTZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBACK/F0wDQYJKoZIhvcNAQELBQADggEBAIUzBtXCdweqRoMOXs0R1ULz nECbqzJWardAxX8qklQMFS+sGRz1kxhbTPsX4yksgQiMZsmoV+/OyqJ5MNu7ZzgS th3dR6/K5lgUvlxEf3zGdmr0VLxc2w6U2hwXx6AvZmJGIhLbKGLiNTUBePkXhEfg wsZFcMysuYkzaBVM+W4Bjc8MSv/tG9aFXBwuBK+PvUahpKEy/APH9XYTIPtFtWUV YosBMw1DWHxhoV+5WTrAOQLAGkvdB/7dUL5Cxl/dtEp07aV8yfgmbWxGv3JhQvzl jfWf8SefN4vIzUWljfynJFl0hKUWGC1t3bMS+w1ujL8nFMkdGffRKDqzTh9agb0= -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:14 2026 by rpki-client