$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/C591C650781311F080669C0EC4F9AE02.roa File: C591C650781311F080669C0EC4F9AE02.roa (raw, json) Hash identifier: cTSpuvmKDFikPuspMrJJd75zYdPbV/zVGcJ7ibbHXys= Subject key identifier: 54:94:95:1D:83:87:4B:6F:7A:48:44:11:D0:5D:73:33:C6:4D:E4:00 Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: 0169 Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/C591C650781311F080669C0EC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:31:53 +0000 ROA not before: Wed 13 Aug 2025 07:04:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 147023 IP address blocks: 78.138.14.0/24 maxlen: 24 78.138.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 04:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: Aug 13 07:04:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a59f59-78b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:33:7b:30:ff:e9:bd:8a:c6:9a:ce:18:37:b2: ea:e6:aa:10:91:ec:52:3c:02:ed:54:16:f5:16:5f: 9d:4b:f6:a1:ef:1e:f3:b8:5e:9f:e4:e1:98:75:bc: d1:14:77:be:8f:7f:f2:40:4d:a0:d6:25:08:40:28: f2:3a:8b:a0:ce:dd:67:31:8f:58:22:95:4d:5d:cc: b7:5d:e4:b3:9f:b1:31:95:68:68:39:3a:d3:e7:14: 1d:72:c1:c1:d7:04:c4:7e:22:de:99:1a:3a:f9:61: 4e:a2:f3:52:d4:ba:6a:b7:4b:ea:8a:76:82:01:e2: 1e:9b:91:d2:25:94:ab:cc:ee:04:48:f6:6c:4c:0b: d7:a1:23:aa:99:fe:9b:e0:2b:6d:d0:0b:b3:ac:8e: c5:fe:0f:82:9c:4c:3c:b4:20:88:21:04:53:38:e6: 22:ef:75:10:73:e8:2d:92:bc:4e:f9:e2:07:fa:c4: 64:31:f1:1c:96:bb:ba:42:49:37:29:c4:fc:b2:22: d4:0f:4a:ce:a8:50:54:27:50:80:e0:25:c4:f7:d1: e8:1a:a4:36:dc:de:07:45:fe:2c:a4:82:82:64:63: 4c:96:6e:6a:fe:3a:17:0f:72:33:36:c5:cb:a0:a0: cf:ae:f7:b4:95:5b:a9:34:57:c8:36:8a:78:d7:fe: 5a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:94:95:1D:83:87:4B:6F:7A:48:44:11:D0:5D:73:33:C6:4D:E4:00 X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/C591C650781311F080669C0EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 78.138.14.0/23 Signature Algorithm: sha256WithRSAEncryption 47:b0:46:a2:de:3e:8e:2e:b0:2a:f9:4e:f8:08:9d:53:c8:7f: 83:1f:da:9d:7f:75:1c:f1:8d:f9:b7:ac:bd:5d:b4:2b:2b:37: af:ca:e4:22:9d:95:ff:8d:e8:44:4f:56:ae:b6:0e:d3:89:39: e3:6c:d5:d9:5b:5c:bb:4b:94:83:14:4a:04:23:2b:5d:43:61: 04:03:91:05:57:7e:59:52:2e:c1:b5:ea:70:3c:88:18:55:52: 92:60:d6:26:b4:34:37:3e:39:6d:50:62:65:24:b7:4f:9d:40: 84:76:43:3e:5e:62:85:c7:24:43:62:28:c6:bc:a1:86:2a:ff: a0:68:88:da:a5:32:1b:47:a0:dc:f4:24:25:4e:7a:a0:22:67: d6:77:64:71:1c:a4:01:d4:02:31:b2:f4:ae:66:fb:39:32:12: 85:fa:ef:67:60:a6:fc:8e:83:4a:c6:39:2c:df:50:b5:a0:79: 79:2b:26:ec:71:a1:df:cf:10:f9:bb:7e:b2:89:b7:76:7c:42: e2:46:17:ff:c5:a0:c3:8b:31:67:66:1c:69:78:25:10:d4:3f: 84:f6:25:27:bd:b9:f4:05:33:b6:ed:0a:cb:ec:41:30:d8:ed: b4:09:64:75:0d:f0:65:af:16:b2:99:ca:23:a2:c4:63:b6:98: a0:af:43:6b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwODEzMDcwNDM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWY1OS03OGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkjN7MP/pvYrGms4YN7Lq5qoQkexSPALtVBb1Fl+dS/ah7x7zuF6f5OGYdbzR FHe+j3/yQE2g1iUIQCjyOougzt1nMY9YIpVNXcy3XeSzn7ExlWhoOTrT5xQdcsHB 1wTEfiLemRo6+WFOovNS1Lpqt0vqinaCAeIem5HSJZSrzO4ESPZsTAvXoSOqmf6b 4Ctt0AuzrI7F/g+CnEw8tCCIIQRTOOYi73UQc+gtkrxO+eIH+sRkMfEclru6Qkk3 KcT8siLUD0rOqFBUJ1CA4CXE99HoGqQ23N4HRf4spIKCZGNMlm5q/joXD3IzNsXL oKDPrve0lVupNFfINop41/5a4wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFSUlR2D h0tvekhEEdBdczPGTeQAMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1Q0EvOUU3QzJDRUUwMjRGMTFFRkFDNjVGNTc3QzRGOUFFMDIvQzU5MUM2NTA3 ODEzMTFGMDgwNjY5QzBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBTooOMA0GCSqGSIb3DQEBCwUAA4IBAQBHsEai3j6OLrAq+U74CJ1T yH+DH9qdf3Uc8Y35t6y9XbQrKzevyuQinZX/jehET1autg7TiTnjbNXZW1y7S5SD FEoEIytdQ2EEA5EFV35ZUi7BtepwPIgYVVKSYNYmtDQ3PjltUGJlJLdPnUCEdkM+ XmKFxyRDYijGvKGGKv+gaIjapTIbR6Dc9CQlTnqgImfWd2RxHKQB1AIxsvSuZvs5 MhKF+u9nYKb8joNKxjks31C1oHl5KybscaHfzxD5u36yibd2fELiRhf/xaDDizFn ZhxpeCUQ1D+E9iUnvbn0BTO27QrL7EEw2O20CWR1DfBlrxaymcojosRjtpigr0Nr -----END CERTIFICATE-----Generated at Sat Mar 7 16:12:08 2026 by rpki-client