$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/0228453AC5F811F08FFA5F38C4F9AE02.roa File: 0228453AC5F811F08FFA5F38C4F9AE02.roa (raw, json) Hash identifier: wxhbuzbWu3rbI56tYOuHWo55ZaPV1JMd62naT16Ecvo= Subject key identifier: F2:DA:7C:DC:FD:E4:25:CE:95:EC:A5:65:2D:E5:53:6C:F3:2C:A6:7D Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: 83 Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/0228453AC5F811F08FFA5F38C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:16 +0000 ROA not before: Thu 20 Nov 2025 10:02:23 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138077 IP address blocks: 72.57.155.0/24 maxlen: 24 72.57.156.0/22 maxlen: 24 72.57.160.0/22 maxlen: 24 72.57.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 20:41:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: Nov 20 10:02:23 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a48630-8cf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b0:7d:3a:5a:73:89:c6:d7:75:97:63:6f:3f: 69:37:3f:c2:d6:eb:e5:a8:1f:65:86:b1:51:45:52: 99:03:8c:b0:e8:80:ad:45:f8:ef:79:00:03:7d:3d: 9c:08:e2:89:e2:d0:7f:82:ca:a3:57:10:e8:7e:72: ab:c5:30:32:e5:3b:be:24:8a:90:14:3a:24:a8:bc: 0f:e7:81:37:85:ed:8e:cf:09:fa:cd:76:e4:d0:2f: b2:57:4a:05:90:20:85:d3:d5:69:c4:23:08:f8:3d: 6e:6c:27:4d:68:34:28:13:74:93:93:e6:4b:a8:20: da:3b:6c:09:56:73:49:85:1a:28:03:1f:45:7b:6e: 7f:5c:2a:47:83:52:32:fb:49:b2:74:af:b7:b9:9c: 9d:af:98:92:39:7f:0e:d7:ee:95:43:1f:28:87:6c: a0:08:bf:ea:a4:9c:e9:67:fe:6f:0b:26:e1:da:28: ab:d3:98:ff:63:cf:15:76:1c:a0:f6:18:b0:2b:49: bc:94:08:1d:c4:f6:55:88:d8:18:99:38:db:ec:de: 49:6a:46:cf:9a:e6:8b:2d:49:b0:f2:96:0f:02:cd: 82:ac:38:bd:3d:7d:57:40:72:8e:8b:40:2f:bc:6e: 9b:a0:12:10:d7:63:d2:32:33:52:1d:b0:11:4e:b0: 8f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:DA:7C:DC:FD:E4:25:CE:95:EC:A5:65:2D:E5:53:6C:F3:2C:A6:7D X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/0228453AC5F811F08FFA5F38C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 72.57.155.0-72.57.164.255 Signature Algorithm: sha256WithRSAEncryption 86:fb:e3:80:69:1b:2a:dc:ee:fe:a1:fb:e9:3b:66:6a:e9:db: 19:d2:b4:24:01:84:c6:1a:47:01:0a:71:5f:d4:d2:37:66:dd: b3:17:aa:33:dc:cc:80:bb:dc:ad:1b:89:b3:98:60:b2:5e:99: 19:d4:5a:d5:f0:57:ae:5d:0f:54:6a:db:ac:7e:47:2f:14:6f: d7:13:39:75:47:a1:d9:71:05:aa:52:cd:97:b3:7e:5a:5f:04: 08:6b:47:d8:b8:53:94:4a:0b:5f:6a:6e:d3:6d:0d:ea:fc:38: 5e:fa:97:5a:21:d0:bf:88:36:3c:ff:06:4f:be:1c:04:73:2b: ed:e1:c3:6e:8b:53:6b:7d:db:be:26:ab:1a:80:c5:25:68:38: 85:61:e6:07:a0:bd:b1:0a:76:8e:b5:a2:3f:00:cb:fd:fc:35: 8e:e5:db:06:49:8a:5a:62:ff:4f:67:a2:0e:79:07:60:22:ee: 4c:ed:ab:1b:d4:50:37:20:e0:d6:d1:61:54:78:b3:81:5c:b2: 33:6b:23:3a:c9:ac:76:3b:34:54:53:73:f4:cd:09:9f:53:03: 47:c5:4e:39:00:46:66:12:5a:03:1b:2b:cc:e2:6c:04:bd:de: 85:f9:8b:dc:16:86:0b:86:8f:d2:62:21:ff:ae:f4:df:46:b2: e6:d6:8f:e1 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4RTcxMTAvBgNVBAUTKDNENjIxNkQ1NUNCNTRGQzlCNTcwRjlGMjVGOUFERDBG Mzc2OUI0REUwHhcNMjUxMTIwMTAwMjIzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYzMC04Y2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl7B9OlpzicbXdZdjbz9pNz/C1uvlqB9lhrFRRVKZA4yw6ICtRfjveQADfT2c COKJ4tB/gsqjVxDofnKrxTAy5Tu+JIqQFDokqLwP54E3he2Ozwn6zXbk0C+yV0oF kCCF09VpxCMI+D1ubCdNaDQoE3STk+ZLqCDaO2wJVnNJhRooAx9Fe25/XCpHg1Iy +0mydK+3uZydr5iSOX8O1+6VQx8oh2ygCL/qpJzpZ/5vCybh2iir05j/Y88Vdhyg 9hiwK0m8lAgdxPZViNgYmTjb7N5JakbPmuaLLUmw8pYPAs2CrDi9PX1XQHKOi0Av vG6boBIQ12PSMjNSHbARTrCP8QIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFPLafNz9 5CXOleylZS3lU2zzLKZ9MB8GA1UdIwQYMBaAFD1iFtVctU/JtXD58l+a3Q83abTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzhFNy9DNjJCMjk4Njkz NDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi9QV0lXMVZ5MVQ4bTFjUG55WDVyZER6ZHB0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4RTcvQzYyQjI5ODY5MzQyMTFGMEE5ODc3ODNCQzRGOUFFMDIvMDIyODQ1M0FD NUY4MTFGMDhGRkE1RjM4QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBABIOZsDBABIOaQwDQYJKoZIhvcNAQELBQADggEBAIb744BpGyrc 7v6h++k7Zmrp2xnStCQBhMYaRwEKcV/U0jdm3bMXqjPczIC73K0bibOYYLJemRnU WtXwV65dD1Rq26x+Ry8Ub9cTOXVHodlxBapSzZezflpfBAhrR9i4U5RKC19qbtNt Der8OF76l1oh0L+INjz/Bk++HARzK+3hw26LU2t9274mqxqAxSVoOIVh5gegvbEK do61oj8Ay/38NY7l2wZJilpi/09nog55B2Ai7kztqxvUUDcg4NbRYVR4s4FcsjNr IzrJrHY7NFRTc/TNCZ9TA0fFTjkARmYSWgMbK8zibAS93oX5i9wWhguGj9JiIf+u 9N9GsubWj+E= -----END CERTIFICATE-----Generated at Wed Mar 4 10:08:56 2026 by rpki-client