$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/4489B3E24A7211F1B530687DA4833773.roa File: 4489B3E24A7211F1B530687DA4833773.roa (raw, json) Hash identifier: u7K1j1Hq8cUDTaFA8bSrlR6sa+I860TeNFfXPq9IJr8= Subject key identifier: A7:CB:34:51:B0:33:02:A6:B2:71:77:45:AF:7C:1F:09:9E:83:DD:4D Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: CE Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/4489B3E24A7211F1B530687DA4833773.roa Signing time: Wed 27 May 2026 10:36:45 +0000 ROA not before: Wed 27 May 2026 10:36:45 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9304 IP address blocks: 74.52.0.0/24 maxlen: 24 74.52.2.0/24 maxlen: 24 74.52.7.0/24 maxlen: 24 74.52.8.0/22 maxlen: 22 74.52.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Jun 2026 21:19:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: May 27 10:36:45 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6a16c93d-aa49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:32:c1:98:46:99:42:a0:9a:88:26:0a:d0:d4: 49:d5:6d:c1:07:97:a3:ea:a4:89:e4:e0:9e:c9:4e: b3:7d:53:38:08:e9:57:e1:f5:b1:64:79:41:42:40: 20:da:8a:a5:a4:cb:6e:bd:6f:60:3a:02:8f:03:0c: 35:df:04:39:1c:48:34:96:f1:1c:28:7a:14:8b:ff: 1c:6f:06:e4:96:54:db:75:95:0e:8a:5a:d0:30:b6: ac:ec:61:20:8a:0b:2d:1a:f5:37:7c:05:37:66:2c: aa:75:5a:f8:56:2c:f2:90:35:bb:15:1e:84:07:c8: e1:46:77:9a:e8:e3:4b:67:37:c8:8d:68:6b:3a:65: 39:62:88:56:e2:97:bc:0c:da:be:f5:ef:11:2f:b9: 68:eb:dc:33:d9:2d:f3:b9:4b:90:67:2f:b9:f8:58: 20:9d:02:cb:4a:ac:85:a4:4a:96:5b:09:3f:87:82: 16:65:c2:be:d1:78:2e:00:95:b1:6e:d4:76:c0:9c: 3e:16:48:7e:9c:fc:d8:99:07:10:61:f2:e3:2d:7d: 96:7f:b4:bd:ca:54:fe:bc:1e:3a:54:21:06:38:2b: e1:cf:66:0d:0e:5f:de:22:27:3a:69:ec:35:45:2f: 2b:4c:60:24:e6:5d:64:8c:2b:d9:3f:e3:42:eb:b1: 2e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:CB:34:51:B0:33:02:A6:B2:71:77:45:AF:7C:1F:09:9E:83:DD:4D X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/4489B3E24A7211F1B530687DA4833773.roa sbgp-ipAddrBlock: critical IPv4: 74.52.0.0/24 74.52.2.0/24 74.52.7.0-74.52.11.255 74.52.15.0/24 Signature Algorithm: sha256WithRSAEncryption 86:b7:7d:b3:d1:6a:df:93:2a:83:7e:be:56:5f:cf:af:05:a4: fd:11:5d:cd:65:a2:d7:59:67:b3:b0:b1:3d:05:85:e7:93:6b: 26:cd:a9:c0:3d:8a:77:0f:a7:16:17:68:f7:63:42:3a:7c:08: d0:23:d9:60:de:fd:2b:d7:92:c0:b2:8b:3c:c8:35:f5:c3:4d: 7e:f7:d4:e4:56:c3:d2:3b:89:1e:3d:98:d3:0b:ff:7a:a7:56: 32:82:b2:8c:e4:92:b8:9a:b8:df:7e:94:2b:4d:4c:c3:72:5c: 7e:96:ff:3f:c3:7c:6e:96:07:7b:5a:d0:4f:fa:d9:ee:d5:eb: 68:c3:ab:ba:c8:bc:ac:1a:ce:66:15:74:45:3f:ac:04:60:2e: c3:33:95:1f:61:a4:36:64:67:74:50:21:b8:40:e5:26:16:72: 62:14:bf:18:34:af:1c:43:61:a3:1a:df:ab:0e:5e:38:b5:93: e0:c4:fd:ff:64:1a:dd:62:b3:38:ab:04:aa:59:e1:6c:36:c8: 91:6e:93:7a:0f:94:84:dc:05:03:b2:71:68:c2:5b:a4:0d:e9: 18:69:0d:f7:53:27:12:6d:67:f2:cc:67:03:5f:3c:bd:99:86: aa:8b:fb:f5:35:ef:9f:99:26:8d:89:50:ca:d1:9f:27:42:8b: b2:34:ec:42 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4RTcxMTAvBgNVBAUTKDNENjIxNkQ1NUNCNTRGQzlCNTcwRjlGMjVGOUFERDBG Mzc2OUI0REUwHhcNMjYwNTI3MTAzNjQ1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE2YzkzZC1hYTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDLBmEaZQqCaiCYK0NRJ1W3BB5ej6qSJ5OCeyU6zfVM4COlX4fWxZHlBQkAg 2oqlpMtuvW9gOgKPAww13wQ5HEg0lvEcKHoUi/8cbwbkllTbdZUOilrQMLas7GEg igstGvU3fAU3ZiyqdVr4VizykDW7FR6EB8jhRnea6ONLZzfIjWhrOmU5YohW4pe8 DNq+9e8RL7lo69wz2S3zuUuQZy+5+FggnQLLSqyFpEqWWwk/h4IWZcK+0XguAJWx btR2wJw+Fkh+nPzYmQcQYfLjLX2Wf7S9ylT+vB46VCEGOCvhz2YNDl/eIic6aew1 RS8rTGAk5l1kjCvZP+NC67EupwIDAQABo4ICejCCAnYwHQYDVR0OBBYEFKfLNFGw MwKmsnF3Ra98Hwmeg91NMB8GA1UdIwQYMBaAFD1iFtVctU/JtXD58l+a3Q83abTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzhFNy9DNjJCMjk4Njkz NDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi9QV0lXMVZ5MVQ4bTFjUG55WDVyZER6ZHB0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4RTcvQzYyQjI5ODY5MzQyMTFGMEE5ODc3ODNCQzRGOUFFMDIvNDQ4OUIzRTI0 QTcyMTFGMUI1MzA2ODdEQTQ4MzM3NzMucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgAwQASjQAAwQASjQCMAwDBABKNAcDBAJKNAgDBABKNA8wDQYJKoZIhvcN AQELBQADggEBAIa3fbPRat+TKoN+vlZfz68FpP0RXc1lotdZZ7OwsT0FheeTaybN qcA9incPpxYXaPdjQjp8CNAj2WDe/SvXksCyizzINfXDTX731ORWw9I7iR49mNML /3qnVjKCsozkkriauN9+lCtNTMNyXH6W/z/DfG6WB3ta0E/62e7V62jDq7rIvKwa zmYVdEU/rARgLsMzlR9hpDZkZ3RQIbhA5SYWcmIUvxg0rxxDYaMa36sOXji1k+DE /f9kGt1iszirBKpZ4Ww2yJFuk3oPlITcBQOycWjCW6QN6RhpDfdTJxJtZ/LMZwNf PL2ZhqqL+/U175+ZJo2JUMrRnydCi7I07EI= -----END CERTIFICATE-----Generated at Tue Jun 2 20:51:08 2026 by rpki-client