$ rpki-client -vvf rpki.apnic.net/member_repository/A91923E8/ACC4FBCE54F411F1BD1F2CEDA1833773/1257DEDE54F511F18BFCC077A2833773.roa File: 1257DEDE54F511F18BFCC077A2833773.roa (raw, json) Hash identifier: DZsp3kp44FtbJD7jaWrhsQw5V2T437I/DrbmUoEFoeA= Subject key identifier: C0:7A:9F:7A:BC:63:A4:0D:9D:19:31:29:B3:A0:21:F2:2F:E9:E4:10 Certificate issuer: /CN=A91923E8/serialNumber=35A92944058ABBE9374C557BB084E1813440447F Certificate serial: 02 Authority key identifier: 35:A9:29:44:05:8A:BB:E9:37:4C:55:7B:B0:84:E1:81:34:40:44:7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NakpRAWKu-k3TFV7sIThgTRARH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923E8/ACC4FBCE54F411F1BD1F2CEDA1833773/1257DEDE54F511F18BFCC077A2833773.roa Signing time: Thu 21 May 2026 09:11:38 +0000 ROA not before: Thu 21 May 2026 09:11:38 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154280 IP address blocks: 138.252.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923E8/ACC4FBCE54F411F1BD1F2CEDA1833773/NakpRAWKu-k3TFV7sIThgTRARH8.crl rsync://rpki.apnic.net/member_repository/A91923E8/ACC4FBCE54F411F1BD1F2CEDA1833773/NakpRAWKu-k3TFV7sIThgTRARH8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NakpRAWKu-k3TFV7sIThgTRARH8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 09:58:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923E8, serialNumber=35A92944058ABBE9374C557BB084E1813440447F Validity Not Before: May 21 09:11:38 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a0ecc4a-25c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:dc:2e:78:4c:ec:b3:b5:d4:a4:c3:41:f9:e0: 7e:fe:9d:bb:0d:ed:01:31:07:59:b0:b4:2d:11:f4: 0b:2e:b3:d2:95:8e:79:ac:e3:8e:70:60:6c:17:fa: 11:60:bc:c5:c1:80:a3:65:6b:a0:53:4a:a7:82:6b: a2:16:cc:e1:7e:2f:e4:7c:bc:5f:91:9f:c1:4c:0c: 0e:a6:2f:cc:72:43:6c:8c:b9:e8:da:6d:90:e2:ae: 35:28:c6:e8:f6:8c:de:01:4c:2a:82:d9:8d:d5:3c: 9c:89:11:5b:c4:89:1e:2f:58:12:0f:59:f9:3e:f1: 57:3e:f4:28:ce:e1:00:3a:f7:07:b5:38:04:27:b0: 6d:52:97:55:ef:64:1e:cc:32:3b:8c:05:4f:91:a6: 21:61:63:bc:1c:33:74:c1:f7:33:b8:68:57:02:bf: b0:1d:cb:7b:66:50:cd:57:ad:00:b1:47:43:e4:b8: 22:6f:ec:fd:9b:7a:15:2f:c1:1d:c9:0e:9e:1b:a5: 1d:12:19:47:a3:c4:f1:aa:3e:46:0a:84:a9:17:2f: ba:b7:c2:55:1e:0b:8e:a7:b9:7c:c8:6e:34:93:30: ce:fa:1c:99:2a:76:c0:2f:34:57:cb:9b:0a:26:22: 39:b7:da:ab:54:31:d3:ed:49:44:9b:39:7c:e8:30: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:7A:9F:7A:BC:63:A4:0D:9D:19:31:29:B3:A0:21:F2:2F:E9:E4:10 X509v3 Authority Key Identifier: keyid:35:A9:29:44:05:8A:BB:E9:37:4C:55:7B:B0:84:E1:81:34:40:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923E8/ACC4FBCE54F411F1BD1F2CEDA1833773/NakpRAWKu-k3TFV7sIThgTRARH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NakpRAWKu-k3TFV7sIThgTRARH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923E8/ACC4FBCE54F411F1BD1F2CEDA1833773/1257DEDE54F511F18BFCC077A2833773.roa sbgp-ipAddrBlock: critical IPv4: 138.252.6.0/23 Signature Algorithm: sha256WithRSAEncryption 08:ae:b2:62:5f:0a:99:1f:d8:2c:a6:82:bb:80:ab:7e:ff:69: f7:1a:e7:84:9b:d0:b1:ac:00:5a:24:2d:e4:41:7a:b6:f5:a9: 8a:95:33:dc:55:06:f6:84:41:97:d7:cb:61:ff:72:d3:f0:e1: 0d:06:8f:84:a4:9e:9d:a9:8b:c3:2d:a7:f4:3e:ab:25:de:69: e0:89:9b:e2:8b:0e:f4:0d:0c:fb:63:0c:60:32:8e:17:fc:65: 95:81:a0:34:34:59:40:04:d3:70:64:84:2b:ff:c4:02:ca:44: 36:88:f1:a2:6a:55:81:5c:62:34:ce:d1:78:ca:d4:ae:ff:d1: 6d:0a:75:b7:44:22:5e:4f:58:db:98:2a:91:09:c5:ab:7c:a0: 34:bd:ae:46:13:59:fd:27:71:4d:df:67:82:e8:77:ca:80:1a: f1:75:7d:37:6e:f9:ad:d4:9d:d8:bb:cb:c2:a5:98:c3:a2:91: e2:d3:2a:d9:dd:66:29:91:fb:99:65:6e:7f:10:4f:a4:53:58: e1:7a:b4:d3:f2:e6:bd:b0:43:7a:74:3d:c5:89:84:f9:0c:80: 47:65:d7:35:ab:07:38:d1:a9:91:51:08:f9:2a:4d:6b:b9:db: 49:47:a6:0e:49:16:59:91:ae:f6:63:69:e8:cf:3f:dc:a3:50: 9e:7d:92:a2 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MjNFODExMC8GA1UEBRMoMzVBOTI5NDQwNThBQkJFOTM3NEM1NTdCQjA4NEUxODEz NDQwNDQ3RjAeFw0yNjA1MjEwOTExMzhaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMGVjYzRhLTI1YzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCV3C54TOyztdSkw0H54H7+nbsN7QExB1mwtC0R9Asus9KVjnms445wYGwX+hFg vMXBgKNla6BTSqeCa6IWzOF+L+R8vF+Rn8FMDA6mL8xyQ2yMuejabZDirjUoxuj2 jN4BTCqC2Y3VPJyJEVvEiR4vWBIPWfk+8Vc+9CjO4QA69we1OAQnsG1Sl1XvZB7M MjuMBU+RpiFhY7wcM3TB9zO4aFcCv7Ady3tmUM1XrQCxR0PkuCJv7P2behUvwR3J Dp4bpR0SGUejxPGqPkYKhKkXL7q3wlUeC46nuXzIbjSTMM76HJkqdsAvNFfLmwom Ijm32qtUMdPtSUSbOXzoMLUFAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUwHqferxj pA2dGTEps6Ah8i/p5BAwHwYDVR0jBBgwFoAUNakpRAWKu+k3TFV7sIThgTRARH8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyM0U4L0FDQzRGQkNFNTRG NDExRjFCRDFGMkNFREExODMzNzczL05ha3BSQVdLdS1rM1RGVjdzSVRoZ1RSQVJI OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTmFrcFJBV0t1LWszVEZWN3NJVGhnVFJBUkg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjNFOC9BQ0M0RkJDRTU0RjQxMUYxQkQxRjJDRURBMTgzMzc3My8xMjU3REVERTU0 RjUxMUYxOEJGQ0MwNzdBMjgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAGK/AYwDQYJKoZIhvcNAQELBQADggEBAAiusmJfCpkf2CymgruAq37/ afca54Sb0LGsAFokLeRBerb1qYqVM9xVBvaEQZfXy2H/ctPw4Q0Gj4Sknp2pi8Mt p/Q+qyXeaeCJm+KLDvQNDPtjDGAyjhf8ZZWBoDQ0WUAE03BkhCv/xALKRDaI8aJq VYFcYjTO0XjK1K7/0W0KdbdEIl5PWNuYKpEJxat8oDS9rkYTWf0ncU3fZ4Lod8qA GvF1fTdu+a3Undi7y8KlmMOikeLTKtndZimR+5llbn8QT6RTWOF6tNPy5r2wQ3p0 PcWJhPkMgEdl1zWrBzjRqZFRCPkqTWu520lHpg5JFlmRrvZjaejPP9yjUJ59kqI= -----END CERTIFICATE-----Generated at Tue Jun 2 21:32:20 2026 by rpki-client