$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/0DCBAC3863C111EE9A8AA77AC4F9AE02.roa File: 0DCBAC3863C111EE9A8AA77AC4F9AE02.roa (raw, json) Hash identifier: GciIQFKZEDGE9hgGALOITWN6X2hcQgqUIJI2iebUPt0= Subject key identifier: BD:B7:5F:52:3E:15:66:CC:7F:DB:08:6E:FA:8A:6F:76:33:A0:E6:64 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 027E Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/0DCBAC3863C111EE9A8AA77AC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:15:56 +0000 ROA not before: Wed 17 Dec 2025 02:21:24 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 8075 IP address blocks: 128.94.0.0/16 maxlen: 16 135.149.0.0/16 maxlen: 16 138.239.0.0/16 maxlen: 16 147.145.0.0/16 maxlen: 16 148.7.0.0/16 maxlen: 16 155.62.0.0/16 maxlen: 16 158.23.0.0/16 maxlen: 16 158.158.0.0/16 maxlen: 16 167.105.0.0/16 maxlen: 16 167.220.240.0/22 maxlen: 24 169.138.0.0/16 maxlen: 16 170.165.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:56:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F, serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Validity Not Before: Dec 17 02:21:24 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4663c-c045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:fa:6c:e9:ee:e2:54:3d:02:74:91:d4:44:46: 11:a0:0a:83:e7:b4:65:34:72:6c:ab:f7:75:68:5e: dc:40:9b:56:2f:fc:0f:17:34:6b:9f:c0:f2:46:1e: a0:f6:a3:72:61:30:a2:4a:01:f3:7d:59:03:d3:ce: 63:aa:6e:df:9f:3c:b6:ef:aa:ca:24:ab:86:de:6a: 15:44:3b:da:4d:8a:6d:d1:5c:99:7f:8e:c8:e9:43: df:67:3c:84:54:13:98:eb:6c:39:f8:e0:c1:6e:58: 2a:38:5b:8f:6c:5e:11:97:40:e0:50:d8:48:dc:06: 6e:57:18:78:ff:f4:c0:48:e9:c2:04:e1:14:9b:97: e7:f6:fc:fb:4d:9f:93:fd:af:6f:f5:37:43:4a:1a: b2:ba:f0:24:4d:ea:4d:36:71:46:e6:1b:a0:b1:19: d3:c7:2f:e5:ed:c7:6f:da:f0:cf:d0:d6:5f:9b:25: 36:50:9f:80:5a:da:82:0a:bf:3f:9b:a5:bb:82:e4: 0e:74:c9:b7:71:a7:19:3e:e6:06:27:cc:94:eb:be: 7f:0a:6a:89:89:07:ed:a8:65:3c:e3:23:fc:1b:45: 89:fa:57:a7:c3:29:77:6f:43:8b:ad:ca:e2:a7:25: b3:c9:77:c3:9c:8b:1c:e2:55:90:2b:8c:06:10:58: 38:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B7:5F:52:3E:15:66:CC:7F:DB:08:6E:FA:8A:6F:76:33:A0:E6:64 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/0DCBAC3863C111EE9A8AA77AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 128.94.0.0/16 135.149.0.0/16 138.239.0.0/16 147.145.0.0/16 148.7.0.0/16 155.62.0.0/16 158.23.0.0/16 158.158.0.0/16 167.105.0.0/16 167.220.240.0/22 169.138.0.0/16 170.165.0.0/16 Signature Algorithm: sha256WithRSAEncryption 91:73:6f:1a:11:e8:5e:ae:13:b2:6e:5b:b4:94:21:e4:b6:de: 50:7b:5a:51:d7:ca:0f:61:9c:70:b5:ae:40:36:79:5d:d0:02: 7c:45:e3:74:22:67:a5:67:00:14:f5:80:68:1c:f3:84:38:80: 7f:61:de:92:0a:23:c5:e8:9e:de:43:67:2e:ca:c8:6f:79:20: 43:58:8b:ca:16:3b:b6:9f:9f:32:6a:1d:21:f1:dd:a4:44:de: 35:25:e2:33:22:77:50:52:03:a7:ba:d9:f7:29:68:c7:37:aa: 1d:fc:6a:db:a7:d8:53:85:68:e4:99:26:87:99:3d:f4:61:25: bb:62:7a:00:1d:40:2e:e7:fe:0e:b0:02:81:98:c2:df:4d:9d: b0:bc:85:38:99:06:c1:c7:9f:4b:2f:d8:e0:32:1f:1e:1c:7b: 87:f9:ba:e7:e5:89:f4:a3:c7:a5:e4:74:14:12:71:f7:96:0b: 28:46:74:ca:b2:e5:34:96:a7:c6:14:a1:1b:b8:d2:8b:a0:c5: ea:5e:e0:6e:73:e9:f2:ed:67:b9:c6:c8:95:65:da:eb:97:6d: 84:c4:b3:ba:27:88:f0:2e:cc:b2:4b:3a:94:bb:54:cb:6f:49: ed:5e:f5:c4:73:78:9b:6d:74:89:1e:7e:e6:af:99:ea:8c:72: e0:68:85:20 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjUxMjE3MDIyMTI0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjYzYy1jMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnvps6e7iVD0CdJHUREYRoAqD57RlNHJsq/d1aF7cQJtWL/wPFzRrn8DyRh6g 9qNyYTCiSgHzfVkD085jqm7fnzy276rKJKuG3moVRDvaTYpt0VyZf47I6UPfZzyE VBOY62w5+ODBblgqOFuPbF4Rl0DgUNhI3AZuVxh4//TASOnCBOEUm5fn9vz7TZ+T /a9v9TdDShqyuvAkTepNNnFG5hugsRnTxy/l7cdv2vDP0NZfmyU2UJ+AWtqCCr8/ m6W7guQOdMm3cacZPuYGJ8yU675/CmqJiQftqGU84yP8G0WJ+lenwyl3b0OLrcri pyWzyXfDnIsc4lWQK4wGEFg4vwIDAQABo4IClzCCApMwHQYDVR0OBBYEFL23X1I+ FWbMf9sIbvqKb3YzoOZkMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvMzA1RUI4NzY3Q0RCMTFFREFCODQ0QzE5QzRGOUFFMDIvMERDQkFDMzg2 M0MxMTFFRTlBOEFBNzdBQzRGOUFFMDIucm9hMFYGCCsGAQUFBwEHAQH/BEcwRTBD BAIAATA9AwMAgF4DAwCHlQMDAIrvAwMAk5EDAwCUBwMDAJs+AwMAnhcDAwCengMD AKdpAwQCp9zwAwMAqYoDAwCqpTANBgkqhkiG9w0BAQsFAAOCAQEAkXNvGhHoXq4T sm5btJQh5LbeUHtaUdfKD2GccLWuQDZ5XdACfEXjdCJnpWcAFPWAaBzzhDiAf2He kgojxeie3kNnLsrIb3kgQ1iLyhY7tp+fMmodIfHdpETeNSXiMyJ3UFIDp7rZ9ylo xzeqHfxq26fYU4Vo5Jkmh5k99GElu2J6AB1ALuf+DrACgZjC302dsLyFOJkGwcef Sy/Y4DIfHhx7h/m65+WJ9KPHpeR0FBJx95YLKEZ0yrLlNJanxhShG7jSi6DF6l7g bnPp8u1nucbIlWXa65dthMSzuieI8C7Msks6lLtUy29J7V71xHN4m210iR5+5q+Z 6oxy4GiFIA== -----END CERTIFICATE-----Generated at Wed Mar 4 19:16:14 2026 by rpki-client