$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3686C7DAEF6411F0BA166417586F56BC.roa File: 3686C7DAEF6411F0BA166417586F56BC.roa (raw, json) Hash identifier: xqT8M+J6hDCfA5fl7QEzDVfdLSY3bIK8u0khf1ZvH6s= Subject key identifier: 3C:20:5D:14:72:53:29:06:7C:C4:35:6A:2B:0A:B7:93:27:EE:22:71 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 2119 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3686C7DAEF6411F0BA166417586F56BC.roa Signing time: Mon 02 Mar 2026 23:21:31 +0000 ROA not before: Mon 12 Jan 2026 03:10:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150323 IP address blocks: 138.252.218.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 14:12:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8473 (0x2119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: Jan 12 03:10:14 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b7b-27b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:28:0b:25:0e:6f:0b:6e:4d:fe:08:d3:b8:3b: 5f:28:1e:1a:31:d2:2b:87:2b:a9:87:5d:cf:07:8e: 3e:77:71:35:ad:90:10:52:2b:21:0e:53:c9:bb:73: 3d:f4:a2:b2:a9:2e:4c:bc:7c:0f:04:36:ac:47:88: b4:ab:10:78:c7:36:54:4c:8f:f9:5c:74:07:7f:5e: a8:14:4b:51:a2:1c:fe:03:b6:1b:e9:8b:ed:4c:b8: e0:dd:c0:7b:fd:e1:2a:a9:cf:c6:78:e2:4f:54:92: 5d:64:cd:bd:3e:0c:0a:b7:42:5d:8c:53:1c:ce:af: 05:88:3d:1b:71:32:17:bf:10:2a:9f:56:97:30:0c: 33:6f:83:d9:ae:5b:87:ef:db:23:14:46:0d:00:13: 1d:ca:af:3e:db:82:43:cf:48:13:25:c5:65:3b:b3: 11:1f:80:37:1a:1a:84:6d:4c:32:ea:e1:a9:dd:d3: 82:b7:7a:f4:9e:11:ed:03:06:4a:67:81:b4:be:87: 85:ac:b4:51:e4:bd:6e:1c:10:1c:28:03:92:c3:39: 40:82:5e:ea:58:3d:07:af:81:ad:ac:54:3f:bc:63: ac:0a:83:c8:a4:b4:a7:77:b1:66:74:2e:67:c5:e2: 0c:18:b6:7d:4d:d9:41:cb:e9:74:b6:af:07:61:16: 1e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:20:5D:14:72:53:29:06:7C:C4:35:6A:2B:0A:B7:93:27:EE:22:71 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/3686C7DAEF6411F0BA166417586F56BC.roa sbgp-ipAddrBlock: critical IPv4: 138.252.218.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:5d:13:a3:6a:1c:52:02:9c:e9:55:49:cf:0e:d1:b1:09:1d: b3:53:f4:a2:e2:d5:b7:c5:88:0b:21:e9:66:af:5d:b4:66:77: cf:ee:61:db:b2:62:5f:a2:77:74:e8:3b:e2:31:73:6c:53:63: aa:11:a9:6f:75:79:62:e4:d8:39:0a:e7:e1:a9:cd:29:a3:4c: 50:89:5c:36:c3:2f:34:88:43:0c:ee:69:0f:3a:eb:90:3a:22: 2e:c1:66:5d:70:cd:73:42:11:28:18:70:c4:de:bc:56:5a:6d: 65:e6:59:8b:7b:0d:34:22:5f:be:b6:ae:ad:83:3a:5f:aa:db: 3c:fa:a9:55:f4:2d:e9:b3:da:6b:6a:d0:9d:12:d9:27:84:ba: 3d:fa:b2:2d:c6:b5:69:ef:79:0d:88:ed:e0:ec:f7:6b:81:95: 4e:fe:cd:29:67:1d:3c:2e:7e:ec:ce:3d:40:29:85:df:3e:a0: 1e:fc:2b:5a:90:10:c5:e0:8e:9f:a3:b0:b5:97:16:74:2e:b8: 61:93:7d:31:01:41:b2:14:f1:ef:ba:ed:2d:f6:cd:c2:43:0e: 10:f2:2c:e6:11:b1:bf:c5:45:a6:56:68:02:36:d5:67:e2:1c: 8d:13:02:b9:c9:9a:d5:a2:3b:96:fd:2d:cf:af:08:af:ca:b3: 92:53:11:88 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICIRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjYwMTEyMDMxMDE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI3Yi0yN2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsygLJQ5vC25N/gjTuDtfKB4aMdIrhyuph13PB44+d3E1rZAQUishDlPJu3M9 9KKyqS5MvHwPBDasR4i0qxB4xzZUTI/5XHQHf16oFEtRohz+A7Yb6YvtTLjg3cB7 /eEqqc/GeOJPVJJdZM29PgwKt0JdjFMczq8FiD0bcTIXvxAqn1aXMAwzb4PZrluH 79sjFEYNABMdyq8+24JDz0gTJcVlO7MRH4A3GhqEbUwy6uGp3dOCt3r0nhHtAwZK Z4G0voeFrLRR5L1uHBAcKAOSwzlAgl7qWD0Hr4GtrFQ/vGOsCoPIpLSnd7FmdC5n xeIMGLZ9TdlBy+l0tq8HYRYeMQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDwgXRRy UykGfMQ1aisKt5Mn7iJxMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMzY4NkM3REFF RjY0MTFGMEJBMTY2NDE3NTg2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBivzaMA0GCSqGSIb3DQEBCwUAA4IBAQCOXROjahxSApzpVUnPDtGx CR2zU/Si4tW3xYgLIelmr120ZnfP7mHbsmJfond06DviMXNsU2OqEalvdXli5Ng5 Cufhqc0po0xQiVw2wy80iEMM7mkPOuuQOiIuwWZdcM1zQhEoGHDE3rxWWm1l5lmL ew00Il++tq6tgzpfqts8+qlV9C3ps9pratCdEtknhLo9+rItxrVp73kNiO3g7Pdr gZVO/s0pZx08Ln7szj1AKYXfPqAe/CtakBDF4I6fo7C1lxZ0Lrhhk30xAUGyFPHv uu0t9s3CQw4Q8izmEbG/xUWmVmgCNtVn4hyNEwK5yZrVojuW/S3PrwivyrOSUxGI -----END CERTIFICATE-----Generated at Sat Mar 7 22:52:35 2026 by rpki-client