$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/4F9ACB7461F511F0A6467D40C4F9AE02.roa File: 4F9ACB7461F511F0A6467D40C4F9AE02.roa (raw, json) Hash identifier: Kp6nhlIWiSEv3o8kjtdJQRQ6WBFrZkqBEq1j7bnbEso= Subject key identifier: 1E:25:B9:C5:EC:3F:D7:F0:D7:B3:DD:13:AF:AA:62:40:F6:A1:AC:E9 Certificate issuer: /CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Certificate serial: 02DD Authority key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/4F9ACB7461F511F0A6467D40C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:01:24 +0000 ROA not before: Thu 01 Jan 2026 01:20:35 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 13335 IP address blocks: 164.52.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 733 (0x2dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2, serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Validity Not Before: Jan 1 01:20:35 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47ef4-8998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3b:40:d1:e8:03:bc:fb:92:7f:d3:71:56:46: c0:b4:0f:96:39:5a:57:b4:b3:6d:d8:90:51:61:75: b1:29:56:a8:3b:12:57:36:23:6e:67:1d:2f:3d:05: 9f:0b:f6:fa:75:65:9c:ac:e6:c9:83:4b:12:db:80: 51:b2:0a:e3:ed:72:16:1d:dd:98:ad:c4:f4:f2:a6: ea:0a:3e:af:a8:62:d9:20:0b:88:63:c6:01:03:ae: 11:7f:e6:45:43:3e:54:54:3d:1e:d4:27:64:0c:83: 0d:67:78:ec:75:bf:b7:3f:91:a4:4c:85:9a:2e:99: c4:1a:34:f4:02:91:d5:1e:f8:57:57:eb:41:bd:b9: 6c:bc:7a:d1:61:72:be:7b:73:9c:2c:3f:e5:ac:0c: bd:58:c2:43:20:49:9e:05:8c:75:e3:04:65:95:e2: b5:3f:7b:fb:13:5e:62:e6:52:00:ef:8b:ac:96:4c: 7a:8a:62:8c:29:32:56:72:b3:20:f1:3f:6a:12:37: ed:22:82:c4:a7:4d:bf:5c:de:ef:59:54:4e:b6:53: 66:8e:ea:6c:d3:0f:fa:8c:0d:71:42:2c:d1:dd:59: 4a:f2:ab:00:0f:36:b8:e5:48:19:fa:24:fb:23:4d: cc:01:1e:1f:fa:1a:50:4b:25:ca:1b:b3:14:f0:be: fb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:25:B9:C5:EC:3F:D7:F0:D7:B3:DD:13:AF:AA:62:40:F6:A1:AC:E9 X509v3 Authority Key Identifier: keyid:40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/4F9ACB7461F511F0A6467D40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 164.52.62.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:15:f0:bf:fa:9a:e9:73:87:46:cb:f1:0a:f0:74:d6:73:1b: 7f:80:cf:ba:28:9e:b1:12:4e:4c:25:93:7b:8d:4a:c7:49:5e: 27:1a:dd:b3:09:4b:a4:a2:5c:4a:ff:a1:f0:8f:dd:51:c4:24: 43:3f:5d:5d:f6:df:70:22:b3:c2:47:a6:ed:fa:93:96:0e:7a: 8c:10:41:d7:ac:af:76:71:c3:59:10:68:60:8a:89:0e:3e:32: a0:c9:e5:28:21:e0:aa:88:60:cf:b3:10:e5:4a:76:98:42:79: ff:0c:4f:63:4f:67:cd:e7:73:4f:ef:33:22:ca:fe:9e:3c:2d: 7f:2e:40:72:38:18:d0:f6:17:9a:df:5f:4e:e1:cf:4e:6c:ba: 48:72:58:3d:bb:61:47:33:db:6f:70:3a:5a:be:5d:88:28:e9: b2:55:1d:2a:7b:e4:ea:9b:c4:44:bd:83:14:a4:b1:a2:55:38: 87:05:d7:f0:99:4c:6c:e7:cd:5c:c1:cf:41:4f:85:87:44:b9: 4d:46:b9:9c:c6:7c:bc:55:8e:b2:5e:0a:fa:c7:0a:c9:45:ec: 44:9d:b9:de:b2:79:c8:8d:ee:cd:af:2c:52:4d:c2:24:ea:bc: 91:33:a9:6b:47:fe:b6:b1:bc:43:3a:52:d8:76:07:3c:bc:ab: 67:8d:04:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKDQwRTU4MjYzOTcyQjlFMjQxNDJCQUE5QjVBRkEwNTM0 ODFBMzcxOUUwHhcNMjYwMTAxMDEyMDM1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2VmNC04OTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTtA0egDvPuSf9NxVkbAtA+WOVpXtLNt2JBRYXWxKVaoOxJXNiNuZx0vPQWf C/b6dWWcrObJg0sS24BRsgrj7XIWHd2YrcT08qbqCj6vqGLZIAuIY8YBA64Rf+ZF Qz5UVD0e1CdkDIMNZ3jsdb+3P5GkTIWaLpnEGjT0ApHVHvhXV+tBvblsvHrRYXK+ e3OcLD/lrAy9WMJDIEmeBYx14wRlleK1P3v7E15i5lIA74uslkx6imKMKTJWcrMg 8T9qEjftIoLEp02/XN7vWVROtlNmjups0w/6jA1xQizR3VlK8qsADza45UgZ+iT7 I03MAR4f+hpQSyXKG7MU8L77lQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFB4lucXs P9fw17PdE6+qYkD2oazpMB8GA1UdIwQYMBaAFEDlgmOXK54kFCuqm1r6BTSBo3Ge MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ENDc2RUQ3NjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi9RT1dDWTVjcm5pUVVLNnFiV3ZvRk5JR2pj WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FPV0NZNWNybmlRVUs2cWJXdm9GTklHamNaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQTIvRDQ3NkVENzYzNTcyMTFFREFFOTc3ODM5QzRGOUFFMDIvNEY5QUNCNzQ2 MUY1MTFGMEE2NDY3RDQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpDQ+MA0GCSqGSIb3DQEBCwUAA4IBAQCeFfC/+prpc4dGy/EK8HTW cxt/gM+6KJ6xEk5MJZN7jUrHSV4nGt2zCUukolxK/6Hwj91RxCRDP11d9t9wIrPC R6bt+pOWDnqMEEHXrK92ccNZEGhgiokOPjKgyeUoIeCqiGDPsxDlSnaYQnn/DE9j T2fN53NP7zMiyv6ePC1/LkByOBjQ9hea319O4c9ObLpIclg9u2FHM9tvcDpavl2I KOmyVR0qe+Tqm8REvYMUpLGiVTiHBdfwmUxs581cwc9BT4WHRLlNRrmcxny8VY6y Xgr6xwrJRexEnbnesnnIje7NryxSTcIk6ryRM6lrR/62sbxDOlLYdgc8vKtnjQQj -----END CERTIFICATE-----Generated at Wed Mar 4 14:26:17 2026 by rpki-client