$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa File: 94855EA0357711EDB81B8A34C4F9AE02.roa (raw, json) Hash identifier: WEQNjKUUarvWFek2QKEOk5VWDSS6XlisXMiNSu5mDsg= Subject key identifier: 78:96:01:11:2E:57:07:47:15:57:6A:0E:99:B9:2D:59:1B:26:A5:24 Certificate issuer: /CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Certificate serial: 02DE Authority key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:01:25 +0000 ROA not before: Sun 25 Jan 2026 11:13:46 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 63199 IP address blocks: 164.52.14.0/23 maxlen: 23 164.52.14.0/24 maxlen: 24 164.52.15.0/24 maxlen: 24 164.52.26.0/24 maxlen: 24 164.52.27.0/24 maxlen: 24 164.52.62.0/23 maxlen: 24 164.52.78.0/24 maxlen: 24 164.52.79.0/24 maxlen: 24 164.52.81.0/24 maxlen: 24 164.52.96.0/24 maxlen: 24 164.52.99.0/24 maxlen: 24 164.52.105.0/24 maxlen: 24 164.52.118.0/24 maxlen: 24 164.52.120.0/23 maxlen: 23 164.52.120.0/24 maxlen: 24 164.52.121.0/24 maxlen: 24 164.52.122.0/24 maxlen: 24 164.52.123.0/24 maxlen: 24 164.52.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2, serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Validity Not Before: Jan 25 11:13:46 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47ef5-0dd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ac:23:ea:2b:03:26:e5:1c:be:4e:c8:f5:86: 7b:d4:e7:4f:c4:a6:1c:e5:00:a7:c7:f6:fe:a6:46: 85:49:f2:07:ca:bc:4b:35:4a:44:ab:4e:9c:6b:3f: f8:ad:76:7d:25:0d:bf:4e:c2:4d:b6:4e:cb:b6:ed: 5f:43:b1:90:15:02:b5:1e:cf:44:bc:35:69:db:62: c6:e3:4c:ee:43:1b:a8:55:91:b3:59:70:fa:a8:63: 2e:7d:66:16:e9:b4:d7:de:6f:9c:64:61:65:60:d0: e1:cd:f9:c3:f4:37:e5:67:84:2b:22:23:38:ca:f9: e9:ba:ca:5e:50:a8:8e:b9:59:e3:39:47:fb:c2:0d: f6:37:7a:72:4d:7e:11:fe:e9:cc:f6:44:59:93:b0: a4:bb:0f:6d:08:1a:cb:d2:3b:e3:b1:5e:37:3e:b6: 61:9b:25:cb:08:58:04:e4:f6:2d:c3:6b:fd:6d:e6: c7:c6:e2:75:51:d2:0d:9e:b9:0f:f4:f8:73:f0:24: 81:2d:ed:a7:66:3e:52:92:0a:b7:f1:38:57:68:d4: 5a:03:07:df:99:1b:30:60:d7:52:87:e7:90:73:d3: 89:06:eb:52:28:bd:86:7c:ae:9e:fa:a8:5d:2d:dd: 7c:dc:97:16:17:2c:f6:ce:fe:5e:52:91:79:ca:86: 3c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:96:01:11:2E:57:07:47:15:57:6A:0E:99:B9:2D:59:1B:26:A5:24 X509v3 Authority Key Identifier: keyid:40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 164.52.14.0/23 164.52.26.0/23 164.52.62.0/23 164.52.78.0/23 164.52.81.0/24 164.52.96.0/24 164.52.99.0/24 164.52.105.0/24 164.52.118.0/24 164.52.120.0/22 164.52.126.0/23 Signature Algorithm: sha256WithRSAEncryption 53:a9:2e:09:dd:7e:b3:37:4c:b4:a0:de:81:1a:82:c8:a1:6e: 67:4f:10:ff:61:05:81:f6:4c:e4:bb:ad:fb:fc:f5:16:c1:80: 27:0f:d2:d3:1a:05:7c:a4:e0:14:91:f2:f0:fc:4c:fb:59:4f: 61:d2:80:1b:b2:12:dd:52:79:2f:57:3b:13:f3:67:f3:18:d2: d4:d8:cf:0b:83:d2:a4:09:fa:f6:59:cc:2c:70:38:73:5c:aa: bb:98:74:24:fb:e7:dc:09:30:7e:83:98:bf:82:74:c5:35:20: 36:a0:8f:9a:f1:49:81:4f:1f:8d:d3:37:87:b9:81:02:17:3f: 09:ac:99:16:17:d7:b5:70:91:ea:b0:3f:9d:a5:94:fe:72:ff: 97:2d:99:ee:fc:16:a2:31:85:e0:ed:ee:3e:4f:9a:d7:59:62: 40:1b:c7:f8:d1:fc:92:bf:a7:f8:60:bd:3a:d7:b0:d6:96:c7: 6a:2a:b2:06:43:d3:56:0b:06:fd:33:7e:ab:cc:c7:78:26:e5: 8b:63:cc:85:0b:a9:c5:4a:76:d2:32:88:94:d1:14:2e:bb:61: ed:a3:c8:9c:1d:32:18:79:05:3d:6a:72:c1:3f:54:68:b8:88: cc:a5:e5:b7:6d:65:d2:b9:2d:bc:42:7b:55:e6:2d:21:79:4e: ec:f3:9b:05 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKDQwRTU4MjYzOTcyQjlFMjQxNDJCQUE5QjVBRkEwNTM0 ODFBMzcxOUUwHhcNMjYwMTI1MTExMzQ2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2VmNS0wZGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqwj6isDJuUcvk7I9YZ71OdPxKYc5QCnx/b+pkaFSfIHyrxLNUpEq06caz/4 rXZ9JQ2/TsJNtk7Ltu1fQ7GQFQK1Hs9EvDVp22LG40zuQxuoVZGzWXD6qGMufWYW 6bTX3m+cZGFlYNDhzfnD9DflZ4QrIiM4yvnpuspeUKiOuVnjOUf7wg32N3pyTX4R /unM9kRZk7Ckuw9tCBrL0jvjsV43PrZhmyXLCFgE5PYtw2v9bebHxuJ1UdINnrkP 9Phz8CSBLe2nZj5Skgq38ThXaNRaAwffmRswYNdSh+eQc9OJButSKL2GfK6e+qhd Ld183JcWFyz2zv5eUpF5yoY8aQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFHiWAREu VwdHFVdqDpm5LVkbJqUkMB8GA1UdIwQYMBaAFEDlgmOXK54kFCuqm1r6BTSBo3Ge MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ENDc2RUQ3NjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi9RT1dDWTVjcm5pUVVLNnFiV3ZvRk5JR2pj WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FPV0NZNWNybmlRVUs2cWJXdm9GTklHamNaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQTIvRDQ3NkVENzYzNTcyMTFFREFFOTc3ODM5QzRGOUFFMDIvOTQ4NTVFQTAz NTc3MTFFREI4MUI4QTM0QzRGOUFFMDIucm9hMFsGCCsGAQUFBwEHAQH/BEwwSjBI BAIAATBCAwQBpDQOAwQBpDQaAwQBpDQ+AwQBpDROAwQApDRRAwQApDRgAwQApDRj AwQApDRpAwQApDR2AwQCpDR4AwQBpDR+MA0GCSqGSIb3DQEBCwUAA4IBAQBTqS4J 3X6zN0y0oN6BGoLIoW5nTxD/YQWB9kzku637/PUWwYAnD9LTGgV8pOAUkfLw/Ez7 WU9h0oAbshLdUnkvVzsT82fzGNLU2M8Lg9KkCfr2WcwscDhzXKq7mHQk++fcCTB+ g5i/gnTFNSA2oI+a8UmBTx+N0zeHuYECFz8JrJkWF9e1cJHqsD+dpZT+cv+XLZnu /BaiMYXg7e4+T5rXWWJAG8f40fySv6f4YL0617DWlsdqKrIGQ9NWCwb9M36rzMd4 JuWLY8yFC6nFSnbSMoiU0RQuu2Hto8icHTIYeQU9anLBP1RouIjMpeW3bWXSuS28 QntV5i0heU7s85sF -----END CERTIFICATE-----Generated at Wed Mar 4 17:47:40 2026 by rpki-client