$ rpki-client -vvf rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/DC8EAF885DB111F1B3012462A4833773.roa File: DC8EAF885DB111F1B3012462A4833773.roa (raw, json) Hash identifier: VpXD01EMiaak1xHDcBP4fn0Tk/fHf+FOAeogqBrfckI= Subject key identifier: 2D:8F:80:14:B9:A3:F0:76:3E:8B:54:EE:C4:F4:5E:DC:A4:2D:6A:E0 Certificate issuer: /CN=A91C430B/serialNumber=D19BB68E3CCDC4B78CE36F87F94E7F7105123A24 Certificate serial: 87 Authority key identifier: D1:9B:B6:8E:3C:CD:C4:B7:8C:E3:6F:87:F9:4E:7F:71:05:12:3A:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/DC8EAF885DB111F1B3012462A4833773.roa Signing time: Mon 01 Jun 2026 12:03:12 +0000 ROA not before: Mon 01 Jun 2026 12:03:12 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138346 IP address blocks: 138.252.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.crl rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 12:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C430B, serialNumber=D19BB68E3CCDC4B78CE36F87F94E7F7105123A24 Validity Not Before: Jun 1 12:03:12 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a1d74ff-93fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3d:ab:96:00:29:3f:0f:d1:bb:70:c9:bc:4c: 88:b7:96:80:b8:ed:8c:57:e4:e9:12:00:1a:93:bd: 7d:79:eb:69:a8:b1:05:e0:06:86:a8:12:0b:1d:2e: 5a:24:0d:0e:c4:93:fe:d6:9e:86:45:9e:ca:7e:c0: fb:73:35:34:09:a0:a2:38:4a:c8:39:0f:fc:62:e9: 2b:46:d8:b9:c5:f9:e1:89:bc:5b:99:76:40:82:0c: 28:c2:28:d4:93:68:45:dd:2b:d0:9c:43:92:33:36: 58:c0:2c:02:b0:c9:12:68:9e:5d:71:28:7a:90:22: 69:fb:a8:9d:50:3d:36:c4:70:83:cb:a0:bd:40:0a: 03:4c:40:3d:35:62:22:6c:62:6e:34:0f:3f:f7:8a: 03:55:80:6c:78:1b:85:76:c1:1e:5e:b8:24:68:18: 58:9f:03:fa:a4:39:4c:ab:96:14:b0:4e:87:7c:d9: 2c:51:93:09:60:a5:15:1a:d7:62:99:e9:be:95:bc: 33:fe:27:49:3f:17:07:cf:48:98:23:70:c7:b3:f7: e0:a4:ff:6a:8b:0c:06:a9:70:00:a3:84:40:e7:c5: 87:a8:00:8e:86:48:e2:c6:7a:a6:5c:7b:de:f1:cd: ba:f6:da:01:32:19:93:4a:a4:ac:ff:42:80:5e:db: 41:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:8F:80:14:B9:A3:F0:76:3E:8B:54:EE:C4:F4:5E:DC:A4:2D:6A:E0 X509v3 Authority Key Identifier: keyid:D1:9B:B6:8E:3C:CD:C4:B7:8C:E3:6F:87:F9:4E:7F:71:05:12:3A:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Zu2jjzNxLeM42-H-U5_cQUSOiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C430B/8236E260A7CE11F097894528C4F9AE02/DC8EAF885DB111F1B3012462A4833773.roa sbgp-ipAddrBlock: critical IPv4: 138.252.41.0/24 Signature Algorithm: sha256WithRSAEncryption 37:d6:18:5b:eb:f8:67:49:37:eb:84:7c:bd:f8:0c:ce:54:dc: 19:f8:ad:d4:1d:f7:80:9c:76:8a:07:3d:1a:86:58:12:41:31: 26:a3:53:af:64:41:bb:02:a6:a2:12:ea:5f:16:8f:5a:ee:2e: 14:67:ce:19:4b:bf:7c:4f:1f:4b:56:c9:c1:10:66:03:6b:08: 09:4e:6e:d1:95:da:94:55:41:e7:bd:19:b4:ef:53:a5:30:4f: fb:59:23:8c:70:3a:e7:02:6b:6f:0f:2f:37:85:ae:75:c6:01: 2c:3c:0e:8d:ff:69:e6:49:8e:3f:eb:bc:92:0d:05:fe:d5:67: 36:b2:3b:77:8b:3a:de:d9:ab:c7:c9:cb:4d:8a:52:5e:ef:05: 37:1b:2e:08:ec:48:96:3a:74:26:05:30:4e:ff:32:a0:47:00: c9:2a:fa:33:46:c8:56:89:5c:a4:83:7e:26:f7:04:8e:cc:1d: 89:5b:bd:32:05:bc:cc:3d:28:a5:ad:48:43:26:3f:ca:ec:9c: 75:4e:6c:7f:53:21:b4:9a:c4:21:68:ab:aa:f6:75:54:9e:bd: 9b:c2:c5:44:4a:ca:f9:80:77:97:fd:43:7d:b6:17:53:bd:0b: 90:5b:fa:da:90:23:1e:de:82:96:a7:6b:69:6d:ec:09:21:2f: 39:83:c4:7f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQzMEIxMTAvBgNVBAUTKEQxOUJCNjhFM0NDREM0Qjc4Q0UzNkY4N0Y5NEU3Rjcx MDUxMjNBMjQwHhcNMjYwNjAxMTIwMzEyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFkNzRmZi05M2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz2rlgApPw/Ru3DJvEyIt5aAuO2MV+TpEgAak719eetpqLEF4AaGqBILHS5a JA0OxJP+1p6GRZ7KfsD7czU0CaCiOErIOQ/8YukrRti5xfnhibxbmXZAggwowijU k2hF3SvQnEOSMzZYwCwCsMkSaJ5dcSh6kCJp+6idUD02xHCDy6C9QAoDTEA9NWIi bGJuNA8/94oDVYBseBuFdsEeXrgkaBhYnwP6pDlMq5YUsE6HfNksUZMJYKUVGtdi mem+lbwz/idJPxcHz0iYI3DHs/fgpP9qiwwGqXAAo4RA58WHqACOhkjixnqmXHve 8c269toBMhmTSqSs/0KAXttBtwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC2PgBS5 o/B2PotU7sT0XtykLWrgMB8GA1UdIwQYMBaAFNGbto48zcS3jONvh/lOf3EFEjok MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDMwQi84MjM2RTI2MEE3 Q0UxMUYwOTc4OTQ1MjhDNEY5QUUwMi8wWnUyamp6TnhMZU00Mi1ILVU1X2NRVVNP aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBadTJqanpOeExlTTQyLUgtVTVfY1FVU09pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQzMEIvODIzNkUyNjBBN0NFMTFGMDk3ODk0NTI4QzRGOUFFMDIvREM4RUFGODg1 REIxMTFGMUIzMDEyNDYyQTQ4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAivwpMA0GCSqGSIb3DQEBCwUAA4IBAQA31hhb6/hnSTfrhHy9+AzO VNwZ+K3UHfeAnHaKBz0ahlgSQTEmo1OvZEG7AqaiEupfFo9a7i4UZ84ZS798Tx9L VsnBEGYDawgJTm7RldqUVUHnvRm071OlME/7WSOMcDrnAmtvDy83ha51xgEsPA6N /2nmSY4/67ySDQX+1Wc2sjt3izre2avHyctNilJe7wU3Gy4I7EiWOnQmBTBO/zKg RwDJKvozRshWiVykg34m9wSOzB2JW70yBbzMPSilrUhDJj/K7Jx1Tmx/UyG0msQh aKuq9nVUnr2bwsVESsr5gHeX/UN9thdTvQuQW/rakCMe3oKWp2tpbewJIS85g8R/ -----END CERTIFICATE-----Generated at Tue Jun 2 22:00:49 2026 by rpki-client