$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa File: 38E45CE08C2511EDB64DB410C4F9AE02.roa (raw, json) Hash identifier: +jjzQDT4VXtfOv7UHvs6KHzX+DKS/3je1TxZKSVKupY= Subject key identifier: 79:27:28:0C:65:12:A8:43:2D:C7:A5:43:98:40:69:3A:47:FC:37:3C Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 0282 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:52:41 +0000 ROA not before: Sat 31 Jan 2026 02:21:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131471 IP address blocks: 103.152.42.0/24 maxlen: 24 103.152.43.0/24 maxlen: 24 2001:df7:1f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 01:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE, serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Validity Not Before: Jan 31 02:21:36 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a46ed9-7838 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ca:d2:47:cc:a6:ae:31:64:f3:0c:8e:eb:c2: 60:df:d2:f4:3e:ee:93:13:fa:e4:24:f3:4c:e0:d7: d1:6d:c6:48:2d:71:aa:65:6f:a0:54:0a:2c:37:1d: 7e:37:bc:99:75:ea:85:1c:22:13:12:68:34:a9:44: 52:f9:d8:2d:a2:3b:45:e5:90:44:b8:ba:59:c6:06: ca:f8:25:6e:8e:88:6c:05:bd:fd:bd:59:b4:21:57: fb:aa:12:eb:2d:25:81:64:e3:97:cf:f1:56:47:a9: b8:8f:93:91:10:36:87:7a:03:79:31:c5:1a:da:90: 3f:84:55:f8:a9:af:3a:e1:dd:05:a7:fe:5c:fd:d6: 7b:9c:6d:e1:18:d6:67:20:ef:98:81:d1:c5:07:65: 57:3b:0c:ee:58:b0:46:0f:0a:d0:8a:27:76:0a:eb: d2:89:d9:41:ac:9b:06:bc:c7:dc:63:01:b3:9a:0d: 2e:ef:59:5f:7f:b8:6d:a9:54:92:01:2c:31:f9:27: 1a:21:e4:1c:97:0b:a4:33:9f:c4:08:56:52:11:fa: 5b:54:ed:b0:3d:c5:2e:3b:38:8c:8e:5d:0c:b9:7b: 1e:de:fa:6e:92:be:b1:b7:4c:25:a5:02:4c:58:73: 9c:6d:3c:3c:f5:95:2d:81:f7:28:40:ee:bf:5e:5b: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:27:28:0C:65:12:A8:43:2D:C7:A5:43:98:40:69:3A:47:FC:37:3C X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.42.0/23 IPv6: 2001:df7:1f80::/48 Signature Algorithm: sha256WithRSAEncryption 98:b6:81:f4:a4:b0:b6:de:38:cd:37:d2:72:d4:b5:6b:89:2f: 26:f9:9e:5e:05:37:77:20:b2:11:3a:42:4e:13:fc:15:f1:78: f0:59:03:b1:36:3b:e1:09:99:dc:f6:17:0d:89:a3:c3:a9:f0: f3:fe:ab:27:4b:55:4c:9f:f7:b6:58:81:87:fc:37:ba:9e:8e: 36:07:bd:e8:14:e0:fb:d6:96:aa:58:20:eb:b1:3f:90:70:6b: b5:1e:c8:ba:e6:20:b4:d1:8c:b2:7c:c1:c9:74:e9:8b:b3:54: d4:c3:ba:0c:56:85:ee:23:bb:b0:0e:6b:2a:c2:cc:68:f5:01: 3e:95:be:48:f0:e8:58:e6:8e:f1:b6:77:95:e9:0e:fc:c9:be: fd:0c:8a:be:b3:fb:cb:4c:23:5a:ab:48:2b:83:0b:c7:ed:b6: bd:7b:64:29:69:c8:cb:24:9d:17:8c:5a:e6:3a:9d:5f:df:d0: 7a:94:c1:8a:21:d6:8e:c9:7a:66:f0:2e:80:76:da:92:78:f6: 7b:94:93:f5:04:c5:ce:3b:40:08:fe:99:8f:81:44:b6:6d:a6: a1:83:b0:ed:ec:03:89:a0:2b:4b:4b:9d:57:91:d6:bf:17:4f: 6e:d1:49:1c:d8:31:78:e4:89:b8:4a:a2:33:55:46:92:ff:38: 19:31:bd:e2 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjYwMTMxMDIyMTM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmVkOS03ODM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48rSR8ymrjFk8wyO68Jg39L0Pu6TE/rkJPNM4NfRbcZILXGqZW+gVAosNx1+ N7yZdeqFHCITEmg0qURS+dgtojtF5ZBEuLpZxgbK+CVujohsBb39vVm0IVf7qhLr LSWBZOOXz/FWR6m4j5OREDaHegN5McUa2pA/hFX4qa864d0Fp/5c/dZ7nG3hGNZn IO+YgdHFB2VXOwzuWLBGDwrQiid2CuvSidlBrJsGvMfcYwGzmg0u71lff7htqVSS ASwx+ScaIeQclwukM5/ECFZSEfpbVO2wPcUuOziMjl0MuXse3vpukr6xt0wlpQJM WHOcbTw89ZUtgfcoQO6/Xlu+SQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHknKAxl EqhDLcelQ5hAaTpH/Dc8MB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvMzhFNDVDRTA4 QzI1MTFFREI2NERCNDEwQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ5gqMA8EAgACMAkDBwAgAQ33H4AwDQYJKoZIhvcNAQELBQADggEB AJi2gfSksLbeOM030nLUtWuJLyb5nl4FN3cgshE6Qk4T/BXxePBZA7E2O+EJmdz2 Fw2Jo8Op8PP+qydLVUyf97ZYgYf8N7qejjYHvegU4PvWlqpYIOuxP5Bwa7UeyLrm ILTRjLJ8wcl06YuzVNTDugxWhe4ju7AOayrCzGj1AT6Vvkjw6FjmjvG2d5XpDvzJ vv0Mir6z+8tMI1qrSCuDC8fttr17ZClpyMsknReMWuY6nV/f0HqUwYoh1o7Jembw LoB22pJ49nuUk/UExc47QAj+mY+BRLZtpqGDsO3sA4mgK0tLnVeR1r8XT27RSRzY MXjkibhKojNVRpL/OBkxveI= -----END CERTIFICATE-----Generated at Fri Mar 13 22:45:56 2026 by rpki-client