$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa File: BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa (raw, json) Hash identifier: GKLAv7r6GFsHVcACckOngetZZX1ncOPPVJbbepufrm4= Subject key identifier: 95:70:E9:22:4D:0C:6E:4D:38:73:09:C9:20:9E:09:D4:E0:F4:D9:3C Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2865 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:38:59 +0000 ROA not before: Tue 08 Apr 2025 15:53:39 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152173 IP address blocks: 122.54.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10341 (0x2865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:39 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a487c3-c56f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:d4:3b:c1:85:ba:5e:d9:2f:4f:bf:4c:19:c1: 0f:3b:c4:3a:e3:e8:04:f0:b7:30:b4:ec:c3:c8:ff: 8b:a7:64:60:54:62:9c:67:5c:73:99:18:5a:16:af: 32:61:56:66:cb:5a:da:f0:17:5e:43:f5:2f:8f:75: e9:07:ac:0e:55:04:19:6c:25:85:64:b2:b1:ff:58: 55:5e:74:73:2f:3a:ea:b2:2d:6c:76:b1:73:80:41: 4d:97:97:34:fb:ce:9b:d3:b5:8f:57:8c:1c:04:4c: e1:1e:b4:25:9e:cc:54:30:3b:a9:4d:97:bf:d8:8c: a9:a5:be:13:d5:57:55:40:ce:32:a5:c4:5b:84:90: 51:40:4f:0b:86:53:9f:88:56:e6:02:ce:08:61:85: ab:ab:d0:71:08:02:a6:44:04:50:97:85:10:f9:af: bb:83:92:6f:a1:56:74:03:5b:a3:66:35:c4:a1:5c: 51:33:f5:11:6c:26:4d:e1:8b:91:f2:e3:ad:be:75: bf:dd:6e:e3:83:af:64:93:1f:75:14:fe:9e:9b:b8: c7:e3:43:b8:24:35:9d:0b:31:12:9c:b5:fb:74:c4: 02:b5:75:56:a5:a4:a0:91:fe:db:e8:3f:03:b8:92: ae:4b:04:3b:6d:92:41:e7:d9:87:d2:b0:da:01:ce: 27:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:70:E9:22:4D:0C:6E:4D:38:73:09:C9:20:9E:09:D4:E0:F4:D9:3C X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/BE5DA1A0E3BE11EEAEC5E061C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.54.67.0/24 Signature Algorithm: sha256WithRSAEncryption ab:21:f2:70:f5:ad:4e:10:d0:ab:d3:71:be:a3:9e:fb:5a:c7: 7a:53:67:7f:28:4a:5d:ac:2e:53:0c:3f:7e:87:17:c1:ec:97: 04:b9:2c:af:7c:af:04:e1:15:49:0d:5e:a9:a5:a1:13:22:2d: 78:4c:f3:6a:d2:8e:94:ce:bc:c6:79:6b:8c:28:d2:9a:f4:8b: 94:34:d1:bd:bd:1a:87:21:1d:d0:a8:17:5a:3e:37:28:ab:a5: 18:84:c1:25:c7:0b:37:a9:97:75:3e:63:3f:86:9d:1e:35:ed: c5:40:1a:0a:3a:72:25:f0:02:b3:8a:c0:36:61:a0:36:6b:67: 27:db:2e:95:33:3d:ed:49:bb:d5:c0:03:23:89:56:13:84:07: 68:23:d1:1a:d9:a8:1b:13:71:ee:40:f1:35:5e:7f:9f:1b:1f: 4b:31:0d:84:65:6b:1f:99:e3:5f:23:05:f8:5a:dc:47:54:f7: 3c:79:9a:aa:da:4e:6e:81:2a:fd:f4:b1:80:7d:11:6a:16:34: 35:5e:3d:24:3e:d4:94:b0:b8:f6:5f:33:89:ce:83:e9:0d:a5: 01:ca:dc:ed:a1:47:43:c9:05:2f:54:aa:4a:5c:6f:74:2b:6a: 1a:d1:6e:42:4d:d4:b8:af:20:c5:cc:e3:26:01:fe:4e:88:9d: d1:16:dc:d1 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzM5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdjMy1jNTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh9Q7wYW6XtkvT79MGcEPO8Q64+gE8LcwtOzDyP+Lp2RgVGKcZ1xzmRhaFq8y YVZmy1ra8BdeQ/Uvj3XpB6wOVQQZbCWFZLKx/1hVXnRzLzrqsi1sdrFzgEFNl5c0 +86b07WPV4wcBEzhHrQlnsxUMDupTZe/2Iyppb4T1VdVQM4ypcRbhJBRQE8LhlOf iFbmAs4IYYWrq9BxCAKmRARQl4UQ+a+7g5JvoVZ0A1ujZjXEoVxRM/URbCZN4YuR 8uOtvnW/3W7jg69kkx91FP6em7jH40O4JDWdCzESnLX7dMQCtXVWpaSgkf7b6D8D uJKuSwQ7bZJB59mH0rDaAc4nqQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJVw6SJN DG5NOHMJySCeCdTg9Nk8MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQkU1REExQTBF M0JFMTFFRUFFQzVFMDYxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAejZDMA0GCSqGSIb3DQEBCwUAA4IBAQCrIfJw9a1OENCr03G+o577 Wsd6U2d/KEpdrC5TDD9+hxfB7JcEuSyvfK8E4RVJDV6ppaETIi14TPNq0o6UzrzG eWuMKNKa9IuUNNG9vRqHIR3QqBdaPjcoq6UYhMElxws3qZd1PmM/hp0eNe3FQBoK OnIl8AKzisA2YaA2a2cn2y6VMz3tSbvVwAMjiVYThAdoI9Ea2agbE3HuQPE1Xn+f Gx9LMQ2EZWsfmeNfIwX4WtxHVPc8eZqq2k5ugSr99LGAfRFqFjQ1Xj0kPtSUsLj2 XzOJzoPpDaUBytztoUdDyQUvVKpKXG90K2oa0W5CTdS4ryDFzOMmAf5OiJ3RFtzR -----END CERTIFICATE-----Generated at Sun Mar 8 03:21:51 2026 by rpki-client