$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/47D5EEA2A5FF11F08004B67CC4F9AE02.roa File: 47D5EEA2A5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: dWHrgDdQ9oxBHH3ChoJxtFZzUQfQ+vX9Kd8hcoNAwZY= Subject key identifier: D9:C2:3F:20:6E:EC:15:EA:73:AE:B2:32:38:02:6B:43:66:AD:9D:65 Certificate issuer: /CN=A91E3493/serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Certificate serial: 6A Authority key identifier: 31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/47D5EEA2A5FF11F08004B67CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:08 +0000 ROA not before: Tue 18 Nov 2025 22:44:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 15169 IP address blocks: 152.65.192.0/18 maxlen: 22 152.65.192.0/19 maxlen: 24 152.65.224.0/20 maxlen: 24 152.65.240.0/21 maxlen: 24 152.65.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 23:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Validity Not Before: Nov 18 22:44:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46e3f-7189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7e:b2:f7:61:ae:5d:35:49:58:ae:7a:8a:9b: a2:43:77:b4:ef:0d:71:48:9d:02:fd:20:ac:a1:4d: 0f:c3:0a:52:14:6b:51:24:5d:f7:0d:cc:79:a2:3a: 29:6b:d4:a1:3b:b1:7a:54:8d:50:50:d7:df:19:b1: 90:83:7d:88:86:0a:92:5e:6d:2f:be:69:86:85:f3: 6a:df:ae:40:2b:d1:a2:fb:79:46:b8:e9:a4:37:39: 68:e4:55:33:4f:20:5e:f4:c2:74:ba:f6:9a:ff:0b: 6e:59:ce:66:03:52:e6:d4:a9:95:74:c0:f5:c2:ad: 76:30:ae:07:c7:c4:7c:dd:ee:6e:d8:ff:9d:ae:31: d8:31:de:a4:0b:cd:30:19:f4:a7:70:57:ae:92:c4: 81:aa:6f:c4:c7:b5:57:6e:f5:25:b2:8a:9e:a5:22: 44:f8:7f:a8:cd:ab:71:7c:57:28:60:d0:7f:3a:31: f1:07:16:79:79:79:70:63:7a:73:a6:a0:2d:6f:5a: 5f:fa:e8:99:0e:1c:e0:2d:d0:8b:d3:02:ba:a9:80: 2e:b4:c9:d9:6a:ab:2f:bc:ec:75:a8:d8:55:24:0a: dc:d3:6b:46:04:c2:77:e2:12:bf:da:6c:6f:7e:d7: e7:43:68:98:12:51:8a:a4:50:15:5c:28:9c:ee:41: 86:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C2:3F:20:6E:EC:15:EA:73:AE:B2:32:38:02:6B:43:66:AD:9D:65 X509v3 Authority Key Identifier: keyid:31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/47D5EEA2A5FF11F08004B67CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8f:d6:34:5e:11:1f:12:e9:00:5c:eb:5d:db:1a:35:56:09:a0: 5c:a0:b6:36:71:1a:a5:cc:53:fe:2f:d6:24:40:08:89:e2:6d: c6:39:93:a7:69:25:e0:90:45:7f:e7:3e:8c:dc:d6:5b:cf:dc: a1:fa:e7:c4:c5:2b:68:bc:89:4a:a2:1e:7f:11:b9:be:df:b7: bc:46:13:7d:0d:ef:c0:23:fc:03:2b:c4:c9:37:a1:6a:95:70: 6c:23:be:a7:91:da:e4:9d:db:28:de:ab:04:68:b2:77:a2:d2: 7c:1d:e8:d2:d8:c5:81:a0:e9:12:51:50:aa:10:b1:72:8a:65: d0:57:8a:05:3e:bc:55:35:76:4d:f2:bf:6e:90:f8:bc:bc:1e: 04:ea:30:61:be:65:1c:3d:6a:7c:63:ca:7a:34:fd:41:2e:29: 92:6a:70:21:aa:48:4e:cd:a0:ce:3b:71:b1:20:a2:c1:2e:ed: 7c:ca:00:7f:25:3b:dd:a1:81:71:aa:00:d7:60:34:b3:a0:e7: 59:a4:4c:b2:a5:22:34:bc:69:ce:b7:a1:69:20:1b:97:3c:83: 61:d0:13:43:84:cd:b6:7a:63:47:48:d4:d0:0b:27:1f:0b:1f: 64:f5:ca:bb:30:eb:63:c6:18:63:e6:3c:3d:96:c3:4a:4b:60: d4:42:7a:cb -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzQ5MzExMC8GA1UEBRMoMzEzMTFDRkNDMTQwMUJENkQwRTZCNkIzOTE2N0I2NUMy MTA5MjExNDAeFw0yNTExMTgyMjQ0NTNaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ2ZTNmLTcxODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCufrL3Ya5dNUlYrnqKm6JDd7TvDXFInQL9IKyhTQ/DClIUa1EkXfcNzHmiOilr 1KE7sXpUjVBQ198ZsZCDfYiGCpJebS++aYaF82rfrkAr0aL7eUa46aQ3OWjkVTNP IF70wnS69pr/C25ZzmYDUubUqZV0wPXCrXYwrgfHxHzd7m7Y/52uMdgx3qQLzTAZ 9KdwV66SxIGqb8THtVdu9SWyip6lIkT4f6jNq3F8Vyhg0H86MfEHFnl5eXBjenOm oC1vWl/66JkOHOAt0IvTArqpgC60ydlqqy+87HWo2FUkCtzTa0YEwnfiEr/abG9+ 1+dDaJgSUYqkUBVcKJzuQYaZAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU2cI/IG7s FepzrrIyOAJrQ2atnWUwHwYDVR0jBBgwFoAUMTEc/MFAG9bQ5razkWe2XCEJIRQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNDkzL0U1MkMxNEMwOUZG QTExRjBCQUQ1MEI2MUM0RjlBRTAyL01URWNfTUZBRzliUTVyYXprV2UyWENFSklS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVRFY19NRkFHOWJRNXJhemtXZTJYQ0VKSVJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My9FNTJDMTRDMDlGRkExMUYwQkFENTBCNjFDNEY5QUUwMi80N0Q1RUVBMkE1 RkYxMUYwODAwNEI2N0NDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAaYQcAwDQYJKoZIhvcNAQELBQADggEBAI/WNF4RHxLpAFzrXdsaNVYJ oFygtjZxGqXMU/4v1iRACInibcY5k6dpJeCQRX/nPozc1lvP3KH658TFK2i8iUqi Hn8Rub7ft7xGE30N78Aj/AMrxMk3oWqVcGwjvqeR2uSd2yjeqwRosnei0nwd6NLY xYGg6RJRUKoQsXKKZdBXigU+vFU1dk3yv26Q+Ly8HgTqMGG+ZRw9anxjyno0/UEu KZJqcCGqSE7NoM47cbEgosEu7XzKAH8lO92hgXGqANdgNLOg51mkTLKlIjS8ac63 oWkgG5c8g2HQE0OEzbZ6Y0dI1NALJx8LH2T1yrsw62PGGGPmPD2Ww0pLYNRCess= -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:04 2026 by rpki-client