$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/48DA881CA5FF11F08004B67CC4F9AE02.roa File: 48DA881CA5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: vLVmclqSWSw9c6sWEF49QFNtj33DBN50eIGMmcN8s88= Subject key identifier: 8D:39:D3:3F:24:08:64:26:D2:F0:8D:A6:4A:F8:3D:88:71:14:B7:C3 Certificate issuer: /CN=A91E3493/serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Certificate serial: 6C Authority key identifier: 31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/48DA881CA5FF11F08004B67CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:09 +0000 ROA not before: Tue 18 Nov 2025 22:44:55 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 396982 IP address blocks: 152.65.192.0/18 maxlen: 21 152.65.192.0/19 maxlen: 24 152.65.224.0/20 maxlen: 24 152.65.240.0/21 maxlen: 24 152.65.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 23:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Validity Not Before: Nov 18 22:44:55 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46e41-7f95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9c:61:68:67:7f:11:d1:22:cb:69:c4:d0:60: c7:f3:f3:45:e2:ca:69:4c:ac:88:34:72:0c:8b:de: a3:cf:2b:13:36:57:70:9c:94:ab:0b:6b:2e:47:82: d6:1b:bb:84:9d:bb:a6:a6:63:ad:2e:70:55:5d:1b: 89:43:21:5b:65:3f:c2:53:e2:72:35:13:d4:45:60: 97:87:35:9e:10:92:50:e3:19:b9:91:fe:57:4f:67: 0d:be:5a:8f:44:a5:e0:3c:d3:8c:ec:70:64:f7:19: 71:6f:37:a7:a7:8c:27:2f:bd:cf:d8:2c:e4:20:69: b3:89:3d:28:ec:57:5f:98:e9:62:34:9b:cb:f1:af: 76:bf:ca:ff:9b:30:65:86:71:75:a6:49:90:c9:b5: a6:82:32:37:73:98:4b:5b:aa:b6:d2:15:f9:b1:a7: 8e:ac:fa:17:43:1c:12:51:d3:00:e7:d8:7b:21:29: 57:bd:62:20:d6:c6:44:28:80:3c:26:6f:a9:c8:e2: 4b:d4:f6:1d:fa:8e:5b:76:bb:e5:90:7a:14:d6:f1: eb:60:ba:e7:45:7e:ed:b0:ca:a1:e3:5f:8b:6c:61: ac:e9:66:0b:7d:b7:50:d8:44:fb:d6:09:79:c0:94: 3d:ca:ca:23:39:78:15:5e:23:f3:2c:61:a7:cc:37: ce:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:39:D3:3F:24:08:64:26:D2:F0:8D:A6:4A:F8:3D:88:71:14:B7:C3 X509v3 Authority Key Identifier: keyid:31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/48DA881CA5FF11F08004B67CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 152.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption 70:58:e8:7d:9b:e8:a7:54:6b:0e:03:3d:de:9f:14:de:59:e5: a2:71:2d:20:b9:6c:4e:e2:75:2f:c6:90:43:4d:7d:f4:34:f6: a9:f1:81:f6:03:72:98:30:02:19:0a:42:06:fb:d1:5a:fc:51: 3c:4c:1d:1b:2f:7f:2f:36:89:3a:2c:09:9f:e9:e0:22:79:c3: 84:2d:1b:77:6a:95:f0:70:ea:91:3e:05:91:b8:3b:ae:58:43: 18:12:06:5f:cc:34:30:1e:93:b8:0a:ac:b0:80:59:35:e4:08: f4:4e:9a:63:04:fa:42:81:c3:98:e3:c9:38:db:51:2a:a8:34: b4:59:33:21:c8:95:ef:04:61:d5:95:63:2f:de:f3:fe:21:52: ac:7e:75:13:9b:99:ae:2e:b6:2b:f1:c0:3c:90:69:c4:72:d3: d2:97:e0:d4:f2:4d:be:5e:80:a4:27:ba:74:0a:69:49:47:16: 1d:cc:a8:c8:cf:46:08:e0:a0:25:4a:87:92:30:3f:69:33:1f: 17:57:54:66:8f:79:cf:d6:8c:d7:56:8f:a8:76:37:ff:2e:d3: 08:9c:ed:3a:f5:f1:48:90:1d:f8:cc:a0:ec:1a:5d:a4:35:25: 01:2a:c4:01:af:40:a8:f1:6a:39:5a:18:03:5a:e6:13:15:8e: 2f:fd:01:da -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzQ5MzExMC8GA1UEBRMoMzEzMTFDRkNDMTQwMUJENkQwRTZCNkIzOTE2N0I2NUMy MTA5MjExNDAeFw0yNTExMTgyMjQ0NTVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ2ZTQxLTdmOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSnGFoZ38R0SLLacTQYMfz80XiymlMrIg0cgyL3qPPKxM2V3CclKsLay5HgtYb u4Sdu6amY60ucFVdG4lDIVtlP8JT4nI1E9RFYJeHNZ4QklDjGbmR/ldPZw2+Wo9E peA804zscGT3GXFvN6enjCcvvc/YLOQgabOJPSjsV1+Y6WI0m8vxr3a/yv+bMGWG cXWmSZDJtaaCMjdzmEtbqrbSFfmxp46s+hdDHBJR0wDn2HshKVe9YiDWxkQogDwm b6nI4kvU9h36jlt2u+WQehTW8etguudFfu2wyqHjX4tsYazpZgt9t1DYRPvWCXnA lD3KyiM5eBVeI/MsYafMN84ZAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUjTnTPyQI ZCbS8I2mSvg9iHEUt8MwHwYDVR0jBBgwFoAUMTEc/MFAG9bQ5razkWe2XCEJIRQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNDkzL0U1MkMxNEMwOUZG QTExRjBCQUQ1MEI2MUM0RjlBRTAyL01URWNfTUZBRzliUTVyYXprV2UyWENFSklS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVRFY19NRkFHOWJRNXJhemtXZTJYQ0VKSVJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My9FNTJDMTRDMDlGRkExMUYwQkFENTBCNjFDNEY5QUUwMi80OERBODgxQ0E1 RkYxMUYwODAwNEI2N0NDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAaYQcAwDQYJKoZIhvcNAQELBQADggEBAHBY6H2b6KdUaw4DPd6fFN5Z 5aJxLSC5bE7idS/GkENNffQ09qnxgfYDcpgwAhkKQgb70Vr8UTxMHRsvfy82iTos CZ/p4CJ5w4QtG3dqlfBw6pE+BZG4O65YQxgSBl/MNDAek7gKrLCAWTXkCPROmmME +kKBw5jjyTjbUSqoNLRZMyHIle8EYdWVYy/e8/4hUqx+dRObma4utivxwDyQacRy 09KX4NTyTb5egKQnunQKaUlHFh3MqMjPRgjgoCVKh5IwP2kzHxdXVGaPec/WjNdW j6h2N/8u0wic7Tr18UiQHfjMoOwaXaQ1JQEqxAGvQKjxajlaGANa5hMVji/9Ado= -----END CERTIFICATE-----Generated at Wed Mar 4 10:09:02 2026 by rpki-client