$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/638149B88C2C11EBBB3B260BC4F9AE02.roa File: 638149B88C2C11EBBB3B260BC4F9AE02.roa (raw, json) Hash identifier: Gz3paIMkIc2ePietK++Ou+oRymIz2aw9Ky+sSIACdH4= Subject key identifier: E1:DB:50:EF:17:6F:EF:D0:71:EB:A1:D4:A9:F5:4F:D1:DD:64:61:8E Certificate issuer: /CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Certificate serial: 0836 Authority key identifier: 43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/638149B88C2C11EBBB3B260BC4F9AE02.roa Signing time: Wed 04 Mar 2026 21:27:53 +0000 ROA not before: Wed 04 Mar 2026 21:27:53 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 136557 IP address blocks: 203.28.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 20:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2102 (0x836) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC50, serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Validity Not Before: Mar 4 21:27:53 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a8a3d9-a792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d9:72:39:d1:4a:1d:62:c0:06:f8:2e:d3:0b: 69:76:6f:02:4b:7e:90:50:fa:3c:51:ff:8c:65:03: 7c:23:d1:26:bf:2e:a1:ce:ec:6b:4c:cb:6b:fe:03: 21:32:36:3b:b7:66:54:12:14:2f:d1:60:9b:3d:c3: 0e:28:28:25:f6:9d:d5:69:f0:49:05:86:58:56:65: 1f:af:26:9b:97:8b:50:2e:dc:c2:55:ad:ec:39:a7: a6:4d:d7:d8:52:df:72:19:27:6b:cf:b3:61:0c:68: fa:c4:97:7f:89:84:25:97:51:dc:9e:fb:e8:06:c9: 0b:62:ea:57:7f:06:75:4c:d7:67:55:59:d6:dd:a7: 2b:53:30:32:56:3b:c0:28:30:1f:e3:95:ac:22:26: f2:68:3f:01:74:22:c2:b6:ac:b8:b6:2a:67:c9:3f: d5:62:d8:cc:a3:6c:d3:84:50:cd:67:e1:aa:6a:6a: cf:b3:94:5d:16:2e:a6:d3:fb:9b:b5:d4:7b:7e:6b: 77:13:21:c9:60:aa:56:f8:7b:b0:09:e6:09:76:12: e8:43:d5:e5:00:a0:f0:92:8b:ca:7e:e0:0a:69:61: ae:b5:03:d7:fc:4d:44:fe:2d:74:a9:9d:62:b7:67: e8:0f:6f:e6:50:da:ff:ea:e1:77:a9:82:d9:b6:36: e9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DB:50:EF:17:6F:EF:D0:71:EB:A1:D4:A9:F5:4F:D1:DD:64:61:8E X509v3 Authority Key Identifier: keyid:43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/638149B88C2C11EBBB3B260BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.28.238.0/24 Signature Algorithm: sha256WithRSAEncryption 12:c6:f5:05:8f:11:a5:3d:60:6c:04:58:55:ca:16:9e:16:7f: c3:81:0c:fa:cd:cb:cc:0d:72:30:41:d5:0a:6a:0c:40:e5:38: 30:d2:44:95:80:8a:55:1c:3d:15:6d:b0:61:5b:b5:2c:6a:57: f3:f1:51:49:92:57:be:0e:6c:03:ed:a8:50:f8:e2:eb:88:19: d4:9e:3e:a6:b3:a5:0c:06:c7:73:88:d4:95:b4:0c:5b:87:c1: 9e:1e:d1:2f:6d:6d:35:09:23:54:3f:dd:ea:ae:23:c4:fa:71: fb:7e:94:30:c9:4e:67:80:06:ad:6e:bf:ef:01:b3:bd:cf:e9: bb:79:54:80:96:3c:67:7e:a2:8d:f9:66:9f:33:4b:dc:e4:56: 62:df:57:29:f3:ea:27:13:30:45:28:4b:a8:1d:ed:d8:78:46: d3:a4:b1:71:f9:b2:99:fa:a8:5b:7a:3d:a2:ab:b9:cd:59:4d: 3f:16:47:3d:57:a9:cf:60:a9:35:48:74:f6:ef:a4:a1:54:16: 15:78:e0:0f:71:70:a1:3d:f6:e5:4a:8d:48:46:18:54:58:44: e5:fc:4a:d6:b5:db:19:dd:30:db:eb:4d:25:f6:fe:71:99:34: 5d:70:cf:52:80:63:f4:be:c0:c8:03:32:f0:7f:4a:48:9b:8b: 9e:2c:6e:f9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNTAxMTAvBgNVBAUTKDQzNTRENUNGQTU2NEVFNzFCMzRFODg3NEVFQjFCOTg2 OEY4ODA3REQwHhcNMjYwMzA0MjEyNzUzWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4YTNkOS1hNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNlyOdFKHWLABvgu0wtpdm8CS36QUPo8Uf+MZQN8I9Emvy6hzuxrTMtr/gMh MjY7t2ZUEhQv0WCbPcMOKCgl9p3VafBJBYZYVmUfryabl4tQLtzCVa3sOaemTdfY Ut9yGSdrz7NhDGj6xJd/iYQll1HcnvvoBskLYupXfwZ1TNdnVVnW3acrUzAyVjvA KDAf45WsIibyaD8BdCLCtqy4tipnyT/VYtjMo2zThFDNZ+GqamrPs5RdFi6m0/ub tdR7fmt3EyHJYKpW+HuwCeYJdhLoQ9XlAKDwkovKfuAKaWGutQPX/E1E/i10qZ1i t2foD2/mUNr/6uF3qYLZtjbpRQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOHbUO8X b+/Qceuh1Kn1T9HdZGGOMB8GA1UdIwQYMBaAFENU1c+lZO5xs06IdO6xuYaPiAfd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM1MC9FNDg1OEFDNDBD RDQxMUVCQkNENzlDNjlDNEY5QUUwMi9RMVRWejZWazduR3pUb2gwN3JHNWhvLUlC OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExVFZ6NlZrN25HelRvaDA3ckc1aG8tSUI5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJDNTAvRTQ4NThBQzQwQ0Q0MTFFQkJDRDc5QzY5QzRGOUFFMDIvNjM4MTQ5Qjg4 QzJDMTFFQkJCM0IyNjBCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxzuMA0GCSqGSIb3DQEBCwUAA4IBAQASxvUFjxGlPWBsBFhVyhae Fn/DgQz6zcvMDXIwQdUKagxA5Tgw0kSVgIpVHD0VbbBhW7Usalfz8VFJkle+DmwD 7ahQ+OLriBnUnj6ms6UMBsdziNSVtAxbh8GeHtEvbW01CSNUP93qriPE+nH7fpQw yU5ngAatbr/vAbO9z+m7eVSAljxnfqKN+WafM0vc5FZi31cp8+onEzBFKEuoHe3Y eEbTpLFx+bKZ+qhbej2iq7nNWU0/Fkc9V6nPYKk1SHT276ShVBYVeOAPcXChPfbl So1IRhhUWETl/ErWtdsZ3TDb600l9v5xmTRdcM9SgGP0vsDIAzLwf0pIm4ueLG75 -----END CERTIFICATE-----Generated at Sat Mar 7 22:35:34 2026 by rpki-client