$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa File: 3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa (raw, json) Hash identifier: sA27TPUCedPlOitvDRWScwdbJdQ4zgWqGa+bOCJouiQ= Subject key identifier: 32:19:B1:5E:02:55:08:95:27:C0:94:02:52:B5:7A:66:FE:FB:1F:EA Certificate issuer: /CN=A91FE7DF/serialNumber=E7F7DD40928298EC9ECA6446A184A359A3ED5DFE Certificate serial: 02E5 Authority key identifier: E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:31:26 +0000 ROA not before: Tue 03 Feb 2026 01:21:18 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137443 IP address blocks: 115.42.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.crl rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Mar 2026 00:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 741 (0x2e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DF, serialNumber=E7F7DD40928298EC9ECA6446A184A359A3ED5DFE Validity Not Before: Feb 3 01:21:18 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a477ee-a549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:75:c5:48:33:2a:d7:05:56:87:a1:76:b5:b6: cf:e7:13:9e:46:7f:4b:d7:cd:fb:0e:11:fa:75:89: cb:9c:ea:ca:0a:65:22:be:c3:25:6d:2b:b6:c7:71: 2e:d2:78:17:3c:f1:16:c2:61:89:97:b7:73:73:53: 12:47:db:1a:36:66:3d:e9:63:93:e9:31:9b:3d:bd: cf:e6:87:25:76:d2:02:10:68:6c:7b:cd:56:b5:74: 2d:ee:a6:26:83:40:de:83:66:5f:77:43:3d:28:e6: ea:f8:6c:b3:7b:1b:91:9d:e3:b7:9c:e7:15:45:0b: f0:39:da:95:4b:6a:36:af:fd:61:21:2c:24:d0:a6: f8:a3:7c:ff:c3:2b:25:6c:df:3d:cf:5d:1c:11:41: 68:5d:81:a5:fa:32:58:28:23:18:cf:92:cf:c6:55: 96:0b:26:37:35:c8:0c:96:e7:ca:fc:d6:d6:c3:3d: 1d:67:41:2d:25:55:77:f0:b2:89:c4:c7:c5:96:2b: 6c:cf:85:cb:f8:7f:00:c9:4d:7a:2d:07:60:ec:34: ca:29:38:43:40:fd:6e:92:71:5c:be:b7:46:36:73: 8e:d4:fb:39:09:20:91:db:ab:89:c8:1d:ec:0c:40: 67:db:94:c9:07:5b:4d:eb:6d:cb:ed:0a:58:5c:fa: 6a:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:19:B1:5E:02:55:08:95:27:C0:94:02:52:B5:7A:66:FE:FB:1F:EA X509v3 Authority Key Identifier: keyid:E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 115.42.60.0/24 Signature Algorithm: sha256WithRSAEncryption 29:21:ec:52:40:26:90:f3:20:a2:50:ef:bb:1c:c1:51:5f:c3: da:b9:81:e6:88:7d:24:90:0a:af:4a:44:d4:b0:6f:c4:99:84: 4c:c0:17:4a:5c:7e:e5:39:11:a8:57:04:4f:52:c2:a2:31:b2: 1d:78:3a:72:32:72:04:3f:76:0f:14:8d:e7:35:e0:33:f6:4c: 55:d1:2a:7b:2c:f8:3c:ba:4a:57:b2:47:85:d5:12:f3:15:07: ff:13:f0:30:da:99:f5:02:d5:94:46:0d:21:92:26:42:ec:39: fd:86:73:32:e5:71:cd:17:3b:82:a7:03:3d:d2:6d:98:55:af: a4:17:3b:24:a9:65:cc:d1:99:d3:55:c4:2c:2b:53:d7:a2:44: 8f:b0:76:00:09:be:53:aa:7a:e4:88:be:7c:95:e4:97:7d:38: 92:60:5f:00:6a:63:1b:e6:46:ba:d6:43:85:49:ab:9a:4e:75: 4a:ee:8f:56:d4:66:62:23:f5:7e:86:7c:b4:75:66:76:d4:c8: 67:4d:35:cb:09:7e:ff:35:bd:f6:fb:60:a8:3f:ee:9e:82:54: 80:b2:2b:63:b7:7a:40:c1:b6:4d:ad:bf:f2:b6:e2:2b:5e:5b: 0a:81:e6:07:b3:ad:c8:fe:24:ee:29:aa:00:39:ca:cd:23:19: 87:17:a4:1d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REYxMTAvBgNVBAUTKEU3RjdERDQwOTI4Mjk4RUM5RUNBNjQ0NkExODRBMzU5 QTNFRDVERkUwHhcNMjYwMjAzMDEyMTE4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzdlZS1hNTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnXFSDMq1wVWh6F2tbbP5xOeRn9L1837DhH6dYnLnOrKCmUivsMlbSu2x3Eu 0ngXPPEWwmGJl7dzc1MSR9saNmY96WOT6TGbPb3P5ocldtICEGhse81WtXQt7qYm g0Deg2Zfd0M9KObq+GyzexuRneO3nOcVRQvwOdqVS2o2r/1hISwk0Kb4o3z/wysl bN89z10cEUFoXYGl+jJYKCMYz5LPxlWWCyY3NcgMlufK/NbWwz0dZ0EtJVV38LKJ xMfFlitsz4XL+H8AyU16LQdg7DTKKThDQP1uknFcvrdGNnOO1Ps5CSCR26uJyB3s DEBn25TJB1tN623L7QpYXPpqFQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDIZsV4C VQiVJ8CUAlK1emb++x/qMB8GA1UdIwQYMBaAFOf33UCSgpjsnspkRqGEo1mj7V3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdERi82RDU1MkQ3MDI3 N0ExMUVEQTZCMUE4MjZDNEY5QUUwMi81X2ZkUUpLQ21PeWV5bVJHb1lTaldhUHRY ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVfZmRRSktDbU95ZXltUkdvWVNqV2FQdFhmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU3REYvNkQ1NTJENzAyNzdBMTFFREE2QjFBODI2QzRGOUFFMDIvM0NGRkI1MEM4 RTBFMTFGMEJBNEJCQzc2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAcyo8MA0GCSqGSIb3DQEBCwUAA4IBAQApIexSQCaQ8yCiUO+7HMFR X8PauYHmiH0kkAqvSkTUsG/EmYRMwBdKXH7lORGoVwRPUsKiMbIdeDpyMnIEP3YP FI3nNeAz9kxV0Sp7LPg8ukpXskeF1RLzFQf/E/Aw2pn1AtWURg0hkiZC7Dn9hnMy 5XHNFzuCpwM90m2YVa+kFzskqWXM0ZnTVcQsK1PXokSPsHYACb5TqnrkiL58leSX fTiSYF8AamMb5ka61kOFSauaTnVK7o9W1GZiI/V+hny0dWZ21MhnTTXLCX7/Nb32 +2CoP+6eglSAsitjt3pAwbZNrb/ytuIrXlsKgeYHs63I/iTuKaoAOcrNIxmHF6Qd -----END CERTIFICATE-----Generated at Thu Mar 12 17:59:10 2026 by rpki-client