$ rpki-client -vvf rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/2D7906B2FC6B11F0A5B719B8506F56BC.roa File: 2D7906B2FC6B11F0A5B719B8506F56BC.roa (raw, json) Hash identifier: TMdBXinxPpiTYgWnOTR0cMMMv1bmh583ZOWw9hN4sKc= Subject key identifier: B0:D9:E9:4E:3F:93:86:65:0E:1F:40:1E:88:01:AF:AD:04:CE:B3:EF Certificate issuer: /CN=A91174DD/serialNumber=19BE1321188F0976D32E836D1AFBA546276657E3 Certificate serial: 1C Authority key identifier: 19:BE:13:21:18:8F:09:76:D3:2E:83:6D:1A:FB:A5:46:27:66:57:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/2D7906B2FC6B11F0A5B719B8506F56BC.roa Signing time: Sun 01 Mar 2026 05:43:20 +0000 ROA not before: Wed 28 Jan 2026 17:02:51 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 153174 IP address blocks: 192.42.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.crl rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91174DD, serialNumber=19BE1321188F0976D32E836D1AFBA546276657E3 Validity Not Before: Jan 28 17:02:51 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a3d1f8-d180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:20:59:2f:c6:b5:37:71:79:3f:f0:98:85:9a: d7:0e:84:25:c0:44:30:16:55:05:c7:b2:3c:9a:15: f3:e0:56:38:9f:c3:1e:8c:69:ba:99:c2:cd:dd:09: 5b:dc:dc:10:1f:d1:6c:ca:80:82:15:7e:12:c1:18: 10:4f:0b:8c:1d:f5:83:a8:b5:51:c0:15:15:86:11: b1:75:c4:67:d2:ee:0f:75:4f:5d:e6:b2:97:da:c6: 13:b6:00:36:dd:d7:a0:f7:35:ec:a7:26:9e:24:1d: 88:2d:1f:10:2b:fc:9c:45:b9:f4:7e:d1:60:e4:09: 0d:22:4c:f7:bc:f7:9f:0a:fd:98:0c:db:7c:58:25: 4d:d5:07:3d:1d:41:b2:33:c7:4b:1a:a7:30:d2:67: 0b:3a:c5:22:b9:d7:21:6b:ea:9d:13:33:21:86:7e: f3:86:04:d4:f4:5a:1b:50:5e:8a:6c:b8:b3:6e:48: 96:51:73:e2:93:19:74:fb:1d:ef:38:d4:01:65:8b: 6b:5b:7d:4f:ba:60:93:dd:80:05:98:47:f0:39:56: 60:9a:46:6e:56:04:96:63:5d:b6:7e:81:3f:cf:12: f9:bb:06:23:ef:a4:52:e4:80:01:97:41:9f:0f:5d: 85:18:fd:43:83:96:03:c1:9d:48:b5:de:cd:30:3f: 51:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D9:E9:4E:3F:93:86:65:0E:1F:40:1E:88:01:AF:AD:04:CE:B3:EF X509v3 Authority Key Identifier: keyid:19:BE:13:21:18:8F:09:76:D3:2E:83:6D:1A:FB:A5:46:27:66:57:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/Gb4TIRiPCXbTLoNtGvulRidmV-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb4TIRiPCXbTLoNtGvulRidmV-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91174DD/D9476318F5D011F0A06517D2476F56BC/2D7906B2FC6B11F0A5B719B8506F56BC.roa sbgp-ipAddrBlock: critical IPv4: 192.42.86.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:3a:d0:8e:53:7e:4a:c8:cd:23:41:5e:ba:39:b3:0f:04:d4: 45:36:92:d4:96:98:19:88:42:18:07:f6:61:99:c2:b3:cf:c5: c2:28:70:95:15:5e:bd:e7:55:18:9c:88:d7:90:4d:b2:3f:80: 3f:0c:02:d4:64:94:4b:22:ae:71:6a:1a:dd:e8:80:59:2d:eb: 1e:25:8e:e0:63:6a:f9:e3:8c:ee:7b:e1:d9:d9:18:85:f6:3a: 00:2b:20:49:c7:d5:54:47:db:de:9a:a1:f6:e5:2a:32:18:72: a4:28:4d:0c:44:0d:53:89:ae:5f:9f:75:ca:18:3b:09:ee:84: 7a:00:04:99:6f:15:ff:4b:47:ce:41:df:ff:df:b7:e8:4b:7b: 40:8b:1b:43:b9:2a:0b:03:ae:bc:4b:57:75:b2:e7:5c:a2:fd: 8d:8a:c9:df:df:80:8c:cf:2d:95:39:2d:c4:f6:00:90:c9:bd: b6:9a:ea:56:d4:88:86:2e:c0:5b:c9:6a:7b:b9:8d:18:5b:3e: 97:02:4b:7b:af:99:4f:fb:61:ea:82:e4:96:4a:50:a7:3b:0f: ac:9e:04:38:eb:fe:d2:ee:0e:68:a4:69:e7:58:13:82:6f:da: f9:a8:eb:b0:77:7c:50:6c:7d:1c:a0:88:18:65:be:17:88:cd: 7a:ae:09:ef -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzRERDExMC8GA1UEBRMoMTlCRTEzMjExODhGMDk3NkQzMkU4MzZEMUFGQkE1NDYy NzY2NTdFMzAeFw0yNjAxMjgxNzAyNTFaFw0yNzAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMWY4LWQxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIIFkvxrU3cXk/8JiFmtcOhCXARDAWVQXHsjyaFfPgVjifwx6MabqZws3dCVvc 3BAf0WzKgIIVfhLBGBBPC4wd9YOotVHAFRWGEbF1xGfS7g91T13mspfaxhO2ADbd 16D3NeynJp4kHYgtHxAr/JxFufR+0WDkCQ0iTPe8958K/ZgM23xYJU3VBz0dQbIz x0sapzDSZws6xSK51yFr6p0TMyGGfvOGBNT0WhtQXopsuLNuSJZRc+KTGXT7He84 1AFli2tbfU+6YJPdgAWYR/A5VmCaRm5WBJZjXbZ+gT/PEvm7BiPvpFLkgAGXQZ8P XYUY/UODlgPBnUi13s0wP1FDAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUsNnpTj+T hmUOH0AeiAGvrQTOs+8wHwYDVR0jBBgwFoAUGb4TIRiPCXbTLoNtGvulRidmV+Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NEREL0Q5NDc2MzE4RjVE MDExRjBBMDY1MTdEMjQ3NkY1NkJDL0diNFRJUmlQQ1hiVExvTnRHdnVsUmlkbVYt TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2I0VElSaVBDWGJUTG9OdEd2dWxSaWRtVi1NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzRERC9EOTQ3NjMxOEY1RDAxMUYwQTA2NTE3RDI0NzZGNTZCQy8yRDc5MDZCMkZD NkIxMUYwQTVCNzE5Qjg1MDZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADAKlYwDQYJKoZIhvcNAQELBQADggEBAB460I5TfkrIzSNBXro5sw8E 1EU2ktSWmBmIQhgH9mGZwrPPxcIocJUVXr3nVRiciNeQTbI/gD8MAtRklEsirnFq Gt3ogFkt6x4ljuBjavnjjO574dnZGIX2OgArIEnH1VRH296aofblKjIYcqQoTQxE DVOJrl+fdcoYOwnuhHoABJlvFf9LR85B3//ft+hLe0CLG0O5KgsDrrxLV3Wy51yi /Y2Kyd/fgIzPLZU5LcT2AJDJvbaa6lbUiIYuwFvJanu5jRhbPpcCS3uvmU/7YeqC 5JZKUKc7D6yeBDjr/tLuDmikaedYE4Jv2vmo67B3fFBsfRygiBhlvheIzXquCe8= -----END CERTIFICATE-----Generated at Mon Mar 2 10:28:08 2026 by rpki-client