$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/3B83B2F4E30611EFA4B67C52C4F9AE02.roa File: 3B83B2F4E30611EFA4B67C52C4F9AE02.roa (raw, json) Hash identifier: nCenYgOEeFIKxZgX3x1AfpOtuop3bnG46D2w/NjG8b0= Subject key identifier: 25:88:84:6E:75:53:9B:1A:9E:21:63:A3:ED:D4:F0:54:6D:FD:0F:9A Certificate issuer: /CN=A91423C1/serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Certificate serial: 01C9 Authority key identifier: 41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/3B83B2F4E30611EFA4B67C52C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:19:36 +0000 ROA not before: Fri 09 Jan 2026 03:23:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 152125 IP address blocks: 36.50.31.0/24 maxlen: 24 2001:df3:3340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 457 (0x1c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Validity Not Before: Jan 9 03:23:14 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45908-ea7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:95:28:bb:e3:39:bb:1a:fb:a1:26:3a:d0:6a: cd:5f:44:9c:86:59:ac:c1:16:2d:ca:d8:4c:53:c7: 5c:d8:14:99:f0:9c:af:b1:56:5c:8b:d2:e0:e2:a1: a8:49:dd:60:71:47:16:ed:78:3f:5b:66:cb:0b:4b: 13:44:f8:21:1d:f8:b3:aa:ec:3c:5a:6c:ec:2f:89: 2b:c4:b3:63:d0:de:9d:e5:37:ec:de:de:87:64:6f: 2d:37:6c:f5:09:eb:c8:f9:c6:3e:54:43:f2:1d:61: 8a:b9:a2:a9:02:96:2c:a8:73:82:4c:71:47:ff:68: 04:f9:47:6c:3a:e3:09:b6:4f:11:2b:9b:7c:43:24: 13:a0:9d:3e:b3:6a:92:3d:38:e7:d6:aa:81:21:d6: 2e:88:b2:53:24:5a:c9:43:0c:be:ff:2b:9c:ed:74: 9d:b7:08:e8:8c:0f:70:45:d1:0d:d3:2f:a6:44:08: 7b:35:72:fa:e1:20:22:51:07:31:87:56:2d:2f:ea: e9:9d:4c:b5:3c:2e:d2:75:c9:d8:e0:45:44:c3:9d: fc:ff:d5:3f:09:0a:7a:bc:10:3c:72:0e:d6:14:a4: 98:38:1f:7b:01:36:d6:f6:2f:d1:46:b4:10:77:81: 96:aa:cd:c1:32:62:1a:21:0f:11:7d:ef:24:e5:99: 06:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:88:84:6E:75:53:9B:1A:9E:21:63:A3:ED:D4:F0:54:6D:FD:0F:9A X509v3 Authority Key Identifier: keyid:41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/3B83B2F4E30611EFA4B67C52C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.31.0/24 IPv6: 2001:df3:3340::/48 Signature Algorithm: sha256WithRSAEncryption 96:e0:ef:e3:a5:7f:8d:fd:e2:53:e4:09:46:7f:13:10:74:23: 11:46:f4:3e:30:9b:65:f2:18:ec:ef:7a:af:a9:25:2c:5f:4e: 73:f1:fb:86:30:39:32:cd:15:00:2d:e0:60:38:15:b7:07:bb: d8:5a:fb:b2:7d:9c:fc:c4:a2:9d:f7:d7:65:01:1d:bc:38:85: 83:86:a5:91:d7:89:e6:c1:2f:03:5c:4b:e2:6a:67:be:29:90: bd:e4:76:a2:76:c2:f6:ab:65:f6:e2:73:d3:c4:50:68:97:a3: 65:b5:b0:8f:0c:b1:86:4a:7a:a7:0e:cf:ca:fd:04:e2:9d:37: 10:ab:e6:d2:bc:35:88:fe:db:a3:03:24:92:d4:08:f4:77:35: 6b:1c:81:f6:72:27:b9:09:f0:7f:fd:aa:55:4d:33:46:38:40: 7c:ac:cc:3b:ab:c9:95:d0:b7:a8:18:9a:05:a9:ab:80:4b:dc: 7e:da:09:5a:39:27:7c:01:0c:57:c9:bf:58:90:47:4f:c2:56: ee:a1:f1:fd:d5:70:d6:46:db:9a:83:ba:c8:44:9f:9d:54:04: b2:32:9f:f8:8d:1d:6b:b3:26:33:b7:68:1c:ba:2e:c9:cd:36: 38:51:d0:a0:8e:b5:f8:b5:fc:e0:be:68:e5:84:47:47:14:4d: 82:f6:3b:be -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDQxNTNCQTQ5OUE0NEU3RUMxMDQxQzYwRUY3RjM2OUFD NjIzNTdBQTgwHhcNMjYwMTA5MDMyMzE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTkwOC1lYTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA75Uou+M5uxr7oSY60GrNX0SchlmswRYtythMU8dc2BSZ8JyvsVZci9Lg4qGo Sd1gcUcW7Xg/W2bLC0sTRPghHfizquw8WmzsL4krxLNj0N6d5Tfs3t6HZG8tN2z1 CevI+cY+VEPyHWGKuaKpApYsqHOCTHFH/2gE+UdsOuMJtk8RK5t8QyQToJ0+s2qS PTjn1qqBIdYuiLJTJFrJQwy+/yuc7XSdtwjojA9wRdEN0y+mRAh7NXL64SAiUQcx h1YtL+rpnUy1PC7SdcnY4EVEw538/9U/CQp6vBA8cg7WFKSYOB97ATbW9i/RRrQQ d4GWqs3BMmIaIQ8Rfe8k5ZkGiwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCWIhG51 U5saniFjo+3U8FRt/Q+aMB8GA1UdIwQYMBaAFEFTukmaROfsEEHGDvfzaaxiNXqo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS8wRTBERkE5ODhD Q0YxMUVFOTZGNEU2NUFDNEY5QUUwMi9RVk82U1pwRTUtd1FRY1lPOV9OcHJHSTFl cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWTzZTWnBFNS13UVFjWU85X05wckdJMWVxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIzQzEvMEUwREZBOTg4Q0NGMTFFRTk2RjRFNjVBQzRGOUFFMDIvM0I4M0IyRjRF MzA2MTFFRkE0QjY3QzUyQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAJDIfMA8EAgACMAkDBwAgAQ3zM0AwDQYJKoZIhvcNAQELBQADggEB AJbg7+Olf4394lPkCUZ/ExB0IxFG9D4wm2XyGOzveq+pJSxfTnPx+4YwOTLNFQAt 4GA4FbcHu9ha+7J9nPzEop3312UBHbw4hYOGpZHXiebBLwNcS+JqZ74pkL3kdqJ2 wvarZfbic9PEUGiXo2W1sI8MsYZKeqcOz8r9BOKdNxCr5tK8NYj+26MDJJLUCPR3 NWscgfZyJ7kJ8H/9qlVNM0Y4QHyszDuryZXQt6gYmgWpq4BL3H7aCVo5J3wBDFfJ v1iQR0/CVu6h8f3VcNZG25qDushEn51UBLIyn/iNHWuzJjO3aBy6LsnNNjhR0KCO tfi1/OC+aOWER0cUTYL2O74= -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:28 2026 by rpki-client