$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/901A806E936311F0AFC2992BC4F9AE02.roa File: 901A806E936311F0AFC2992BC4F9AE02.roa (raw, json) Hash identifier: 4jEVz1hG1/Z1VyTQpmLsIhOnSHh6bzFw7W7dBzuJBMc= Subject key identifier: F9:AD:D4:2C:DA:39:C4:CA:4B:6A:67:78:CE:FA:0E:72:D7:FC:80:2A Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: 81 Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/901A806E936311F0AFC2992BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:14 +0000 ROA not before: Wed 17 Sep 2025 01:13:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9908 IP address blocks: 72.57.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: Sep 17 01:13:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4862e-c7e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:92:40:1c:cb:08:1e:ac:11:f3:da:9d:b1:27: 52:36:1c:a1:06:ec:f4:18:03:32:2e:72:34:3d:61: ec:c4:2c:65:fa:29:2f:80:47:44:c2:9d:c3:f9:bb: 77:1d:fa:a1:be:26:19:93:49:96:d4:38:81:c4:83: 1f:30:84:ef:c5:c4:7a:58:9b:a8:ad:f1:c8:8e:12: ca:fa:35:69:49:bf:ed:94:f1:15:dc:f0:a3:5c:38: cf:b1:2e:41:58:42:e3:48:e5:e7:20:ab:4f:8b:be: 9d:a0:fc:6c:03:e6:06:ad:0d:91:18:d2:95:d6:b1: 46:9a:41:c4:69:0d:0c:28:31:6a:a0:57:1e:58:d8: 7c:9f:ae:e7:9f:1e:f0:20:e4:dd:14:68:79:7b:b5: a5:38:93:65:86:e6:50:64:b3:33:2b:6f:35:f8:36: 7b:bf:6f:d6:61:40:ca:17:be:96:3e:02:97:49:3f: 53:8f:e1:cc:88:bc:51:97:46:be:c7:6c:af:09:7a: 70:96:83:52:e0:30:62:6c:02:37:1d:a8:66:6a:27: c2:d3:45:7f:a6:ca:cf:9a:ce:02:54:79:75:a2:f1: bb:00:02:22:bc:29:60:1e:6b:ac:8d:d4:cb:c9:cf: 5a:58:0f:bc:22:14:ec:7d:62:ec:ed:e4:ed:79:99: d5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:AD:D4:2C:DA:39:C4:CA:4B:6A:67:78:CE:FA:0E:72:D7:FC:80:2A X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/901A806E936311F0AFC2992BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 72.57.128.0/17 Signature Algorithm: sha256WithRSAEncryption 8f:7b:a1:23:c2:5b:38:d1:32:a3:98:52:26:af:fc:72:86:62: 36:57:98:f3:cf:c6:52:b6:39:04:25:37:b6:92:73:b2:5f:74: 6c:89:98:3e:ee:d9:0b:13:99:dc:1a:46:d4:a7:01:18:90:ac: e3:22:4c:16:b8:14:1e:44:00:66:c9:71:53:03:9a:83:96:1a: 75:8d:ce:59:72:42:93:b8:d5:6a:cb:80:58:3b:3a:7c:b9:15: 15:ef:91:2a:5f:13:5e:80:84:49:9e:54:72:7a:13:3f:d1:42: d8:d9:07:b8:3f:05:39:a1:31:13:60:82:0b:7f:59:18:69:99: f1:d0:9f:f6:ed:f8:d6:47:07:35:86:f5:a2:c3:c5:3f:dd:71: 1b:e7:c4:d0:e8:09:ad:72:f8:29:0e:1f:e8:f1:cd:07:95:a5: ca:dd:77:0f:0d:41:0b:61:e8:6a:38:3f:a5:45:cb:6a:5f:a6: 7c:f7:34:26:46:c5:fe:08:34:9e:31:bc:a8:16:9e:e8:78:0a: 25:34:75:01:d2:70:c3:1e:27:d1:72:f4:fc:6f:46:9b:e8:3a: 02:da:2b:c0:ca:a8:61:ef:92:9b:27:55:24:ca:c2:57:20:c1: 32:93:dc:65:6a:2b:74:75:74:97:96:5b:f1:73:dc:ec:8e:1f: 05:11:72:c8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4RTcxMTAvBgNVBAUTKDNENjIxNkQ1NUNCNTRGQzlCNTcwRjlGMjVGOUFERDBG Mzc2OUI0REUwHhcNMjUwOTE3MDExMzQ4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYyZS1jN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZJAHMsIHqwR89qdsSdSNhyhBuz0GAMyLnI0PWHsxCxl+ikvgEdEwp3D+bt3 HfqhviYZk0mW1DiBxIMfMITvxcR6WJuorfHIjhLK+jVpSb/tlPEV3PCjXDjPsS5B WELjSOXnIKtPi76doPxsA+YGrQ2RGNKV1rFGmkHEaQ0MKDFqoFceWNh8n67nnx7w IOTdFGh5e7WlOJNlhuZQZLMzK281+DZ7v2/WYUDKF76WPgKXST9Tj+HMiLxRl0a+ x2yvCXpwloNS4DBibAI3HahmaifC00V/psrPms4CVHl1ovG7AAIivClgHmusjdTL yc9aWA+8IhTsfWLs7eTteZnV8QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPmt1Cza OcTKS2pneM76DnLX/IAqMB8GA1UdIwQYMBaAFD1iFtVctU/JtXD58l+a3Q83abTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzhFNy9DNjJCMjk4Njkz NDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi9QV0lXMVZ5MVQ4bTFjUG55WDVyZER6ZHB0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4RTcvQzYyQjI5ODY5MzQyMTFGMEE5ODc3ODNCQzRGOUFFMDIvOTAxQTgwNkU5 MzYzMTFGMEFGQzI5OTJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQHSDmAMA0GCSqGSIb3DQEBCwUAA4IBAQCPe6Ejwls40TKjmFImr/xy hmI2V5jzz8ZStjkEJTe2knOyX3RsiZg+7tkLE5ncGkbUpwEYkKzjIkwWuBQeRABm yXFTA5qDlhp1jc5ZckKTuNVqy4BYOzp8uRUV75EqXxNegIRJnlRyehM/0ULY2Qe4 PwU5oTETYIILf1kYaZnx0J/27fjWRwc1hvWiw8U/3XEb58TQ6AmtcvgpDh/o8c0H laXK3XcPDUELYehqOD+lRctqX6Z89zQmRsX+CDSeMbyoFp7oeAolNHUB0nDDHifR cvT8b0ab6DoC2ivAyqhh75KbJ1UkysJXIMEyk9xlait0dXSXllvxc9zsjh8FEXLI -----END CERTIFICATE-----Generated at Mon Mar 2 12:50:50 2026 by rpki-client