$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa File: EC8209420EB411EFAE1CF63BC4F9AE02.roa (raw, json) Hash identifier: tuxt7AAVdlIorySbquWSOc2cd9Lyaw78OSqZYuKb270= Subject key identifier: 01:9A:CB:F5:AC:65:3F:32:63:BF:11:FE:CD:27:EC:99:D4:D1:34:1A Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 3689 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:48:08 +0000 ROA not before: Thu 24 Jul 2025 14:50:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38599 IP address blocks: 58.181.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13961 (0x3689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jul 24 14:50:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a489e7-d950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:a1:7c:33:8a:90:94:58:cd:c0:6e:73:6e:c8: 56:39:45:2f:0b:7a:3b:6c:40:af:e8:74:c4:5b:1b: 6a:99:2b:b5:46:4b:d9:10:13:a1:01:53:fb:a3:f0: f3:26:38:2a:65:be:84:d4:5c:ce:c5:e7:ed:41:4a: 18:a1:a3:4f:1d:0b:10:2e:24:4e:4e:53:1e:d7:99: c7:2b:4c:f0:4d:34:b8:c3:42:d7:2e:df:f3:d5:16: fc:64:d7:8d:86:d7:b2:bf:e8:f6:f7:fd:79:d1:d5: f8:04:bd:c3:3c:4c:c3:bc:a9:56:aa:91:71:fb:12: 4c:74:69:12:b9:3a:6a:d6:47:d2:8d:38:43:4b:37: fc:05:32:b4:9a:0c:36:ca:a2:73:34:d6:ca:d9:59: 24:4b:c5:29:17:51:1c:9b:c1:5a:1e:94:cd:64:f3: 63:f8:29:23:d5:ef:8a:26:79:87:f4:53:a2:33:c2: 3d:7e:eb:cd:8c:7d:91:16:74:c5:20:64:48:ea:99: 07:70:de:90:39:76:69:80:91:81:8a:a6:c9:5a:94: 18:59:bd:d9:a4:7e:1b:b8:e4:4c:5c:5a:35:44:d7: 36:e4:b5:fc:48:1b:a2:75:56:ee:b2:39:3a:ae:d2: 49:a3:1d:11:31:22:02:c8:e0:c0:95:04:fa:f2:09: 90:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:9A:CB:F5:AC:65:3F:32:63:BF:11:FE:CD:27:EC:99:D4:D1:34:1A X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.181.209.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:66:d6:ba:8c:02:81:63:a7:3b:8d:a8:32:0a:ed:2d:7c:ac: 99:70:73:0d:98:98:93:c2:5b:5e:48:9b:3d:17:9d:d1:a6:4b: 85:00:b2:61:a6:68:48:66:04:eb:a5:50:5c:95:f1:52:f9:e6: be:1f:46:04:83:26:85:06:c7:9f:86:f8:ec:2f:fa:33:a5:c0: f3:0c:54:06:48:4e:58:b0:f1:3f:a4:c3:0f:53:c1:fa:23:3c: dc:aa:a9:8d:5f:ff:00:1d:0e:28:f5:29:cd:bc:fc:70:61:5a: 0b:24:b6:78:72:01:5c:8e:d8:98:29:bb:82:80:9a:7f:24:68: fa:9f:88:aa:57:dc:e6:a0:f7:37:12:73:b3:be:a8:28:de:ed: e2:65:e5:ca:10:cf:73:01:b9:47:a9:43:ed:0b:cc:93:3f:e7: 1c:a0:21:08:16:d1:b3:d5:6b:1b:8b:e8:a2:17:d1:5c:64:39: 76:40:c8:cb:0b:47:ba:ba:9e:65:a4:18:86:dd:5c:d6:90:06: fc:79:2f:bd:9a:df:b6:1a:c8:8b:63:bd:90:f9:d2:4b:1d:59: df:7a:75:42:af:45:78:8b:e2:b8:54:32:5f:fc:6b:d7:d9:7b: 2f:45:5d:fd:0b:0c:4d:6c:74:65:44:a7:19:83:93:0c:b3:1a: 33:47:7e:ad -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNzI0MTQ1MDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODllNy1kOTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2qF8M4qQlFjNwG5zbshWOUUvC3o7bECv6HTEWxtqmSu1RkvZEBOhAVP7o/Dz JjgqZb6E1FzOxeftQUoYoaNPHQsQLiROTlMe15nHK0zwTTS4w0LXLt/z1Rb8ZNeN hteyv+j29/150dX4BL3DPEzDvKlWqpFx+xJMdGkSuTpq1kfSjThDSzf8BTK0mgw2 yqJzNNbK2VkkS8UpF1Ecm8FaHpTNZPNj+Ckj1e+KJnmH9FOiM8I9fuvNjH2RFnTF IGRI6pkHcN6QOXZpgJGBiqbJWpQYWb3ZpH4buORMXFo1RNc25LX8SBuidVbusjk6 rtJJox0RMSICyODAlQT68gmQ7wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAGay/Ws ZT8yY78R/s0n7JnU0TQaMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvRUM4MjA5NDIw RUI0MTFFRkFFMUNGNjNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAOrXRMA0GCSqGSIb3DQEBCwUAA4IBAQBOZta6jAKBY6c7jagyCu0t fKyZcHMNmJiTwlteSJs9F53RpkuFALJhpmhIZgTrpVBclfFS+ea+H0YEgyaFBsef hvjsL/ozpcDzDFQGSE5YsPE/pMMPU8H6IzzcqqmNX/8AHQ4o9SnNvPxwYVoLJLZ4 cgFcjtiYKbuCgJp/JGj6n4iqV9zmoPc3EnOzvqgo3u3iZeXKEM9zAblHqUPtC8yT P+ccoCEIFtGz1Wsbi+iiF9FcZDl2QMjLC0e6up5lpBiG3VzWkAb8eS+9mt+2GsiL Y72Q+dJLHVnfenVCr0V4i+K4VDJf/GvX2XsvRV39CwxNbHRlRKcZg5MMsxozR36t -----END CERTIFICATE-----Generated at Mon Mar 2 20:01:48 2026 by rpki-client