$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa File: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (raw, json) Hash identifier: P+dA4oJXyC6Aq01svto2ZaMLc0OEI7bajKZbfS54AB4= Subject key identifier: 2E:AF:69:71:9C:49:40:3D:15:CB:3B:EB:51:6E:81:D1:99:AC:BC:DF Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 170E Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:25:37 +0000 ROA not before: Sat 12 Jul 2025 16:55:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 0 IP address blocks: 36.255.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5902 (0x170e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Jul 12 16:55:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a46880-586c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:44:50:5a:7d:a0:12:de:6f:50:71:0e:a2:18: f0:12:4d:2b:1d:bb:39:73:59:a4:c6:4c:b2:5e:d5: 3c:f1:25:75:22:78:51:ae:a5:a5:9f:f4:b0:6f:12: 29:b6:fd:be:57:c1:4d:9d:81:be:cd:b0:bf:ef:03: ce:ea:ca:23:86:00:45:e1:8c:95:f3:1d:ad:01:27: 68:9e:35:6d:70:a3:ae:28:97:97:15:a5:15:0d:f8: 58:3d:17:4a:e6:62:e1:f8:0d:0b:9f:15:05:a9:64: 25:11:74:66:42:46:02:97:af:33:27:00:a6:3b:56: cb:fb:fe:88:0f:58:31:b6:39:00:3f:1b:96:dc:4b: d3:a7:ac:d9:52:13:e4:2f:01:e7:de:12:25:9d:d3: d8:89:6a:ff:3a:a8:e7:9e:22:43:7a:13:73:4a:f3: f9:0a:e0:46:99:72:5f:3a:66:48:9d:2a:a4:c3:59: b8:d4:6f:58:2f:23:b9:a9:e2:88:0b:94:0c:35:1b: 35:bd:5f:1e:05:c6:7b:80:cc:8e:af:4f:9c:ec:20: 69:2d:01:06:cc:58:a0:7d:c6:69:29:17:fc:73:79: 1e:0a:a1:8c:a2:51:92:22:52:62:1c:eb:e7:76:59: 62:f8:7e:da:91:fb:99:b3:20:63:07:41:15:68:ea: d2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:AF:69:71:9C:49:40:3D:15:CB:3B:EB:51:6E:81:D1:99:AC:BC:DF X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/9C79DBD23E7911EBBFFAC96BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.56.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:ae:b9:bf:ca:a6:f1:56:43:87:16:62:f2:5e:2d:f4:29:ee: 3e:7d:99:98:d6:90:e5:fd:14:c3:f1:68:06:9b:0e:aa:d8:e4: 40:ae:f7:82:a9:68:4f:1c:14:e6:c4:b2:54:0f:f0:33:0e:16: f9:04:d9:e4:4a:ba:69:9d:eb:e6:68:65:97:00:67:07:dc:2a: 5d:9b:5e:da:c4:27:70:a8:05:f6:15:b6:26:3c:37:b1:ab:1f: 82:0b:10:6a:6c:e4:ce:92:2d:17:d3:64:f5:27:33:37:e0:40: 96:07:c6:e5:95:2a:93:fa:20:d8:e2:73:1a:51:85:7d:20:90: e2:17:c5:8d:83:d3:3b:e6:e9:13:5d:ca:61:c4:e5:88:d3:e7: a1:a4:56:4d:27:28:b6:f8:ec:9c:a8:1c:94:46:78:4f:7d:e6: c8:91:43:39:ea:7e:f1:42:4d:0c:e5:09:94:af:eb:5a:cf:c5: a6:c3:5c:19:00:53:8f:6e:1e:a5:0c:0e:18:d4:2a:ae:23:80: 33:db:6a:dd:32:34:27:0b:d8:d0:04:07:a1:a3:ba:4b:d6:64: 18:f7:a4:a8:7a:d4:e3:cd:bc:65:43:7d:c5:94:4b:1d:22:7f: c1:72:87:52:73:ac:99:75:25:34:1d:46:c8:ee:95:bc:7b:d6: 50:50:62:6e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICFw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUwNzEyMTY1NTI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Njg4MC01ODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnERQWn2gEt5vUHEOohjwEk0rHbs5c1mkxkyyXtU88SV1InhRrqWln/SwbxIp tv2+V8FNnYG+zbC/7wPO6sojhgBF4YyV8x2tASdonjVtcKOuKJeXFaUVDfhYPRdK 5mLh+A0LnxUFqWQlEXRmQkYCl68zJwCmO1bL+/6ID1gxtjkAPxuW3EvTp6zZUhPk LwHn3hIlndPYiWr/OqjnniJDehNzSvP5CuBGmXJfOmZInSqkw1m41G9YLyO5qeKI C5QMNRs1vV8eBcZ7gMyOr0+c7CBpLQEGzFigfcZpKRf8c3keCqGMolGSIlJiHOvn dlli+H7akfuZsyBjB0EVaOrSRwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC6vaXGc SUA9Fcs761FugdGZrLzfMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEOTEvRUE2NzJBNUMxOUU3MTFFOEIyNDNENTdDQzRGOUFFMDIvOUM3OURCRDIz RTc5MTFFQkJGRkFDOTZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCJP84MA0GCSqGSIb3DQEBCwUAA4IBAQCMrrm/yqbxVkOHFmLyXi30 Ke4+fZmY1pDl/RTD8WgGmw6q2ORArveCqWhPHBTmxLJUD/AzDhb5BNnkSrppnevm aGWXAGcH3Cpdm17axCdwqAX2FbYmPDexqx+CCxBqbOTOki0X02T1JzM34ECWB8bl lSqT+iDY4nMaUYV9IJDiF8WNg9M75ukTXcphxOWI0+ehpFZNJyi2+OycqByURnhP febIkUM56n7xQk0M5QmUr+taz8Wmw1wZAFOPbh6lDA4Y1CquI4Az22rdMjQnC9jQ BAeho7pL1mQY96SoetTjzbxlQ33FlEsdIn/BcodSc6yZdSU0HUbI7pW8e9ZQUGJu -----END CERTIFICATE-----Generated at Mon Mar 2 23:40:45 2026 by rpki-client