$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa File: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (raw, json) Hash identifier: vlgUqqYMtxXOpx1btvYX2OKVBTB12NLfhpS9FBdQ9GQ= Subject key identifier: 66:E1:A8:2F:9C:7D:3B:3E:B9:B9:0E:F5:8A:13:33:FF:DE:CF:50:0C Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 3793 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:43 +0000 ROA not before: Sat 22 Mar 2025 15:01:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141031 IP address blocks: 39.34.164.0/24 maxlen: 24 39.34.165.0/24 maxlen: 24 39.34.166.0/24 maxlen: 24 39.34.167.0/24 maxlen: 24 39.34.168.0/21 maxlen: 24 39.34.184.0/21 maxlen: 24 59.103.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14227 (0x3793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4855b-df41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:25:8f:99:f3:54:0c:ba:52:74:4c:d7:d1:bc: 23:01:f2:3f:fa:a7:1d:24:f8:0a:d4:3d:8d:a6:94: ce:6c:9b:ca:79:7a:7e:0c:a1:02:af:ab:c5:f5:a8: 0b:31:e7:06:bd:1c:01:85:c2:fc:62:17:ec:23:17: ec:bd:1a:5b:bb:62:a6:b5:76:c7:bb:a9:c6:31:cf: 7b:43:a2:2c:d6:35:40:4b:73:b7:5a:7b:40:ea:80: d5:8b:73:04:57:0a:36:4a:96:7f:75:b8:91:bc:1f: f6:a2:69:2d:9e:f8:5e:7f:37:67:54:bf:cc:59:6b: 12:a3:4c:32:70:1d:96:89:70:bc:d2:64:5c:5c:a4: a7:ac:bd:3a:bb:07:7c:58:a1:2f:9a:e9:50:0f:3e: 3d:ef:fa:24:96:36:62:13:97:e0:76:08:c6:c6:8e: 34:8c:64:41:cc:84:c2:0e:1e:ec:ed:e2:e5:3d:85: 04:07:d9:23:37:70:9a:b5:61:32:c4:e7:c5:45:32: b3:af:68:c0:ff:b1:b1:23:c3:2e:5a:cd:0e:64:39: 70:0c:f4:36:cf:b4:2e:bf:eb:f7:ee:65:cf:a5:6d: 6e:72:9a:69:fb:03:bd:ff:52:b2:eb:49:2c:a1:2c: a6:1a:50:39:97:cf:5a:9c:18:21:ea:a7:67:41:a8: 7e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E1:A8:2F:9C:7D:3B:3E:B9:B9:0E:F5:8A:13:33:FF:DE:CF:50:0C X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.34.164.0-39.34.175.255 39.34.184.0/21 59.103.208.0/20 Signature Algorithm: sha256WithRSAEncryption 2c:9b:37:4a:59:b0:86:57:79:fd:f3:d3:74:b4:3e:8a:f5:71: 43:07:e3:86:f0:ce:cf:59:3e:0c:b3:68:ec:6f:c6:a0:3a:df: 16:6e:d8:28:db:69:d3:ed:c8:e2:10:14:bd:1d:b7:7b:34:f7: f6:2e:31:b0:b3:84:22:2b:fa:86:3d:a2:1a:69:79:64:6c:e9: 89:ac:97:91:15:06:c2:3c:6d:52:a2:56:91:24:fc:80:7d:a5: f8:9a:d1:85:b8:06:60:be:a3:3c:dc:73:5a:54:53:5f:82:64: 10:bf:bf:7d:be:33:5f:27:a1:8b:fd:fb:94:35:10:af:37:f9: d5:11:c1:3c:15:09:7f:5e:b1:4c:5f:31:a6:b0:b6:dc:ee:ba: 9d:2d:3d:e2:22:ed:96:f8:88:1c:17:a7:6d:5e:96:55:13:f6: 45:0a:56:71:9d:9b:2c:33:e8:73:92:2d:43:85:9e:be:b3:c4: b0:4f:18:b3:0e:94:2a:e6:81:b2:7d:ca:cf:69:c9:cd:8f:cf: 5d:95:df:3f:ae:fd:1f:04:43:9e:ac:49:c2:9d:70:cd:50:80: ca:93:eb:e4:34:af:75:61:01:f9:2d:56:89:9b:65:31:eb:8a: 77:0d:f4:df:38:2c:25:aa:db:08:98:27:2d:87:2d:98:23:73: 68:84:71:d7 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICN5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU1Yi1kZjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqyWPmfNUDLpSdEzX0bwjAfI/+qcdJPgK1D2NppTObJvKeXp+DKECr6vF9agL MecGvRwBhcL8YhfsIxfsvRpbu2KmtXbHu6nGMc97Q6Is1jVAS3O3WntA6oDVi3ME Vwo2SpZ/dbiRvB/2omktnvhefzdnVL/MWWsSo0wycB2WiXC80mRcXKSnrL06uwd8 WKEvmulQDz497/okljZiE5fgdgjGxo40jGRBzITCDh7s7eLlPYUEB9kjN3CatWEy xOfFRTKzr2jA/7GxI8MuWs0OZDlwDPQ2z7Quv+v37mXPpW1ucppp+wO9/1Ky60ks oSymGlA5l89anBgh6qdnQah+HwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFGbhqC+c fTs+ubkO9YoTM//ez1AMMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMTNDODI4QzYy RDg5MTFFQkE3RDIyQzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBAInIqQDBAQnIqADBAMnIrgDBAQ7Z9AwDQYJKoZIhvcNAQELBQAD ggEBACybN0pZsIZXef3z03S0Por1cUMH44bwzs9ZPgyzaOxvxqA63xZu2CjbadPt yOIQFL0dt3s09/YuMbCzhCIr+oY9ohppeWRs6Ymsl5EVBsI8bVKiVpEk/IB9pfia 0YW4BmC+ozzcc1pUU1+CZBC/v32+M18noYv9+5Q1EK83+dURwTwVCX9esUxfMaaw ttzuup0tPeIi7Zb4iBwXp21ellUT9kUKVnGdmywz6HOSLUOFnr6zxLBPGLMOlCrm gbJ9ys9pyc2Pz12V3z+u/R8EQ56sScKdcM1QgMqT6+Q0r3VhAfktVombZTHrincN 9N84LCWq2wiYJy2HLZgjc2iEcdc= -----END CERTIFICATE-----Generated at Mon Mar 2 04:29:55 2026 by rpki-client