$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa File: 443470FC7C1511EBB779C03EC4F9AE02.roa (raw, json) Hash identifier: vYN7/c1B8Ga9EWk1RUAg/0I5t4XRYaLcx/7jkQAcJVE= Subject key identifier: AF:58:E0:72:E1:5C:BB:D8:0C:99:C8:49:8F:D5:24:0E:84:73:FD:A9 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 378C Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:37 +0000 ROA not before: Sat 22 Mar 2025 15:00:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136525 IP address blocks: 39.34.144.0/20 maxlen: 24 39.34.176.0/21 maxlen: 24 59.103.192.0/20 maxlen: 24 59.103.208.0/21 maxlen: 24 119.152.224.0/20 maxlen: 24 119.157.64.0/20 maxlen: 24 182.190.96.0/20 maxlen: 24 182.190.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14220 (0x378c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:00:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a48555-a784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4d:14:fa:fe:56:8b:94:d6:94:c3:54:83:bf: 14:ce:98:71:f2:76:77:94:16:c2:08:5d:01:fe:c9: b7:59:46:14:1e:64:1e:e5:3b:a1:75:3d:c1:1c:0c: ef:0d:b7:e3:96:1e:20:f3:90:93:74:c0:94:b4:3e: 64:bc:24:61:57:da:ea:e4:1f:63:30:5d:e5:dd:0d: 9a:ea:4e:c4:81:8e:e7:a2:e3:80:2a:e9:e0:95:c4: 39:ad:31:b4:9f:2f:09:85:dc:8c:23:da:21:d4:5d: 28:fc:55:c7:b0:3d:eb:78:9b:09:4e:e2:19:5e:0a: 03:fc:7a:76:d5:ab:5d:f7:e5:8a:d1:3b:5d:05:4e: 90:35:ff:48:41:f6:12:37:53:5d:a1:8e:d8:c8:70: bf:9a:ca:58:05:84:fb:15:66:f6:b5:e2:bd:bb:4a: a3:f4:21:63:c0:32:eb:7f:0a:a0:d7:ed:0a:ea:24: 93:1e:0a:cf:63:1d:94:ae:81:41:cb:9b:83:e0:48: ad:95:96:71:fb:eb:c5:bf:af:58:31:bc:78:aa:be: 42:ac:22:34:bd:e9:e4:d1:cd:86:61:3f:ef:ad:e0: 8f:1d:e6:0b:ce:18:0c:de:4d:35:7e:38:0e:50:61: bd:21:09:4f:76:31:fe:f1:18:7f:f5:2e:e5:85:a0: 57:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:58:E0:72:E1:5C:BB:D8:0C:99:C8:49:8F:D5:24:0E:84:73:FD:A9 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.34.144.0/20 39.34.176.0/21 59.103.192.0-59.103.215.255 119.152.224.0/20 119.157.64.0/20 182.190.96.0/20 182.190.192.0/19 Signature Algorithm: sha256WithRSAEncryption 74:43:8e:07:72:45:7e:96:72:a6:67:50:5b:ef:7d:c6:bf:d0: f3:6a:b2:b4:8a:48:75:b0:2a:4e:90:f0:2b:66:dd:50:7f:01: 30:34:96:e8:b5:c2:ac:4d:b4:f7:33:af:3c:23:f9:60:e9:3d: 62:b8:dc:b0:07:77:87:76:52:8b:e6:03:bf:3e:9a:b5:10:2a: 90:a9:0d:ac:e9:a6:35:f9:e6:fb:20:bc:c2:28:8f:73:26:1a: 6e:df:74:e0:11:be:c3:66:13:3c:22:b1:d4:af:5a:98:95:14: 6f:b2:52:61:a0:f8:2f:51:22:97:6e:e0:c2:30:39:10:39:43: d8:bd:39:f4:ca:83:0b:ab:23:ef:d3:2f:79:28:ed:3f:ca:29: 32:a8:a1:c4:e4:e7:d3:0a:0a:67:40:a5:5b:a5:39:16:d3:d3: 2d:5b:6c:19:d2:d2:f8:eb:9f:65:06:62:b3:6b:33:67:5a:fd: 7a:f4:90:6e:cb:31:7a:5a:41:14:cc:ac:a9:4a:cb:ba:43:1a: 2e:36:33:98:88:3f:ee:55:98:c7:cd:62:29:4e:c7:a5:8b:96: 49:b6:69:94:91:2d:87:2e:4b:74:62:b6:83:e2:c2:0c:8f:00: de:f1:00:97:29:7f:ac:d1:3b:87:2b:76:89:95:fd:e0:d5:af: b6:81:f7:18 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICN4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMDU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU1NS1hNzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1k0U+v5Wi5TWlMNUg78Uzphx8nZ3lBbCCF0B/sm3WUYUHmQe5TuhdT3BHAzv Dbfjlh4g85CTdMCUtD5kvCRhV9rq5B9jMF3l3Q2a6k7EgY7nouOAKunglcQ5rTG0 ny8JhdyMI9oh1F0o/FXHsD3reJsJTuIZXgoD/Hp21atd9+WK0TtdBU6QNf9IQfYS N1NdoY7YyHC/mspYBYT7FWb2teK9u0qj9CFjwDLrfwqg1+0K6iSTHgrPYx2UroFB y5uD4EitlZZx++vFv69YMbx4qr5CrCI0venk0c2GYT/vreCPHeYLzhgM3k01fjgO UGG9IQlPdjH+8Rh/9S7lhaBXVwIDAQABo4ICjDCCAogwHQYDVR0OBBYEFK9Y4HLh XLvYDJnISY/VJA6Ec/2pMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvNDQzNDcwRkM3 QzE1MTFFQkI3NzlDMDNFQzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjA4 BAIAATAyAwQEJyKQAwQDJyKwMAwDBAY7Z8ADBAM7Z9ADBAR3mOADBAR3nUADBAS2 vmADBAW2vsAwDQYJKoZIhvcNAQELBQADggEBAHRDjgdyRX6WcqZnUFvvfca/0PNq srSKSHWwKk6Q8Ctm3VB/ATA0lui1wqxNtPczrzwj+WDpPWK43LAHd4d2UovmA78+ mrUQKpCpDazppjX55vsgvMIoj3MmGm7fdOARvsNmEzwisdSvWpiVFG+yUmGg+C9R Ipdu4MIwORA5Q9i9OfTKgwurI+/TL3ko7T/KKTKoocTk59MKCmdApVulORbT0y1b bBnS0vjrn2UGYrNrM2da/Xr0kG7LMXpaQRTMrKlKy7pDGi42M5iIP+5VmMfNYilO x6WLlkm2aZSRLYcuS3RitoPiwgyPAN7xAJcpf6zRO4crdomV/eDVr7aB9xg= -----END CERTIFICATE-----Generated at Mon Mar 2 08:02:58 2026 by rpki-client