$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/D9D185C6D27A11F092DEA24AC4F9AE02.roa File: D9D185C6D27A11F092DEA24AC4F9AE02.roa (raw, json) Hash identifier: q8O+NOZn42b6KJJb4RwUe455TZClKV7v5qr2WMXs3A8= Subject key identifier: DD:44:7A:96:40:61:A7:B7:0E:07:F0:72:38:52:D8:64:0A:8B:D3:FC Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37A6 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/D9D185C6D27A11F092DEA24AC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:29:00 +0000 ROA not before: Sat 06 Dec 2025 08:09:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136602 IP address blocks: 119.155.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14246 (0x37a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Dec 6 08:09:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4856c-4e34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:97:5e:d8:80:50:96:32:20:7f:61:50:44: 1d:56:d1:77:07:e4:17:32:65:31:57:b6:db:a9:04: 9a:2c:b6:6f:3d:82:06:1a:b4:ef:c9:21:86:e1:fa: 3d:24:63:23:35:97:c3:66:ac:98:f7:d4:64:2e:c1: 02:98:00:1f:91:c1:ab:43:a2:60:f0:43:53:65:f5: bf:80:27:03:5f:27:21:16:12:54:88:2a:9a:7c:50: 39:53:5c:23:7f:9b:55:4a:be:dc:0c:e5:ed:f1:64: 16:99:c1:a2:a2:67:a2:12:72:58:28:73:31:ca:59: 69:2f:27:cc:30:ae:2f:2c:77:d1:42:f6:5d:b4:3a: 4c:1a:72:c3:49:d5:52:46:3e:38:63:74:52:0d:19: a2:39:0e:d5:db:7f:36:d9:eb:56:f1:56:1b:a7:19: 4d:94:24:a3:86:ca:58:0b:94:15:54:b3:e4:72:96: 2c:b5:b3:6f:2a:7d:dc:21:9c:26:7f:cb:e5:3d:04: c3:a9:7c:62:5a:a5:88:c9:42:19:02:de:83:3a:e4: 8f:d9:53:47:2a:16:44:2c:a9:de:f2:24:e6:48:42: 77:41:56:53:a7:6e:89:b8:10:97:ef:fb:5d:0d:f7: 8b:2d:9b:bc:8d:c3:72:ad:c7:c2:2e:df:e3:df:c1: 8b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:44:7A:96:40:61:A7:B7:0E:07:F0:72:38:52:D8:64:0A:8B:D3:FC X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/D9D185C6D27A11F092DEA24AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.155.135.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:06:1f:5e:8f:c7:a8:1a:e1:01:bd:0e:e7:44:87:46:37:08: a4:1f:02:5c:58:11:1b:d1:12:97:17:8d:68:3a:ed:b8:cb:f7: 3f:3f:89:1b:b7:d7:04:2a:b8:b5:09:f9:c6:34:ad:b0:6e:e5: fc:d8:84:db:d4:b5:5f:43:5c:34:ec:9f:f1:db:69:84:3c:88: d9:1b:18:fc:3b:d9:53:f3:11:d1:a1:c2:7b:97:9e:10:43:c7: 45:59:80:41:67:2b:8f:af:2b:72:62:cf:5a:0d:da:4f:02:bf: 39:4f:7d:f2:b0:42:73:32:bb:b3:40:e8:ae:b2:e1:30:7e:da: 07:e1:60:9a:70:45:eb:f4:16:7c:d6:6d:73:02:d1:31:a6:20: a4:64:91:f4:6a:5b:83:ea:3a:54:df:ec:3c:33:bd:42:55:ae: 37:38:bf:72:d6:bb:5a:cc:80:8a:ed:34:98:a8:e8:60:68:9b: 20:e5:5a:3e:91:04:96:a1:af:93:8a:4f:e4:88:ae:47:de:ae: eb:b7:c6:1e:79:0e:c6:ee:b6:19:43:d9:97:71:2f:df:d7:15: 2d:67:3f:a7:2d:d5:43:5b:fb:b8:da:e8:81:a5:29:dd:cc:aa: 08:ba:7a:b4:39:28:f6:4f:30:fb:fb:b0:56:8c:bc:ec:bf:04: 12:da:7d:0d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICN6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUxMjA2MDgwOTEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODU2Yy00ZTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsyXXtiAUJYyIH9hUEQdVtF3B+QXMmUxV7bbqQSaLLZvPYIGGrTvySGG4fo9 JGMjNZfDZqyY99RkLsECmAAfkcGrQ6Jg8ENTZfW/gCcDXychFhJUiCqafFA5U1wj f5tVSr7cDOXt8WQWmcGiomeiEnJYKHMxyllpLyfMMK4vLHfRQvZdtDpMGnLDSdVS Rj44Y3RSDRmiOQ7V23822etW8VYbpxlNlCSjhspYC5QVVLPkcpYstbNvKn3cIZwm f8vlPQTDqXxiWqWIyUIZAt6DOuSP2VNHKhZELKne8iTmSEJ3QVZTp26JuBCX7/td DfeLLZu8jcNyrcfCLt/j38GLFwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN1EepZA Yae3DgfwcjhS2GQKi9P8MB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvRDlEMTg1QzZE MjdBMTFGMDkyREVBMjRBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAd5uHMA0GCSqGSIb3DQEBCwUAA4IBAQANBh9ej8eoGuEBvQ7nRIdG NwikHwJcWBEb0RKXF41oOu24y/c/P4kbt9cEKri1CfnGNK2wbuX82ITb1LVfQ1w0 7J/x22mEPIjZGxj8O9lT8xHRocJ7l54QQ8dFWYBBZyuPrytyYs9aDdpPAr85T33y sEJzMruzQOiusuEwftoH4WCacEXr9BZ81m1zAtExpiCkZJH0aluD6jpU3+w8M71C Va43OL9y1rtazICK7TSYqOhgaJsg5Vo+kQSWoa+Tik/kiK5H3q7rt8YeeQ7G7rYZ Q9mXcS/f1xUtZz+nLdVDW/u42uiBpSndzKoIunq0OSj2TzD7+7BWjLzsvwQS2n0N -----END CERTIFICATE-----Generated at Mon Mar 2 04:30:30 2026 by rpki-client