$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B9D/4CF3B3702D1211F1BFC478F598EE528E/1ECF684E387B11F1BDE8C228B8833773.roa File: 1ECF684E387B11F1BDE8C228B8833773.roa (raw, json) Hash identifier: S/Tt5Vr+xRIVcH8BCYMOSKSimexAoRp0itqrqHYRHlw= Subject key identifier: A2:FE:39:12:6C:80:AD:86:6D:00:7C:BF:91:40:BB:3D:A6:80:D4:11 Certificate issuer: /CN=A91A4B9D/serialNumber=3C388E29FAA1A1FEEA38979F206F4668ADA8C89E Certificate serial: 09 Authority key identifier: 3C:38:8E:29:FA:A1:A1:FE:EA:38:97:9F:20:6F:46:68:AD:A8:C8:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDiOKfqhof7qOJefIG9GaK2oyJ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B9D/4CF3B3702D1211F1BFC478F598EE528E/1ECF684E387B11F1BDE8C228B8833773.roa Signing time: Wed 15 Apr 2026 03:28:08 +0000 ROA not before: Wed 15 Apr 2026 03:28:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133159 IP address blocks: 66.226.144.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B9D/4CF3B3702D1211F1BFC478F598EE528E/PDiOKfqhof7qOJefIG9GaK2oyJ4.crl rsync://rpki.apnic.net/member_repository/A91A4B9D/4CF3B3702D1211F1BFC478F598EE528E/PDiOKfqhof7qOJefIG9GaK2oyJ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDiOKfqhof7qOJefIG9GaK2oyJ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 14:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B9D, serialNumber=3C388E29FAA1A1FEEA38979F206F4668ADA8C89E Validity Not Before: Apr 15 03:28:08 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69df05c7-1c26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c7:3b:ff:ca:5f:da:54:72:0d:30:b3:4c:8c: dd:4b:63:bd:8c:8f:c7:bf:e1:1b:44:9f:06:e1:26: b3:87:d8:32:84:cf:d0:df:09:99:a5:12:bf:b9:ba: c0:cd:dd:41:c2:2d:5f:4b:9e:29:e7:d8:78:43:56: 80:2a:03:f6:df:a8:4b:a0:b9:ce:3e:77:ae:89:bf: 87:db:c8:8b:62:0d:9b:f0:e2:3a:dc:64:2c:81:c2: d1:9a:ec:02:76:15:6f:f8:3e:49:8a:bd:93:f5:13: 57:f7:63:13:09:95:d7:75:a0:42:29:0d:b4:e9:71: 5c:a7:81:ee:eb:ea:86:84:45:7b:2d:5b:0e:ac:3c: 7b:69:1e:b4:c8:97:9b:37:e0:6b:9b:de:3f:99:61: 58:c7:70:4a:ce:ed:e2:17:29:91:5c:8e:b7:fd:31: f8:03:ab:dc:de:63:2d:c3:c2:be:79:0c:f5:5f:11: 22:3c:c7:83:bb:3a:e3:32:0d:c6:7f:b0:c9:a9:9f: c6:c9:99:ec:98:c5:4f:13:2d:af:38:72:77:d2:4e: 56:4c:ab:70:31:df:b6:09:5c:a9:5f:e2:b2:e7:12: d7:58:22:c8:bb:ef:02:98:c4:ec:f3:ba:a1:6b:d6: b7:66:ee:6d:96:d7:6c:89:dd:fd:5b:33:68:61:ef: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:FE:39:12:6C:80:AD:86:6D:00:7C:BF:91:40:BB:3D:A6:80:D4:11 X509v3 Authority Key Identifier: keyid:3C:38:8E:29:FA:A1:A1:FE:EA:38:97:9F:20:6F:46:68:AD:A8:C8:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/4CF3B3702D1211F1BFC478F598EE528E/PDiOKfqhof7qOJefIG9GaK2oyJ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDiOKfqhof7qOJefIG9GaK2oyJ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B9D/4CF3B3702D1211F1BFC478F598EE528E/1ECF684E387B11F1BDE8C228B8833773.roa sbgp-ipAddrBlock: critical IPv4: 66.226.144.0/20 Signature Algorithm: sha256WithRSAEncryption 9b:b9:4a:fc:2a:97:62:1e:15:39:5f:05:9f:d4:1a:df:4b:09: 92:d9:38:39:24:e9:02:cf:f4:0d:63:3d:65:dc:c7:6f:94:b4: 67:5f:79:fe:96:73:c4:33:8e:cd:84:c3:94:02:1a:da:04:1e: 81:b9:af:b0:06:62:d9:e7:6f:49:1c:af:7c:fe:ea:93:2e:29: 26:68:8b:0c:40:3b:0d:02:72:17:91:07:2f:a4:f9:7f:b1:22: f3:98:77:b6:91:62:ea:7b:ff:da:b0:91:c0:07:3d:8a:35:8b: 54:cb:4c:40:06:3d:ee:02:fa:6d:25:dd:16:1a:c9:93:07:63: fe:e9:9b:20:da:25:60:28:9b:05:a5:87:54:78:bf:9b:9c:cc: fa:39:ad:7e:26:a2:d4:64:0a:f1:5c:aa:23:f5:8d:97:e7:3c: 9a:88:f5:4a:fb:e2:9f:0a:68:fd:13:0a:93:fb:ba:37:bd:49: 99:a8:38:1e:1f:1f:55:9d:9b:5a:5a:6b:a2:64:a0:82:5c:d8: 1b:27:13:40:b6:be:8a:6b:e7:22:ae:39:de:f7:94:54:1a:c9: ec:40:a3:8b:7f:bf:4d:7a:af:66:de:a6:a9:32:6e:43:c9:e0: d6:1d:aa:7e:61:b5:54:50:d5:3b:5f:06:ee:5c:6a:f4:56:55: 93:7f:34:8d -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NEI5RDExMC8GA1UEBRMoM0MzODhFMjlGQUExQTFGRUVBMzg5NzlGMjA2RjQ2NjhB REE4Qzg5RTAeFw0yNjA0MTUwMzI4MDhaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZGYwNWM3LTFjMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWxzv/yl/aVHINMLNMjN1LY72Mj8e/4RtEnwbhJrOH2DKEz9DfCZmlEr+5usDN 3UHCLV9Lninn2HhDVoAqA/bfqEuguc4+d66Jv4fbyItiDZvw4jrcZCyBwtGa7AJ2 FW/4PkmKvZP1E1f3YxMJldd1oEIpDbTpcVynge7r6oaERXstWw6sPHtpHrTIl5s3 4Gub3j+ZYVjHcErO7eIXKZFcjrf9MfgDq9zeYy3Dwr55DPVfESI8x4O7OuMyDcZ/ sMmpn8bJmeyYxU8TLa84cnfSTlZMq3Ax37YJXKlf4rLnEtdYIsi77wKYxOzzuqFr 1rdm7m2W12yJ3f1bM2hh78HHAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUov45EmyA rYZtAHy/kUC7PaaA1BEwHwYDVR0jBBgwFoAUPDiOKfqhof7qOJefIG9GaK2oyJ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0QjlELzRDRjNCMzcwMkQx MjExRjFCRkM0NzhGNTk4RUU1MjhFL1BEaU9LZnFob2Y3cU9KZWZJRzlHYUsyb3lK NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUERpT0tmcWhvZjdxT0plZklHOUdhSzJveUo0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEI5RC80Q0YzQjM3MDJEMTIxMUYxQkZDNDc4RjU5OEVFNTI4RS8xRUNGNjg0RTM4 N0IxMUYxQkRFOEMyMjhCODgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBARC4pAwDQYJKoZIhvcNAQELBQADggEBAJu5Svwql2IeFTlfBZ/UGt9L CZLZODkk6QLP9A1jPWXcx2+UtGdfef6Wc8Qzjs2Ew5QCGtoEHoG5r7AGYtnnb0kc r3z+6pMuKSZoiwxAOw0CcheRBy+k+X+xIvOYd7aRYup7/9qwkcAHPYo1i1TLTEAG Pe4C+m0l3RYayZMHY/7pmyDaJWAomwWlh1R4v5uczPo5rX4motRkCvFcqiP1jZfn PJqI9Ur74p8KaP0TCpP7uje9SZmoOB4fH1Wdm1paa6JkoIJc2BsnE0C2vopr5yKu Od73lFQayexAo4t/v016r2bepqkybkPJ4NYdqn5htVRQ1TtfBu5cavRWVZN/NI0= -----END CERTIFICATE-----Generated at Fri Apr 17 13:31:39 2026 by rpki-client