$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/23A38F44D74C11EF9514995EC4F9AE02.roa File: 23A38F44D74C11EF9514995EC4F9AE02.roa (raw, json) Hash identifier: YlPGKsDv7idOkXKbw0yX7xAS3MzGrLN5MJqNWuwPTSk= Subject key identifier: 32:2F:19:F3:B4:45:89:53:B8:38:FC:51:0D:2F:9A:A9:1C:E4:C5:5B Certificate issuer: /CN=A91AB6EB/serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A Certificate serial: 0B6A Authority key identifier: FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/23A38F44D74C11EF9514995EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:45:22 +0000 ROA not before: Sat 28 Feb 2026 20:17:16 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 24105 IP address blocks: 110.34.36.0/24 maxlen: 24 192.135.90.0/24 maxlen: 24 192.135.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.crl rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2922 (0xb6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB6EB, serialNumber=FC9BD463D02E9FD2DFC3C39AE4CD5AB322658C2A Validity Not Before: Feb 28 20:17:16 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a46d22-26e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:e2:80:a0:dd:d6:9b:5d:e2:f5:a8:a1:49:ba: 61:6a:b4:df:24:05:5d:0b:04:ef:c4:50:75:ef:a0: 7a:b6:f0:68:47:a8:ce:e0:8a:88:81:9e:e6:0d:8f: 7d:66:0e:65:75:ff:6c:2a:cd:e6:9c:59:5d:24:61: c7:ca:30:84:27:a5:72:e0:63:8d:e0:5c:25:0d:77: c5:a2:5f:54:54:46:c4:4a:2f:60:9a:ac:fe:4f:7f: 08:66:19:24:e8:eb:02:5f:17:a6:86:5a:95:9d:fa: 7f:ea:5a:6b:38:71:61:8e:94:65:b6:d8:a8:d0:3e: 81:7f:be:1e:b3:31:ca:4a:50:cc:91:b3:e0:9a:4b: 1a:b5:be:33:4b:30:b2:3d:39:a3:ff:40:75:d9:be: a6:ee:04:64:ba:71:5c:f0:66:df:f9:d4:7e:90:cf: 9e:01:51:52:3f:d2:b1:d5:13:16:54:4b:a2:11:78: 03:96:ab:26:34:25:11:41:80:4a:3e:a5:73:e8:eb: cd:1b:8a:bc:9e:d2:94:f1:b2:47:bb:0b:3a:84:d6: 28:40:06:76:4c:d9:11:15:c1:da:72:89:1b:b8:b2: 9a:d0:6e:73:5c:68:46:28:4e:f6:42:b1:99:91:d7: f4:6f:22:39:5b:c9:8a:da:e8:f3:ef:f4:95:ed:9e: b7:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:2F:19:F3:B4:45:89:53:B8:38:FC:51:0D:2F:9A:A9:1C:E4:C5:5B X509v3 Authority Key Identifier: keyid:FC:9B:D4:63:D0:2E:9F:D2:DF:C3:C3:9A:E4:CD:5A:B3:22:65:8C:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/_JvUY9Aun9Lfw8Oa5M1asyJljCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_JvUY9Aun9Lfw8Oa5M1asyJljCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB6EB/01391B008E2B11EABF86DA4CC4F9AE02/23A38F44D74C11EF9514995EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 110.34.36.0/24 192.135.90.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:ac:0c:c6:6b:7f:ab:42:ff:08:5f:21:97:0d:4b:02:ab:3d: 94:44:10:6b:f2:e9:7c:f3:77:38:f2:df:27:c7:44:0c:61:8e: 82:74:05:05:7e:84:07:25:2d:9f:3b:15:1c:9c:87:73:3c:ea: 12:93:d5:e0:0a:f9:52:c6:1b:92:d3:ad:02:1d:50:cf:a1:b9: ff:ca:49:71:16:97:14:de:fb:d0:c9:9f:86:d0:62:5d:c8:08: 8a:7b:be:0d:bb:90:5f:37:1d:d6:a4:f7:b6:d0:cc:46:5f:6d: 0d:37:9a:d2:ef:80:38:12:e3:b7:48:bb:60:2f:20:e9:1d:9e: 71:3f:fb:51:98:2c:e3:c6:59:05:fe:ce:4f:a9:8c:b8:42:20: bc:7d:4a:42:80:bd:9e:29:66:78:0c:94:7d:e8:67:eb:0f:0d: fe:d8:f4:3f:0d:c2:79:c0:34:6e:1d:bf:66:ef:11:dd:4f:88: 71:99:44:3f:b2:79:de:06:fa:d3:22:c5:72:50:7d:58:d4:df: 01:16:03:66:68:b0:ca:c3:63:e9:29:d8:ea:4b:3d:51:b4:af: 18:74:41:93:08:9f:5c:62:fd:2b:7c:60:7f:44:18:a7:2b:90: 3e:4f:a4:44:bc:9d:eb:7f:d1:48:79:3e:ac:de:74:50:4e:33: dc:19:6d:3b -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICC2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI2RUIxMTAvBgNVBAUTKEZDOUJENDYzRDAyRTlGRDJERkMzQzM5QUU0Q0Q1QUIz MjI2NThDMkEwHhcNMjYwMjI4MjAxNzE2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQyMi0yNmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkOKAoN3Wm13i9aihSbpharTfJAVdCwTvxFB176B6tvBoR6jO4IqIgZ7mDY99 Zg5ldf9sKs3mnFldJGHHyjCEJ6Vy4GON4FwlDXfFol9UVEbESi9gmqz+T38IZhkk 6OsCXxemhlqVnfp/6lprOHFhjpRlttio0D6Bf74eszHKSlDMkbPgmksatb4zSzCy PTmj/0B12b6m7gRkunFc8Gbf+dR+kM+eAVFSP9Kx1RMWVEuiEXgDlqsmNCURQYBK PqVz6OvNG4q8ntKU8bJHuws6hNYoQAZ2TNkRFcHacokbuLKa0G5zXGhGKE72QrGZ kdf0byI5W8mK2ujz7/SV7Z639wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFDIvGfO0 RYlTuDj8UQ0vmqkc5MVbMB8GA1UdIwQYMBaAFPyb1GPQLp/S38PDmuTNWrMiZYwq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjZFQi8wMTM5MUIwMDhF MkIxMUVBQkY4NkRBNENDNEY5QUUwMi9fSnZVWTlBdW45TGZ3OE9hNU0xYXN5Smxq Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19KdlVZOUF1bjlMZnc4T2E1TTFhc3lKbGpDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI2RUIvMDEzOTFCMDA4RTJCMTFFQUJGODZEQTRDQzRGOUFFMDIvMjNBMzhGNDRE NzRDMTFFRjk1MTQ5OTVFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAbiIkAwQBwIdaMA0GCSqGSIb3DQEBCwUAA4IBAQBrrAzGa3+rQv8I XyGXDUsCqz2URBBr8ul883c48t8nx0QMYY6CdAUFfoQHJS2fOxUcnIdzPOoSk9Xg CvlSxhuS060CHVDPobn/yklxFpcU3vvQyZ+G0GJdyAiKe74Nu5BfNx3WpPe20MxG X20NN5rS74A4EuO3SLtgLyDpHZ5xP/tRmCzjxlkF/s5PqYy4QiC8fUpCgL2eKWZ4 DJR96GfrDw3+2PQ/DcJ5wDRuHb9m7xHdT4hxmUQ/snneBvrTIsVyUH1Y1N8BFgNm aLDKw2PpKdjqSz1RtK8YdEGTCJ9cYv0rfGB/RBinK5A+T6REvJ3rf9FIeT6s3nRQ TjPcGW07 -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:29 2026 by rpki-client