$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa File: 36945EC2232711EBA0F14F17C4F9AE02.roa (raw, json) Hash identifier: lOAwTW5XkFCPCUk/gWDqiJqpMlb51sjQCmzCQhzil4Q= Subject key identifier: EE:8A:48:E0:EF:33:1F:D6:45:6E:30:EC:A3:17:E6:C5:29:9A:96:98 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 095D Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:03:01 +0000 ROA not before: Mon 04 Aug 2025 21:01:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137969 IP address blocks: 103.152.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Aug 4 21:01:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a47145-7a2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c0:ee:eb:81:df:65:2f:6d:4b:98:1e:a4:23: 3a:9b:8c:52:62:eb:54:66:66:90:85:e2:02:3e:af: 1c:ac:90:54:27:67:5c:0f:84:aa:8d:63:d0:e6:17: 36:6e:06:55:88:0f:4b:84:b3:bd:bf:f0:55:1e:ae: 1c:b9:fd:e8:bc:cd:9c:fe:54:3e:d3:9c:98:6a:68: 03:24:ad:65:8e:92:18:8c:07:7f:50:f7:16:b7:18: a7:3b:09:73:49:f6:df:a1:34:d6:a7:b4:c5:0d:fc: 83:d8:c9:8a:d6:b3:0b:6a:bb:93:7e:34:89:a9:43: a0:0a:29:42:b1:9c:69:f8:33:cd:57:bd:fe:94:cb: a3:4e:4e:a0:a7:02:ca:b4:35:e7:56:02:8d:4e:a9: 2d:8d:c9:c8:02:c7:f6:07:18:f3:17:61:b0:d2:c2: 57:f0:aa:95:62:80:aa:bf:a2:e2:37:7b:f4:24:a1: 03:3b:75:6a:d0:95:1c:91:35:af:8c:d7:0b:07:4f: 38:22:74:98:db:a7:8a:c4:f3:99:05:71:cb:f6:85: 00:af:96:c9:72:ad:96:37:14:c0:b6:cb:cc:ac:4f: e4:29:1d:f0:0e:28:ab:06:18:aa:07:4c:08:d7:4b: 4d:80:5b:49:39:94:d0:91:e9:b7:b1:dc:cd:aa:07: 52:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:8A:48:E0:EF:33:1F:D6:45:6E:30:EC:A3:17:E6:C5:29:9A:96:98 X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/36945EC2232711EBA0F14F17C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.152.170.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:11:48:63:d6:34:69:fd:12:d2:4d:9a:e9:b0:81:74:60:7a: a9:66:15:6f:c0:b1:c4:05:f7:48:bd:e3:ad:24:3f:11:0d:ea: 7c:17:f2:33:35:9c:23:1f:72:eb:ce:0c:98:d1:74:af:d0:36: 12:b5:a7:08:58:58:05:54:79:4e:9c:e7:d6:48:1a:17:d4:3f: bc:b4:34:62:cb:f3:8e:49:c1:83:d9:88:76:66:8a:da:ff:8b: 33:c0:0c:7c:07:2e:32:18:e1:a3:c5:77:7c:e3:88:6b:9d:e6: f8:2f:c7:54:61:3d:dc:4c:08:d6:54:1c:d2:be:3f:ef:8a:05: ff:3b:01:f7:6b:ef:b1:9f:a3:4b:9b:5e:78:33:fd:4b:c5:71: 39:4c:77:1a:c0:85:65:e0:36:6f:bf:a6:20:91:19:f0:e6:07: 9e:d0:b4:58:5a:30:fc:91:53:a9:2e:c3:da:9e:53:99:00:c5: 0b:15:56:e6:fd:4a:6f:8e:a0:7c:8f:82:ff:6e:2b:99:f6:27: 8c:c8:e1:87:d7:54:5e:77:8f:99:e2:6e:cd:76:1f:c4:74:22: 46:e8:bc:20:72:a5:87:46:13:43:94:71:6d:6c:cc:c6:ac:03: 29:52:12:75:ab:16:c4:34:7c:ed:90:fa:b5:d2:f8:97:41:3a: 73:6d:a2:0f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUwODA0MjEwMTQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzE0NS03YTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycDu64HfZS9tS5gepCM6m4xSYutUZmaQheICPq8crJBUJ2dcD4SqjWPQ5hc2 bgZViA9LhLO9v/BVHq4cuf3ovM2c/lQ+05yYamgDJK1ljpIYjAd/UPcWtxinOwlz SfbfoTTWp7TFDfyD2MmK1rMLaruTfjSJqUOgCilCsZxp+DPNV73+lMujTk6gpwLK tDXnVgKNTqktjcnIAsf2BxjzF2Gw0sJX8KqVYoCqv6LiN3v0JKEDO3Vq0JUckTWv jNcLB084InSY26eKxPOZBXHL9oUAr5bJcq2WNxTAtsvMrE/kKR3wDiirBhiqB0wI 10tNgFtJOZTQkem3sdzNqgdSjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO6KSODv Mx/WRW4w7KMX5sUpmpaYMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUJGRDkvNEFFODA0MUVCOUQ3MTFFQTlDRjUxRTVGQzRGOUFFMDIvMzY5NDVFQzIy MzI3MTFFQkEwRjE0RjE3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ5iqMA0GCSqGSIb3DQEBCwUAA4IBAQA/EUhj1jRp/RLSTZrpsIF0 YHqpZhVvwLHEBfdIveOtJD8RDep8F/IzNZwjH3LrzgyY0XSv0DYStacIWFgFVHlO nOfWSBoX1D+8tDRiy/OOScGD2Yh2Zora/4szwAx8By4yGOGjxXd844hrneb4L8dU YT3cTAjWVBzSvj/vigX/OwH3a++xn6NLm154M/1LxXE5THcawIVl4DZvv6YgkRnw 5gee0LRYWjD8kVOpLsPanlOZAMULFVbm/UpvjqB8j4L/biuZ9ieMyOGH11Red4+Z 4m7Ndh/EdCJG6LwgcqWHRhNDlHFtbMzGrAMpUhJ1qxbENHztkPq10viXQTpzbaIP -----END CERTIFICATE-----Generated at Mon Mar 2 10:50:18 2026 by rpki-client