$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/D7F890AE893D11F0AE546821C4F9AE02.roa File: D7F890AE893D11F0AE546821C4F9AE02.roa (raw, json) Hash identifier: HQOF9cxORQdsB/zCNVYdskSeXOnxau/tyl16BSADtQ8= Subject key identifier: 61:DE:9E:EC:1D:1C:BF:BD:63:15:52:E5:84:BB:C9:C2:B0:19:08:33 Certificate issuer: /CN=A91BBA31/serialNumber=12097AAF857B62BD34AA273D3F9B3ED9CE6DF161 Certificate serial: 5C Authority key identifier: 12:09:7A:AF:85:7B:62:BD:34:AA:27:3D:3F:9B:3E:D9:CE:6D:F1:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Egl6r4V7Yr00qic9P5s-2c5t8WE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/D7F890AE893D11F0AE546821C4F9AE02.roa Signing time: Sun 01 Mar 2026 06:29:22 +0000 ROA not before: Thu 04 Sep 2025 03:18:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154089 IP address blocks: 192.135.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/Egl6r4V7Yr00qic9P5s-2c5t8WE.crl rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/Egl6r4V7Yr00qic9P5s-2c5t8WE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Egl6r4V7Yr00qic9P5s-2c5t8WE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:29:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA31, serialNumber=12097AAF857B62BD34AA273D3F9B3ED9CE6DF161 Validity Not Before: Sep 4 03:18:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3dcc2-831d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:7a:e9:a8:5b:80:45:c6:26:4d:86:c2:9b:69: fd:23:36:6f:f6:4a:f9:67:f9:18:a1:a7:5d:e6:4a: 83:11:25:23:4d:0b:55:a1:4d:27:49:7a:bf:c4:3e: ab:12:8d:ea:5d:01:60:e3:1a:87:33:60:53:31:1b: 61:c6:77:e6:b7:29:fb:87:8d:bb:dc:f2:46:a0:ca: 60:32:72:84:9e:d9:d9:6d:06:7d:b9:5a:dc:64:64: a6:60:d7:e9:20:08:9d:27:6d:12:5c:5d:88:fb:b6: da:af:eb:f4:a7:20:91:38:61:3d:f3:47:83:3b:c2: 33:eb:81:4e:f6:65:6f:52:e4:b2:37:ed:d3:39:c2: 97:1c:e3:78:0f:0a:84:c9:cd:5a:8c:c9:8f:96:e6: 0f:7c:24:35:13:1d:71:3e:a7:8b:8c:59:6c:e4:b6: ae:32:a2:be:e5:08:0b:6d:59:31:f0:5f:ef:0e:10: 4e:90:0c:a9:7e:b0:9a:a4:33:19:a0:77:25:cd:78: ec:c0:30:f5:19:35:48:5f:d4:2c:e9:de:c4:6a:1d: f5:34:b3:8e:aa:ed:3c:12:60:c0:99:d1:91:49:f4: 4b:fa:84:6e:79:dc:c1:a8:23:68:d9:ee:07:71:a1: c2:cb:48:92:59:16:72:6f:fe:58:f6:c0:ed:88:db: 0e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DE:9E:EC:1D:1C:BF:BD:63:15:52:E5:84:BB:C9:C2:B0:19:08:33 X509v3 Authority Key Identifier: keyid:12:09:7A:AF:85:7B:62:BD:34:AA:27:3D:3F:9B:3E:D9:CE:6D:F1:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/Egl6r4V7Yr00qic9P5s-2c5t8WE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Egl6r4V7Yr00qic9P5s-2c5t8WE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA31/79870596893D11F0BCE7A720C4F9AE02/D7F890AE893D11F0AE546821C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.135.89.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:4b:ed:82:48:8f:99:12:56:c2:b9:c1:4e:d9:4e:c7:91:84: 78:dc:12:0a:dd:4a:77:71:38:86:91:e8:64:48:5c:6d:fe:92: 25:22:19:a0:f5:a3:07:0d:15:9a:09:46:77:71:19:ec:1b:22: 59:52:73:73:bb:29:c4:9c:95:19:47:a1:0b:3a:9b:15:7e:18: 62:58:a2:50:07:e0:3d:0f:c6:bb:f9:06:de:4d:88:2a:cf:f2: 2b:7a:14:69:3b:3a:57:ed:9b:0d:44:6a:07:e0:1f:33:01:8a: f1:cc:8e:95:4b:3a:59:07:ec:b9:cf:9c:cf:da:77:c5:d4:8d: 8d:d3:1d:3a:7b:50:1f:9c:f5:d5:ce:53:46:0e:32:d9:56:9a: f5:7b:56:7c:0e:df:cc:7e:00:90:4d:22:d3:de:7e:67:ea:18: a4:28:59:17:d9:c3:3b:a0:56:95:1f:fa:84:be:4c:8a:d9:4c: f2:10:e2:c1:e4:b8:be:38:51:1d:fa:3f:ed:26:f3:00:46:79: 4d:5c:5d:91:33:d8:73:10:57:5c:8d:d0:a5:ab:25:f3:ac:9b: 2c:38:b3:29:a1:8c:67:cb:be:5d:c4:2d:50:2b:bc:07:1a:e1: c3:a1:3e:81:29:5a:a8:7e:8e:e8:10:90:c2:36:f1:d3:f8:f7: ed:b0:d1:11 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkEzMTExMC8GA1UEBRMoMTIwOTdBQUY4NTdCNjJCRDM0QUEyNzNEM0Y5QjNFRDlD RTZERjE2MTAeFw0yNTA5MDQwMzE4MzZaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkY2MyLTgzMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCVeumoW4BFxiZNhsKbaf0jNm/2Svln+Rihp13mSoMRJSNNC1WhTSdJer/EPqsS jepdAWDjGoczYFMxG2HGd+a3KfuHjbvc8kagymAycoSe2dltBn25WtxkZKZg1+kg CJ0nbRJcXYj7ttqv6/SnIJE4YT3zR4M7wjPrgU72ZW9S5LI37dM5wpcc43gPCoTJ zVqMyY+W5g98JDUTHXE+p4uMWWzktq4yor7lCAttWTHwX+8OEE6QDKl+sJqkMxmg dyXNeOzAMPUZNUhf1Czp3sRqHfU0s46q7TwSYMCZ0ZFJ9Ev6hG553MGoI2jZ7gdx ocLLSJJZFnJv/lj2wO2I2w4LAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUYd6e7B0c v71jFVLlhLvJwrAZCDMwHwYDVR0jBBgwFoAUEgl6r4V7Yr00qic9P5s+2c5t8WEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTMxLzc5ODcwNTk2ODkz RDExRjBCQ0U3QTcyMEM0RjlBRTAyL0VnbDZyNFY3WXIwMHFpYzlQNXMtMmM1dDhX RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWdsNnI0VjdZcjAwcWljOVA1cy0yYzV0OFdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkEzMS83OTg3MDU5Njg5M0QxMUYwQkNFN0E3MjBDNEY5QUUwMi9EN0Y4OTBBRTg5 M0QxMUYwQUU1NDY4MjFDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADAh1kwDQYJKoZIhvcNAQELBQADggEBAFtL7YJIj5kSVsK5wU7ZTseR hHjcEgrdSndxOIaR6GRIXG3+kiUiGaD1owcNFZoJRndxGewbIllSc3O7KcSclRlH oQs6mxV+GGJYolAH4D0Pxrv5Bt5NiCrP8it6FGk7Olftmw1EagfgHzMBivHMjpVL OlkH7LnPnM/ad8XUjY3THTp7UB+c9dXOU0YOMtlWmvV7VnwO38x+AJBNItPefmfq GKQoWRfZwzugVpUf+oS+TIrZTPIQ4sHkuL44UR36P+0m8wBGeU1cXZEz2HMQV1yN 0KWrJfOsmyw4symhjGfLvl3ELVArvAca4cOhPoEpWqh+jugQkMI28dP49+2w0RE= -----END CERTIFICATE-----Generated at Mon Mar 2 00:42:54 2026 by rpki-client