$ rpki-client -vvf rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/9DD3FFC6001111F18C67D2A9406F56BC.roa File: 9DD3FFC6001111F18C67D2A9406F56BC.roa (raw, json) Hash identifier: l4S9gMbXi+gUDu4apCdlLMULJuB61B4wV3lZ30Od2K0= Subject key identifier: 14:81:8C:EB:72:FD:1D:C1:7F:E5:98:80:78:68:3B:97:0B:82:91:2E Certificate issuer: /CN=A91C32D9/serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Certificate serial: 12 Authority key identifier: 4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/9DD3FFC6001111F18C67D2A9406F56BC.roa Signing time: Sun 01 Mar 2026 05:38:16 +0000 ROA not before: Mon 02 Feb 2026 08:31:49 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 4686 IP address blocks: 36.255.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:33:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C32D9, serialNumber=4F487EFEB7C7796881572D97D6254FA2DDB5A87C Validity Not Before: Feb 2 08:31:49 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d0c8-3a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:31:37:70:17:52:21:c6:a5:d2:18:e5:66:60: 93:34:7a:5e:a4:40:64:2b:4b:84:7b:91:89:79:fa: 0d:a3:18:cc:8f:f4:1d:07:f3:ba:6c:25:07:53:9b: 1c:69:96:27:1e:6f:a9:28:f5:97:91:fc:c7:3b:69: 77:91:90:ae:45:da:ad:2a:ea:36:f0:92:07:d3:9e: 21:2a:41:0c:aa:98:91:63:16:ac:f9:08:21:c2:83: 87:84:1d:35:11:78:7e:37:9f:64:2f:88:ca:a0:c7: 60:ef:4e:65:43:83:4a:5e:49:69:c1:11:24:cf:94: e6:a6:45:6f:b3:27:c8:f8:67:06:74:f2:40:c6:f9: f9:f4:80:52:e6:08:56:78:1a:b1:ce:7d:6d:10:1b: f3:8e:a8:ad:a0:6f:b3:67:6b:bc:27:19:d9:cb:e3: 4b:ac:2e:a3:a5:00:2c:27:b3:a3:eb:37:66:16:f8: 54:73:6f:c3:51:7d:00:a1:06:6d:24:83:45:5d:ce: 0e:6f:cc:02:26:a0:ea:25:3a:20:3a:fa:cc:6d:0a: ca:e1:b6:a2:68:c2:89:df:73:47:72:69:63:28:97: 5f:6c:f9:66:ee:4e:9b:7e:07:34:51:ef:54:17:5c: fc:e7:48:21:cf:e5:39:30:23:5f:17:39:9a:0f:fa: 88:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:81:8C:EB:72:FD:1D:C1:7F:E5:98:80:78:68:3B:97:0B:82:91:2E X509v3 Authority Key Identifier: keyid:4F:48:7E:FE:B7:C7:79:68:81:57:2D:97:D6:25:4F:A2:DD:B5:A8:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/T0h-_rfHeWiBVy2X1iVPot21qHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T0h-_rfHeWiBVy2X1iVPot21qHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C32D9/64DF132C001111F1AB27ED80406F56BC/9DD3FFC6001111F18C67D2A9406F56BC.roa sbgp-ipAddrBlock: critical IPv4: 36.255.216.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:bc:2a:43:1b:66:fb:36:e0:d6:ca:d9:61:46:98:d7:a8:e5: 1e:a9:53:c0:56:2b:5c:3d:9b:14:90:d4:97:41:37:fa:52:aa: 18:78:28:f8:c1:bf:b4:ba:70:93:11:fe:e0:58:8c:6f:fd:cb: 62:32:0b:a1:b7:1a:64:8c:f0:ab:1f:d3:c7:c7:fe:ca:67:bb: 17:70:ee:85:3a:17:b1:92:e5:7a:39:d3:08:64:0c:5f:6e:fc: 50:1a:6d:07:f5:fe:ea:be:62:d0:41:a9:b2:a1:6c:21:90:58: 42:44:28:06:4c:83:fb:68:09:9d:a6:d7:96:1d:87:84:0d:f5: 4b:d0:09:e9:61:6b:21:f2:f7:8a:ea:d8:4e:b5:ba:1c:32:92: 36:61:d5:c2:be:24:8c:0d:df:43:32:1e:6b:d5:13:da:16:95: 50:2d:6e:c6:dc:30:3f:08:19:17:bc:e9:f8:87:1f:9b:ae:6b: 89:a1:4d:04:8d:20:5b:11:31:aa:f4:01:57:1e:55:2b:d6:c5: 2d:e4:f3:4b:d6:9c:d7:f2:dc:a2:c3:2f:85:37:2c:da:15:c6: 2c:2b:fa:f6:34:20:bd:53:46:4e:58:25:12:ac:93:3a:44:77: d7:e6:bb:c4:0a:84:ca:f3:cf:4b:b7:66:cf:04:a9:6e:30:a5: 17:e1:a4:a6 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzJEOTExMC8GA1UEBRMoNEY0ODdFRkVCN0M3Nzk2ODgxNTcyRDk3RDYyNTRGQTJE REI1QTg3QzAeFw0yNjAyMDIwODMxNDlaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkMGM4LTNhNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpMTdwF1IhxqXSGOVmYJM0el6kQGQrS4R7kYl5+g2jGMyP9B0H87psJQdTmxxp liceb6ko9ZeR/Mc7aXeRkK5F2q0q6jbwkgfTniEqQQyqmJFjFqz5CCHCg4eEHTUR eH43n2QviMqgx2DvTmVDg0peSWnBESTPlOamRW+zJ8j4ZwZ08kDG+fn0gFLmCFZ4 GrHOfW0QG/OOqK2gb7Nna7wnGdnL40usLqOlACwns6PrN2YW+FRzb8NRfQChBm0k g0Vdzg5vzAImoOolOiA6+sxtCsrhtqJowonfc0dyaWMol19s+WbuTpt+BzRR71QX XPznSCHP5TkwI18XOZoP+oj/AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUFIGM63L9 HcF/5ZiAeGg7lwuCkS4wHwYDVR0jBBgwFoAUT0h+/rfHeWiBVy2X1iVPot21qHww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzMkQ5LzY0REYxMzJDMDAx MTExRjFBQjI3RUQ4MDQwNkY1NkJDL1QwaC1fcmZIZVdpQlZ5MlgxaVZQb3QyMXFI dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDBoLV9yZkhlV2lCVnkyWDFpVlBvdDIxcUh3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzJEOS82NERGMTMyQzAwMTExMUYxQUIyN0VEODA0MDZGNTZCQy85REQzRkZDNjAw MTExMUYxOEM2N0QyQTk0MDZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAIk/9gwDQYJKoZIhvcNAQELBQADggEBAGu8KkMbZvs24NbK2WFGmNeo 5R6pU8BWK1w9mxSQ1JdBN/pSqhh4KPjBv7S6cJMR/uBYjG/9y2IyC6G3GmSM8Ksf 08fH/spnuxdw7oU6F7GS5Xo50whkDF9u/FAabQf1/uq+YtBBqbKhbCGQWEJEKAZM g/toCZ2m15Ydh4QN9UvQCelhayHy94rq2E61uhwykjZh1cK+JIwN30MyHmvVE9oW lVAtbsbcMD8IGRe86fiHH5uua4mhTQSNIFsRMar0AVceVSvWxS3k80vWnNfy3KLD L4U3LNoVxiwr+vY0IL1TRk5YJRKskzpEd9fmu8QKhMrzz0u3Zs8EqW4wpRfhpKY= -----END CERTIFICATE-----Generated at Mon Mar 2 07:23:55 2026 by rpki-client