$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B4D/D2D82BFECC1B11F095224A2CC4F9AE02/420E09ACCC1D11F08826FE2FC4F9AE02.roa File: 420E09ACCC1D11F08826FE2FC4F9AE02.roa (raw, json) Hash identifier: 2P+rU4rRcFMrmIevktl5y2eI79U0fIUs0/O420QWuwI= Subject key identifier: 96:8C:83:71:7B:58:3A:10:50:C5:71:43:1C:55:D4:10:77:F8:F3:11 Certificate issuer: /CN=A91C3B4D/serialNumber=AAF19433070FC676FAD61206B2719A085AB38BE5 Certificate serial: 33 Authority key identifier: AA:F1:94:33:07:0F:C6:76:FA:D6:12:06:B2:71:9A:08:5A:B3:8B:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qvGUMwcPxnb61hIGsnGaCFqzi-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B4D/D2D82BFECC1B11F095224A2CC4F9AE02/420E09ACCC1D11F08826FE2FC4F9AE02.roa Signing time: Sun 01 Mar 2026 05:57:43 +0000 ROA not before: Fri 28 Nov 2025 05:44:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38471 IP address blocks: 123.136.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B4D/D2D82BFECC1B11F095224A2CC4F9AE02/qvGUMwcPxnb61hIGsnGaCFqzi-U.crl rsync://rpki.apnic.net/member_repository/A91C3B4D/D2D82BFECC1B11F095224A2CC4F9AE02/qvGUMwcPxnb61hIGsnGaCFqzi-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qvGUMwcPxnb61hIGsnGaCFqzi-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 10:04:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B4D, serialNumber=AAF19433070FC676FAD61206B2719A085AB38BE5 Validity Not Before: Nov 28 05:44:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3d556-22db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ca:c0:a7:4f:2d:dd:16:33:b1:f1:11:51:a6: 47:08:d7:fa:2d:bf:14:d7:2f:9e:e5:ba:ea:23:a6: f6:aa:39:70:03:2b:e9:e2:80:85:22:a1:fd:26:07: 33:de:c0:3f:ad:65:3e:2d:1c:2f:fc:da:29:5e:ed: b2:f8:13:85:1b:2c:db:89:ef:26:45:92:ae:8f:58: d4:b5:3c:2d:4a:07:eb:d1:de:d9:d0:22:db:47:6a: 93:09:8a:7c:9e:bf:9b:73:0d:b6:d1:f0:ba:8a:8c: d5:d2:fc:92:0d:d5:7e:e3:59:4b:ec:1c:0e:91:40: 7c:af:53:ce:d4:06:4e:a1:65:0a:d0:58:3f:43:22: 0c:10:7a:e4:ab:34:71:b2:55:dd:05:38:8f:5a:43: ab:8b:0b:e3:b2:64:c1:36:cd:5b:fb:c8:de:24:97: a9:d8:75:5c:da:9f:33:28:b3:34:4e:18:be:5e:dc: 59:06:fe:0b:49:c8:9c:7e:c1:d3:2c:f6:96:3e:83: 85:74:e9:69:35:e4:1f:e7:e4:91:98:ed:08:7a:93: c5:09:55:bf:96:c1:e2:95:e9:3b:95:1b:74:8a:f7: f6:aa:74:fb:45:ac:cc:2d:ed:37:2c:3d:44:54:74: 5a:fa:c6:89:f3:fd:bc:66:63:fa:8f:98:27:10:f4: 8c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8C:83:71:7B:58:3A:10:50:C5:71:43:1C:55:D4:10:77:F8:F3:11 X509v3 Authority Key Identifier: keyid:AA:F1:94:33:07:0F:C6:76:FA:D6:12:06:B2:71:9A:08:5A:B3:8B:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B4D/D2D82BFECC1B11F095224A2CC4F9AE02/qvGUMwcPxnb61hIGsnGaCFqzi-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qvGUMwcPxnb61hIGsnGaCFqzi-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B4D/D2D82BFECC1B11F095224A2CC4F9AE02/420E09ACCC1D11F08826FE2FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.136.72.0/21 Signature Algorithm: sha256WithRSAEncryption 95:76:7c:fc:b3:a7:68:c2:c8:9b:3d:ec:07:22:7d:d0:7b:99: c9:68:c5:09:79:54:1e:57:d7:4e:9d:45:c9:04:21:54:b4:71: 60:f1:98:3c:07:11:c9:9e:02:65:f4:65:26:33:d7:69:26:d2: be:94:4f:bd:33:69:0e:87:5f:6b:c7:b5:1e:fb:52:f7:d8:7c: 8c:13:a1:7f:8c:d0:5e:64:e2:09:14:21:7e:24:da:29:3a:a0: c7:06:d4:cc:70:ae:59:6b:f3:6c:6f:64:26:3d:f3:d6:be:d8: d0:65:bc:61:07:ee:69:3d:6d:97:d4:69:c2:c5:f9:ef:f3:b5: 15:ee:1d:42:74:3b:a6:48:c3:73:6b:35:7c:be:15:95:82:d9: 61:88:76:b1:32:a7:6b:f9:9c:85:1e:c0:24:3b:b7:db:f7:7d: 98:d8:75:8f:b7:a4:fc:41:28:04:39:d5:38:f7:d0:25:24:33: 68:bb:9b:26:48:e0:4d:17:71:4f:9c:86:f4:94:3e:ee:25:f9: c0:1c:23:2a:e7:b5:96:f8:7f:d8:fc:c1:8d:03:4e:f5:d7:d2: 50:a5:7b:10:5a:b9:b7:e3:2e:5c:41:50:1d:d0:d9:08:1b:27: 31:40:c9:63:66:17:bb:f9:bb:b6:9a:77:90:ec:f3:14:5a:9e: 59:66:07:47 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD M0I0RDExMC8GA1UEBRMoQUFGMTk0MzMwNzBGQzY3NkZBRDYxMjA2QjI3MTlBMDg1 QUIzOEJFNTAeFw0yNTExMjgwNTQ0MDhaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkNTU2LTIyZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/ysCnTy3dFjOx8RFRpkcI1/otvxTXL57luuojpvaqOXADK+nigIUiof0mBzPe wD+tZT4tHC/82ile7bL4E4UbLNuJ7yZFkq6PWNS1PC1KB+vR3tnQIttHapMJinye v5tzDbbR8LqKjNXS/JIN1X7jWUvsHA6RQHyvU87UBk6hZQrQWD9DIgwQeuSrNHGy Vd0FOI9aQ6uLC+OyZME2zVv7yN4kl6nYdVzanzMoszROGL5e3FkG/gtJyJx+wdMs 9pY+g4V06Wk15B/n5JGY7Qh6k8UJVb+WweKV6TuVG3SK9/aqdPtFrMwt7TcsPURU dFr6xonz/bxmY/qPmCcQ9IzHAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUloyDcXtY OhBQxXFDHFXUEHf48xEwHwYDVR0jBBgwFoAUqvGUMwcPxnb61hIGsnGaCFqzi+Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzQjREL0QyRDgyQkZFQ0Mx QjExRjA5NTIyNEEyQ0M0RjlBRTAyL3F2R1VNd2NQeG5iNjFoSUdzbkdhQ0Zxemkt VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcXZHVU13Y1B4bmI2MWhJR3NuR2FDRnF6aS1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0I0RC9EMkQ4MkJGRUNDMUIxMUYwOTUyMjRBMkNDNEY5QUUwMi80MjBFMDlBQ0ND MUQxMUYwODgyNkZFMkZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAN7iEgwDQYJKoZIhvcNAQELBQADggEBAJV2fPyzp2jCyJs97AcifdB7 mcloxQl5VB5X106dRckEIVS0cWDxmDwHEcmeAmX0ZSYz12km0r6UT70zaQ6HX2vH tR77UvfYfIwToX+M0F5k4gkUIX4k2ik6oMcG1Mxwrllr82xvZCY989a+2NBlvGEH 7mk9bZfUacLF+e/ztRXuHUJ0O6ZIw3NrNXy+FZWC2WGIdrEyp2v5nIUewCQ7t9v3 fZjYdY+3pPxBKAQ51Tj30CUkM2i7myZI4E0XcU+chvSUPu4l+cAcIyrntZb4f9j8 wY0DTvXX0lClexBaubfjLlxBUB3Q2QgbJzFAyWNmF7v5u7aad5Ds8xRanllmB0c= -----END CERTIFICATE-----Generated at Mon Mar 2 12:35:12 2026 by rpki-client