$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/D24370A6638211F087594469C4F9AE02.roa File: D24370A6638211F087594469C4F9AE02.roa (raw, json) Hash identifier: 1ImXC5b9mL9cfwkU8HYVSBvaCTTu/PQ16A2YKJivm7U= Subject key identifier: D4:CE:FE:D7:47:5E:96:4C:8F:67:6B:EA:3A:B9:91:E2:CA:CE:2F:69 Certificate issuer: /CN=A91C7EF2/serialNumber=9B9D39725B27D420281385163492FF75F15113DA Certificate serial: 87 Authority key identifier: 9B:9D:39:72:5B:27:D4:20:28:13:85:16:34:92:FF:75:F1:51:13:DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/D24370A6638211F087594469C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:14:10 +0000 ROA not before: Fri 18 Jul 2025 02:56:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135045 IP address blocks: 165.101.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.crl rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7EF2, serialNumber=9B9D39725B27D420281385163492FF75F15113DA Validity Not Before: Jul 18 02:56:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3e741-6f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3c:a3:65:9e:42:d8:33:9e:2c:a8:0d:01:fe: 26:50:e4:0e:4e:2a:e9:e4:65:89:9c:3f:29:d7:f9: 13:42:ae:5c:d7:1e:8b:b0:96:42:d8:2e:1e:bb:c4: 6b:20:96:34:2f:17:bf:b2:e0:44:86:4c:f1:2c:45: 60:37:03:b5:dc:2a:ee:70:e3:f3:ca:10:6d:2e:fb: 65:a2:5e:a5:56:0b:db:99:1d:b2:54:03:a0:03:1c: 7a:ae:0f:75:d4:fa:f8:35:1a:dc:99:6a:34:a6:dc: 5a:97:17:e3:25:db:81:8c:69:08:34:9f:8e:ca:8f: 3c:c9:6b:5e:34:12:8c:50:b9:3f:a5:66:2c:27:be: 44:5d:ec:a4:6f:78:db:84:cd:46:6b:86:05:ff:20: 98:99:2d:16:73:08:0a:b8:3c:f7:7d:fc:8a:1a:46: 20:8a:84:97:99:f5:8f:07:a1:2a:e5:59:e8:03:1a: 58:2d:64:8c:36:9e:76:24:d7:5c:c9:cf:dd:ea:63: 1b:d9:e5:b4:82:6e:23:12:52:dc:09:3a:29:8d:4e: 18:64:42:b7:61:c1:fa:0e:42:8d:b0:1c:f5:da:bb: c5:2b:bb:a6:d1:90:14:e3:13:10:a9:9a:22:74:e3: 2d:81:31:0f:6a:ba:ef:23:30:1d:c0:ee:86:aa:38: 9c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:CE:FE:D7:47:5E:96:4C:8F:67:6B:EA:3A:B9:91:E2:CA:CE:2F:69 X509v3 Authority Key Identifier: keyid:9B:9D:39:72:5B:27:D4:20:28:13:85:16:34:92:FF:75:F1:51:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/D24370A6638211F087594469C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 165.101.222.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:92:1d:3d:25:50:c2:21:c9:72:f2:86:f9:01:0b:e5:28:52: 0b:a3:82:f3:4c:01:23:98:ec:5e:84:8f:b6:78:3d:cd:a0:08: d5:ac:d0:d6:b8:db:90:ee:17:41:90:05:28:fc:62:3d:50:7c: 0e:ab:aa:aa:66:c5:33:3d:41:23:34:7e:c7:d8:66:c5:fa:b6: 07:2c:4d:d3:00:c5:02:8a:d1:44:43:fc:c0:7b:00:e4:e5:0e: e0:53:5b:e6:b1:0b:6c:d1:31:c8:a3:a5:db:d8:95:7a:e7:16: 0a:3f:3e:28:b3:33:3c:53:f8:10:df:b1:61:95:ef:ce:83:26: 62:7a:cb:c3:16:a4:a0:1a:d5:34:82:c6:b2:9f:2f:dd:3d:87: e2:96:2d:bf:7a:3c:f8:85:3e:2f:34:79:81:5b:1c:d8:22:1f: 6f:a9:de:e5:79:2c:0e:a8:da:52:d1:d3:64:b6:71:c3:78:59: 75:7d:a4:82:3c:59:7a:93:89:8b:47:52:9b:9a:7c:ce:20:26: 28:d6:72:e3:57:32:ce:4b:a6:16:5d:29:1f:5c:09:f4:34:1c: 97:2b:5e:95:70:80:2e:2a:06:a7:64:89:e6:1e:8a:9e:fb:61: 80:d7:ef:0d:8e:3b:00:b7:7e:45:c2:0b:ff:62:2b:1d:ae:79: 53:36:01:d0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFRjIxMTAvBgNVBAUTKDlCOUQzOTcyNUIyN0Q0MjAyODEzODUxNjM0OTJGRjc1 RjE1MTEzREEwHhcNMjUwNzE4MDI1NjM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTc0MS02ZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTyjZZ5C2DOeLKgNAf4mUOQOTirp5GWJnD8p1/kTQq5c1x6LsJZC2C4eu8Rr IJY0Lxe/suBEhkzxLEVgNwO13CrucOPzyhBtLvtlol6lVgvbmR2yVAOgAxx6rg91 1Pr4NRrcmWo0ptxalxfjJduBjGkINJ+Oyo88yWteNBKMULk/pWYsJ75EXeykb3jb hM1Ga4YF/yCYmS0WcwgKuDz3ffyKGkYgioSXmfWPB6Eq5VnoAxpYLWSMNp52JNdc yc/d6mMb2eW0gm4jElLcCTopjU4YZEK3YcH6DkKNsBz12rvFK7um0ZAU4xMQqZoi dOMtgTEParrvIzAdwO6GqjicaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNTO/tdH XpZMj2dr6jq5keLKzi9pMB8GA1UdIwQYMBaAFJudOXJbJ9QgKBOFFjSS/3XxURPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0VGMi82MjI2QzkzNjYz ODExMUYwQTMzRDIzNjRDNEY5QUUwMi9tNTA1Y2xzbjFDQW9FNFVXTkpMX2RmRlJF OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL201MDVjbHNuMUNBb0U0VVdOSkxfZGZGUkU5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdFRjIvNjIyNkM5MzY2MzgxMTFGMEEzM0QyMzY0QzRGOUFFMDIvRDI0MzcwQTY2 MzgyMTFGMDg3NTk0NDY5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBpWXeMA0GCSqGSIb3DQEBCwUAA4IBAQCOkh09JVDCIcly8ob5AQvl KFILo4LzTAEjmOxehI+2eD3NoAjVrNDWuNuQ7hdBkAUo/GI9UHwOq6qqZsUzPUEj NH7H2GbF+rYHLE3TAMUCitFEQ/zAewDk5Q7gU1vmsQts0THIo6Xb2JV65xYKPz4o szM8U/gQ37Fhle/OgyZiesvDFqSgGtU0gsayny/dPYfili2/ejz4hT4vNHmBWxzY Ih9vqd7leSwOqNpS0dNktnHDeFl1faSCPFl6k4mLR1KbmnzOICYo1nLjVzLOS6YW XSkfXAn0NByXK16VcIAuKganZInmHoqe+2GA1+8NjjsAt35Fwgv/YisdrnlTNgHQ -----END CERTIFICATE-----Generated at Mon Mar 2 09:19:43 2026 by rpki-client