$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/36023BC6D29D11EAA11F7F51C4F9AE02.roa File: 36023BC6D29D11EAA11F7F51C4F9AE02.roa (raw, json) Hash identifier: 2P5OTTpkzgPQNPnWpqe7PnEj5CbcnDOLb7qDMaxfHTE= Subject key identifier: C5:50:87:6E:B6:DB:AC:33:E6:D2:7C:A8:F9:3D:34:DD:4E:45:12:BD Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 08F5 Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/36023BC6D29D11EAA11F7F51C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:42:08 +0000 ROA not before: Wed 08 Oct 2025 20:51:35 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17439 IP address blocks: 146.88.24.0/22 maxlen: 24 164.52.192.0/19 maxlen: 24 205.147.96.0/21 maxlen: 24 205.147.108.0/22 maxlen: 24 216.48.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2293 (0x8f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Oct 8 20:51:35 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45e50-169e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:39:d0:0b:cf:ab:bd:0e:33:f2:c6:04:ff:e1: 27:05:c4:21:a4:96:f1:11:39:22:cb:31:de:00:27: 3c:59:5d:59:9f:89:9f:6b:a0:3e:f3:8f:51:b1:42: b7:00:45:65:6e:f4:61:dd:8a:64:dd:02:5f:6a:e5: 65:66:65:0e:e5:95:4d:16:97:a5:ba:bb:37:ac:3d: 52:55:db:20:e4:17:08:18:ec:77:bc:de:45:bd:c7: dc:5b:a4:67:e8:09:3b:95:c0:5f:33:c2:53:5b:2e: 3d:50:ba:16:f8:91:bb:57:b4:95:d8:6b:7a:92:03: d2:2d:ec:9e:a7:7d:64:95:16:ad:15:50:fd:83:c5: ad:82:a7:d3:7d:f6:1a:50:0c:cf:a4:27:24:2d:96: 96:ce:50:4d:8f:75:26:c4:78:60:3c:08:5b:d8:cf: ef:b3:ba:57:c1:41:d4:5a:af:9b:4b:2c:94:78:45: 67:c4:39:2c:da:d2:5c:c1:5c:a0:38:9d:a5:15:ed: c9:80:b4:96:b3:c7:ff:a3:50:89:9b:c2:60:2f:a3: 7b:dc:5a:a0:53:c6:c3:6c:30:e5:23:3d:b6:00:f3: 4d:9d:64:35:f5:b4:e2:ca:51:e5:e3:89:88:ba:cf: 5b:1a:af:c6:d0:9c:2b:f8:35:24:44:37:62:8c:2a: d2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:50:87:6E:B6:DB:AC:33:E6:D2:7C:A8:F9:3D:34:DD:4E:45:12:BD X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/36023BC6D29D11EAA11F7F51C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 146.88.24.0/22 164.52.192.0/19 205.147.96.0/21 205.147.108.0/22 216.48.176.0/20 Signature Algorithm: sha256WithRSAEncryption 86:31:73:1e:05:8a:6c:e8:88:70:5b:32:9f:5b:6d:a8:f2:a3: ec:8d:c4:1f:a3:da:2c:b1:9f:fc:9e:aa:2f:e7:c2:57:42:9d: 3c:d3:97:41:5c:d2:df:bb:9f:5c:38:46:22:dc:84:8b:b3:86: 74:bf:9a:ee:a5:47:0e:c5:6d:c6:b1:3a:af:d9:29:b7:c1:b7: e1:e0:7d:79:a3:35:50:df:80:cb:49:be:5d:b6:f0:2e:3d:92: b6:e2:53:2f:2e:9e:f8:74:ab:96:18:3b:9b:83:5b:59:c1:20: 55:c1:1f:57:24:f8:f8:93:d4:6b:c7:7c:9c:66:3b:11:3f:32: ee:41:20:77:73:51:db:5c:0f:46:ff:f7:d9:b9:f8:68:b5:1e: 31:94:4e:7c:1b:9b:80:58:f7:11:85:1f:14:83:01:ce:17:cb: 46:88:f5:3e:94:0f:b9:fc:ba:0a:60:f8:c6:51:61:0d:ee:4e: 7a:35:e8:66:6c:aa:04:3d:92:70:b0:c0:5b:3e:7c:b7:be:bc: 73:ec:87:4e:c9:ae:8f:35:ea:ab:09:4f:2d:ff:a0:3e:49:ac: a2:ba:59:61:f4:34:05:05:1f:e2:3e:2b:af:50:33:a4:3b:97: 1a:97:5e:aa:d8:21:5d:8a:a5:21:92:c4:ab:96:6d:00:42:be: 5a:30:41:95 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICCPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUxMDA4MjA1MTM1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWU1MC0xNjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTnQC8+rvQ4z8sYE/+EnBcQhpJbxETkiyzHeACc8WV1Zn4mfa6A+849RsUK3 AEVlbvRh3Ypk3QJfauVlZmUO5ZVNFpelurs3rD1SVdsg5BcIGOx3vN5FvcfcW6Rn 6Ak7lcBfM8JTWy49ULoW+JG7V7SV2Gt6kgPSLeyep31klRatFVD9g8WtgqfTffYa UAzPpCckLZaWzlBNj3UmxHhgPAhb2M/vs7pXwUHUWq+bSyyUeEVnxDks2tJcwVyg OJ2lFe3JgLSWs8f/o1CJm8JgL6N73FqgU8bDbDDlIz22APNNnWQ19bTiylHl44mI us9bGq/G0Jwr+DUkRDdijCrSswIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFMVQh262 26wz5tJ8qPk9NN1ORRK9MB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RERDQjYvRTg4M0RGRDZDQzNEMTFFQThCQzQ1QzI5QzRGOUFFMDIvMzYwMjNCQzZE MjlEMTFFQUExMUY3RjUxQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCklgYAwQFpDTAAwQDzZNgAwQCzZNsAwQE2DCwMA0GCSqGSIb3DQEB CwUAA4IBAQCGMXMeBYps6IhwWzKfW22o8qPsjcQfo9ossZ/8nqov58JXQp0805dB XNLfu59cOEYi3ISLs4Z0v5rupUcOxW3GsTqv2Sm3wbfh4H15ozVQ34DLSb5dtvAu PZK24lMvLp74dKuWGDubg1tZwSBVwR9XJPj4k9Rrx3ycZjsRPzLuQSB3c1HbXA9G //fZufhotR4xlE58G5uAWPcRhR8UgwHOF8tGiPU+lA+5/LoKYPjGUWEN7k56Nehm bKoEPZJwsMBbPny3vrxz7IdOya6PNeqrCU8t/6A+Sayiullh9DQFBR/iPiuvUDOk O5cal16q2CFdiqUhksSrlm0AQr5aMEGV -----END CERTIFICATE-----Generated at Mon Mar 2 03:59:14 2026 by rpki-client