$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/52DC15E02DA611F1B64DB1E8A2833773.roa File: 52DC15E02DA611F1B64DB1E8A2833773.roa (raw, json) Hash identifier: tdhB/LQ2MoAuDsLhkF8HuP8bJ9jFlOIm2EVgF88Nu04= Subject key identifier: D9:BC:A6:C0:7D:E2:C5:7E:B5:57:CD:BB:7A:8F:44:7E:BB:BE:D7:69 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 0966 Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/52DC15E02DA611F1B64DB1E8A2833773.roa Signing time: Wed 01 Apr 2026 08:39:41 +0000 ROA not before: Wed 01 Apr 2026 08:39:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 212879 IP address blocks: 169.136.64.0/24 maxlen: 24 169.136.65.0/24 maxlen: 24 169.136.67.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.133.0/24 maxlen: 24 169.136.145.0/24 maxlen: 24 169.136.146.0/24 maxlen: 24 169.136.147.0/24 maxlen: 24 169.136.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 20:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2406 (0x966) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Apr 1 08:39:40 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69ccd9cc-b545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:54:51:e5:91:78:03:0c:ea:ee:68:72:df:37: 4a:5d:38:1c:c5:84:4e:b8:a6:06:2b:21:13:be:81: 90:88:3f:85:de:e7:0a:91:65:84:64:95:56:e4:f1: d7:38:0d:1f:96:22:a4:a8:46:82:84:3a:4a:1d:2e: 9b:94:48:e4:be:20:ac:35:59:f0:63:b7:11:1b:20: e4:bc:64:80:17:90:58:fa:23:5a:08:38:5f:1f:cd: 50:bf:ce:62:45:6c:3f:8d:ce:3e:f1:da:67:1d:88: 73:50:b6:cc:de:02:92:30:f6:36:c6:64:f8:3a:51: 5c:78:44:72:08:9a:39:38:a0:60:3b:ad:2f:c8:3a: ef:6f:be:e9:bf:21:f0:e5:e7:60:58:78:42:23:b0: bd:d3:f4:6a:2d:1d:52:4e:53:7b:20:b2:0a:a0:85: c0:dc:f9:53:bf:8c:8e:e0:e3:14:4f:66:82:4e:1b: b3:cd:79:98:4a:98:85:7e:e2:31:ef:75:1e:78:94: 3e:92:69:da:ce:59:fd:ff:2a:76:37:29:09:28:5f: 4c:a7:07:45:7f:9d:78:08:f6:de:b6:70:22:8c:b4: f9:8b:d3:df:24:be:78:f1:e1:95:60:19:0c:d4:62: a7:00:8a:be:db:59:12:46:c5:22:e0:12:d2:5c:f1: 2c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BC:A6:C0:7D:E2:C5:7E:B5:57:CD:BB:7A:8F:44:7E:BB:BE:D7:69 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/52DC15E02DA611F1B64DB1E8A2833773.roa sbgp-ipAddrBlock: critical IPv4: 169.136.64.0/23 169.136.67.0/24 169.136.72.0/24 169.136.133.0/24 169.136.145.0-169.136.147.255 169.136.154.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:f3:17:a2:75:5e:ff:12:b3:fc:fc:c0:d6:6f:60:1e:26:e2: 2c:a3:a0:23:6a:22:6c:8e:95:47:ec:22:e0:3c:f7:fd:12:f0: c3:b4:46:2c:ae:b4:4f:91:21:cb:8c:b6:6a:05:3b:1d:09:cd: e4:40:b2:f0:f0:88:9c:8a:b9:d8:e2:84:87:0d:6d:7c:6d:47: 50:10:45:fc:41:e2:f9:ab:4d:ff:7a:df:f0:da:f2:6e:c8:4b: a6:45:60:6d:54:b7:7f:7d:95:a6:22:57:c4:b7:cf:d9:04:5a: 2e:01:c2:f4:6b:6a:1a:37:74:df:6b:a2:b5:bb:73:a3:b9:a5: 3a:39:e9:c1:79:27:bc:e8:55:a5:f3:09:85:68:a4:da:da:e7: 91:8f:6e:65:7c:cf:fe:c4:0c:d3:94:8a:f4:d5:29:e9:e3:47: d0:fe:78:10:ab:d0:13:5c:d5:9d:df:8c:0d:94:7f:ee:b2:90: d9:a0:f2:cf:d0:df:c5:b5:69:ed:18:ae:ae:87:9b:d1:37:95: 40:8f:6e:ec:48:ac:3d:df:08:ba:73:75:af:69:95:bb:78:09: b7:55:97:c9:16:d2:65:ba:db:1d:eb:5a:9e:2b:c5:6c:54:c3: 4b:bb:d1:c7:74:07:cc:14:b7:04:ab:59:b5:9d:fc:dd:87:8b: 3d:bd:6c:a7 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICCWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjYwNDAxMDgzOTQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjZDljYy1iNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5lRR5ZF4Awzq7mhy3zdKXTgcxYROuKYGKyETvoGQiD+F3ucKkWWEZJVW5PHX OA0fliKkqEaChDpKHS6blEjkviCsNVnwY7cRGyDkvGSAF5BY+iNaCDhfH81Qv85i RWw/jc4+8dpnHYhzULbM3gKSMPY2xmT4OlFceERyCJo5OKBgO60vyDrvb77pvyHw 5edgWHhCI7C90/RqLR1STlN7ILIKoIXA3PlTv4yO4OMUT2aCThuzzXmYSpiFfuIx 73UeeJQ+kmnazln9/yp2NykJKF9MpwdFf514CPbetnAijLT5i9PfJL548eGVYBkM 1GKnAIq+21kSRsUi4BLSXPEsJwIDAQABo4IChjCCAoIwHQYDVR0OBBYEFNm8psB9 4sV+tVfNu3qPRH67vtdpMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNTJEQzE1RTAy REE2MTFGMUI2NERCMUU4QTI4MzM3NzMucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAy BAIAATAsAwQBqYhAAwQAqYhDAwQAqYhIAwQAqYiFMAwDBACpiJEDBAKpiJADBACp iJowDQYJKoZIhvcNAQELBQADggEBAIzzF6J1Xv8Ss/z8wNZvYB4m4iyjoCNqImyO lUfsIuA89/0S8MO0RiyutE+RIcuMtmoFOx0JzeRAsvDwiJyKudjihIcNbXxtR1AQ RfxB4vmrTf963/Da8m7IS6ZFYG1Ut399laYiV8S3z9kEWi4BwvRraho3dN9rorW7 c6O5pTo56cF5J7zoVaXzCYVopNra55GPbmV8z/7EDNOUivTVKenjR9D+eBCr0BNc 1Z3fjA2Uf+6ykNmg8s/Q38W1ae0Yrq6Hm9E3lUCPbuxIrD3fCLpzda9plbt4CbdV l8kW0mW62x3rWp4rxWxUw0u70cd0B8wUtwSrWbWd/N2Hiz29bKc= -----END CERTIFICATE-----Generated at Fri Apr 17 06:51:11 2026 by rpki-client