$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/52DC15E02DA611F1B64DB1E8A2833773.roa File: 52DC15E02DA611F1B64DB1E8A2833773.roa (raw, json) Hash identifier: AzbPG4+Ay9Py93BezJDBHyNMd2NxBXLctC8P1DC+Z84= Subject key identifier: 44:AA:84:FF:E0:53:24:17:7E:35:23:D4:4E:3D:AF:E5:08:04:7E:E3 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 0999 Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/52DC15E02DA611F1B64DB1E8A2833773.roa Signing time: Wed 10 Jun 2026 21:24:27 +0000 ROA not before: Wed 10 Jun 2026 21:24:26 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 212879 IP address blocks: 169.136.64.0/24 maxlen: 24 169.136.65.0/24 maxlen: 24 169.136.67.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.133.0/24 maxlen: 24 169.136.145.0/24 maxlen: 24 169.136.146.0/24 maxlen: 24 169.136.147.0/24 maxlen: 24 169.136.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2457 (0x999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jun 10 21:24:26 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a29d60a-6558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fc:09:40:6e:e0:9c:3e:c7:61:b2:68:08:4e: f8:89:93:25:77:e6:51:f7:eb:fe:76:88:38:d5:a7: 40:f8:c9:54:45:e2:34:5d:c5:68:c1:a5:04:41:4a: 18:eb:f5:9b:c6:70:b2:36:e3:f0:d8:be:03:26:0a: a2:81:54:93:9a:db:6f:87:7d:b7:6d:2e:db:48:7b: 77:8d:80:e0:fb:53:c2:2e:4a:e6:92:54:2b:ae:6f: 12:53:91:24:f0:f5:21:03:df:94:0d:ef:58:e8:9c: 1c:48:62:a8:12:5c:6f:4b:19:0f:f7:be:80:28:f3: 0f:8b:50:0c:6d:27:d2:7a:3e:66:40:8f:49:45:09: 6d:5f:0e:55:f0:4d:74:35:fb:40:bd:a0:2f:48:9d: 39:84:33:7d:37:22:d3:9c:b4:b9:af:83:c2:ce:a3: d4:14:6c:8a:02:bd:73:e1:9b:89:8a:09:67:9d:e4: 26:de:f8:19:bf:e7:74:ab:fc:bd:45:fb:3e:10:1f: 2d:96:be:91:26:8c:55:7f:f6:0a:02:92:40:84:54: 3f:4b:ef:22:1f:4e:bc:28:2f:bc:25:0e:10:56:c0: 9c:e0:70:64:e0:8e:b2:fc:5b:ac:b2:35:7d:df:67: 36:a3:5b:dd:e3:f9:a8:0c:5f:ef:d3:b7:16:85:09: 06:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:AA:84:FF:E0:53:24:17:7E:35:23:D4:4E:3D:AF:E5:08:04:7E:E3 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/52DC15E02DA611F1B64DB1E8A2833773.roa sbgp-ipAddrBlock: critical IPv4: 169.136.64.0/23 169.136.67.0/24 169.136.72.0/24 169.136.133.0/24 169.136.145.0-169.136.147.255 169.136.154.0/24 Signature Algorithm: sha256WithRSAEncryption 90:08:09:a0:c8:a7:ca:75:90:e7:68:12:38:5a:22:4f:5f:3d: 05:98:8c:b0:7a:bc:fe:f8:8c:7c:7e:45:2a:26:25:5c:3f:c3: 23:e7:16:43:9a:b6:d8:66:c7:1d:97:d5:eb:f0:26:88:6d:74: ed:68:2a:c3:d5:e2:bf:8a:11:ee:de:9c:a2:3a:4b:ab:9a:5b: 07:d9:75:5e:a2:cd:66:5f:2a:68:65:8c:4b:34:5b:55:1a:75: 45:ca:a7:60:e4:bf:cf:bd:15:b3:fc:df:39:16:01:da:5d:b4: 79:12:ed:51:a2:fe:e1:24:79:fa:98:61:56:3e:57:23:63:5c: f6:e0:2c:31:e8:ab:16:e5:a7:a8:48:a2:01:9a:4f:c1:99:55: ad:ce:14:d3:88:ff:d7:d9:cd:e4:77:83:0a:5f:68:45:f8:62: 4e:a0:a8:cf:23:95:d8:c1:f0:9c:37:da:f9:c6:33:5c:d2:bb: 8f:7e:04:62:c6:20:3c:47:13:1f:49:c8:31:f9:16:18:98:1e: 33:c7:b0:44:7c:0e:f1:7e:38:60:fd:6f:0c:b3:30:45:cc:22: b4:cb:2a:1f:72:23:c6:f7:ce:44:87:cc:f6:e8:87:08:9d:06: 0d:a0:bb:ca:74:b0:28:69:63:5d:f2:4e:e7:fe:3b:b7:87:b1: e4:26:0e:5d -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICCZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjYwNjEwMjEyNDI2WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI5ZDYwYS02NTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfwJQG7gnD7HYbJoCE74iZMld+ZR9+v+dog41adA+MlUReI0XcVowaUEQUoY 6/WbxnCyNuPw2L4DJgqigVSTmttvh323bS7bSHt3jYDg+1PCLkrmklQrrm8SU5Ek 8PUhA9+UDe9Y6JwcSGKoElxvSxkP976AKPMPi1AMbSfSej5mQI9JRQltXw5V8E10 NftAvaAvSJ05hDN9NyLTnLS5r4PCzqPUFGyKAr1z4ZuJiglnneQm3vgZv+d0q/y9 Rfs+EB8tlr6RJoxVf/YKApJAhFQ/S+8iH068KC+8JQ4QVsCc4HBk4I6y/FussjV9 32c2o1vd4/moDF/v07cWhQkGcQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFESqhP/g UyQXfjUj1E49r+UIBH7jMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNTJEQzE1RTAy REE2MTFGMUI2NERCMUU4QTI4MzM3NzMucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAy BAIAATAsAwQBqYhAAwQAqYhDAwQAqYhIAwQAqYiFMAwDBACpiJEDBAKpiJADBACp iJowDQYJKoZIhvcNAQELBQADggEBAJAICaDIp8p1kOdoEjhaIk9fPQWYjLB6vP74 jHx+RSomJVw/wyPnFkOatthmxx2X1evwJohtdO1oKsPV4r+KEe7enKI6S6uaWwfZ dV6izWZfKmhljEs0W1UadUXKp2Dkv8+9FbP83zkWAdpdtHkS7VGi/uEkefqYYVY+ VyNjXPbgLDHoqxblp6hIogGaT8GZVa3OFNOI/9fZzeR3gwpfaEX4Yk6gqM8jldjB 8Jw32vnGM1zSu49+BGLGIDxHEx9JyDH5FhiYHjPHsER8DvF+OGD9bwyzMEXMIrTL Kh9yI8b3zkSHzPbohwidBg2gu8p0sChpY13yTuf+O7eHseQmDl0= -----END CERTIFICATE-----Generated at Sat Jun 13 14:23:50 2026 by rpki-client