$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa File: 536CEA945D5D11F0A20A8B47C4F9AE02.roa (raw, json) Hash identifier: 448SaP62zIEeDoT+BKnPnMZxQLrDOlT4PwJtIrUEjGQ= Subject key identifier: 38:39:88:CC:60:B7:E6:AE:CB:33:D3:CA:F6:55:60:A5:6C:4C:8D:AD Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 099A Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa Signing time: Wed 10 Jun 2026 21:24:28 +0000 ROA not before: Wed 10 Jun 2026 21:24:28 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 21859 IP address blocks: 169.136.82.0/24 maxlen: 24 169.136.85.0/24 maxlen: 24 169.136.105.0/24 maxlen: 24 169.136.109.0/24 maxlen: 24 169.136.122.0/24 maxlen: 24 169.136.128.0/24 maxlen: 24 169.136.129.0/24 maxlen: 24 169.136.130.0/24 maxlen: 24 169.136.134.0/24 maxlen: 24 169.136.135.0/24 maxlen: 24 169.136.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 20:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jun 10 21:24:28 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a29d60c-250c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:55:4e:ca:78:a5:88:e5:b7:f7:f8:a2:72:ca: 0d:24:86:78:74:d2:94:32:88:06:b4:be:c6:53:92: 49:71:fd:de:27:a8:7f:d2:be:7c:61:9c:45:4e:41: 04:d4:98:84:53:54:f2:2a:14:f3:c6:da:33:08:a4: 38:85:cc:39:e8:6f:a2:90:c4:cd:05:c4:fc:83:11: bc:07:15:df:1b:32:47:62:af:90:cb:a4:09:79:9b: 61:57:c7:4a:c9:45:88:c7:42:98:27:00:35:81:08: 20:74:46:b5:1c:13:1e:cf:77:9b:01:e5:8e:7c:27: d4:fe:90:5e:44:ce:91:13:ff:c4:f7:3f:49:b0:45: fb:16:22:ab:9c:18:67:bc:c5:28:75:1e:c2:8a:9e: ad:08:dd:9c:21:45:98:bb:4d:42:70:ea:64:25:65: 44:1e:6f:fe:a4:34:c9:6c:6a:b8:76:78:70:28:31: d6:63:81:66:f9:7a:ed:0d:80:bb:0d:22:ca:62:6a: 26:8d:64:80:5a:cf:12:e4:8e:b3:b8:43:7a:1c:63: 97:32:d0:e7:e1:5d:02:92:2a:98:ca:3c:f5:9d:a7: 9f:b5:0e:f9:6b:9a:f9:c9:e2:b4:ae:f7:3c:a0:a9: bd:e8:7a:4e:18:03:0d:a3:12:12:76:ca:b6:b4:45: 66:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:39:88:CC:60:B7:E6:AE:CB:33:D3:CA:F6:55:60:A5:6C:4C:8D:AD X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 169.136.82.0/24 169.136.85.0/24 169.136.105.0/24 169.136.109.0/24 169.136.122.0/24 169.136.128.0-169.136.130.255 169.136.134.0/23 169.136.191.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:52:07:3b:33:1b:40:3b:79:14:5f:11:a3:04:63:79:20:56: 28:61:dd:de:73:46:6a:b5:04:61:a7:e4:74:9a:e3:5a:52:4f: 90:05:2b:d3:ac:a8:4b:b8:5f:ba:22:a7:8a:cb:1c:a7:fc:3e: d6:3b:3b:41:08:48:83:d9:5d:5f:44:56:03:50:59:22:d7:c7: b4:1b:80:88:f3:01:0d:f3:fd:89:bd:6b:5c:5e:73:a8:5c:bb: 6e:80:f9:d5:4c:93:a4:84:d1:93:98:50:62:20:bc:71:c1:1c: 41:12:e3:7a:ed:a6:99:42:50:27:00:7b:70:1c:a7:7b:04:b8: f4:35:c3:52:04:fe:65:ed:e9:39:93:5b:3b:3d:aa:a9:d1:47: a7:a8:05:16:51:79:f0:43:19:1e:42:a1:95:47:f0:74:3c:03: ab:b0:a3:ca:75:2e:53:f5:07:2a:bf:00:97:56:ad:41:b2:fc: b6:ea:16:29:f9:82:07:f7:2b:69:8f:c8:4d:d3:e1:06:6d:15: f9:75:c8:f9:aa:fd:90:13:6d:11:4a:e3:b4:9b:98:83:22:3c: aa:8e:7d:d1:a7:03:ff:7a:6c:1d:01:43:8f:90:60:7a:9d:ac: b5:35:95:f1:30:e7:a9:3f:1d:93:ec:f3:bc:23:72:46:9e:ab: 79:50:f3:73 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjYwNjEwMjEyNDI4WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI5ZDYwYy0yNTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFVOyniliOW39/iicsoNJIZ4dNKUMogGtL7GU5JJcf3eJ6h/0r58YZxFTkEE 1JiEU1TyKhTzxtozCKQ4hcw56G+ikMTNBcT8gxG8BxXfGzJHYq+Qy6QJeZthV8dK yUWIx0KYJwA1gQggdEa1HBMez3ebAeWOfCfU/pBeRM6RE//E9z9JsEX7FiKrnBhn vMUodR7Cip6tCN2cIUWYu01CcOpkJWVEHm/+pDTJbGq4dnhwKDHWY4Fm+XrtDYC7 DSLKYmomjWSAWs8S5I6zuEN6HGOXMtDn4V0CkiqYyjz1naeftQ75a5r5yeK0rvc8 oKm96HpOGAMNoxISdsq2tEVmswIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFDg5iMxg t+auyzPTyvZVYKVsTI2tMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNTM2Q0VBOTQ1 RDVEMTFGMEEyMEE4QjQ3QzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQAqYhSAwQAqYhVAwQAqYhpAwQAqYhtAwQAqYh6MAwDBAepiIADBACp iIIDBAGpiIYDBACpiL8wDQYJKoZIhvcNAQELBQADggEBAE5SBzszG0A7eRRfEaME Y3kgVihh3d5zRmq1BGGn5HSa41pST5AFK9OsqEu4X7oip4rLHKf8PtY7O0EISIPZ XV9EVgNQWSLXx7QbgIjzAQ3z/Ym9a1xec6hcu26A+dVMk6SE0ZOYUGIgvHHBHEES 43rtpplCUCcAe3Acp3sEuPQ1w1IE/mXt6TmTWzs9qqnRR6eoBRZRefBDGR5CoZVH 8HQ8A6uwo8p1LlP1Byq/AJdWrUGy/LbqFin5ggf3K2mPyE3T4QZtFfl1yPmq/ZAT bRFK47SbmIMiPKqOfdGnA/96bB0BQ4+QYHqdrLU1lfEw56k/HZPs87wjckaeq3lQ 83M= -----END CERTIFICATE-----Generated at Sat Jun 13 10:01:56 2026 by rpki-client