$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa File: 536CEA945D5D11F0A20A8B47C4F9AE02.roa (raw, json) Hash identifier: MLWfrOxjTe3AR9tg1+HLkf7LXjRAcZZbPyx6j5qp/E0= Subject key identifier: 2E:A4:87:BA:F5:D9:5B:AD:94:D9:E5:40:72:C9:DC:2D:EE:10:94:21 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 0951 Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:41:32 +0000 ROA not before: Thu 10 Jul 2025 07:13:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 21859 IP address blocks: 169.136.82.0/24 maxlen: 24 169.136.85.0/24 maxlen: 24 169.136.105.0/24 maxlen: 24 169.136.109.0/24 maxlen: 24 169.136.122.0/24 maxlen: 24 169.136.128.0/24 maxlen: 24 169.136.129.0/24 maxlen: 24 169.136.130.0/24 maxlen: 24 169.136.134.0/24 maxlen: 24 169.136.135.0/24 maxlen: 24 169.136.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2385 (0x951) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jul 10 07:13:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47a4c-67c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3d:5e:35:ed:11:d8:78:b9:57:f7:77:c3:88: 25:4d:a4:a8:ad:01:d5:50:d2:de:d4:74:d8:3f:40: 6f:52:10:f2:68:75:6d:d4:8f:25:ac:31:e8:a9:b2: c6:4c:23:0d:d0:7a:28:8e:fd:81:5b:f3:0e:a4:39: 46:16:f2:a3:c2:0c:c8:d0:67:af:80:e8:c9:2a:5c: 74:6c:33:e4:f9:7a:60:73:c7:a7:2f:09:af:77:38: 63:be:c6:80:89:99:e5:13:31:ea:ee:dc:69:8d:c2: dd:91:7e:df:77:84:08:27:74:91:e4:ed:e6:f1:07: c7:3b:4a:36:4d:c0:7b:fa:66:ee:bb:ea:ba:e6:db: 9c:5d:fc:ee:d3:28:23:83:0d:a3:b9:06:bc:b8:8d: 8c:de:4e:2d:0b:8b:8a:93:54:d6:b2:8d:8f:a5:21: 5f:d9:a1:3b:5c:1c:44:f3:c0:bd:e9:38:ef:96:8b: 2c:93:5b:84:ee:b0:54:02:96:49:f5:c0:e0:ab:09: 4b:b0:0b:f3:9e:9f:b8:51:d3:7f:6c:97:3b:6d:e5: 84:5f:32:4b:10:7e:5c:55:04:2d:71:b4:c9:bb:68: 20:64:e0:b7:cc:14:aa:f1:47:fd:e6:24:8d:e2:08: 96:e3:14:08:3c:22:e1:0e:97:05:2b:e2:6b:4b:48: e4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A4:87:BA:F5:D9:5B:AD:94:D9:E5:40:72:C9:DC:2D:EE:10:94:21 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 169.136.82.0/24 169.136.85.0/24 169.136.105.0/24 169.136.109.0/24 169.136.122.0/24 169.136.128.0-169.136.130.255 169.136.134.0/23 169.136.191.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:c7:fa:01:e0:87:0c:1f:b9:b3:c2:fa:74:ee:82:84:f3:fe: 12:9c:f0:11:63:cf:b8:97:02:ec:23:ab:02:4a:db:0a:50:51: 97:23:c1:4d:89:f8:db:f4:4e:18:4e:23:77:da:ee:4f:f8:2b: 6f:5d:ac:6c:f2:48:4d:d5:26:24:36:5b:e5:9d:c1:9c:43:b7: 6b:67:3d:d7:03:d2:80:7c:9c:27:ca:91:f8:90:8d:0a:0c:ff: 2e:66:55:16:52:b6:82:6f:f9:52:6d:46:ff:70:e6:65:cb:33: cb:60:4e:94:91:e9:12:54:58:72:92:e5:02:0d:87:1a:c2:d2: a7:b6:0f:e5:9a:59:60:e2:57:d9:df:15:20:ef:ea:33:51:31: 87:23:8c:aa:32:45:d8:50:96:94:d7:05:3c:3b:fa:d6:ad:e4: 5c:1c:5e:76:70:bb:31:65:e1:a2:69:c7:33:22:e8:77:73:a1: 17:44:97:55:46:44:3d:8d:82:83:b4:af:f5:d5:97:8c:0f:58: 57:c9:24:4c:ca:bb:a5:f5:10:e9:72:47:4b:78:cb:02:b8:aa: 0c:f4:d6:77:04:f8:6a:00:bf:fd:4c:fa:30:27:54:70:6b:ac: b0:e1:09:d9:b4:22:46:78:1e:c6:35:1f:2b:85:60:88:bb:c3: 4e:f8:ae:6e -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICCVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwNzEwMDcxMzA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E0Yy02N2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqT1eNe0R2Hi5V/d3w4glTaSorQHVUNLe1HTYP0BvUhDyaHVt1I8lrDHoqbLG TCMN0Hoojv2BW/MOpDlGFvKjwgzI0GevgOjJKlx0bDPk+Xpgc8enLwmvdzhjvsaA iZnlEzHq7txpjcLdkX7fd4QIJ3SR5O3m8QfHO0o2TcB7+mbuu+q65tucXfzu0ygj gw2juQa8uI2M3k4tC4uKk1TWso2PpSFf2aE7XBxE88C96Tjvlossk1uE7rBUApZJ 9cDgqwlLsAvznp+4UdN/bJc7beWEXzJLEH5cVQQtcbTJu2ggZOC3zBSq8Uf95iSN 4giW4xQIPCLhDpcFK+JrS0jk0QIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFC6kh7r1 2VutlNnlQHLJ3C3uEJQhMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNTM2Q0VBOTQ1 RDVEMTFGMEEyMEE4QjQ3QzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwQAqYhSAwQAqYhVAwQAqYhpAwQAqYhtAwQAqYh6MAwDBAepiIADBACp iIIDBAGpiIYDBACpiL8wDQYJKoZIhvcNAQELBQADggEBAHrH+gHghwwfubPC+nTu goTz/hKc8BFjz7iXAuwjqwJK2wpQUZcjwU2J+Nv0ThhOI3fa7k/4K29drGzySE3V JiQ2W+WdwZxDt2tnPdcD0oB8nCfKkfiQjQoM/y5mVRZStoJv+VJtRv9w5mXLM8tg TpSR6RJUWHKS5QINhxrC0qe2D+WaWWDiV9nfFSDv6jNRMYcjjKoyRdhQlpTXBTw7 +tat5FwcXnZwuzFl4aJpxzMi6HdzoRdEl1VGRD2NgoO0r/XVl4wPWFfJJEzKu6X1 EOlyR0t4ywK4qgz01ncE+GoAv/1M+jAnVHBrrLDhCdm0IkZ4HsY1HyuFYIi7w074 rm4= -----END CERTIFICATE-----Generated at Mon Mar 2 16:46:38 2026 by rpki-client