$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa File: A64C29AA3D9811EE88B2694CC4F9AE02.roa (raw, json) Hash identifier: R+sCJm2tVHaLnPE521uRviPKR8GVvNnNJP6RsvHQgGU= Subject key identifier: 07:64:C1:4B:90:85:A9:4B:59:59:F0:63:0B:DC:AC:7F:6A:FE:75:72 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 0950 Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:41:31 +0000 ROA not before: Wed 18 Jun 2025 21:07:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 36131 IP address blocks: 169.136.68.0/24 maxlen: 24 169.136.69.0/24 maxlen: 24 169.136.70.0/24 maxlen: 24 169.136.71.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.73.0/24 maxlen: 24 169.136.128.0/24 maxlen: 24 169.136.130.0/24 maxlen: 24 169.136.132.0/24 maxlen: 24 169.136.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2384 (0x950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jun 18 21:07:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47a4b-0979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f8:0a:8c:46:5f:c2:5b:f8:d9:18:94:8b:eb: 87:c8:f5:7e:ea:61:c8:9e:52:6d:d3:f5:94:c0:80: a8:8b:bb:5e:3a:81:16:c9:74:85:5c:1c:1d:e4:5e: 1f:5b:90:fe:d4:2a:50:54:6b:95:e7:33:49:e2:20: 4e:fc:cc:cd:bf:4f:ee:ea:a5:4f:e4:11:19:ce:03: 91:0e:2a:49:f2:cb:0f:89:10:0b:08:6b:60:f8:96: d2:9e:71:d8:0e:26:1f:84:77:ee:0d:d3:05:09:d3: 37:2d:9e:9d:0e:ea:42:c5:ce:93:05:9a:64:d6:e0: a9:a6:a7:b6:6d:e8:23:fd:62:5a:f5:8e:8f:fd:ef: 62:ca:8f:ba:98:6b:f4:5c:5b:8e:61:43:a0:ce:04: 7e:f5:92:82:a4:a0:b1:69:5e:7a:11:d0:21:0d:01: 2d:2d:76:91:7d:19:da:ff:98:59:fe:a8:b0:92:16: ce:ec:78:dc:79:72:9b:ae:dd:61:7d:ee:4a:cc:59: e9:38:31:8c:63:5a:97:61:36:5d:30:f6:87:0f:93: 13:3b:e0:8c:df:17:7d:20:c8:33:db:4e:85:26:23: 58:54:5d:e9:eb:96:9a:47:fa:27:30:ef:08:d5:2a: e9:7a:af:df:85:b3:15:f7:a5:58:54:e4:0c:aa:48: a9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:64:C1:4B:90:85:A9:4B:59:59:F0:63:0B:DC:AC:7F:6A:FE:75:72 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 169.136.68.0-169.136.73.255 169.136.128.0/24 169.136.130.0/24 169.136.132.0/24 169.136.141.0/24 Signature Algorithm: sha256WithRSAEncryption 81:83:85:8c:35:62:f4:68:dd:95:e5:be:be:ac:6a:91:36:10: fa:c7:d0:b5:c9:45:ed:17:97:48:e9:16:83:7c:99:37:11:c3: 1b:4a:12:31:31:89:1e:ad:bb:9b:b2:b5:3a:54:89:13:a2:7b: 51:55:4b:98:34:be:06:1c:e1:dd:1a:e0:c5:a7:7e:ed:8f:d5: 15:fe:5f:6e:d8:11:8e:cc:c3:98:a6:05:93:6e:48:9a:b8:52: 98:32:97:9e:c7:e6:e0:5f:cd:63:33:bd:49:c7:19:b3:b4:92: dd:e7:ff:3f:55:18:24:19:b4:4a:86:97:1e:24:13:3f:33:69: 9c:35:5f:f3:67:a7:4d:c0:6a:0b:0c:9f:92:2c:56:3d:09:24: 4b:62:46:46:99:80:fc:d3:21:b9:87:7d:11:af:95:8e:70:8a: 26:76:46:97:fa:ef:2e:dc:32:73:52:20:be:36:37:e8:94:cb: 33:e4:ad:4a:12:b7:96:b8:bb:dd:0d:3d:5e:e9:7c:b3:71:e8: f4:f0:b4:b3:6c:02:6b:c0:27:f8:82:60:9f:82:25:70:d6:b9: 06:23:97:36:ed:60:9e:47:ba:9d:99:ba:cf:09:65:6a:11:8e: 9f:b8:67:d6:7c:57:c9:f0:c9:3b:81:27:ba:6c:b8:b8:fc:b1: a0:31:68:1e -----BEGIN CERTIFICATE----- MIIFXDCCBESgAwIBAgICCVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwNjE4MjEwNzU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E0Yi0wOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/gKjEZfwlv42RiUi+uHyPV+6mHInlJt0/WUwICoi7teOoEWyXSFXBwd5F4f W5D+1CpQVGuV5zNJ4iBO/MzNv0/u6qVP5BEZzgORDipJ8ssPiRALCGtg+JbSnnHY DiYfhHfuDdMFCdM3LZ6dDupCxc6TBZpk1uCppqe2begj/WJa9Y6P/e9iyo+6mGv0 XFuOYUOgzgR+9ZKCpKCxaV56EdAhDQEtLXaRfRna/5hZ/qiwkhbO7HjceXKbrt1h fe5KzFnpODGMY1qXYTZdMPaHD5MTO+CM3xd9IMgz206FJiNYVF3p65aaR/onMO8I 1Srpeq/fhbMV96VYVOQMqkip3wIDAQABo4ICgDCCAnwwHQYDVR0OBBYEFAdkwUuQ halLWVnwYwvcrH9q/nVyMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQTY0QzI5QUEz RDk4MTFFRTg4QjI2OTRDQzRGOUFFMDIucm9hMD8GCCsGAQUFBwEHAQH/BDAwLjAs BAIAATAmMAwDBAKpiEQDBAGpiEgDBACpiIADBACpiIIDBACpiIQDBACpiI0wDQYJ KoZIhvcNAQELBQADggEBAIGDhYw1YvRo3ZXlvr6sapE2EPrH0LXJRe0Xl0jpFoN8 mTcRwxtKEjExiR6tu5uytTpUiROie1FVS5g0vgYc4d0a4MWnfu2P1RX+X27YEY7M w5imBZNuSJq4Upgyl57H5uBfzWMzvUnHGbO0kt3n/z9VGCQZtEqGlx4kEz8zaZw1 X/Nnp03AagsMn5IsVj0JJEtiRkaZgPzTIbmHfRGvlY5wiiZ2Rpf67y7cMnNSIL42 N+iUyzPkrUoSt5a4u90NPV7pfLNx6PTwtLNsAmvAJ/iCYJ+CJXDWuQYjlzbtYJ5H up2Zus8JZWoRjp+4Z9Z8V8nwyTuBJ7psuLj8saAxaB4= -----END CERTIFICATE-----Generated at Mon Mar 2 05:42:49 2026 by rpki-client