$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa File: B59B34B2A59511EFB1B8AF36C4F9AE02.roa (raw, json) Hash identifier: oN4J/EcgA5cJ0J9rkL7zQRfRZdibZkxBCp4t5o08pHk= Subject key identifier: 03:A6:6B:BC:92:D9:BE:47:A3:C7:62:10:46:0C:2C:46:A7:8D:88:2A Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 094F Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:41:31 +0000 ROA not before: Wed 18 Jun 2025 21:07:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 212879 IP address blocks: 169.136.64.0/24 maxlen: 24 169.136.65.0/24 maxlen: 24 169.136.67.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.133.0/24 maxlen: 24 169.136.142.0/24 maxlen: 24 169.136.145.0/24 maxlen: 24 169.136.146.0/24 maxlen: 24 169.136.147.0/24 maxlen: 24 169.136.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2383 (0x94f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jun 18 21:07:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47a4a-e534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f6:4b:ea:34:8e:ae:a8:4c:4b:96:f9:9b:07: 9d:0d:6f:20:b1:d8:cd:ed:2f:db:3c:cf:e5:8d:e5: 9c:8b:a9:35:4e:ac:d3:3c:2e:86:7b:70:cc:2f:05: bf:fe:ab:6a:1a:0b:f5:ea:fb:4b:60:81:47:51:02: 66:58:4f:bc:77:0c:a9:7a:ff:18:6b:e4:2d:3d:39: 74:e9:25:ae:f8:c3:48:8c:1f:ec:a1:bf:b7:f4:bd: 0a:e7:8b:5a:57:9f:b3:0f:36:fe:22:fb:61:93:d3: eb:31:1a:cd:8f:84:e3:b9:ea:bb:45:ec:0c:2c:d6: dd:56:82:17:8d:fd:f9:91:ee:f0:5a:a6:1d:9f:ab: af:7e:31:f3:bb:f4:ca:1d:9f:f6:9f:45:c6:78:c5: 84:a7:5f:a2:c9:aa:61:0f:09:06:00:26:ad:2a:de: 6a:0c:0e:cf:22:bf:c7:a1:f5:a4:39:c8:17:51:ca: 03:bf:3b:c6:c9:2c:cf:7d:fc:5b:1c:66:b3:bf:05: 36:96:c6:c7:7e:9c:7a:25:8a:4c:bd:7d:bd:55:33: c5:23:94:2c:53:7d:64:89:c4:64:20:a4:c5:f8:f1: 8f:a1:9d:23:47:5f:f8:ad:83:5b:14:1e:9a:e2:68: 4a:29:98:4e:65:03:91:01:ba:59:18:86:be:2a:34: 5e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A6:6B:BC:92:D9:BE:47:A3:C7:62:10:46:0C:2C:46:A7:8D:88:2A X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 169.136.64.0/23 169.136.67.0/24 169.136.72.0/24 169.136.133.0/24 169.136.142.0/24 169.136.145.0-169.136.147.255 169.136.154.0/24 Signature Algorithm: sha256WithRSAEncryption 71:74:05:e1:7e:ae:a3:b0:46:32:28:40:d8:22:1f:1c:85:bb: ba:30:9b:4e:8f:60:86:56:72:dc:69:55:41:12:f1:23:f1:bd: 17:ef:c5:ab:60:b5:87:2a:8b:b3:56:59:0d:4f:3a:f9:d4:c3: 3c:ab:9e:ec:72:57:ce:5b:db:ed:68:cf:fe:2c:61:0d:29:a9: e7:4f:d5:48:6c:e3:c8:e6:f9:aa:d9:f6:41:2b:fb:65:e9:bc: 60:db:27:49:a4:49:d7:09:0d:9a:ef:85:92:da:15:78:7a:fc: 3c:67:4e:6c:cc:a9:f5:2c:52:62:ac:f7:94:9f:c8:be:e5:e8: 43:5a:a6:0f:d7:a0:60:5f:eb:fd:44:6f:17:f5:66:b4:d0:e9: 2f:c5:46:0d:cc:69:5a:dd:04:24:cd:9b:93:8c:48:29:2d:fa: 62:6a:aa:30:0a:13:f9:dd:37:e2:52:cd:b0:2d:60:fc:fe:d2: da:f8:4c:3b:c1:9b:a6:58:41:95:20:0e:fa:4e:c8:a8:4d:5b: 9a:79:b2:c3:47:1b:36:0c:ac:1e:32:e0:e6:ce:06:89:4f:7c: e7:e3:b1:fb:2b:05:10:c9:b2:1d:ff:a4:9c:ea:5f:6e:fd:7f: a0:f4:6f:78:19:44:d4:b9:52:cc:83:d7:17:98:46:e2:c1:4e: 20:7b:f6:09 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICCU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwNjE4MjEwNzUyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E0YS1lNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/ZL6jSOrqhMS5b5mwedDW8gsdjN7S/bPM/ljeWci6k1TqzTPC6Ge3DMLwW/ /qtqGgv16vtLYIFHUQJmWE+8dwypev8Ya+QtPTl06SWu+MNIjB/sob+39L0K54ta V5+zDzb+Ivthk9PrMRrNj4Tjueq7RewMLNbdVoIXjf35ke7wWqYdn6uvfjHzu/TK HZ/2n0XGeMWEp1+iyaphDwkGACatKt5qDA7PIr/HofWkOcgXUcoDvzvGySzPffxb HGazvwU2lsbHfpx6JYpMvX29VTPFI5QsU31kicRkIKTF+PGPoZ0jR1/4rYNbFB6a 4mhKKZhOZQORAbpZGIa+KjRebwIDAQABo4ICjDCCAogwHQYDVR0OBBYEFAOma7yS 2b5Ho8diEEYMLEanjYgqMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQjU5QjM0QjJB NTk1MTFFRkIxQjhBRjM2QzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjA4 BAIAATAyAwQBqYhAAwQAqYhDAwQAqYhIAwQAqYiFAwQAqYiOMAwDBACpiJEDBAKp iJADBACpiJowDQYJKoZIhvcNAQELBQADggEBAHF0BeF+rqOwRjIoQNgiHxyFu7ow m06PYIZWctxpVUES8SPxvRfvxatgtYcqi7NWWQ1POvnUwzyrnuxyV85b2+1oz/4s YQ0pqedP1Uhs48jm+arZ9kEr+2XpvGDbJ0mkSdcJDZrvhZLaFXh6/DxnTmzMqfUs UmKs95SfyL7l6ENapg/XoGBf6/1Ebxf1ZrTQ6S/FRg3MaVrdBCTNm5OMSCkt+mJq qjAKE/ndN+JSzbAtYPz+0tr4TDvBm6ZYQZUgDvpOyKhNW5p5ssNHGzYMrB4y4ObO BolPfOfjsfsrBRDJsh3/pJzqX279f6D0b3gZRNS5UsyD1xeYRuLBTiB79gk= -----END CERTIFICATE-----Generated at Mon Mar 2 05:44:40 2026 by rpki-client