$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa File: C006CA2248B311EFB8A4C178C4F9AE02.roa (raw, json) Hash identifier: QjR9A/HMp05od+zO3VCnyHZYpiHXbBVwXb61oJSOZeY= Subject key identifier: 81:3F:4C:E9:22:9D:00:DB:3B:49:69:C0:1C:1F:EF:C6:AF:95:C7:C1 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 014C Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:54:28 +0000 ROA not before: Sat 17 Jan 2026 05:47:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 36224 IP address blocks: 192.8.33.0/24 maxlen: 24 192.8.188.0/24 maxlen: 24 192.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:41:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Jan 17 05:47:43 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46f44-3546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e3:9a:7e:4d:b2:f1:98:c6:ee:d0:ab:4c:f3: b7:1d:13:ed:76:2b:8c:a1:ed:a7:2a:a7:dc:67:2e: e6:8a:c3:42:f8:32:cc:49:aa:fb:9a:01:2a:b5:69: 39:b1:e3:ca:74:ac:dc:4b:ce:b7:31:39:ca:c2:a4: f0:13:d5:82:ba:46:68:ff:91:86:f6:66:8b:82:44: 13:a6:c1:22:21:b3:81:e5:c7:8c:b2:8a:b6:fe:ca: 9b:10:14:0b:9d:17:bf:44:4f:34:c1:b9:33:04:13: e7:3e:3b:86:84:a2:80:7a:d9:95:24:19:0d:30:60: 5e:99:9e:68:3c:9e:ee:16:da:13:80:66:93:b4:f9: d0:17:41:64:8e:72:2c:a3:90:c5:3a:1d:ee:2c:05: c6:be:7a:d9:b8:00:41:d3:61:90:67:4f:db:56:33: 27:ef:1e:19:4c:87:2b:64:4b:2c:79:b1:e1:f9:51: e1:c1:49:44:17:a8:03:75:4d:7f:cf:a8:18:83:07: 45:49:92:9a:bf:fd:a4:ba:d9:a7:7b:bc:50:7e:3b: 5e:b1:cd:5a:ca:e9:34:c9:a2:45:85:be:53:e6:52: 52:f4:e8:49:44:df:98:34:f8:8a:db:67:a5:90:08: 98:6a:d3:4f:70:a5:5b:71:2e:d7:57:37:33:c5:ff: 66:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:3F:4C:E9:22:9D:00:DB:3B:49:69:C0:1C:1F:EF:C6:AF:95:C7:C1 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.8.33.0/24 192.8.188.0/24 192.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:87:b9:ab:a8:a5:f9:80:fe:ec:52:8a:61:af:07:51:8b:2d: 56:ec:89:3b:5f:2d:4c:3c:ea:ae:60:e1:ec:77:e5:2f:27:b7: 81:4e:8c:8c:a2:dd:77:72:70:39:1a:cd:1c:50:a9:c1:88:cc: 78:0d:97:7a:0e:5a:95:e1:ae:56:b3:d8:74:a1:b2:d8:0e:24: 99:0c:73:9f:43:c3:a2:2f:81:14:6d:a6:73:b6:55:42:5e:85: 26:49:0b:19:8a:c2:57:6e:bd:4f:5f:a6:6b:5f:92:e1:78:9a: 06:30:3c:43:2e:59:ec:ca:dd:d3:62:61:6a:9b:f8:79:3c:48: 9c:24:2b:77:fd:1e:49:5c:dc:f7:67:8a:f4:50:71:63:99:03: a1:29:ae:90:a9:5c:fc:a0:66:a6:8c:f3:ee:d5:ca:d2:e7:6b: 32:50:8e:39:97:67:0e:b4:60:c1:88:97:75:3b:43:05:ab:75: 39:57:5f:07:f8:4f:6c:6a:c2:e7:1b:c0:c5:31:64:01:9b:9e: 73:ed:76:e0:57:03:f0:17:ae:e6:77:73:1a:3d:b4:24:87:28: c1:c6:7e:d6:18:2e:00:a9:c0:84:b5:b6:a0:81:45:a0:48:fe: eb:d0:82:63:1e:d3:9e:69:8b:df:94:1a:6a:fe:ea:85:69:30: c7:be:47:ef -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjYwMTE3MDU0NzQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmY0NC0zNTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteOafk2y8ZjG7tCrTPO3HRPtdiuMoe2nKqfcZy7misNC+DLMSar7mgEqtWk5 sePKdKzcS863MTnKwqTwE9WCukZo/5GG9maLgkQTpsEiIbOB5ceMsoq2/sqbEBQL nRe/RE80wbkzBBPnPjuGhKKAetmVJBkNMGBemZ5oPJ7uFtoTgGaTtPnQF0FkjnIs o5DFOh3uLAXGvnrZuABB02GQZ0/bVjMn7x4ZTIcrZEssebHh+VHhwUlEF6gDdU1/ z6gYgwdFSZKav/2kutmne7xQfjtesc1ayuk0yaJFhb5T5lJS9OhJRN+YNPiK22el kAiYatNPcKVbcS7XVzczxf9mgQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFIE/TOki nQDbO0lpwBwf78avlcfBMB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc4MkYvNkQyMDc1RjY0MDcwMTFFRkJEQTlENjZGQzRGOUFFMDIvQzAwNkNBMjI0 OEIzMTFFRkI4QTRDMTc4QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAwAghAwQAwAi8AwQAwAjuMA0GCSqGSIb3DQEBCwUAA4IBAQCMh7mr qKX5gP7sUophrwdRiy1W7Ik7Xy1MPOquYOHsd+UvJ7eBToyMot13cnA5Gs0cUKnB iMx4DZd6DlqV4a5Ws9h0obLYDiSZDHOfQ8OiL4EUbaZztlVCXoUmSQsZisJXbr1P X6ZrX5LheJoGMDxDLlnsyt3TYmFqm/h5PEicJCt3/R5JXNz3Z4r0UHFjmQOhKa6Q qVz8oGamjPPu1crS52syUI45l2cOtGDBiJd1O0MFq3U5V18H+E9sasLnG8DFMWQB m55z7XbgVwPwF67md3MaPbQkhyjBxn7WGC4AqcCEtbaggUWgSP7r0IJjHtOeaYvf lBpq/uqFaTDHvkfv -----END CERTIFICATE-----Generated at Mon Mar 2 10:59:36 2026 by rpki-client