$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa File: 81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa (raw, json) Hash identifier: aeyxqgM/Bum6LEnRbk9OqtNY1VCfNbofKFi7pc/FW5U= Subject key identifier: 94:BE:A8:44:68:8F:C9:14:DF:34:AA:95:DB:BC:ED:60:C8:D9:AD:8C Certificate issuer: /CN=A91EA958/serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Certificate serial: 2545 Authority key identifier: 11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:58:35 +0000 ROA not before: Wed 02 Jul 2025 15:21:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135295 IP address blocks: 136.228.152.0/24 maxlen: 24 136.228.153.0/24 maxlen: 24 136.228.154.0/24 maxlen: 24 136.228.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:06:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9541 (0x2545) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Validity Not Before: Jul 2 15:21:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a4703a-6f35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:02:dc:93:f4:ee:d7:f9:71:c3:84:f6:61:5c: e2:a9:f1:a4:0e:92:ee:47:14:62:7b:c3:bd:52:d1: 03:e6:5f:e6:f5:96:70:f5:1e:fb:65:db:66:b6:52: c7:90:d9:63:e7:ba:22:99:64:a8:36:1d:85:01:ca: f3:30:43:d2:99:10:e3:13:52:2f:e2:2e:a5:96:52: a8:4f:58:23:00:9e:f2:71:1a:23:52:44:af:7e:ee: 3b:44:b1:7a:18:f4:67:37:3e:9a:3f:84:d7:f7:97: 88:1c:93:06:b2:71:e0:13:37:7a:1f:f9:de:7d:b0: 85:7f:17:5a:3a:82:e8:b0:10:75:4d:d9:d2:ce:f3: c3:c1:7c:33:12:ed:62:80:3d:f6:af:27:79:be:d1: d2:de:8d:33:2a:6e:82:d7:65:4a:57:f1:2f:94:de: 9a:2c:55:06:29:61:2d:0b:bb:91:77:c3:86:af:46: 6b:1e:70:03:cd:13:ef:75:82:ad:5c:08:03:27:2d: f8:48:bb:e6:99:93:b6:ad:a2:de:c0:37:98:04:7a: 8a:10:ab:5b:66:38:e5:b2:0f:49:03:8d:64:ab:f0: 8d:d7:df:cb:37:5f:7e:f2:d1:bf:25:d2:ea:8b:af: ab:6f:9c:ec:4a:9d:32:19:9d:55:60:69:3c:b3:4b: ba:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:BE:A8:44:68:8F:C9:14:DF:34:AA:95:DB:BC:ED:60:C8:D9:AD:8C X509v3 Authority Key Identifier: keyid:11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/81E6A038BEBD11EBA1BC8A0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 136.228.152.0/22 Signature Algorithm: sha256WithRSAEncryption cc:cb:b4:92:1c:9a:10:2c:34:66:9d:cc:b7:98:02:40:5e:80: ed:97:99:c7:51:02:66:b5:9a:53:67:72:75:76:94:91:0e:ff: b9:0a:52:48:80:99:29:42:41:6f:f0:96:1d:e6:24:0c:3e:30: 8c:74:96:76:6e:73:f7:ab:bf:74:f7:ef:da:d8:40:de:d0:3b: 77:c8:54:11:1b:2a:2a:0b:ee:24:9c:87:62:c3:8d:e7:4f:e2: 18:77:35:90:38:4c:94:34:04:82:aa:5d:75:bf:66:bd:a6:d7: 03:d3:70:6a:df:2e:97:4c:3c:4e:dd:82:85:1c:15:08:7f:05: 2a:31:9d:5c:4b:d0:0b:d0:69:bf:7d:e7:fd:1b:ea:a9:e9:c2: 08:73:f8:90:3a:89:41:ad:a4:9b:6f:06:82:55:e5:5c:25:23: e6:24:47:90:04:1c:67:45:e7:43:90:b8:54:74:ca:a0:d3:e4: 37:5d:d7:c8:24:c2:d0:74:2b:43:10:82:fc:0c:95:fd:2d:f2: f7:61:47:ac:b2:b2:cc:92:91:17:f7:c9:ef:11:55:63:e6:a8: c7:bf:3d:b7:f3:5f:16:88:37:f9:ea:ce:f6:22:14:c9:83:c8: 63:60:cb:09:b0:d3:82:be:3b:1e:50:2b:00:2b:70:c2:4d:8d: 31:93:31:9f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICJUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKDExMTAzMTBFMEY4MDQ2NzcwM0Q4NDc3RkIzRUUyNUYx RDg4ODhFOUUwHhcNMjUwNzAyMTUyMTA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzAzYS02ZjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgLck/Tu1/lxw4T2YVziqfGkDpLuRxRie8O9UtED5l/m9ZZw9R77ZdtmtlLH kNlj57oimWSoNh2FAcrzMEPSmRDjE1Iv4i6lllKoT1gjAJ7ycRojUkSvfu47RLF6 GPRnNz6aP4TX95eIHJMGsnHgEzd6H/nefbCFfxdaOoLosBB1TdnSzvPDwXwzEu1i gD32ryd5vtHS3o0zKm6C12VKV/EvlN6aLFUGKWEtC7uRd8OGr0ZrHnADzRPvdYKt XAgDJy34SLvmmZO2raLewDeYBHqKEKtbZjjlsg9JA41kq/CN19/LN19+8tG/JdLq i6+rb5zsSp0yGZ1VYGk8s0u6wQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJS+qERo j8kU3zSqldu87WDI2a2MMB8GA1UdIwQYMBaAFBEQMQ4PgEZ3A9hHf7PuJfHYiI6e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC9GREVGRDczNjRC RDYxMUU1QTdDQTMwMzNDNEY5QUUwMi9FUkF4RGctQVJuY0QyRWRfcy00bDhkaUlq cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VSQXhEZy1BUm5jRDJFZF9zLTRsOGRpSWpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5NTgvRkRFRkQ3MzY0QkQ2MTFFNUE3Q0EzMDMzQzRGOUFFMDIvODFFNkEwMzhC RUJEMTFFQkExQkM4QTBGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCiOSYMA0GCSqGSIb3DQEBCwUAA4IBAQDMy7SSHJoQLDRmncy3mAJA XoDtl5nHUQJmtZpTZ3J1dpSRDv+5ClJIgJkpQkFv8JYd5iQMPjCMdJZ2bnP3q790 9+/a2EDe0Dt3yFQRGyoqC+4knIdiw43nT+IYdzWQOEyUNASCql11v2a9ptcD03Bq 3y6XTDxO3YKFHBUIfwUqMZ1cS9AL0Gm/fef9G+qp6cIIc/iQOolBraSbbwaCVeVc JSPmJEeQBBxnRedDkLhUdMqg0+Q3XdfIJMLQdCtDEIL8DJX9LfL3YUessrLMkpEX 98nvEVVj5qjHvz23818WiDf56s72IhTJg8hjYMsJsNOCvjseUCsAK3DCTY0xkzGf -----END CERTIFICATE-----Generated at Mon Mar 2 19:09:31 2026 by rpki-client