$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa File: 9FCD0EE6A34411EB94DFE619C4F9AE02.roa (raw, json) Hash identifier: 6vZ51c5X8w1NomOKj2tJmBJDGJgJ9c9HYa4N392akLM= Subject key identifier: 68:4C:B5:1A:19:E2:2B:82:78:BA:04:F5:69:4A:47:13:64:19:7B:85 Certificate issuer: /CN=A91EEBAD/serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Certificate serial: 06A9 Authority key identifier: 81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:48:21 +0000 ROA not before: Wed 02 Jul 2025 23:34:50 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45136 IP address blocks: 119.235.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:17:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEBAD, serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Validity Not Before: Jul 2 23:34:50 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a40b65-769f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d6:84:1c:ab:bf:60:1f:ed:6c:81:83:9a:75: ac:74:6f:a1:b6:2d:a4:60:2f:5e:96:2c:fa:21:a1: 7d:69:10:58:07:58:51:97:db:35:ec:a0:f0:49:d6: 30:06:72:f2:1c:23:c2:56:28:9d:79:47:ee:ba:d7: de:b2:53:8d:db:79:44:50:59:08:9b:4f:34:8b:39: fa:6d:56:5a:db:c7:9a:c1:5d:90:01:57:99:e4:77: b6:43:7f:4b:75:5d:70:d5:9b:3f:1d:67:64:1a:85: 99:b7:72:2f:95:10:91:98:0f:62:99:a3:69:61:be: b6:87:9d:83:4c:65:be:09:ac:9f:e3:e4:52:be:9a: 42:3c:24:08:a3:f6:ff:02:7a:4f:24:db:cf:b6:93: 8c:6e:4a:fb:81:0b:2f:d4:01:4f:cf:42:f7:9d:16: 54:e1:c5:6e:fb:ca:62:71:33:f9:1f:53:a0:46:ec: ec:b7:e8:74:54:3a:2e:3a:6b:1b:2f:79:b0:fd:8d: 87:29:12:b1:1b:a8:97:eb:a6:ca:fb:74:2a:03:38: 49:10:5a:9f:96:2c:ba:39:aa:8e:fc:65:fa:4c:47: de:46:1f:c5:db:7f:89:6e:f3:fe:ac:63:53:1a:a6: 0a:b3:11:ad:f2:47:01:07:f6:6f:94:b0:0b:00:c5: 84:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4C:B5:1A:19:E2:2B:82:78:BA:04:F5:69:4A:47:13:64:19:7B:85 X509v3 Authority Key Identifier: keyid:81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.235.40.0/21 Signature Algorithm: sha256WithRSAEncryption 2c:df:f5:5f:be:21:62:4a:71:ec:52:2b:53:a2:54:c6:5b:85: 2a:f8:b1:ce:aa:da:77:d7:82:16:6e:61:a6:b5:b4:b1:59:4c: f6:bd:76:b5:b7:8d:e7:f8:98:a1:97:4d:29:ff:a3:ef:d5:ec: 44:25:f5:a0:ca:44:66:06:98:46:8e:25:17:71:84:dd:76:76: 9b:a9:73:ab:bb:c5:4e:25:13:37:90:eb:c2:44:ab:f8:ce:70: 19:d0:9d:5b:15:28:e3:b5:8a:39:1a:e6:ad:ba:a4:d8:75:18: 8d:dd:12:49:e1:02:7f:12:70:6a:64:d4:89:ef:81:d9:24:5d: 67:84:63:6c:67:7f:59:ae:02:d3:2d:7c:2a:1a:be:56:22:4d: 70:12:ca:22:50:5f:a3:9c:9e:42:37:eb:8a:2f:0a:18:96:49: a8:6e:20:bd:19:6b:6b:21:03:f6:10:00:18:8a:f0:29:5e:a9: 17:af:ec:20:a7:85:23:d0:fc:e4:48:f3:7a:64:56:0c:9b:b1: 33:e3:75:33:7b:d8:25:46:da:19:10:b7:c5:47:52:a8:f4:18: fe:30:e6:3c:1b:01:21:91:21:2e:34:a0:3d:81:98:64:88:80: ce:95:1a:19:1f:ac:78:14:c0:0e:8f:02:4e:5b:49:e2:f5:f5: df:6c:4c:7e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVCQUQxMTAvBgNVBAUTKDgxRkZGMjE1MDA1REExQUZBQzVFMjRBQkJDQzAzQ0E3 MEY2NjRCNTYwHhcNMjUwNzAyMjMzNDUwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGI2NS03NjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9aEHKu/YB/tbIGDmnWsdG+hti2kYC9eliz6IaF9aRBYB1hRl9s17KDwSdYw BnLyHCPCViideUfuutfeslON23lEUFkIm080izn6bVZa28eawV2QAVeZ5He2Q39L dV1w1Zs/HWdkGoWZt3IvlRCRmA9imaNpYb62h52DTGW+Cayf4+RSvppCPCQIo/b/ AnpPJNvPtpOMbkr7gQsv1AFPz0L3nRZU4cVu+8picTP5H1OgRuzst+h0VDouOmsb L3mw/Y2HKRKxG6iX66bK+3QqAzhJEFqfliy6OaqO/GX6TEfeRh/F23+JbvP+rGNT GqYKsxGt8kcBB/ZvlLALAMWEJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGhMtRoZ 4iuCeLoE9WlKRxNkGXuFMB8GA1UdIwQYMBaAFIH/8hUAXaGvrF4kq7zAPKcPZktW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUJBRC81MEQ5MUU2NkEz NDMxMUVCOTk3QjMzMTlDNEY5QUUwMi9nZl95RlFCZG9hLXNYaVNydk1BOHB3OW1T MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dmX3lGUUJkb2Etc1hpU3J2TUE4cHc5bVMxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVCQUQvNTBEOTFFNjZBMzQzMTFFQjk5N0IzMzE5QzRGOUFFMDIvOUZDRDBFRTZB MzQ0MTFFQjk0REZFNjE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDd+soMA0GCSqGSIb3DQEBCwUAA4IBAQAs3/VfviFiSnHsUitTolTG W4Uq+LHOqtp314IWbmGmtbSxWUz2vXa1t43n+Jihl00p/6Pv1exEJfWgykRmBphG jiUXcYTddnabqXOru8VOJRM3kOvCRKv4znAZ0J1bFSjjtYo5GuatuqTYdRiN3RJJ 4QJ/EnBqZNSJ74HZJF1nhGNsZ39ZrgLTLXwqGr5WIk1wEsoiUF+jnJ5CN+uKLwoY lkmobiC9GWtrIQP2EAAYivApXqkXr+wgp4Uj0PzkSPN6ZFYMm7Ez43Uze9glRtoZ ELfFR1Ko9Bj+MOY8GwEhkSEuNKA9gZhkiIDOlRoZH6x4FMAOjwJOW0ni9fXfbEx+ -----END CERTIFICATE-----Generated at Mon Mar 2 04:34:05 2026 by rpki-client