$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/30857DB6CBA211ECAE233133C4F9AE02.roa File: 30857DB6CBA211ECAE233133C4F9AE02.roa (raw, json) Hash identifier: po/i8uxPFYRsNFTlJU1d5KEDrihE5XxUDGJv65GiON0= Subject key identifier: 9A:C6:41:4E:A3:DC:19:75:E2:E4:BB:A9:A3:D0:C4:0C:47:F2:DE:1A Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 0693 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/30857DB6CBA211ECAE233133C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:33:30 +0000 ROA not before: Fri 08 Aug 2025 16:24:14 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 149812 IP address blocks: 72.9.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Aug 8 16:24:14 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a44e3a-e6e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a7:4d:b6:e4:0e:de:78:b2:82:3b:42:20:35: 22:21:76:85:1d:35:d4:83:43:bf:4d:2b:1d:9b:74: 0a:f4:a5:e1:25:bd:6a:15:72:fb:a6:a2:b0:82:80: 95:88:aa:22:a9:92:4b:e7:4d:11:50:8a:cd:6c:86: 80:f1:4c:48:d0:65:30:64:c1:2d:47:ab:61:b6:fd: c5:a1:28:74:6e:72:5a:3b:79:c2:55:a3:b0:c5:c2: 97:b2:16:09:91:05:d0:50:46:45:68:da:5f:b3:6d: d5:50:0c:97:e5:e0:eb:20:4c:1a:78:e0:f8:64:e8: bd:b1:fb:3f:a2:50:1d:cf:3c:e8:40:aa:17:76:e5: 77:fa:7a:4d:54:47:56:dc:d1:ce:b6:28:fc:2b:25: fb:83:11:bf:d5:e0:4e:9b:af:08:72:2d:e1:70:fe: 80:76:5f:d9:c7:18:dd:7d:da:ce:cc:ac:ef:c7:03: bf:96:c4:a5:d7:30:ab:81:88:3f:00:19:1c:23:a6: 80:88:ef:eb:53:fd:d9:37:c1:93:50:94:77:61:a7: ca:94:9b:46:2a:0a:d3:65:9c:de:33:04:2e:64:3f: 88:41:c0:22:0a:f0:47:07:d0:df:3c:0c:e1:47:fa: 29:2b:8a:21:8e:2c:a6:30:39:08:75:fd:48:58:f5: 3b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C6:41:4E:A3:DC:19:75:E2:E4:BB:A9:A3:D0:C4:0C:47:F2:DE:1A X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/30857DB6CBA211ECAE233133C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 72.9.143.0/24 Signature Algorithm: sha256WithRSAEncryption 29:68:9f:07:8c:c5:d3:ca:b2:35:67:09:d2:d1:09:7a:1e:5b: 21:d0:b5:71:b9:ff:73:a6:a9:a2:cb:0f:7f:f1:97:26:22:bc: 99:56:18:a6:3e:ad:40:de:f0:a7:b7:2a:44:f7:29:79:0e:ec: a8:57:a2:41:37:7c:3a:88:d2:89:9c:6f:bf:09:8f:04:d0:8e: 6e:06:4d:25:63:42:8f:4e:e2:c7:ec:e4:9d:18:1a:83:33:2e: 5b:ff:5d:b6:2a:5f:26:7d:bb:d7:fd:0f:45:0f:2b:8b:e7:7c: 53:07:ba:c1:c8:68:c1:9d:09:d3:27:14:35:9a:43:63:ed:8b: 33:bc:b0:b6:5c:e1:b5:f9:29:35:60:7e:33:57:18:da:6e:96: 62:46:0e:0e:08:ce:8e:2d:95:30:39:35:14:ba:43:3a:04:2e: d8:b3:08:1c:ef:56:a6:85:73:61:0b:e5:99:22:f7:6a:0b:91: 0c:6c:9c:e4:1d:69:e1:71:fc:7e:88:ad:f8:47:6d:42:c6:6d: 50:57:75:2a:52:dc:62:ee:f2:65:56:f8:99:98:1c:25:06:56: 55:29:ed:c2:84:13:ac:45:d8:bd:ff:3d:c1:50:28:1d:7e:8f: e6:37:ca:56:b3:d2:f1:d5:db:ed:eb:1c:ba:e8:7b:76:a9:4b: 38:7f:d3:f4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUwODA4MTYyNDE0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGUzYS1lNmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqdNtuQO3niygjtCIDUiIXaFHTXUg0O/TSsdm3QK9KXhJb1qFXL7pqKwgoCV iKoiqZJL500RUIrNbIaA8UxI0GUwZMEtR6thtv3FoSh0bnJaO3nCVaOwxcKXshYJ kQXQUEZFaNpfs23VUAyX5eDrIEwaeOD4ZOi9sfs/olAdzzzoQKoXduV3+npNVEdW 3NHOtij8KyX7gxG/1eBOm68Ici3hcP6Adl/ZxxjdfdrOzKzvxwO/lsSl1zCrgYg/ ABkcI6aAiO/rU/3ZN8GTUJR3YafKlJtGKgrTZZzeMwQuZD+IQcAiCvBHB9DfPAzh R/opK4ohjiymMDkIdf1IWPU71QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJrGQU6j 3Bl14uS7qaPQxAxH8t4aMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjczMUUvRUFBMTlDQjRCMkRDMTFFQjg2MjFDQjU2QzRGOUFFMDIvMzA4NTdEQjZD QkEyMTFFQ0FFMjMzMTMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQASAmPMA0GCSqGSIb3DQEBCwUAA4IBAQApaJ8HjMXTyrI1ZwnS0Ql6 Hlsh0LVxuf9zpqmiyw9/8ZcmIryZVhimPq1A3vCntypE9yl5DuyoV6JBN3w6iNKJ nG+/CY8E0I5uBk0lY0KPTuLH7OSdGBqDMy5b/122Kl8mfbvX/Q9FDyuL53xTB7rB yGjBnQnTJxQ1mkNj7YszvLC2XOG1+Sk1YH4zVxjabpZiRg4OCM6OLZUwOTUUukM6 BC7Yswgc71amhXNhC+WZIvdqC5EMbJzkHWnhcfx+iK34R21Cxm1QV3UqUtxi7vJl VviZmBwlBlZVKe3ChBOsRdi9/z3BUCgdfo/mN8pWs9Lx1dvt6xy66Ht2qUs4f9P0 -----END CERTIFICATE-----Generated at Mon Mar 2 21:24:17 2026 by rpki-client