$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/8CD64094BDFE11EBBBB16A42C4F9AE02.roa File: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (raw, json) Hash identifier: yCmJKCeUjCX4/1rndfEcZXyyAy1UCnlaRalfod8v7Ts= Subject key identifier: 35:C3:34:E6:BF:B5:03:79:D0:95:41:C5:B2:47:B7:D0:1C:76:CB:39 Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 0694 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/8CD64094BDFE11EBBBB16A42C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:33:31 +0000 ROA not before: Fri 08 Aug 2025 16:24:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17501 IP address blocks: 72.9.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Aug 8 16:24:15 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a44e3b-99dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b6:5d:dc:01:f1:36:28:00:f7:a8:4b:4c:fb: be:e7:60:17:ee:7d:b6:ef:10:c2:91:cc:5e:d2:83: e0:1e:41:67:1a:4d:bc:77:63:0b:95:d3:10:82:a5: 5b:77:01:fa:5c:a2:8e:05:9b:2c:bf:70:e8:c4:51: 0e:09:50:86:6a:44:a9:ce:79:a8:aa:a1:90:1e:34: 87:21:50:16:71:4b:f9:f5:e1:44:31:66:d5:95:40: 4c:26:c9:cd:b0:2a:de:58:39:22:85:88:f8:12:fc: a1:f5:a3:79:08:88:55:c3:08:a7:21:75:70:d8:05: 0b:70:a9:b8:39:91:af:95:ab:bb:47:db:d7:54:d6: 70:8e:cb:41:5e:43:2b:75:ca:62:b2:6e:53:fe:69: 09:60:61:15:a3:e5:ee:fb:eb:e8:29:0a:39:88:6d: ee:01:84:74:a2:a1:85:ec:50:3c:9f:5d:b7:7c:06: 2c:2e:87:04:2d:a0:36:bc:e8:01:52:3e:8d:b8:db: 97:bc:b0:9d:25:0a:65:77:9c:1d:dc:b2:ae:d7:0f: ea:fd:32:22:eb:24:53:bf:a2:17:36:43:76:ae:ed: ef:fa:db:9e:5d:40:8a:84:8e:d7:27:b2:94:19:55: 10:bb:c2:b9:d7:1e:4f:e7:aa:ad:3f:c1:46:8e:c5: 6c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C3:34:E6:BF:B5:03:79:D0:95:41:C5:B2:47:B7:D0:1C:76:CB:39 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/8CD64094BDFE11EBBBB16A42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 72.9.128.0/20 Signature Algorithm: sha256WithRSAEncryption 2d:c3:aa:b2:25:c7:90:e8:04:f1:59:a7:ee:82:a3:93:b2:d9: e8:c0:5d:ba:be:8b:05:70:8d:18:ae:eb:fc:4b:4a:6e:09:ac: 2f:fe:3c:b6:9a:ef:ed:81:da:6d:1f:07:44:31:db:55:3c:0b: b7:77:53:8c:cf:69:30:89:fd:31:fd:b8:50:7c:c4:49:af:44: ac:b3:35:12:64:da:5b:a0:1b:b8:39:2d:05:b0:39:68:7c:1d: 4b:e8:24:74:69:52:1c:b7:01:15:4e:ae:7a:97:6c:4e:4c:b7: 8d:3c:82:a3:52:51:a9:19:4c:a1:98:6c:2b:9c:e4:26:ce:93: ef:49:f1:f3:dd:96:70:5d:05:67:5a:2f:0f:50:8a:6c:b2:e8: b5:d3:18:8e:cb:6f:b9:1f:cd:91:30:64:6f:aa:ee:40:6b:84: 64:78:9f:cf:21:46:6e:2d:a9:8f:2e:7a:ea:e0:bd:a6:2f:90: 64:9e:7e:26:e9:2d:83:5c:ba:c8:dc:02:77:39:31:f2:42:45: 8c:33:a8:68:13:33:41:84:d7:2f:12:41:4b:58:68:42:7c:ef: dd:12:c3:3c:ad:e9:32:cc:42:eb:ac:b8:23:43:7e:08:99:78: 7e:51:97:b2:af:b9:41:9c:21:4f:aa:19:8f:09:a9:93:6b:de: 5b:5a:95:9d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUwODA4MTYyNDE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGUzYi05OWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7Zd3AHxNigA96hLTPu+52AX7n227xDCkcxe0oPgHkFnGk28d2MLldMQgqVb dwH6XKKOBZssv3DoxFEOCVCGakSpznmoqqGQHjSHIVAWcUv59eFEMWbVlUBMJsnN sCreWDkihYj4Evyh9aN5CIhVwwinIXVw2AULcKm4OZGvlau7R9vXVNZwjstBXkMr dcpism5T/mkJYGEVo+Xu++voKQo5iG3uAYR0oqGF7FA8n123fAYsLocELaA2vOgB Uj6NuNuXvLCdJQpld5wd3LKu1w/q/TIi6yRTv6IXNkN2ru3v+tueXUCKhI7XJ7KU GVUQu8K51x5P56qtP8FGjsVsJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDXDNOa/ tQN50JVBxbJHt9Acdss5MB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjczMUUvRUFBMTlDQjRCMkRDMTFFQjg2MjFDQjU2QzRGOUFFMDIvOENENjQwOTRC REZFMTFFQkJCQjE2QTQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQESAmAMA0GCSqGSIb3DQEBCwUAA4IBAQAtw6qyJceQ6ATxWafugqOT stnowF26vosFcI0Yruv8S0puCawv/jy2mu/tgdptHwdEMdtVPAu3d1OMz2kwif0x /bhQfMRJr0SsszUSZNpboBu4OS0FsDlofB1L6CR0aVIctwEVTq56l2xOTLeNPIKj UlGpGUyhmGwrnOQmzpPvSfHz3ZZwXQVnWi8PUIpssui10xiOy2+5H82RMGRvqu5A a4RkeJ/PIUZuLamPLnrq4L2mL5Bknn4m6S2DXLrI3AJ3OTHyQkWMM6hoEzNBhNcv EkFLWGhCfO/dEsM8rekyzELrrLgjQ34ImXh+UZeyr7lBnCFPqhmPCamTa95bWpWd -----END CERTIFICATE-----Generated at Mon Mar 2 13:00:40 2026 by rpki-client