$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/2D9AAA0629CF11F1ADED11F996833773.roa File: 2D9AAA0629CF11F1ADED11F996833773.roa (raw, json) Hash identifier: bvLxVDCXvbLP68bPFEP8Bi+iW5eH1xSilo34BKnNRMs= Subject key identifier: 75:4E:26:CC:BC:8D:96:91:B1:D2:6E:08:12:35:00:A2:3C:B5:3E:75 Certificate issuer: /CN=A91304A9/serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Certificate serial: 08 Authority key identifier: 3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/2D9AAA0629CF11F1ADED11F996833773.roa Signing time: Fri 27 Mar 2026 11:22:02 +0000 ROA not before: Fri 27 Mar 2026 11:22:02 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 36734 IP address blocks: 63.216.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 17:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Validity Not Before: Mar 27 11:22:02 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69c6685a-9872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:18:da:f6:7e:60:da:e6:80:87:19:d8:1b:59: 51:89:73:53:23:3f:6d:43:8d:96:5f:db:d5:d3:4a: a2:d1:99:14:f9:36:b6:59:b0:7f:7a:ae:17:7f:98: 5c:ec:e4:f2:63:1f:de:96:05:f2:f9:9b:af:bb:d0: 68:a3:b2:3b:85:e1:9b:75:06:4d:d4:87:d6:5f:46: 64:3f:57:de:e2:6d:9a:06:23:26:86:de:27:1f:3a: 96:41:6a:4f:45:df:49:cb:42:7a:91:eb:5b:e6:54: e7:c1:a5:a4:08:3b:17:79:f6:09:99:43:ee:b3:bd: 0b:87:90:f0:03:6d:54:68:59:5b:9c:32:ae:e0:34: fe:9a:94:dc:f9:67:29:eb:f6:71:90:e1:e6:f6:7e: da:40:1e:bc:34:9f:35:85:09:87:9d:41:6f:d9:b1: 00:6c:88:9c:58:c0:c7:8d:9a:f0:78:0e:c2:8f:81: 6a:43:58:50:c3:1f:ba:68:7a:ee:96:eb:09:62:dc: 1c:e9:9b:26:ff:60:d8:ba:4f:3e:f1:51:b4:57:b9: 3a:35:07:f0:fa:74:68:61:31:3f:b1:1e:9b:be:27: 4e:b5:91:cd:6f:1c:6b:3a:c0:2c:c9:15:db:30:b9: 1c:54:a9:45:07:89:f0:79:c2:0a:ea:1f:29:be:78: b8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4E:26:CC:BC:8D:96:91:B1:D2:6E:08:12:35:00:A2:3C:B5:3E:75 X509v3 Authority Key Identifier: keyid:3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/2D9AAA0629CF11F1ADED11F996833773.roa sbgp-ipAddrBlock: critical IPv4: 63.216.64.0/21 Signature Algorithm: sha256WithRSAEncryption 07:09:69:3c:50:1b:2b:a7:05:87:82:ac:31:51:97:13:e1:68: 07:4e:f7:5c:62:df:77:37:a6:41:53:47:86:ab:ec:48:54:59: 2b:cd:58:a5:8e:69:f5:b3:01:fc:75:74:e7:1b:c8:67:8e:5a: a3:8e:ca:02:b1:a3:c5:45:c0:2b:3f:8c:10:a7:57:3f:cd:be: 3c:ae:a4:75:3b:3f:a4:de:0d:63:f8:65:76:8e:4c:d8:4b:0a: 6b:d7:1a:2d:09:57:81:37:0b:fd:80:eb:bf:69:44:29:86:bb: 2b:44:59:2d:d1:6f:cd:1b:ea:67:5d:04:f3:07:37:31:2e:e0: 5c:eb:9a:d1:01:c3:a5:6f:bf:9e:ee:93:32:b6:d3:71:b2:32: 0a:a5:1e:a5:38:d8:06:ba:3f:7a:87:0c:b7:dd:30:85:98:ef: fd:e6:1d:29:1b:bc:5e:8c:c3:da:5f:ad:55:13:42:26:e0:31: 3d:11:96:1a:ec:08:a0:53:14:42:91:d2:46:4a:7a:cf:6d:68: 9d:39:dd:fa:10:59:fc:79:c7:bf:38:d4:20:3f:53:99:7c:2e: 26:c5:51:57:ce:a5:b3:85:4d:19:f1:7b:ba:c7:46:aa:2c:75: 3d:9f:5f:bc:cc:94:1e:ef:4f:ab:b8:4b:d3:4a:f0:96:3a:45: 38:a8:56:71 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDRBOTExMC8GA1UEBRMoM0Q3QjE1QkQ3N0Q5Qjk3NEUzNzM1OERBNzU0REZFQTky OTFFNjgzQTAeFw0yNjAzMjcxMTIyMDJaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzY2ODVhLTk4NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChGNr2fmDa5oCHGdgbWVGJc1MjP21DjZZf29XTSqLRmRT5NrZZsH96rhd/mFzs 5PJjH96WBfL5m6+70GijsjuF4Zt1Bk3Uh9ZfRmQ/V97ibZoGIyaG3icfOpZBak9F 30nLQnqR61vmVOfBpaQIOxd59gmZQ+6zvQuHkPADbVRoWVucMq7gNP6alNz5Zynr 9nGQ4eb2ftpAHrw0nzWFCYedQW/ZsQBsiJxYwMeNmvB4DsKPgWpDWFDDH7poeu6W 6wli3Bzpmyb/YNi6Tz7xUbRXuTo1B/D6dGhhMT+xHpu+J061kc1vHGs6wCzJFdsw uRxUqUUHifB5wgrqHym+eLhLAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUdU4mzLyN lpGx0m4IEjUAojy1PnUwHwYDVR0jBBgwFoAUPXsVvXfZuXTjc1jadU3+qSkeaDow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwNEE5L0ZEMzcyRTRBMjk0 NTExRjFBN0FBM0VCRDg0RUU1MjhFL1BYc1Z2WGZadVhUamMxamFkVTMtcVNrZWFE by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFhzVnZYZlp1WFRqYzFqYWRVMy1xU2tlYURvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDRBOS9GRDM3MkU0QTI5NDUxMUYxQTdBQTNFQkQ4NEVFNTI4RS8yRDlBQUEwNjI5 Q0YxMUYxQURFRDExRjk5NjgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAM/2EAwDQYJKoZIhvcNAQELBQADggEBAAcJaTxQGyunBYeCrDFRlxPh aAdO91xi33c3pkFTR4ar7EhUWSvNWKWOafWzAfx1dOcbyGeOWqOOygKxo8VFwCs/ jBCnVz/NvjyupHU7P6TeDWP4ZXaOTNhLCmvXGi0JV4E3C/2A679pRCmGuytEWS3R b80b6mddBPMHNzEu4FzrmtEBw6Vvv57ukzK203GyMgqlHqU42Aa6P3qHDLfdMIWY 7/3mHSkbvF6Mw9pfrVUTQibgMT0RlhrsCKBTFEKR0kZKes9taJ053foQWfx5x784 1CA/U5l8LibFUVfOpbOFTRnxe7rHRqosdT2fX7zMlB7vT6u4S9NK8JY6RTioVnE= -----END CERTIFICATE-----Generated at Sat Mar 28 18:52:49 2026 by rpki-client