$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/31EC6B8229D211F1942EF99297833773.roa File: 31EC6B8229D211F1942EF99297833773.roa (raw, json) Hash identifier: 23E29PzVg2WvOU9TXjshaZZFo5X/Z3KW9b5qNM8Z/x4= Subject key identifier: 1E:AF:64:A0:FC:3C:66:C1:B3:47:81:33:58:9D:4D:7D:EE:E2:58:E0 Certificate issuer: /CN=A91304A9/serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Certificate serial: 15 Authority key identifier: 3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/31EC6B8229D211F1942EF99297833773.roa Signing time: Fri 27 Mar 2026 11:43:38 +0000 ROA not before: Fri 27 Mar 2026 11:43:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 328578 IP address blocks: 209.9.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 17:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Validity Not Before: Mar 27 11:43:38 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69c66d6a-d89f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3c:4d:8c:11:9b:89:33:de:3f:2b:aa:7a:89: 75:45:e8:38:34:5c:63:fd:23:0e:77:73:b5:17:ff: 71:9f:22:ba:bd:57:89:f8:90:05:a3:ea:d3:96:54: 76:5c:e9:62:21:49:c1:6c:de:60:d3:92:8d:57:41: e0:32:98:f8:dc:15:67:54:40:00:9f:a7:5f:a0:19: b8:b8:38:47:cd:b9:52:3c:95:eb:3a:29:42:c8:d3: 01:9f:42:5e:3f:39:33:b7:95:b7:aa:90:e2:08:6f: f9:86:ea:41:9a:90:91:ae:0e:ce:52:f3:e6:9b:3a: 7a:a7:06:1d:68:7f:c5:3a:7e:96:85:e2:48:47:c0: 72:8e:d8:2b:30:ff:98:4d:d1:f9:92:2f:8b:af:f5: 78:a9:72:2f:da:0b:c4:b3:54:4e:da:bb:62:eb:a3: 38:8d:01:f7:d0:69:4d:1e:f7:ce:4c:e2:e7:b0:68: de:84:d3:8d:6a:0f:f3:d8:fc:05:85:ea:bb:c9:b7: 37:3b:11:39:e3:e8:d3:56:e0:0e:7b:4c:cb:b9:c6: f4:99:3c:18:f5:35:63:a2:6f:3e:f1:da:cf:28:18: 75:88:9b:db:12:fa:b3:c4:42:7d:fa:1c:1b:1f:46: 81:79:02:7f:78:18:9c:3f:bb:1f:5b:b6:73:21:90: ae:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AF:64:A0:FC:3C:66:C1:B3:47:81:33:58:9D:4D:7D:EE:E2:58:E0 X509v3 Authority Key Identifier: keyid:3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/31EC6B8229D211F1942EF99297833773.roa sbgp-ipAddrBlock: critical IPv4: 209.9.1.0/24 Signature Algorithm: sha256WithRSAEncryption b7:86:81:88:24:63:11:f4:e8:c9:d0:10:3a:ec:a4:e4:d6:c4: 86:09:e2:2a:d7:31:52:f2:da:ec:23:52:ba:3c:58:cf:35:59: 39:ab:00:87:7b:d1:d9:63:6f:9c:74:d5:ab:45:f6:b3:0b:b7: 54:1b:f3:12:a1:2e:b0:55:c7:d6:96:ff:1d:b1:ff:33:86:cd: f7:4c:99:b3:2f:bb:1f:d1:3a:99:d9:eb:e8:b7:cb:70:5c:4b: f2:00:47:c5:46:10:9a:dd:0c:5d:94:06:dc:36:52:3b:e5:0a: 2f:32:c5:8e:82:57:4e:53:62:9c:98:f2:e4:24:7d:19:d2:b3: 99:d9:d4:b8:20:46:85:0b:19:c9:17:aa:f6:46:3c:67:8d:86: a0:62:06:75:a8:5a:d6:a4:92:f4:d9:c8:d7:e0:c5:c9:88:35: ee:c8:06:2b:a2:13:aa:b3:85:f2:6e:b5:27:e9:e8:e0:c3:55: c9:c2:bf:e2:76:ed:ec:fe:e0:de:24:8e:03:ec:d6:a6:83:af: 68:8f:ef:c1:fa:34:7b:50:fc:7c:02:af:d7:e0:1c:07:0b:51: 6e:5e:8f:f4:2f:ff:51:7a:bf:c3:2c:57:b2:38:11:09:ac:1b: d1:1b:da:95:13:ed:db:52:6b:8d:65:a5:f2:cd:0c:33:b6:9a: 69:9b:a0:ca -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDRBOTExMC8GA1UEBRMoM0Q3QjE1QkQ3N0Q5Qjk3NEUzNzM1OERBNzU0REZFQTky OTFFNjgzQTAeFw0yNjAzMjcxMTQzMzhaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzY2ZDZhLWQ4OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmPE2MEZuJM94/K6p6iXVF6Dg0XGP9Iw53c7UX/3GfIrq9V4n4kAWj6tOWVHZc 6WIhScFs3mDTko1XQeAymPjcFWdUQACfp1+gGbi4OEfNuVI8les6KULI0wGfQl4/ OTO3lbeqkOIIb/mG6kGakJGuDs5S8+abOnqnBh1of8U6fpaF4khHwHKO2Csw/5hN 0fmSL4uv9Xipci/aC8SzVE7au2LroziNAffQaU0e985M4uewaN6E041qD/PY/AWF 6rvJtzc7ETnj6NNW4A57TMu5xvSZPBj1NWOibz7x2s8oGHWIm9sS+rPEQn36HBsf RoF5An94GJw/ux9btnMhkK5/AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUHq9koPw8 ZsGzR4EzWJ1Nfe7iWOAwHwYDVR0jBBgwFoAUPXsVvXfZuXTjc1jadU3+qSkeaDow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwNEE5L0ZEMzcyRTRBMjk0 NTExRjFBN0FBM0VCRDg0RUU1MjhFL1BYc1Z2WGZadVhUamMxamFkVTMtcVNrZWFE by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFhzVnZYZlp1WFRqYzFqYWRVMy1xU2tlYURvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDRBOS9GRDM3MkU0QTI5NDUxMUYxQTdBQTNFQkQ4NEVFNTI4RS8zMUVDNkI4MjI5 RDIxMUYxOTQyRUY5OTI5NzgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADRCQEwDQYJKoZIhvcNAQELBQADggEBALeGgYgkYxH06MnQEDrspOTW xIYJ4irXMVLy2uwjUro8WM81WTmrAId70dljb5x01atF9rMLt1Qb8xKhLrBVx9aW /x2x/zOGzfdMmbMvux/ROpnZ6+i3y3BcS/IAR8VGEJrdDF2UBtw2UjvlCi8yxY6C V05TYpyY8uQkfRnSs5nZ1LggRoULGckXqvZGPGeNhqBiBnWoWtakkvTZyNfgxcmI Ne7IBiuiE6qzhfJutSfp6ODDVcnCv+J27ez+4N4kjgPs1qaDr2iP78H6NHtQ/HwC r9fgHAcLUW5ej/Qv/1F6v8MsV7I4EQmsG9Eb2pUT7dtSa41lpfLNDDO2mmmboMo= -----END CERTIFICATE-----Generated at Sat Mar 28 18:54:25 2026 by rpki-client