$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/9F6611D029D311F184F1669A97833773.roa File: 9F6611D029D311F184F1669A97833773.roa (raw, json) Hash identifier: sU+syfRyHdx8cIMh/58Efro5AeJotud3a9u84LAj0Uo= Subject key identifier: 4D:5F:ED:E2:AF:E7:18:6E:20:EB:A2:E1:59:E2:7E:A4:DE:8B:5D:8D Certificate issuer: /CN=A91304A9/serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Certificate serial: 18 Authority key identifier: 3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/9F6611D029D311F184F1669A97833773.roa Signing time: Fri 27 Mar 2026 11:53:51 +0000 ROA not before: Fri 27 Mar 2026 11:53:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45342 IP address blocks: 209.8.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 17:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Validity Not Before: Mar 27 11:53:51 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69c66fcf-1b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9a:57:85:6c:81:7d:19:7f:50:fa:0f:a1:bd: 7a:59:e4:a8:5a:11:1f:eb:f9:ff:f9:6a:2a:36:af: 38:2f:64:df:b8:d6:b0:92:a8:77:87:87:09:e7:6c: 08:6e:62:53:95:9c:f3:4e:6e:a7:2a:b0:58:74:bc: d7:c1:32:44:fe:f7:06:02:28:9a:68:cd:ec:fa:b1: c1:31:f1:5e:dc:b0:37:ec:f6:82:41:9d:29:80:17: 28:77:84:54:f5:9e:22:f1:d4:ed:b3:88:1a:d3:cd: 11:bc:e2:f9:43:b3:80:e6:5e:48:af:0f:84:ee:29: b7:15:45:ed:8f:e5:9a:5d:53:bb:b0:c0:0c:35:6d: ae:89:8d:60:b5:8f:63:69:a1:bc:7d:72:73:1b:5d: 00:2c:2c:6a:88:c0:ee:aa:ec:e0:1d:69:5b:91:26: f0:c2:0d:7c:09:c9:4b:54:3e:75:ff:cd:59:6b:d4: b1:e8:e7:ea:ff:d7:d2:ee:0c:cc:01:b4:b9:3a:c8: 89:4b:75:77:f7:e3:92:f9:9b:72:64:d2:bc:ed:d8: 18:df:15:18:10:62:f3:9a:e1:fe:98:ac:ad:4a:79: 8e:66:6a:71:fd:c4:8a:72:d8:93:52:3d:9e:b2:86: 92:0c:35:01:b7:85:a2:ea:63:f6:93:6b:24:4f:f6: f6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5F:ED:E2:AF:E7:18:6E:20:EB:A2:E1:59:E2:7E:A4:DE:8B:5D:8D X509v3 Authority Key Identifier: keyid:3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/9F6611D029D311F184F1669A97833773.roa sbgp-ipAddrBlock: critical IPv4: 209.8.115.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:bf:7d:44:79:fc:3b:9b:cf:59:55:29:c0:f5:72:ec:0a:f8: 59:6b:e9:23:85:db:ff:6e:60:aa:4e:4f:f9:02:1e:50:1a:6b: 3e:dd:52:91:fd:96:3d:61:9a:6e:5d:5e:c1:fd:44:47:e4:10: 13:bf:66:49:18:e0:73:7b:9d:57:a1:c8:32:a6:8b:41:17:be: 29:7b:a5:7c:bc:74:30:eb:ff:64:94:5b:82:68:20:11:ee:ac: 4a:b8:85:70:43:77:0d:e0:ac:16:dc:9b:9d:0d:fe:cc:cb:f4: 55:cc:41:b2:e8:6e:b8:04:19:d3:e2:1b:2f:59:de:e4:e2:11: aa:1e:2e:3d:6a:d9:c9:97:e3:71:2a:76:73:49:c7:c9:20:1c: 1c:5d:92:4c:67:a3:eb:df:9d:97:2e:f7:49:5a:e2:81:35:6b: 7e:a5:39:f7:e0:bd:b0:63:35:ed:69:73:ad:da:6e:06:1d:aa: 0b:6c:89:cb:87:67:8c:c7:d1:89:57:60:a6:03:17:11:95:9a: 2b:b1:89:bd:4c:34:be:ec:95:98:8d:3c:63:fa:b2:cf:df:fa: 7f:3d:bc:11:47:df:da:a6:85:d6:e0:37:b3:7f:e6:37:e8:42: 66:a7:6d:78:38:b2:a5:6d:fb:9b:0d:a5:7e:99:e4:57:f0:e0: 83:6e:3e:a2 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDRBOTExMC8GA1UEBRMoM0Q3QjE1QkQ3N0Q5Qjk3NEUzNzM1OERBNzU0REZFQTky OTFFNjgzQTAeFw0yNjAzMjcxMTUzNTFaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzY2ZmNmLTFiN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6mleFbIF9GX9Q+g+hvXpZ5KhaER/r+f/5aio2rzgvZN+41rCSqHeHhwnnbAhu YlOVnPNObqcqsFh0vNfBMkT+9wYCKJpozez6scEx8V7csDfs9oJBnSmAFyh3hFT1 niLx1O2ziBrTzRG84vlDs4DmXkivD4TuKbcVRe2P5ZpdU7uwwAw1ba6JjWC1j2Np obx9cnMbXQAsLGqIwO6q7OAdaVuRJvDCDXwJyUtUPnX/zVlr1LHo5+r/19LuDMwB tLk6yIlLdXf345L5m3Jk0rzt2BjfFRgQYvOa4f6YrK1KeY5manH9xIpy2JNSPZ6y hpIMNQG3haLqY/aTayRP9vZ7AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUTV/t4q/n GG4g66LhWeJ+pN6LXY0wHwYDVR0jBBgwFoAUPXsVvXfZuXTjc1jadU3+qSkeaDow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwNEE5L0ZEMzcyRTRBMjk0 NTExRjFBN0FBM0VCRDg0RUU1MjhFL1BYc1Z2WGZadVhUamMxamFkVTMtcVNrZWFE by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFhzVnZYZlp1WFRqYzFqYWRVMy1xU2tlYURvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDRBOS9GRDM3MkU0QTI5NDUxMUYxQTdBQTNFQkQ4NEVFNTI4RS85RjY2MTFEMDI5 RDMxMUYxODRGMTY2OUE5NzgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADRCHMwDQYJKoZIhvcNAQELBQADggEBAC2/fUR5/Dubz1lVKcD1cuwK +Flr6SOF2/9uYKpOT/kCHlAaaz7dUpH9lj1hmm5dXsH9REfkEBO/ZkkY4HN7nVeh yDKmi0EXvil7pXy8dDDr/2SUW4JoIBHurEq4hXBDdw3grBbcm50N/szL9FXMQbLo brgEGdPiGy9Z3uTiEaoeLj1q2cmX43EqdnNJx8kgHBxdkkxno+vfnZcu90la4oE1 a36lOffgvbBjNe1pc63abgYdqgtsicuHZ4zH0YlXYKYDFxGVmiuxib1MNL7slZiN PGP6ss/f+n89vBFH39qmhdbgN7N/5jfoQmanbXg4sqVt+5sNpX6Z5Ffw4INuPqI= -----END CERTIFICATE-----Generated at Sat Mar 28 15:55:41 2026 by rpki-client