$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/9FAF6F8A29DB11F1BFD4871E9B833773.roa File: 9FAF6F8A29DB11F1BFD4871E9B833773.roa (raw, json) Hash identifier: 8UB55J5Yp3o/0cAB1VjFPqBR2V3U93dx8qOKBxRHp6A= Subject key identifier: DE:C8:7A:3E:04:F1:80:FE:59:04:EF:2E:63:41:E3:F4:55:9E:27:BA Certificate issuer: /CN=A91304A9/serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Certificate serial: 28 Authority key identifier: 3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/9FAF6F8A29DB11F1BFD4871E9B833773.roa Signing time: Fri 27 Mar 2026 12:51:08 +0000 ROA not before: Fri 27 Mar 2026 12:51:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 30967 IP address blocks: 205.252.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 17:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=3D7B15BD77D9B974E37358DA754DFEA9291E683A Validity Not Before: Mar 27 12:51:08 2026 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69c67d3c-3a71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6e:f6:5d:22:94:fe:4f:83:59:46:87:ad:25: fb:1e:04:68:14:c7:ef:7a:e9:d2:82:67:f7:c9:04: 0a:56:8b:86:05:5c:4d:53:b1:b9:99:1d:57:82:5e: 9b:94:c5:e9:02:b1:56:bc:f9:7c:04:f5:d7:18:d1: d6:4a:da:cc:ef:a1:71:05:b6:77:cb:d1:02:4b:f3: 1d:7c:b2:5b:38:4e:2a:f7:89:0f:71:b5:0b:69:e5: b3:b0:13:8c:6b:70:9e:df:34:57:f9:e3:c3:69:b8: 63:f6:20:ec:e6:f3:fb:9d:b3:ad:44:c0:b0:a5:bb: 62:fc:77:2f:32:76:ed:53:fd:84:f3:1f:df:b1:0c: 78:45:5f:f0:98:35:93:43:20:55:73:9c:17:51:8a: 95:0a:b8:8e:58:8b:0e:e5:84:eb:c3:a8:f6:59:1e: db:d6:eb:dd:02:61:a3:56:d7:2b:d6:55:77:6e:3a: 9b:27:76:5b:d5:85:fe:67:3e:83:93:b1:24:ca:7a: ae:76:ce:ca:b5:e2:04:c3:c0:00:5b:3a:71:2a:c9: 56:88:f1:94:46:4a:e1:19:00:bf:f1:f0:26:bb:88: 78:30:c2:e0:65:e3:9b:68:18:fb:8b:eb:15:34:79: f9:6c:f4:13:a1:6e:78:2f:2d:77:15:f8:0d:b5:c1: 10:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C8:7A:3E:04:F1:80:FE:59:04:EF:2E:63:41:E3:F4:55:9E:27:BA X509v3 Authority Key Identifier: keyid:3D:7B:15:BD:77:D9:B9:74:E3:73:58:DA:75:4D:FE:A9:29:1E:68:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/PXsVvXfZuXTjc1jadU3-qSkeaDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PXsVvXfZuXTjc1jadU3-qSkeaDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/FD372E4A294511F1A7AA3EBD84EE528E/9FAF6F8A29DB11F1BFD4871E9B833773.roa sbgp-ipAddrBlock: critical IPv4: 205.252.233.0/24 Signature Algorithm: sha256WithRSAEncryption ae:be:2e:74:08:2c:77:c8:7c:13:a3:63:7b:e5:d0:a2:a8:6d: 98:04:1f:f2:95:6b:5f:be:6e:6a:75:57:4d:cf:41:f4:10:0e: f2:76:9c:3c:c6:a8:54:37:d2:20:25:76:c1:59:43:3e:7b:97: 1f:59:d2:8d:05:a2:ba:a6:64:ce:e6:52:8e:38:5a:8f:59:25: 9f:76:66:a7:0e:b1:db:1a:61:bc:11:fd:30:3e:fb:7d:76:cc: 43:3e:ce:fe:a3:12:04:dc:60:fd:41:9c:d7:95:a0:4f:a4:a9: 37:25:ad:f2:4e:bd:6d:3a:c6:56:7e:44:a8:85:a5:88:1b:a9: 75:fa:92:75:45:6a:cd:49:d3:53:7f:20:5f:98:ce:32:c8:d1: 26:cb:24:59:c8:cb:71:11:d3:a3:71:f4:04:2c:d9:6c:f1:00: 07:5f:9e:54:22:22:73:5a:7d:af:ff:ec:c6:72:92:af:69:0b: 62:a2:49:e2:9d:01:b2:a0:cc:77:69:d2:ae:cb:84:53:e3:3b: cb:a7:13:cc:01:16:7e:fa:45:a1:cb:b8:94:eb:26:ed:78:a4: cf:19:75:70:51:d7:5e:78:fc:e0:cc:30:e0:b0:5b:33:0a:2a: 19:72:97:1f:54:4f:61:79:45:12:77:51:50:85:26:be:c5:20: 70:61:a8:54 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDRBOTExMC8GA1UEBRMoM0Q3QjE1QkQ3N0Q5Qjk3NEUzNzM1OERBNzU0REZFQTky OTFFNjgzQTAeFw0yNjAzMjcxMjUxMDhaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YzY3ZDNjLTNhNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhbvZdIpT+T4NZRoetJfseBGgUx+966dKCZ/fJBApWi4YFXE1TsbmZHVeCXpuU xekCsVa8+XwE9dcY0dZK2szvoXEFtnfL0QJL8x18sls4Tir3iQ9xtQtp5bOwE4xr cJ7fNFf548NpuGP2IOzm8/uds61EwLClu2L8dy8ydu1T/YTzH9+xDHhFX/CYNZND IFVznBdRipUKuI5Yiw7lhOvDqPZZHtvW690CYaNW1yvWVXduOpsndlvVhf5nPoOT sSTKeq52zsq14gTDwABbOnEqyVaI8ZRGSuEZAL/x8Ca7iHgwwuBl45toGPuL6xU0 efls9BOhbngvLXcV+A21wRAhAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU3sh6PgTx gP5ZBO8uY0Hj9FWeJ7owHwYDVR0jBBgwFoAUPXsVvXfZuXTjc1jadU3+qSkeaDow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwNEE5L0ZEMzcyRTRBMjk0 NTExRjFBN0FBM0VCRDg0RUU1MjhFL1BYc1Z2WGZadVhUamMxamFkVTMtcVNrZWFE by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFhzVnZYZlp1WFRqYzFqYWRVMy1xU2tlYURvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDRBOS9GRDM3MkU0QTI5NDUxMUYxQTdBQTNFQkQ4NEVFNTI4RS85RkFGNkY4QTI5 REIxMUYxQkZENDg3MUU5QjgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADN/OkwDQYJKoZIhvcNAQELBQADggEBAK6+LnQILHfIfBOjY3vl0KKo bZgEH/KVa1++bmp1V03PQfQQDvJ2nDzGqFQ30iAldsFZQz57lx9Z0o0ForqmZM7m Uo44Wo9ZJZ92ZqcOsdsaYbwR/TA++312zEM+zv6jEgTcYP1BnNeVoE+kqTclrfJO vW06xlZ+RKiFpYgbqXX6knVFas1J01N/IF+YzjLI0SbLJFnIy3ER06Nx9AQs2Wzx AAdfnlQiInNafa//7MZykq9pC2KiSeKdAbKgzHdp0q7LhFPjO8unE8wBFn76RaHL uJTrJu14pM8ZdXBR1154/ODMMOCwWzMKKhlylx9UT2F5RRJ3UVCFJr7FIHBhqFQ= -----END CERTIFICATE-----Generated at Sat Mar 28 18:53:10 2026 by rpki-client