$ rpki-client -vvf rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/D23FC546011111F1B3598E67446F56BC.roa File: D23FC546011111F1B3598E67446F56BC.roa (raw, json) Hash identifier: DBJqsyZNFzi5BS6eS1AkXchHuBzM7iwXaGnFUNFTZZ4= Subject key identifier: CB:6C:F0:4F:CA:81:58:C8:76:35:55:70:62:CE:2D:AC:85:09:AC:E0 Certificate issuer: /CN=A914EBB2/serialNumber=58AA8E6F609BF55814036D26A12A5E2B2515893A Certificate serial: 25 Authority key identifier: 58:AA:8E:6F:60:9B:F5:58:14:03:6D:26:A1:2A:5E:2B:25:15:89:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKqOb2Cb9VgUA20moSpeKyUViTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/D23FC546011111F1B3598E67446F56BC.roa Signing time: Mon 02 Mar 2026 14:55:17 +0000 ROA not before: Tue 03 Feb 2026 15:05:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17476 IP address blocks: 206.109.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.crl rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKqOb2Cb9VgUA20moSpeKyUViTo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:25:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EBB2, serialNumber=58AA8E6F609BF55814036D26A12A5E2B2515893A Validity Not Before: Feb 3 15:05:48 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5a4d5-dbd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3d:96:02:82:ad:b2:8c:88:ee:e8:7e:e4:b7: bf:e9:87:74:55:9e:04:79:8b:f0:48:24:65:2e:11: 83:24:c5:c5:3b:b1:a3:46:d9:50:e9:9b:96:da:8e: 53:cd:24:c5:ad:1c:a4:e4:6c:42:9d:a6:6d:2d:68: 41:5d:c9:66:4f:6a:88:85:18:8e:30:62:f2:c9:b9: 7a:5f:bd:e6:98:4c:a7:b6:66:87:43:a9:08:52:52: 98:42:c6:ac:b7:4d:2f:66:d8:11:bd:c6:09:4a:ec: 5a:a6:37:fb:23:45:6c:f8:b5:36:08:5c:7c:4e:94: ea:25:9f:1e:c1:a9:fe:b7:f8:21:cb:e1:96:e3:7a: 4e:46:9b:49:0b:57:66:48:4d:53:65:14:24:9f:ad: b3:14:ee:19:10:3a:a7:4e:2b:ad:a2:e8:bd:79:74: ee:37:0e:31:3a:db:b0:8b:8f:8c:35:08:6c:24:f4: c8:c5:e0:0b:f9:ed:64:56:73:11:af:98:0a:1c:6d: b5:51:e7:94:7f:1b:9d:71:9e:91:df:2f:a6:04:ff: 27:24:a1:4e:f5:42:76:29:8d:21:6c:03:82:3a:5e: 66:29:38:f7:7b:4a:38:08:0f:1c:64:0d:9a:67:8a: 55:7c:c3:53:00:c5:fe:ed:10:93:53:85:6e:ca:46: 99:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:6C:F0:4F:CA:81:58:C8:76:35:55:70:62:CE:2D:AC:85:09:AC:E0 X509v3 Authority Key Identifier: keyid:58:AA:8E:6F:60:9B:F5:58:14:03:6D:26:A1:2A:5E:2B:25:15:89:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/WKqOb2Cb9VgUA20moSpeKyUViTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKqOb2Cb9VgUA20moSpeKyUViTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EBB2/F091F070ED0F11F0A8103404A1EE528E/D23FC546011111F1B3598E67446F56BC.roa sbgp-ipAddrBlock: critical IPv4: 206.109.72.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:39:55:53:89:ab:e7:51:c6:53:28:c3:ab:fd:04:57:1f:42: 9c:bb:0a:10:ff:79:8c:2f:20:9e:57:ab:ab:b1:2e:75:57:dd: 0f:b9:99:0c:01:76:6c:b5:03:b8:b5:24:fa:12:7b:29:ef:d5: 3f:2a:fa:48:2a:7c:76:61:42:b2:4b:ef:02:e7:a4:0b:0f:61: 52:fa:be:a5:87:a8:5d:9d:12:ca:d2:8c:cb:ba:be:6d:71:79: 2e:1e:0c:9c:76:c1:86:bf:80:ae:24:40:5f:a8:d8:a1:95:4c: dc:19:93:a6:be:70:b2:39:1e:96:ae:eb:6a:20:ee:e1:b9:a5: 43:8c:e1:c4:a0:4a:83:45:0d:a5:99:30:fe:5b:8e:4d:10:da: 8f:3e:83:1c:31:ca:22:79:56:47:95:c9:e7:7a:d1:0b:8e:74: 26:2c:b1:d2:b2:5f:2b:54:88:e9:a4:84:ba:ea:91:d7:74:03: 4d:c1:d9:88:4a:ba:50:7d:bb:57:5d:8a:5b:9e:90:fb:11:39: f5:88:cb:19:8b:fe:97:c2:e7:52:f2:8f:2c:8c:45:7d:66:91: c5:31:f5:6b:ce:9f:e7:b0:e9:34:e4:9d:c0:51:56:4c:26:4a: a3:91:20:43:6f:99:9b:96:ee:a4:fe:6c:49:49:90:e1:0c:e1: 0d:f6:3e:99 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RUJCMjExMC8GA1UEBRMoNThBQThFNkY2MDlCRjU1ODE0MDM2RDI2QTEyQTVFMkIy NTE1ODkzQTAeFw0yNjAyMDMxNTA1NDhaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTVhNGQ1LWRiZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChPZYCgq2yjIju6H7kt7/ph3RVngR5i/BIJGUuEYMkxcU7saNG2VDpm5bajlPN JMWtHKTkbEKdpm0taEFdyWZPaoiFGI4wYvLJuXpfveaYTKe2ZodDqQhSUphCxqy3 TS9m2BG9xglK7FqmN/sjRWz4tTYIXHxOlOolnx7Bqf63+CHL4Zbjek5Gm0kLV2ZI TVNlFCSfrbMU7hkQOqdOK62i6L15dO43DjE627CLj4w1CGwk9MjF4Av57WRWcxGv mAocbbVR55R/G51xnpHfL6YE/yckoU71QnYpjSFsA4I6XmYpOPd7SjgIDxxkDZpn ilV8w1MAxf7tEJNThW7KRplfAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUy2zwT8qB WMh2NVVwYs4trIUJrOAwHwYDVR0jBBgwFoAUWKqOb2Cb9VgUA20moSpeKyUViTow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFQkIyL0YwOTFGMDcwRUQw RjExRjBBODEwMzQwNEExRUU1MjhFL1dLcU9iMkNiOVZnVUEyMG1vU3BlS3lVVmlU by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0txT2IyQ2I5VmdVQTIwbW9TcGVLeVVWaVRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUJCMi9GMDkxRjA3MEVEMEYxMUYwQTgxMDM0MDRBMUVFNTI4RS9EMjNGQzU0NjAx MTExMUYxQjM1OThFNjc0NDZGNTZCQy5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBALObUgwDQYJKoZIhvcNAQELBQADggEBAFw5VVOJq+dRxlMow6v9BFcf Qpy7ChD/eYwvIJ5Xq6uxLnVX3Q+5mQwBdmy1A7i1JPoSeynv1T8q+kgqfHZhQrJL 7wLnpAsPYVL6vqWHqF2dEsrSjMu6vm1xeS4eDJx2wYa/gK4kQF+o2KGVTNwZk6a+ cLI5Hpau62og7uG5pUOM4cSgSoNFDaWZMP5bjk0Q2o8+gxwxyiJ5VkeVyed60QuO dCYssdKyXytUiOmkhLrqkdd0A03B2YhKulB9u1ddiluekPsROfWIyxmL/pfC51Ly jyyMRX1mkcUx9WvOn+ew6TTkncBRVkwmSqORIENvmZuW7qT+bElJkOEM4Q32Ppk= -----END CERTIFICATE-----Generated at Fri Mar 27 05:18:55 2026 by rpki-client