$ rpki-client -vvf rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/AB6989BCEADF11ECADC46036C4F9AE02.roa File: AB6989BCEADF11ECADC46036C4F9AE02.roa (raw, json) Hash identifier: piqd3okCbVlFKjEolLFOOOARynspzmzOHcnRRet9yBg= Subject key identifier: C9:BB:C1:A9:A4:77:E2:B5:F5:44:5F:3D:1A:48:DB:29:5F:49:65:3F Certificate issuer: /CN=A917C4E7/serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Certificate serial: 03CA Authority key identifier: A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/AB6989BCEADF11ECADC46036C4F9AE02.roa Signing time: Wed 25 Mar 2026 00:34:36 +0000 ROA not before: Wed 25 Mar 2026 00:34:36 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 212238 IP address blocks: 36.255.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C4E7, serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Validity Not Before: Mar 25 00:34:36 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c32d9b-0b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0b:e2:fe:d3:c5:fa:b8:92:b8:66:60:b2:06: ad:6c:36:9b:cb:b8:23:41:f1:ca:32:85:71:ae:61: 69:4e:1a:c0:e1:dd:1f:71:02:56:76:7f:61:54:8e: 72:78:14:07:2a:f9:1d:22:e6:2a:95:62:cb:68:42: 31:f8:9c:c7:18:62:b4:23:87:cf:fb:d9:5c:d7:96: ca:e6:92:99:ca:d1:ad:0f:3e:f6:8e:24:bb:50:d3: e1:e6:27:80:55:e7:79:7b:8c:fb:f5:63:b7:68:6c: 86:f9:ba:df:4e:2c:d9:51:ff:9e:1e:ef:ea:58:bd: 6f:db:d8:da:e5:bc:4f:60:cb:7e:67:59:b0:d9:84: 57:a9:13:2e:c0:06:a3:fe:12:4f:d7:8c:94:ce:92: 0d:b8:f4:9e:88:d5:df:ff:57:b4:ea:e2:20:8c:80: 20:9f:22:ae:e4:ec:f3:ad:69:73:8d:8e:97:f9:ca: 1c:1b:78:9d:b2:df:62:94:71:e0:44:fa:44:14:e3: f6:9a:2d:5f:fa:f3:51:9f:5d:18:af:fd:fb:e6:71: b2:de:18:e4:36:ca:43:1e:7f:1a:5c:c2:3b:88:57: 36:10:10:21:2a:8f:00:2b:d4:05:de:3a:4b:df:ec: 04:46:d4:8a:a2:6c:59:f0:fc:4c:88:1c:3b:8b:7a: 11:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BB:C1:A9:A4:77:E2:B5:F5:44:5F:3D:1A:48:DB:29:5F:49:65:3F X509v3 Authority Key Identifier: keyid:A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/AB6989BCEADF11ECADC46036C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.255.99.0/24 Signature Algorithm: sha256WithRSAEncryption 71:2a:15:15:93:03:47:2f:c4:af:47:a1:c9:99:fa:1a:58:62: a5:10:38:80:c0:e2:0d:0d:69:08:9e:56:9f:43:71:f7:b9:f0: 6e:3d:d7:0c:3f:9d:9a:75:28:d8:8d:b4:73:67:e2:ba:33:a4: f6:0f:2e:e5:55:ef:6b:3d:2d:71:81:0a:68:87:95:ce:02:be: 73:ec:38:b3:a9:10:c9:48:e4:e8:4e:d5:58:fa:b0:da:05:af: 8e:7d:ae:3f:a1:0a:2f:cd:b2:39:4b:e9:7d:e3:34:9e:6c:2a: 05:b0:b1:e6:33:be:ab:57:29:45:14:a8:a6:4b:2c:4e:ce:68: 49:80:4f:a7:39:83:c3:09:53:1f:8d:51:54:e6:bf:d5:1f:ec: 62:19:ce:dd:d9:cb:5c:72:aa:e3:67:f2:14:6c:2b:c3:3d:9d: 7f:09:3b:9f:2f:e7:17:f2:c7:6d:1f:f7:a9:6e:9a:a0:c1:54: ce:ce:f9:00:98:db:2a:25:f0:75:77:cd:3f:78:83:13:a0:c8: be:f2:1d:ad:db:34:25:06:e2:68:02:b0:51:3f:d0:d2:37:66: b2:7c:00:37:ad:f2:08:30:56:f8:c6:3f:41:1c:19:ad:72:8c: 08:6e:86:c6:79:d6:13:24:62:fa:cf:7e:ea:46:6d:a6:1a:37: 75:55:04:ee -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0RTcxMTAvBgNVBAUTKEE1QzRBMEFCMEU1RUUxM0IxNDg0NTQzOUIxQUU0RkIz NDQ2OEM3QjkwHhcNMjYwMzI1MDAzNDM2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWMzMmQ5Yi0wYjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAvi/tPF+riSuGZgsgatbDaby7gjQfHKMoVxrmFpThrA4d0fcQJWdn9hVI5y eBQHKvkdIuYqlWLLaEIx+JzHGGK0I4fP+9lc15bK5pKZytGtDz72jiS7UNPh5ieA Ved5e4z79WO3aGyG+brfTizZUf+eHu/qWL1v29ja5bxPYMt+Z1mw2YRXqRMuwAaj /hJP14yUzpINuPSeiNXf/1e06uIgjIAgnyKu5OzzrWlzjY6X+cocG3idst9ilHHg RPpEFOP2mi1f+vNRn10Yr/375nGy3hjkNspDHn8aXMI7iFc2EBAhKo8AK9QF3jpL 3+wERtSKomxZ8PxMiBw7i3oRfwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMm7wamk d+K19URfPRpI2ylfSWU/MB8GA1UdIwQYMBaAFKXEoKsOXuE7FIRUObGuT7NEaMe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzRFNy85ODFDMDU1OEVB RDgxMUVDQkM3RUUwMTVDNEY5QUUwMi9wY1NncXc1ZTRUc1VoRlE1c2E1UHMwUm94 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjU2dxdzVlNFRzVWhGUTVzYTVQczBSb3g3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0RTcvOTgxQzA1NThFQUQ4MTFFQ0JDN0VFMDE1QzRGOUFFMDIvQUI2OTg5QkNF QURGMTFFQ0FEQzQ2MDM2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAJP9jMA0GCSqGSIb3DQEBCwUAA4IBAQBxKhUVkwNHL8SvR6HJmfoa WGKlEDiAwOINDWkInlafQ3H3ufBuPdcMP52adSjYjbRzZ+K6M6T2Dy7lVe9rPS1x gQpoh5XOAr5z7DizqRDJSOToTtVY+rDaBa+Ofa4/oQovzbI5S+l94zSebCoFsLHm M76rVylFFKimSyxOzmhJgE+nOYPDCVMfjVFU5r/VH+xiGc7d2ctccqrjZ/IUbCvD PZ1/CTufL+cX8sdtH/epbpqgwVTOzvkAmNsqJfB1d80/eIMToMi+8h2t2zQlBuJo ArBRP9DSN2ayfAA3rfIIMFb4xj9BHBmtcowIbobGedYTJGL6z37qRm2mGjd1VQTu -----END CERTIFICATE-----Generated at Thu Mar 26 04:04:11 2026 by rpki-client