$ rpki-client -vvf rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa File: 096864742F4C11EDB0375D6CC4F9AE02.roa (raw, json) Hash identifier: mdaUyLNP5ILBUXwjj5qxgg+9hrAAfPyxuDqIwoe7rWU= Subject key identifier: 55:CB:CD:0F:87:AB:83:55:7D:99:62:B3:5F:6F:EA:AE:0E:E1:6F:E6 Certificate issuer: /CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Certificate serial: 0972 Authority key identifier: 9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:32:52 +0000 ROA not before: Fri 22 Aug 2025 21:00:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38001 IP address blocks: 111.221.44.0/22 maxlen: 22 111.221.44.0/24 maxlen: 24 111.221.45.0/24 maxlen: 24 111.221.46.0/24 maxlen: 24 111.221.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2418 (0x972) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813F1, serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Validity Not Before: Aug 22 21:00:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46a33-020f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:51:a4:51:49:a6:c7:9d:df:b4:66:66:11:6c: 36:93:6b:51:92:a7:73:57:36:53:04:73:df:d1:e7: fa:ba:ae:1e:ac:b8:23:b8:6d:31:f5:b4:e6:ff:ec: 70:06:54:da:72:60:16:7a:63:73:20:a4:a9:3c:df: af:02:95:68:6b:bd:d7:f7:2f:c7:e4:2b:d6:8e:3c: 19:90:69:9c:4d:a0:84:f0:8c:b5:4c:90:0d:e1:78: af:80:d5:45:2f:82:76:75:0e:c6:c9:0f:c3:48:2c: 03:78:b4:26:01:04:c9:e4:52:24:35:0f:e2:c2:12: 89:88:7c:56:b7:e9:2e:be:2f:d2:17:a1:40:cc:b7: ba:44:b1:ec:e4:4c:62:45:b3:2e:7d:0d:5b:a8:22: 26:56:96:5b:c6:0b:ad:c4:f7:87:b9:e3:1c:e4:b7: dc:32:5c:52:bb:24:a9:b0:79:dd:6b:9a:98:7d:48: 74:ec:a7:ab:2b:69:96:1d:9f:06:84:11:a6:4d:75: b1:d8:f8:9a:ff:42:b8:b5:d1:87:c1:da:ab:45:8a: d7:eb:10:c5:98:3d:96:74:0a:43:09:16:5c:2c:8a: 0a:e0:42:2c:4d:73:60:d3:a5:f7:51:2e:5a:f6:e0: 57:dd:c0:67:d1:23:e3:b6:84:fd:fb:35:02:0a:c8: 1c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:CB:CD:0F:87:AB:83:55:7D:99:62:B3:5F:6F:EA:AE:0E:E1:6F:E6 X509v3 Authority Key Identifier: keyid:9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 111.221.44.0/22 Signature Algorithm: sha256WithRSAEncryption 26:d8:fd:77:ce:20:0c:63:05:bd:57:3d:e4:fa:31:af:ec:12: 71:95:4c:6b:d6:d5:6c:ac:7e:a1:69:1b:0a:e9:f3:dd:4b:88: 05:1a:aa:b9:c9:f8:36:ed:39:7e:ee:50:37:b0:2d:a4:13:c0: 87:85:a4:03:90:5b:e7:a3:4d:78:1d:72:34:e3:86:98:56:55: 89:d1:13:39:d6:f6:7a:27:dd:8f:fb:1d:5d:43:28:93:8d:af: aa:b4:e3:46:bc:4a:dc:ce:05:ff:40:43:6f:09:d3:9c:86:85: 78:23:21:8a:e3:f3:eb:42:20:26:c4:78:96:51:7e:90:1a:a3: de:47:7d:a3:c8:92:8c:71:fd:c6:08:2b:a3:e1:89:c5:dc:56: dd:37:1a:92:1d:68:c2:1b:52:ab:55:5b:aa:95:ea:23:5b:cd: d2:36:b3:31:16:9d:0f:12:a7:d3:f2:6e:21:b3:65:5c:ed:45: cb:52:f6:3f:92:05:8b:d0:e4:a9:5f:1b:99:62:01:33:3f:17: ee:1a:ea:3f:59:88:f5:c8:61:5b:d4:af:7b:0d:d0:be:d8:81: 86:84:5e:21:45:04:87:a6:2e:11:d8:0d:dd:5c:1f:b0:16:68: b0:c5:34:fb:cb:3f:67:61:d1:2f:4d:9e:f3:e6:4f:f2:c8:01: 16:14:ed:73 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRjExMTAvBgNVBAUTKDlFRkVBQTcyNEQ3MDhDRkU4MkM2QjZCRjI3MENCQjVE RDQzMDZGMjAwHhcNMjUwODIyMjEwMDQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmEzMy0wMjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FGkUUmmx53ftGZmEWw2k2tRkqdzVzZTBHPf0ef6uq4erLgjuG0x9bTm/+xw BlTacmAWemNzIKSpPN+vApVoa73X9y/H5CvWjjwZkGmcTaCE8Iy1TJAN4XivgNVF L4J2dQ7GyQ/DSCwDeLQmAQTJ5FIkNQ/iwhKJiHxWt+kuvi/SF6FAzLe6RLHs5Exi RbMufQ1bqCImVpZbxgutxPeHueMc5LfcMlxSuySpsHnda5qYfUh07KerK2mWHZ8G hBGmTXWx2Pia/0K4tdGHwdqrRYrX6xDFmD2WdApDCRZcLIoK4EIsTXNg06X3US5a 9uBX3cBn0SPjtoT9+zUCCsgciQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFXLzQ+H q4NVfZlis19v6q4O4W/mMB8GA1UdIwQYMBaAFJ7+qnJNcIz+gsa2vycMu13UMG8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNGMS9EMENBRjM4NEJB NTkxMUVBOTA0RkY5MURDNEY5QUUwMi9udjZxY2sxd2pQNkN4cmFfSnd5N1hkUXdi eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252NnFjazF3alA2Q3hyYV9Kd3k3WGRRd2J5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRjEvRDBDQUYzODRCQTU5MTFFQTkwNEZGOTFEQzRGOUFFMDIvMDk2ODY0NzQy RjRDMTFFREIwMzc1RDZDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCb90sMA0GCSqGSIb3DQEBCwUAA4IBAQAm2P13ziAMYwW9Vz3k+jGv 7BJxlUxr1tVsrH6haRsK6fPdS4gFGqq5yfg27Tl+7lA3sC2kE8CHhaQDkFvno014 HXI044aYVlWJ0RM51vZ6J92P+x1dQyiTja+qtONGvErczgX/QENvCdOchoV4IyGK 4/PrQiAmxHiWUX6QGqPeR32jyJKMcf3GCCuj4YnF3FbdNxqSHWjCG1KrVVuqleoj W83SNrMxFp0PEqfT8m4hs2Vc7UXLUvY/kgWL0OSpXxuZYgEzPxfuGuo/WYj1yGFb 1K97DdC+2IGGhF4hRQSHpi4R2A3dXB+wFmiwxTT7yz9nYdEvTZ7z5k/yyAEWFO1z -----END CERTIFICATE-----Generated at Thu Mar 26 05:37:59 2026 by rpki-client