$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa File: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (raw, json) Hash identifier: uf6ELmqop0XBEWprB9YO59fuCd/oyOYwWcsuivGImQg= Subject key identifier: 55:EB:7D:C5:1C:9A:64:95:A2:01:6F:B6:76:9D:7D:E2:F8:CD:F6:0C Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37B3 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa Signing time: Thu 12 Mar 2026 06:06:37 +0000 ROA not before: Thu 12 Mar 2026 06:06:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141031 IP address blocks: 39.34.164.0/24 maxlen: 24 39.34.165.0/24 maxlen: 24 39.34.166.0/24 maxlen: 24 39.34.167.0/24 maxlen: 24 39.34.168.0/21 maxlen: 24 39.34.184.0/21 maxlen: 24 59.103.208.0/20 maxlen: 24 119.152.40.0/24 maxlen: 24 119.152.41.0/24 maxlen: 24 119.152.42.0/24 maxlen: 24 119.152.43.0/24 maxlen: 24 119.152.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 14:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14259 (0x37b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 12 06:06:37 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69b257ed-95cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d1:cc:7d:e8:0e:3a:cb:7d:ce:5b:ef:c2:13: 2a:d1:f4:11:c0:ff:f5:e6:dd:28:ec:76:02:d9:cc: 77:df:4f:23:6a:05:ec:6d:0a:58:43:49:92:e5:ef: fd:e8:c0:17:67:cd:8e:82:87:da:33:3f:de:60:48: 9f:46:f9:2c:1f:36:60:9c:74:d1:a3:83:4d:58:69: b4:73:59:b7:85:94:8d:48:68:57:78:42:a3:e1:ef: 7d:f7:ab:65:1f:94:52:a4:b6:10:3c:7f:50:48:ae: 71:87:bc:aa:fa:35:e3:90:70:cb:8b:a6:38:b5:84: 77:19:3a:3a:2a:64:60:ea:0c:e2:44:ac:76:e2:7e: d1:8d:c2:92:e2:4c:cb:62:f4:f8:8f:db:81:38:60: f7:1a:fd:27:74:18:37:0e:a6:54:df:73:34:62:1b: f5:fd:d8:e9:1a:bb:de:75:85:49:d7:23:0e:fb:dd: 5c:6a:23:e5:92:32:4c:9a:c7:93:2a:ff:a3:60:78: 51:c3:9a:01:6d:03:05:05:3a:cf:d2:79:b6:12:49: 90:40:04:82:00:ec:6c:fb:4b:73:97:8d:49:ee:2b: 77:60:1b:26:cb:35:a7:36:83:17:2c:a4:0d:c0:95: b3:50:92:1f:a8:0c:e1:23:5f:ee:4e:8b:85:e8:a6: 6b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:EB:7D:C5:1C:9A:64:95:A2:01:6F:B6:76:9D:7D:E2:F8:CD:F6:0C X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.34.164.0-39.34.175.255 39.34.184.0/21 59.103.208.0/20 119.152.40.0-119.152.44.255 Signature Algorithm: sha256WithRSAEncryption 22:99:77:b6:7f:c1:e5:33:16:28:e8:7f:8c:5e:ea:4b:c9:f3: c7:ac:f0:4e:26:86:b2:7c:35:44:b9:17:65:8c:6f:f1:53:5d: ad:68:21:4b:6b:f6:35:19:67:47:90:b1:b5:24:0f:54:14:b5: d5:63:b4:f1:03:d9:6b:25:40:e7:c0:7e:58:9c:bf:2c:20:21: f2:c3:db:e6:be:2d:46:ba:88:6d:2e:a4:4e:ef:15:5b:d8:0e: 83:3c:d1:30:34:64:38:d9:9f:a0:9a:6a:c6:69:60:e8:75:9e: 0f:f4:a5:ab:f7:15:33:10:cf:46:2d:a2:8d:66:b9:87:b4:e1: c0:fe:ee:96:bd:50:cc:f2:fe:cc:3e:94:ef:55:4a:06:7f:0e: 6f:c5:67:39:33:c4:4b:5d:27:26:68:22:fb:90:d2:c3:16:89: af:03:26:10:ef:ca:a5:bb:04:6e:0d:44:ee:94:38:22:ad:af: 49:cc:14:9d:2f:39:45:1f:25:c8:db:71:3e:5a:e6:d2:ea:8f: 75:3c:c6:4c:e7:76:39:e4:a0:fa:a6:d7:2d:46:a2:73:99:56: 25:ae:20:75:f2:bd:0d:69:9e:2b:da:11:de:2d:78:24:a4:a3: b5:8e:7c:da:c9:71:96:30:a8:85:f8:a1:c2:7c:64:c0:78:e4: 9d:d5:9f:64 -----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgICN7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjYwMzEyMDYwNjM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIyNTdlZC05NWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdHMfegOOst9zlvvwhMq0fQRwP/15t0o7HYC2cx3308jagXsbQpYQ0mS5e/9 6MAXZ82OgofaMz/eYEifRvksHzZgnHTRo4NNWGm0c1m3hZSNSGhXeEKj4e9996tl H5RSpLYQPH9QSK5xh7yq+jXjkHDLi6Y4tYR3GTo6KmRg6gziRKx24n7RjcKS4kzL YvT4j9uBOGD3Gv0ndBg3DqZU33M0Yhv1/djpGrvedYVJ1yMO+91caiPlkjJMmseT Kv+jYHhRw5oBbQMFBTrP0nm2EkmQQASCAOxs+0tzl41J7it3YBsmyzWnNoMXLKQN wJWzUJIfqAzhI1/uTouF6KZr9QIDAQABo4ICgjCCAn4wHQYDVR0OBBYEFFXrfcUc mmSVogFvtnadfeL4zfYMMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMTNDODI4QzYy RDg5MTFFQkE3RDIyQzNFQzRGOUFFMDIucm9hMEEGCCsGAQUFBwEHAQH/BDIwMDAu BAIAATAoMAwDBAInIqQDBAQnIqADBAMnIrgDBAQ7Z9AwDAMEA3eYKAMEAHeYLDAN BgkqhkiG9w0BAQsFAAOCAQEAIpl3tn/B5TMWKOh/jF7qS8nzx6zwTiaGsnw1RLkX ZYxv8VNdrWghS2v2NRlnR5CxtSQPVBS11WO08QPZayVA58B+WJy/LCAh8sPb5r4t RrqIbS6kTu8VW9gOgzzRMDRkONmfoJpqxmlg6HWeD/Slq/cVMxDPRi2ijWa5h7Th wP7ulr1QzPL+zD6U71VKBn8Ob8VnOTPES10nJmgi+5DSwxaJrwMmEO/KpbsEbg1E 7pQ4Iq2vScwUnS85RR8lyNtxPlrm0uqPdTzGTOd2OeSg+qbXLUaic5lWJa4gdfK9 DWmeK9oR3i14JKSjtY582slxljCohfihwnxkwHjkndWfZA== -----END CERTIFICATE-----Generated at Thu Mar 26 07:44:36 2026 by rpki-client