$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/21CBC788273011F1938ACA67AC833773.roa File: 21CBC788273011F1938ACA67AC833773.roa (raw, json) Hash identifier: qp6Bm5oYdqfGs1uaiD3+6fo5Cm0A8MByVk6Rki2uGCM= Subject key identifier: DB:B4:52:AC:68:08:7D:B2:DA:C3:43:2F:DB:76:68:C5:F1:CB:87:69 Certificate issuer: /CN=A91A5B07/serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Certificate serial: 03CE Authority key identifier: F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/21CBC788273011F1938ACA67AC833773.roa Signing time: Tue 24 Mar 2026 03:18:30 +0000 ROA not before: Tue 24 Mar 2026 03:18:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135391 IP address blocks: 139.5.108.0/22 maxlen: 23 139.5.109.0/24 maxlen: 24 139.5.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 00:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 974 (0x3ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5B07, serialNumber=F4FFFE60E7D63BE4F1819BBA84CD5B20474C91C6 Validity Not Before: Mar 24 03:18:30 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69c20286-64ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ad:03:d0:a6:99:d7:3e:e6:18:18:4f:03:31: 7c:30:aa:c2:6e:b1:51:1f:e1:41:da:d2:41:ab:2d: 9f:9f:40:76:58:0b:8f:37:24:ac:c0:21:3f:0e:4f: 48:d2:90:6c:3d:d1:81:40:3b:df:1b:48:cb:3d:db: b5:f1:cd:14:a1:53:44:5f:db:f7:fa:26:7e:55:94: d9:94:89:b0:d5:37:ff:69:11:51:64:99:a4:99:ae: 5e:44:f1:86:fc:81:f0:2c:d6:a7:9e:51:2b:8e:4f: 17:d9:1a:76:f5:99:3b:cd:80:48:cb:79:9f:e7:77: 77:63:b6:06:af:89:17:cf:c0:7b:0d:de:60:2d:c3: ea:ff:a9:c6:27:9b:6c:db:cc:3f:b9:d3:20:c9:39: 77:df:37:b7:1f:5e:e1:5c:00:34:13:96:e8:bd:e6: c4:36:b9:79:50:05:70:62:f8:38:0d:44:1b:da:75: ac:f8:c1:1a:06:47:44:61:35:72:5c:77:0b:1b:dd: ae:ce:c7:3b:15:aa:4a:16:c9:7c:ee:58:54:91:82: 19:77:94:5a:ab:a7:85:c6:8a:3a:3f:12:3d:43:41: 0a:fb:42:af:08:e8:d0:ef:71:52:c9:f3:ca:af:6f: 97:34:00:74:56:bf:9f:ca:1c:0a:c4:ab:1a:01:ab: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B4:52:AC:68:08:7D:B2:DA:C3:43:2F:DB:76:68:C5:F1:CB:87:69 X509v3 Authority Key Identifier: keyid:F4:FF:FE:60:E7:D6:3B:E4:F1:81:9B:BA:84:CD:5B:20:47:4C:91:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/9P_-YOfWO-TxgZu6hM1bIEdMkcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9P_-YOfWO-TxgZu6hM1bIEdMkcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5B07/72A48A76CCE111ECBBA05C2CC4F9AE02/21CBC788273011F1938ACA67AC833773.roa sbgp-ipAddrBlock: critical IPv4: 139.5.108.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:29:5c:db:67:c2:7c:c0:69:1a:aa:5a:34:51:d3:32:c5:a1: 32:fe:43:79:b0:4a:cb:ed:0e:65:2d:69:99:4f:4b:bc:62:da: ab:35:75:68:6f:fc:35:a4:29:0c:55:e4:fb:a1:7b:b3:4b:82: 1f:e1:e9:65:12:09:10:d1:08:31:80:bb:ea:02:71:71:67:b0: 38:c5:0c:8d:2c:08:5c:83:63:b4:96:8e:d7:b8:8b:40:51:0e: 60:9e:83:89:52:fc:04:99:2b:06:d8:5d:a3:e3:8d:ab:db:8e: ca:a4:a8:f2:ec:85:98:79:d2:fe:c6:9d:c5:9f:7d:0c:10:01: 57:c9:b0:a6:fa:03:a6:a7:1c:a7:71:68:5b:33:f8:ef:d0:d2: 55:57:d6:1a:75:3e:c2:b7:4b:82:d0:13:a9:25:f1:cf:16:fa: 11:93:9a:f0:ff:58:89:91:97:0d:d4:fb:35:3d:5c:89:71:ee: b5:dc:e2:03:64:6c:19:b9:7d:83:8b:ab:98:88:1d:79:d8:93: eb:5a:8f:ec:1c:2e:23:07:09:85:0b:64:41:a4:34:4a:80:1b: 57:6f:d9:04:7d:0a:50:97:bf:fd:1e:4d:6f:47:0b:33:fb:06: 04:dc:ec:88:a1:98:3b:79:29:7e:cf:98:b4:95:50:94:36:80: 2a:37:32:eb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCMDcxMTAvBgNVBAUTKEY0RkZGRTYwRTdENjNCRTRGMTgxOUJCQTg0Q0Q1QjIw NDc0QzkxQzYwHhcNMjYwMzI0MDMxODMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWMyMDI4Ni02NGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn60D0KaZ1z7mGBhPAzF8MKrCbrFRH+FB2tJBqy2fn0B2WAuPNySswCE/Dk9I 0pBsPdGBQDvfG0jLPdu18c0UoVNEX9v3+iZ+VZTZlImw1Tf/aRFRZJmkma5eRPGG /IHwLNannlErjk8X2Rp29Zk7zYBIy3mf53d3Y7YGr4kXz8B7Dd5gLcPq/6nGJ5ts 28w/udMgyTl33ze3H17hXAA0E5bovebENrl5UAVwYvg4DUQb2nWs+MEaBkdEYTVy XHcLG92uzsc7FapKFsl87lhUkYIZd5Raq6eFxoo6PxI9Q0EK+0KvCOjQ73FSyfPK r2+XNAB0Vr+fyhwKxKsaAavbLQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNu0Uqxo CH2y2sNDL9t2aMXxy4dpMB8GA1UdIwQYMBaAFPT//mDn1jvk8YGbuoTNWyBHTJHG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUIwNy83MkE0OEE3NkND RTExMUVDQkJBMDVDMkNDNEY5QUUwMi85UF8tWU9mV08tVHhnWnU2aE0xYklFZE1r Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlQXy1ZT2ZXTy1UeGdadTZoTTFiSUVkTWtjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCMDcvNzJBNDhBNzZDQ0UxMTFFQ0JCQTA1QzJDQzRGOUFFMDIvMjFDQkM3ODgy NzMwMTFGMTkzOEFDQTY3QUM4MzM3NzMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCiwVsMA0GCSqGSIb3DQEBCwUAA4IBAQBNKVzbZ8J8wGkaqlo0UdMy xaEy/kN5sErL7Q5lLWmZT0u8YtqrNXVob/w1pCkMVeT7oXuzS4If4ellEgkQ0Qgx gLvqAnFxZ7A4xQyNLAhcg2O0lo7XuItAUQ5gnoOJUvwEmSsG2F2j442r247KpKjy 7IWYedL+xp3Fn30MEAFXybCm+gOmpxyncWhbM/jv0NJVV9YadT7Ct0uC0BOpJfHP FvoRk5rw/1iJkZcN1Ps1PVyJce613OIDZGwZuX2Di6uYiB152JPrWo/sHC4jBwmF C2RBpDRKgBtXb9kEfQpQl7/9Hk1vRwsz+wYE3OyIoZg7eSl+z5i0lVCUNoAqNzLr -----END CERTIFICATE-----Generated at Fri Mar 27 01:33:49 2026 by rpki-client