$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa File: DCCEA912A3EB11EE8049E335C4F9AE02.roa (raw, json) Hash identifier: I8WOH8J1MhGqNbLqVfvMzdR8rX2Yq8UcwqrXooh3Mjw= Subject key identifier: 51:F7:30:00:69:89:1D:61:81:08:DA:30:80:B2:87:BF:CA:EA:65:60 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 01C4 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:02:08 +0000 ROA not before: Sun 01 Mar 2026 05:24:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152189 IP address blocks: 36.50.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Mar 1 05:24:10 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a41cb0-132f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:59:ee:90:3d:a1:dc:fa:4d:17:b5:e8:c3:17: 99:d2:4c:ed:73:2c:52:26:a3:bc:66:db:af:2c:f5: 21:6a:c6:c9:60:91:c8:cf:3d:3b:9d:19:73:7b:09: 2b:ac:72:5e:f2:5f:89:68:1a:09:62:ae:8a:d8:be: ea:f5:79:3e:b6:e1:ee:62:03:b2:ad:15:6a:d4:ed: 0b:72:33:b1:dd:a5:5c:44:4e:1b:dd:90:a1:9a:c6: 41:6e:28:4c:4e:ed:94:31:02:2c:58:69:95:f7:31: 0f:9a:b9:e6:4f:52:e8:08:9f:9b:58:48:ca:9e:52: 9e:de:0b:0a:89:36:38:8b:26:b0:8a:8f:c7:97:f6: 0e:7b:35:88:40:42:f2:1e:d3:56:56:4b:0d:2b:90: bd:c3:34:e3:dc:3c:de:de:ce:24:34:53:ed:96:5e: 5a:e3:73:82:af:69:7f:5f:51:d1:fd:8a:b3:06:00: 0a:1d:15:e3:db:f8:d7:d9:6e:3d:01:f7:87:3a:dd: d0:28:3b:90:b4:d1:76:91:3f:11:0b:d4:eb:21:b2: 87:d9:f0:29:0f:f9:70:bf:b1:79:60:44:f4:ce:15: 0c:a1:42:25:aa:e9:b4:4b:15:46:57:72:f2:3b:98: ad:70:7e:cc:da:19:ba:d8:05:db:ed:19:25:05:ea: d2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F7:30:00:69:89:1D:61:81:08:DA:30:80:B2:87:BF:CA:EA:65:60 X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/DCCEA912A3EB11EE8049E335C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.198.0/24 Signature Algorithm: sha256WithRSAEncryption 67:88:fc:4f:18:bd:37:ae:c2:b0:70:03:0d:ee:73:81:e9:28: 26:86:e3:b9:46:00:66:db:2b:6c:2a:64:ed:42:70:5f:c5:67: 58:e5:89:61:1a:19:02:8b:9b:1d:89:00:6e:82:18:68:31:df: 76:b6:7f:ef:94:18:29:a1:e3:96:78:65:eb:8c:da:29:fb:37: 3a:51:c7:51:3b:e3:de:cc:8d:d5:76:c1:ad:2f:de:c5:e6:c7: ca:79:ed:b2:77:d4:f7:28:6b:13:e4:4a:a4:e0:15:a3:24:04: 49:98:4c:4b:d8:0b:0c:25:59:d6:05:72:92:bf:9d:01:0f:5d: 10:2e:c0:06:8f:ef:49:c7:d7:97:0a:bb:92:5a:d4:d5:81:db: cc:a5:73:f0:22:dd:4a:7b:ea:fb:59:45:3f:fc:bb:39:ba:d0: bc:bf:76:cc:7d:71:6e:b7:e1:9d:dc:d4:de:f0:e9:ad:d1:09: 79:b1:9d:f6:1b:24:52:4a:31:92:7b:ab:47:05:dd:d0:43:7d: 81:71:cb:24:e5:bb:4a:70:db:9b:67:b1:85:f0:36:0f:55:17: bd:12:c9:5b:8f:d6:6e:1a:ce:01:d4:07:60:ab:c4:55:3b:eb: b5:15:a3:db:8d:34:61:b7:61:a4:bb:4e:db:33:9a:91:0a:c8: 5e:eb:2e:94 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjYwMzAxMDUyNDEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWNiMC0xMzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFnukD2h3PpNF7XowxeZ0kztcyxSJqO8ZtuvLPUhasbJYJHIzz07nRlzewkr rHJe8l+JaBoJYq6K2L7q9Xk+tuHuYgOyrRVq1O0LcjOx3aVcRE4b3ZChmsZBbihM Tu2UMQIsWGmV9zEPmrnmT1LoCJ+bWEjKnlKe3gsKiTY4iyawio/Hl/YOezWIQELy HtNWVksNK5C9wzTj3Dze3s4kNFPtll5a43OCr2l/X1HR/YqzBgAKHRXj2/jX2W49 AfeHOt3QKDuQtNF2kT8RC9TrIbKH2fApD/lwv7F5YET0zhUMoUIlqum0SxVGV3Ly O5itcH7M2hm62AXb7RklBerSjwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFH3MABp iR1hgQjaMICyh7/K6mVgMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5NzIvMjQ1QjNERENBM0U2MTFFRUFERjk0ODU1QzRGOUFFMDIvRENDRUE5MTJB M0VCMTFFRTgwNDlFMzM1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAJDLGMA0GCSqGSIb3DQEBCwUAA4IBAQBniPxPGL03rsKwcAMN7nOB 6SgmhuO5RgBm2ytsKmTtQnBfxWdY5YlhGhkCi5sdiQBughhoMd92tn/vlBgpoeOW eGXrjNop+zc6UcdRO+PezI3VdsGtL97F5sfKee2yd9T3KGsT5Eqk4BWjJARJmExL 2AsMJVnWBXKSv50BD10QLsAGj+9Jx9eXCruSWtTVgdvMpXPwIt1Ke+r7WUU//Ls5 utC8v3bMfXFut+Gd3NTe8Omt0Ql5sZ32GyRSSjGSe6tHBd3QQ32Bccsk5btKcNub Z7GF8DYPVRe9Eslbj9ZuGs4B1Adgq8RVO+u1FaPbjTRht2Gku07bM5qRCshe6y6U -----END CERTIFICATE-----Generated at Thu Mar 26 13:04:14 2026 by rpki-client