$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa File: 6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa (raw, json) Hash identifier: p9m+Ky6KPaxoCxqhurBlkPRkCfywo+5r7qphI33Ipdo= Subject key identifier: E9:5B:4D:D5:97:91:5F:82:97:CB:FB:6D:DC:7E:19:E3:8C:6D:9D:8A Certificate issuer: /CN=A91C4F28/serialNumber=F170F57B4ECA1296A4221D707A64E429893B87D4 Certificate serial: 01B2 Authority key identifier: F1:70:F5:7B:4E:CA:12:96:A4:22:1D:70:7A:64:E4:29:89:3B:87:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XD1e07KEpakIh1wemTkKYk7h9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:05:30 +0000 ROA not before: Sun 11 Jan 2026 03:23:10 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 20473 IP address blocks: 36.50.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/8XD1e07KEpakIh1wemTkKYk7h9Q.crl rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/8XD1e07KEpakIh1wemTkKYk7h9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XD1e07KEpakIh1wemTkKYk7h9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4F28, serialNumber=F170F57B4ECA1296A4221D707A64E429893B87D4 Validity Not Before: Jan 11 03:23:10 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4399a-f346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:ab:67:f7:f7:97:86:27:d4:ab:dd:88:16:00: 31:cd:2c:8c:82:91:ef:08:17:ac:81:84:72:dc:ee: de:c5:48:d1:7f:59:2b:25:6b:22:25:7c:24:37:25: 1b:59:1c:b9:b0:b5:76:98:4b:6b:e9:80:1f:32:e7: de:29:c1:a0:76:8c:70:d6:68:2e:30:b7:62:8f:6a: 1f:60:77:bd:15:ed:d9:1f:44:35:21:52:3f:c0:e0: 6c:1c:86:00:eb:e4:c2:15:90:f4:64:fc:37:89:31: 18:ca:98:52:54:6b:33:b4:e0:35:cf:9c:90:b0:53: 88:85:cf:08:e3:81:97:b6:2e:ec:cd:09:f1:94:66: 03:ce:71:20:9d:d6:1d:99:e6:99:2e:19:d9:50:d4: 32:82:35:46:6e:b4:25:81:31:38:56:a7:ed:8f:b3: 30:ba:b8:fc:ab:97:ba:29:fb:7d:10:a0:cb:07:3b: b5:e6:15:63:04:47:17:f7:bb:a1:06:f2:89:c5:f3: 6e:cf:cc:0d:5a:48:9e:44:12:5e:e0:6d:d4:a0:60: 3a:2b:5c:3d:91:6e:4b:26:3b:ca:72:24:6d:d9:da: f3:d0:41:c0:d9:f1:3b:9d:82:e3:44:05:f3:a7:4f: 6c:ef:13:26:69:0b:5e:da:56:34:84:ee:f9:74:57: a5:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5B:4D:D5:97:91:5F:82:97:CB:FB:6D:DC:7E:19:E3:8C:6D:9D:8A X509v3 Authority Key Identifier: keyid:F1:70:F5:7B:4E:CA:12:96:A4:22:1D:70:7A:64:E4:29:89:3B:87:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/8XD1e07KEpakIh1wemTkKYk7h9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XD1e07KEpakIh1wemTkKYk7h9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4F28/F57FD0B88D5611EE9787E783C4F9AE02/6DAB109E8DF111EEA5BB4A1BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.2.0/24 Signature Algorithm: sha256WithRSAEncryption 59:80:17:bf:fc:1c:53:53:a0:1f:7f:cc:31:2c:1a:91:91:df: f6:26:b1:45:07:8a:50:b3:46:58:29:05:d7:4a:86:66:bf:31: 95:cf:3f:b0:76:b3:70:6f:0c:74:94:37:83:10:f0:9b:e7:79: 68:03:49:97:d0:58:db:e0:a8:98:f7:86:40:cf:98:40:6e:99: cd:b4:9d:c7:55:a1:d7:e4:87:22:a5:83:56:a2:d2:e4:2a:47: fd:9c:8e:05:d2:eb:4b:42:ee:44:88:58:64:45:85:8c:fc:0f: a0:c3:72:a1:53:7b:ca:9c:b6:58:86:23:06:64:0a:ba:52:07: 69:35:5f:2d:8a:80:9f:74:7d:6e:77:56:5f:e2:de:fe:2a:f6: 98:8f:94:3b:42:4c:0c:2c:4d:ad:31:cd:78:42:73:65:95:a1: 91:54:ac:6d:c0:fd:ce:ad:cb:8c:ad:4b:ea:d1:96:1d:85:a6: 21:de:e0:c4:81:8e:76:f2:34:9c:f7:d5:28:1e:a6:c0:26:6c: 00:4e:73:d4:1c:7d:eb:18:a7:82:ef:06:f8:a4:58:95:94:0c: 57:62:eb:1e:ae:67:b1:c7:95:5f:91:af:43:fd:c0:ac:a2:4e: f1:f9:b2:d7:fc:e4:45:e3:57:92:a3:f7:35:01:75:be:ae:f7: 12:08:c6:da -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzRGMjgxMTAvBgNVBAUTKEYxNzBGNTdCNEVDQTEyOTZBNDIyMUQ3MDdBNjRFNDI5 ODkzQjg3RDQwHhcNMjYwMTExMDMyMzEwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mzk5YS1mMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+6tn9/eXhifUq92IFgAxzSyMgpHvCBesgYRy3O7exUjRf1krJWsiJXwkNyUb WRy5sLV2mEtr6YAfMufeKcGgdoxw1mguMLdij2ofYHe9Fe3ZH0Q1IVI/wOBsHIYA 6+TCFZD0ZPw3iTEYyphSVGsztOA1z5yQsFOIhc8I44GXti7szQnxlGYDznEgndYd meaZLhnZUNQygjVGbrQlgTE4Vqftj7Mwurj8q5e6Kft9EKDLBzu15hVjBEcX97uh BvKJxfNuz8wNWkieRBJe4G3UoGA6K1w9kW5LJjvKciRt2drz0EHA2fE7nYLjRAXz p09s7xMmaQte2lY0hO75dFel4QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOlbTdWX kV+Cl8v7bdx+GeOMbZ2KMB8GA1UdIwQYMBaAFPFw9XtOyhKWpCIdcHpk5CmJO4fU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNEYyOC9GNTdGRDBCODhE NTYxMUVFOTc4N0U3ODNDNEY5QUUwMi84WEQxZTA3S0VwYWtJaDF3ZW1Ua0tZazdo OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYRDFlMDdLRXBha0loMXdlbVRrS1lrN2g5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzRGMjgvRjU3RkQwQjg4RDU2MTFFRTk3ODdFNzgzQzRGOUFFMDIvNkRBQjEwOUU4 REYxMTFFRUE1QkI0QTFCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAJDICMA0GCSqGSIb3DQEBCwUAA4IBAQBZgBe//BxTU6Aff8wxLBqR kd/2JrFFB4pQs0ZYKQXXSoZmvzGVzz+wdrNwbwx0lDeDEPCb53loA0mX0Fjb4KiY 94ZAz5hAbpnNtJ3HVaHX5IcipYNWotLkKkf9nI4F0utLQu5EiFhkRYWM/A+gw3Kh U3vKnLZYhiMGZAq6UgdpNV8tioCfdH1ud1Zf4t7+KvaYj5Q7QkwMLE2tMc14QnNl laGRVKxtwP3OrcuMrUvq0ZYdhaYh3uDEgY528jSc99UoHqbAJmwATnPUHH3rGKeC 7wb4pFiVlAxXYusermexx5Vfka9D/cCsok7x+bLX/ORF41eSo/c1AXW+rvcSCMba -----END CERTIFICATE-----Generated at Thu Mar 26 08:49:57 2026 by rpki-client