$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/C3DF78B21AE211F1803B92B5413D8C67.roa File: C3DF78B21AE211F1803B92B5413D8C67.roa (raw, json) Hash identifier: f0xjufQzH23hX++xN0IK4TKpbvdzfPVrSADqxwu7+Kw= Subject key identifier: 3D:9E:9F:1D:B6:1C:B7:19:E6:AE:F7:88:2D:9F:8D:3C:08:84:BF:DD Certificate issuer: /CN=A91C7EF2/serialNumber=9B9D39725B27D420281385163492FF75F15113DA Certificate serial: 8E Authority key identifier: 9B:9D:39:72:5B:27:D4:20:28:13:85:16:34:92:FF:75:F1:51:13:DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/C3DF78B21AE211F1803B92B5413D8C67.roa Signing time: Sun 08 Mar 2026 11:34:28 +0000 ROA not before: Sun 08 Mar 2026 11:34:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137868 IP address blocks: 165.101.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.crl rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7EF2, serialNumber=9B9D39725B27D420281385163492FF75F15113DA Validity Not Before: Mar 8 11:34:28 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69ad5ec3-6623 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b4:8d:84:99:1d:a3:3a:a7:eb:1a:2b:97:7e: 4b:08:a2:aa:87:a2:cc:ef:26:35:92:50:f0:76:91: 1a:d1:db:ce:e0:7b:9c:3e:e4:ad:27:0c:4c:b2:78: 33:b9:11:a4:0c:a9:f0:b6:b0:33:3c:7d:eb:2e:0f: 68:4c:e9:9b:16:ae:9e:cc:e6:3e:c6:e7:07:a6:d8: 49:92:3a:a0:c3:23:ba:bb:4f:a1:b4:f8:0b:b4:94: f0:8d:bc:60:39:35:55:19:f8:53:04:0d:41:aa:cd: 1c:4f:85:ee:ff:cc:9a:e3:70:de:25:33:b0:e5:b4: b1:3c:5a:70:21:ad:20:60:ef:86:72:fc:32:67:a5: 3d:74:a6:35:91:b2:a1:7d:e2:5f:a4:f8:57:17:d0: 1a:ad:0d:b3:cb:6e:3f:73:c6:cf:66:0e:10:ee:77: df:56:40:4b:51:89:7b:b5:78:f9:3f:2f:16:52:6a: fc:d3:e4:13:59:60:5a:75:eb:09:e9:59:f9:fe:91: ee:3f:58:80:08:c1:27:45:4f:41:30:b6:83:e2:5b: ee:c9:a5:02:c5:b9:7c:50:e8:b9:55:0b:4e:d1:76: 97:0e:eb:0f:65:77:c6:2d:1b:13:6a:e7:c3:6c:64: a9:a5:02:fa:e6:7c:b5:66:59:08:b8:bf:f9:45:c5: 36:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9E:9F:1D:B6:1C:B7:19:E6:AE:F7:88:2D:9F:8D:3C:08:84:BF:DD X509v3 Authority Key Identifier: keyid:9B:9D:39:72:5B:27:D4:20:28:13:85:16:34:92:FF:75:F1:51:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/m505clsn1CAoE4UWNJL_dfFRE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/m505clsn1CAoE4UWNJL_dfFRE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7EF2/6226C936638111F0A33D2364C4F9AE02/C3DF78B21AE211F1803B92B5413D8C67.roa sbgp-ipAddrBlock: critical IPv4: 165.101.223.0/24 Signature Algorithm: sha256WithRSAEncryption 56:80:b6:a6:d9:b3:aa:f3:29:fc:0e:3c:25:b5:96:13:5b:f7: cf:32:d1:51:c7:8e:11:89:8b:f8:48:eb:5c:3e:7f:d2:58:a7: b3:07:5e:78:e2:9a:23:2d:8c:07:e8:4f:02:85:4a:56:32:c9: 05:83:04:b9:d3:13:da:aa:d7:32:da:07:62:15:99:92:13:da: cf:1a:df:c2:6b:55:91:2f:f2:f4:ad:d3:38:d3:18:ac:91:48: 23:71:85:21:fa:77:e1:ac:52:46:8f:3a:91:48:35:8d:6e:f2: 00:32:7b:84:a9:45:f0:8d:93:84:98:5f:74:10:2e:36:23:dd: 5f:5f:33:58:c8:e6:bd:71:1c:7c:82:6b:cd:91:87:74:ca:ca: 42:7a:0f:53:cb:3c:90:50:7f:c2:5c:3a:74:3b:e8:c8:b5:f9: cc:25:ab:f4:cf:42:0d:54:3d:84:2a:f0:a4:8a:a1:0c:45:18: 3d:83:08:47:66:5a:95:58:f5:78:8a:bc:28:38:fd:05:ee:6a: 86:60:3d:ff:d1:b3:4e:f9:85:bf:cf:36:a6:da:cc:26:db:b7: 82:68:9e:d3:36:92:cc:b0:33:a2:e3:76:0e:a2:6f:c4:23:c8: 55:da:5c:a1:7a:de:b2:00:a0:be:8c:e2:08:5d:bf:0e:66:df: 17:45:37:79 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdFRjIxMTAvBgNVBAUTKDlCOUQzOTcyNUIyN0Q0MjAyODEzODUxNjM0OTJGRjc1 RjE1MTEzREEwHhcNMjYwMzA4MTEzNDI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFkNWVjMy02NjIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbSNhJkdozqn6xorl35LCKKqh6LM7yY1klDwdpEa0dvO4HucPuStJwxMsngz uRGkDKnwtrAzPH3rLg9oTOmbFq6ezOY+xucHpthJkjqgwyO6u0+htPgLtJTwjbxg OTVVGfhTBA1Bqs0cT4Xu/8ya43DeJTOw5bSxPFpwIa0gYO+GcvwyZ6U9dKY1kbKh feJfpPhXF9AarQ2zy24/c8bPZg4Q7nffVkBLUYl7tXj5Py8WUmr80+QTWWBadesJ 6Vn5/pHuP1iACMEnRU9BMLaD4lvuyaUCxbl8UOi5VQtO0XaXDusPZXfGLRsTaufD bGSppQL65ny1ZlkIuL/5RcU2YQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD2enx22 HLcZ5q73iC2fjTwIhL/dMB8GA1UdIwQYMBaAFJudOXJbJ9QgKBOFFjSS/3XxURPa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0VGMi82MjI2QzkzNjYz ODExMUYwQTMzRDIzNjRDNEY5QUUwMi9tNTA1Y2xzbjFDQW9FNFVXTkpMX2RmRlJF OW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL201MDVjbHNuMUNBb0U0VVdOSkxfZGZGUkU5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdFRjIvNjIyNkM5MzY2MzgxMTFGMEEzM0QyMzY0QzRGOUFFMDIvQzNERjc4QjIx QUUyMTFGMTgwM0I5MkI1NDEzRDhDNjcucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQApWXfMA0GCSqGSIb3DQEBCwUAA4IBAQBWgLam2bOq8yn8DjwltZYT W/fPMtFRx44RiYv4SOtcPn/SWKezB1544pojLYwH6E8ChUpWMskFgwS50xPaqtcy 2gdiFZmSE9rPGt/Ca1WRL/L0rdM40xiskUgjcYUh+nfhrFJGjzqRSDWNbvIAMnuE qUXwjZOEmF90EC42I91fXzNYyOa9cRx8gmvNkYd0yspCeg9TyzyQUH/CXDp0O+jI tfnMJav0z0INVD2EKvCkiqEMRRg9gwhHZlqVWPV4irwoOP0F7mqGYD3/0bNO+YW/ zzam2swm27eCaJ7TNpLMsDOi43YOom/EI8hV2lyhet6yAKC+jOIIXb8OZt8XRTd5 -----END CERTIFICATE-----Generated at Thu Mar 26 21:52:12 2026 by rpki-client