$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa File: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (raw, json) Hash identifier: XP4HSeF++rcOTwwJXu1GGe3b805gAKCMza6aEuOXosM= Subject key identifier: 18:AF:D7:1E:4A:AE:A8:2C:C2:C1:0B:53:97:C0:AC:0B:45:BC:90:4E Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 03BD Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:02:21 +0000 ROA not before: Wed 05 Mar 2025 02:17:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135069 IP address blocks: 192.94.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 957 (0x3bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Mar 5 02:17:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a40eac-a905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:9a:71:5a:ae:66:b5:fe:40:67:86:87:cc: 24:59:6b:78:25:29:61:89:06:94:48:d0:1b:38:fa: 33:05:f5:12:4f:ed:a2:33:4e:e7:cd:7d:01:02:68: 54:de:07:82:a3:6a:38:0a:2f:19:4c:fc:6d:d3:81: a9:ca:d2:db:6d:8c:c2:4d:0a:e7:5d:68:a0:04:06: f2:1b:49:b4:ee:b9:15:fa:4e:c6:e5:fe:99:07:13: 61:67:5a:d6:14:d1:77:b9:61:86:ee:ad:0f:c0:94: 86:e5:28:8e:d1:4f:c2:d4:07:da:63:29:38:bb:8b: d3:df:54:b1:58:c9:06:89:95:f3:19:7c:5d:d9:83: 65:62:bf:6a:33:33:3e:d0:9e:67:86:c0:e9:8a:cf: c1:6e:89:4c:fc:79:31:d2:53:69:1f:24:ee:df:ca: a4:23:44:56:5a:5c:89:a4:cb:dd:37:2d:17:32:d2: c8:98:e2:20:02:16:1d:b0:47:ff:73:94:33:30:5b: 40:73:b4:47:2d:d5:f2:c2:f6:af:bf:dc:ae:a6:45: 1d:fe:a7:25:ad:df:c0:db:bf:75:97:34:bd:17:3a: 4e:48:4c:7d:5d:d1:a8:33:2d:0f:8a:5b:63:4a:f5: 7f:7f:33:bb:a1:43:ad:98:9f:23:16:1e:47:ee:af: 7f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AF:D7:1E:4A:AE:A8:2C:C2:C1:0B:53:97:C0:AC:0B:45:BC:90:4E X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.94.236.0/24 Signature Algorithm: sha256WithRSAEncryption 39:c6:e1:4a:92:28:d5:1a:71:8d:ea:c0:83:d2:be:20:f7:2b: c7:e9:23:2c:ea:5c:4c:7b:bb:2f:4e:94:ab:cb:75:24:01:83: 15:83:e9:ca:73:6f:89:f1:c8:2c:1a:dd:72:8b:1e:3f:03:82: 7e:a6:5a:ca:40:b2:f1:f9:42:ef:9f:cf:e7:2d:57:4c:fc:6d: 76:55:2a:aa:6e:1f:72:6d:df:bf:6e:27:49:45:a1:cd:80:5b: a2:b4:b7:f5:90:f5:db:6f:59:5c:0e:e8:fb:db:ff:aa:a0:41: d5:08:27:1b:42:7b:9a:c9:61:b1:77:b9:15:ad:89:a3:1e:85: be:c3:17:99:1a:b9:e6:c5:65:9f:d6:07:02:08:b1:c2:0d:dd: 71:78:44:ba:ac:5d:e9:b1:ef:b9:df:cc:52:a2:2e:ac:b2:ab: 6b:a2:24:32:4e:8d:39:c4:fe:3a:ff:ff:c0:81:ae:20:6c:a8: e2:e3:27:07:db:54:bb:17:e4:25:8e:be:8e:13:97:fd:8c:cc: f3:19:a2:ff:1b:c3:3c:53:fb:0f:96:7e:80:ad:59:a9:cf:5f: 32:a6:15:58:56:db:32:a2:a3:b7:8a:2e:51:3f:57:36:04:8c: ce:03:23:29:9a:7b:8d:f8:c5:14:28:97:17:c0:f6:ae:ee:6d: d1:3f:ce:68 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjUwMzA1MDIxNzM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGVhYy1hOTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv62acVquZrX+QGeGh8wkWWt4JSlhiQaUSNAbOPozBfUST+2iM07nzX0BAmhU 3geCo2o4Ci8ZTPxt04GpytLbbYzCTQrnXWigBAbyG0m07rkV+k7G5f6ZBxNhZ1rW FNF3uWGG7q0PwJSG5SiO0U/C1AfaYyk4u4vT31SxWMkGiZXzGXxd2YNlYr9qMzM+ 0J5nhsDpis/BbolM/Hkx0lNpHyTu38qkI0RWWlyJpMvdNy0XMtLImOIgAhYdsEf/ c5QzMFtAc7RHLdXywvavv9yupkUd/qclrd/A2791lzS9FzpOSEx9XdGoMy0Piltj SvV/fzO7oUOtmJ8jFh5H7q9/kwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBiv1x5K rqgswsELU5fArAtFvJBOMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBQjkvMUNENDRGOUVDNzdBMTFFQ0I5NDM0QzJDQzRGOUFFMDIvMzlBMzM1RDZD QjNGMTFFQ0JFQkM5QTFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAwF7sMA0GCSqGSIb3DQEBCwUAA4IBAQA5xuFKkijVGnGN6sCD0r4g 9yvH6SMs6lxMe7svTpSry3UkAYMVg+nKc2+J8cgsGt1yix4/A4J+plrKQLLx+ULv n8/nLVdM/G12VSqqbh9ybd+/bidJRaHNgFuitLf1kPXbb1lcDuj72/+qoEHVCCcb QnuayWGxd7kVrYmjHoW+wxeZGrnmxWWf1gcCCLHCDd1xeES6rF3pse+538xSoi6s sqtroiQyTo05xP46///Aga4gbKji4ycH21S7F+Qljr6OE5f9jMzzGaL/G8M8U/sP ln6ArVmpz18yphVYVtsyoqO3ii5RP1c2BIzOAyMpmnuN+MUUKJcXwPau7m3RP85o -----END CERTIFICATE-----Generated at Thu Mar 26 11:41:24 2026 by rpki-client