$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa File: 37D72D7CC17C11EE8391A218C4F9AE02.roa (raw, json) Hash identifier: f0Nq6bNqAFhlnNadTuboxrgMX1sJQBWxkk0foam6u60= Subject key identifier: 7B:97:3C:59:15:45:55:0F:2D:36:2B:F0:8C:19:5A:66:BB:C6:DD:73 Certificate issuer: /CN=A91E9F31/serialNumber=DCDA069E3EFF8956C01572816A70235195F06725 Certificate serial: 0193 Authority key identifier: DC:DA:06:9E:3E:FF:89:56:C0:15:72:81:6A:70:23:51:95:F0:67:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:32:26 +0000 ROA not before: Wed 07 Jan 2026 03:22:46 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 141746 IP address blocks: 36.50.196.0/24 maxlen: 24 163.223.226.0/24 maxlen: 24 2001:df3:4e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.crl rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:48:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F31, serialNumber=DCDA069E3EFF8956C01572816A70235195F06725 Validity Not Before: Jan 7 03:22:46 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a415ba-73a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:55:d1:a2:de:e8:0c:c3:02:43:86:73:48:37: 1a:1c:f3:57:12:29:58:b7:ec:a7:a2:7d:f5:4c:87: 69:1d:c7:8e:9d:37:30:a6:e8:56:51:ba:74:92:1b: 8d:0b:9d:53:89:84:47:53:72:17:c5:a1:2c:cb:a7: a2:42:df:9c:37:09:81:5b:33:3c:f1:33:fc:33:85: ec:de:14:e2:09:fa:ad:87:4e:18:0d:70:87:3d:72: eb:c0:a7:e8:e8:74:b0:50:03:cb:46:de:c0:8b:0e: 7f:b5:52:d9:39:1a:33:3d:b9:ca:b6:d7:91:e7:07: cb:20:7e:9f:27:a7:7d:b5:01:8d:df:01:44:fc:c7: 8d:28:05:50:f6:a2:21:32:5e:87:25:6e:d6:11:a3: b5:24:57:d8:c6:9f:2b:57:9f:e2:95:7a:dc:98:80: f5:b8:89:d6:49:0b:b5:1a:01:c9:0a:3f:cb:73:05: f6:f2:85:b8:8a:c3:98:6a:c3:74:d3:e1:f6:c0:45: 69:40:58:ec:a6:b2:6d:07:87:14:ef:59:52:7a:a3: 9f:66:8a:05:3b:d2:88:b5:7e:f3:29:d8:89:a0:8b: c3:f5:28:de:97:aa:d9:76:dd:7b:8e:da:7c:43:44: 3d:0d:9a:04:41:44:d5:f1:d2:78:d1:41:55:e2:9d: dd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:97:3C:59:15:45:55:0F:2D:36:2B:F0:8C:19:5A:66:BB:C6:DD:73 X509v3 Authority Key Identifier: keyid:DC:DA:06:9E:3E:FF:89:56:C0:15:72:81:6A:70:23:51:95:F0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/3NoGnj7_iVbAFXKBanAjUZXwZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3NoGnj7_iVbAFXKBanAjUZXwZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F31/092D2516BE6211EE8C37CB3BC4F9AE02/37D72D7CC17C11EE8391A218C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.196.0/24 163.223.226.0/24 IPv6: 2001:df3:4e40::/48 Signature Algorithm: sha256WithRSAEncryption 3e:8a:8a:a1:b9:06:3f:b0:5e:84:60:c5:fb:76:b1:78:99:e1: 5e:4a:e2:95:5b:05:6b:6b:51:e2:d3:47:96:f0:ac:e1:87:00: 63:0e:0b:52:00:90:9b:5f:f2:49:b7:b7:22:22:6a:9b:68:a7: 62:0c:2f:25:9f:0f:56:fd:64:c7:61:b2:cf:43:ce:06:bf:f9: e1:68:f1:ef:b8:1c:41:10:82:af:2f:84:67:b6:48:0a:69:cb: 69:de:21:f3:66:1e:03:05:d1:3a:ce:8a:f8:a8:e4:d6:2a:e2: c2:a9:bf:ce:54:d1:ac:e3:a7:80:4e:32:7e:2e:80:bf:43:d3: 05:93:b9:4a:c4:86:f3:17:80:65:24:82:70:70:c8:44:9f:ad: ff:30:a6:2a:56:ae:b4:d7:87:81:99:e3:47:07:6c:14:d9:a9: 28:88:7c:54:20:ec:84:7e:36:9f:f9:73:56:9d:4b:83:cd:2d: 0b:f7:45:91:f9:af:0a:59:2f:b7:17:6c:ca:be:69:3b:a5:c5: 11:14:18:b8:33:ec:ff:89:00:8e:7b:ca:75:6d:b9:c3:ef:5c: bf:8d:4c:9f:2d:a9:19:4c:e1:f2:77:9c:73:7e:57:b8:2a:bf: 42:f4:e9:be:f2:64:de:53:20:f0:bc:85:eb:38:53:1b:f9:e7: 95:26:85:7b -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGMzExMTAvBgNVBAUTKERDREEwNjlFM0VGRjg5NTZDMDE1NzI4MTZBNzAyMzUx OTVGMDY3MjUwHhcNMjYwMTA3MDMyMjQ2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTViYS03M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VXRot7oDMMCQ4ZzSDcaHPNXEilYt+ynon31TIdpHceOnTcwpuhWUbp0khuN C51TiYRHU3IXxaEsy6eiQt+cNwmBWzM88TP8M4Xs3hTiCfqth04YDXCHPXLrwKfo 6HSwUAPLRt7Aiw5/tVLZORozPbnKtteR5wfLIH6fJ6d9tQGN3wFE/MeNKAVQ9qIh Ml6HJW7WEaO1JFfYxp8rV5/ilXrcmID1uInWSQu1GgHJCj/LcwX28oW4isOYasN0 0+H2wEVpQFjsprJtB4cU71lSeqOfZooFO9KItX7zKdiJoIvD9Sjel6rZdt17jtp8 Q0Q9DZoEQUTV8dJ40UFV4p3d8wIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFHuXPFkV RVUPLTYr8IwZWma7xt1zMB8GA1UdIwQYMBaAFNzaBp4+/4lWwBVygWpwI1GV8Gcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUYzMS8wOTJEMjUxNkJF NjIxMUVFOEMzN0NCM0JDNEY5QUUwMi8zTm9Hbmo3X2lWYkFGWEtCYW5BalVaWHda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNOb0duajdfaVZiQUZYS0JhbkFqVVpYd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlGMzEvMDkyRDI1MTZCRTYyMTFFRThDMzdDQjNCQzRGOUFFMDIvMzdENzJEN0ND MTdDMTFFRTgzOTFBMjE4QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAJDLEAwQAo9/iMA8EAgACMAkDBwAgAQ3zTkAwDQYJKoZIhvcNAQEL BQADggEBAD6KiqG5Bj+wXoRgxft2sXiZ4V5K4pVbBWtrUeLTR5bwrOGHAGMOC1IA kJtf8km3tyIiaptop2IMLyWfD1b9ZMdhss9Dzga/+eFo8e+4HEEQgq8vhGe2SApp y2neIfNmHgMF0TrOivio5NYq4sKpv85U0azjp4BOMn4ugL9D0wWTuUrEhvMXgGUk gnBwyESfrf8wpipWrrTXh4GZ40cHbBTZqSiIfFQg7IR+Np/5c1adS4PNLQv3RZH5 rwpZL7cXbMq+aTulxREUGLgz7P+JAI57ynVtucPvXL+NTJ8tqRlM4fJ3nHN+V7gq v0L06b7yZN5TIPC8hes4Uxv555UmhXs= -----END CERTIFICATE-----Generated at Sat Mar 28 13:41:38 2026 by rpki-client