$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AFDE92321F5A11F0BA7E6961C4F9AE02.roa File: AFDE92321F5A11F0BA7E6961C4F9AE02.roa (raw, json) Hash identifier: 0WUhBcrZvRWIxNkRVA7Hsg9MfdhdUkLTVgCI3Sna5Fs= Subject key identifier: 34:FA:88:BE:77:DD:B9:73:AD:D9:BD:C5:26:B7:E9:DA:D1:1A:33:71 Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 046E Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AFDE92321F5A11F0BA7E6961C4F9AE02.roa Signing time: Sat 21 Mar 2026 03:36:13 +0000 ROA not before: Sat 21 Mar 2026 03:36:13 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 34927 IP address blocks: 163.128.92.0/23 maxlen: 24 2400:16e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 23:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Mar 21 03:36:13 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69be122d-4a15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:22:d8:90:5f:5f:f6:24:49:02:ec:a9:2c:98: 1c:40:aa:f2:85:f2:72:28:2e:31:48:a1:15:3b:cc: 51:de:06:26:74:47:7c:c7:a6:0e:c9:47:76:ef:92: 5b:54:c2:c3:54:81:42:83:1c:36:6e:5c:3b:0b:f0: 33:f7:4d:55:04:e2:65:61:68:86:98:93:ec:76:e5: 51:84:bb:95:81:80:b6:b3:da:b0:d6:40:09:31:b7: f1:a0:71:45:f7:01:12:7b:ad:c8:00:3b:ee:77:c8: 76:81:65:13:bb:52:75:22:20:d4:e0:fe:a0:31:50: 9e:d1:26:1d:5e:ca:f8:74:20:06:af:b2:8d:1e:40: 53:da:e5:e7:1a:91:fa:d0:1d:3a:4f:77:b6:83:8b: 3b:82:d6:d0:3f:cb:43:2e:e3:6c:24:9d:3f:a3:b1: ab:e9:06:dc:4b:5f:03:47:8f:bc:c7:a1:cb:4e:33: ee:c6:de:21:69:46:d1:0f:75:45:3d:a2:58:2a:38: 75:5c:4d:3f:0c:f7:1d:20:17:02:66:8c:24:6f:11: 0f:fa:28:49:3c:b4:89:55:71:df:f0:ad:76:eb:31: 10:e5:bb:71:46:b5:76:42:d6:9e:e1:a4:79:d8:94: cf:48:25:c2:32:a1:e6:bc:73:bd:36:f6:39:62:a5: 88:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:FA:88:BE:77:DD:B9:73:AD:D9:BD:C5:26:B7:E9:DA:D1:1A:33:71 X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AFDE92321F5A11F0BA7E6961C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.128.92.0/23 IPv6: 2400:16e0::/48 Signature Algorithm: sha256WithRSAEncryption 00:08:76:f7:ac:fe:0a:de:52:9e:94:77:2a:4f:0d:e6:c5:fb: 3d:3b:73:f2:13:da:1e:ef:bb:aa:f1:a8:e3:aa:3b:2d:f4:a6: e3:e5:c4:8b:05:f3:b6:d9:02:a6:73:6c:52:c8:56:3d:78:1d: da:4c:1a:bc:44:88:8c:b2:76:5d:e0:97:2f:d4:de:64:39:99: 95:69:cc:e6:94:3e:70:a5:59:cb:d7:2f:27:37:b2:22:4d:ea: e8:d2:71:41:30:5f:34:97:a8:44:57:23:58:d9:8d:3d:e2:23: 9f:65:a1:2a:00:f9:da:4d:82:2a:a2:d6:4f:be:38:97:48:07: 55:ef:5a:c6:30:c9:69:80:c7:96:e3:4a:71:4b:ca:21:6b:5e: b2:78:4d:70:85:ae:21:cd:02:81:a5:69:8f:f0:42:e3:26:77: 91:65:45:0e:e0:97:da:c6:81:f3:a4:71:df:2e:1f:36:94:8c: 68:dc:9a:af:39:c5:51:0a:2e:ba:b6:d3:a4:75:76:d8:b9:ab: 94:fe:64:aa:d2:8e:73:ed:ca:2e:44:04:1a:96:b4:4e:46:fc: a5:b5:6c:c7:73:e3:ab:fb:83:25:e8:54:f7:7a:53:6d:89:14: ba:a7:0e:85:16:e3:72:b9:da:f7:9c:b1:3c:3f:ce:51:a2:b5: 08:f4:b5:7f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjYwMzIxMDMzNjEzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWJlMTIyZC00YTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnyLYkF9f9iRJAuypLJgcQKryhfJyKC4xSKEVO8xR3gYmdEd8x6YOyUd275Jb VMLDVIFCgxw2blw7C/Az901VBOJlYWiGmJPsduVRhLuVgYC2s9qw1kAJMbfxoHFF 9wESe63IADvud8h2gWUTu1J1IiDU4P6gMVCe0SYdXsr4dCAGr7KNHkBT2uXnGpH6 0B06T3e2g4s7gtbQP8tDLuNsJJ0/o7Gr6QbcS18DR4+8x6HLTjPuxt4haUbRD3VF PaJYKjh1XE0/DPcdIBcCZowkbxEP+ihJPLSJVXHf8K126zEQ5btxRrV2Qtae4aR5 2JTPSCXCMqHmvHO9NvY5YqWIywIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFDT6iL53 3blzrdm9xSa36drRGjNxMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4QzkvNDBFMEMwRUU5MzZDMTFFQ0JEQzExQTIwQzRGOUFFMDIvQUZERTkyMzIx RjVBMTFGMEJBN0U2OTYxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo4BcMA8EAgACMAkDBwAkABbgAAAwDQYJKoZIhvcNAQELBQADggEB AAAIdves/greUp6UdypPDebF+z07c/IT2h7vu6rxqOOqOy30puPlxIsF87bZAqZz bFLIVj14HdpMGrxEiIyydl3gly/U3mQ5mZVpzOaUPnClWcvXLyc3siJN6ujScUEw XzSXqERXI1jZjT3iI59loSoA+dpNgiqi1k++OJdIB1XvWsYwyWmAx5bjSnFLyiFr XrJ4TXCFriHNAoGlaY/wQuMmd5FlRQ7gl9rGgfOkcd8uHzaUjGjcmq85xVEKLrq2 06R1dti5q5T+ZKrSjnPtyi5EBBqWtE5G/KW1bMdz46v7gyXoVPd6U22JFLqnDoUW 43K52vecsTw/zlGitQj0tX8= -----END CERTIFICATE-----Generated at Thu Mar 26 13:07:36 2026 by rpki-client