$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/CA5B7DA48ECA11EEA3901581C4F9AE02.roa File: CA5B7DA48ECA11EEA3901581C4F9AE02.roa (raw, json) Hash identifier: yviocZTIT/QN9ZH5Z7jImoFYZZ1ZtuGiFiBRlnTY9io= Subject key identifier: FB:D0:BD:7C:5E:84:CC:A9:67:9B:2C:EC:B3:C9:2A:9E:98:CA:FE:DB Certificate issuer: /CN=A91FB8C8/serialNumber=369B3E9B7B66E8F5BB979A6E2F2E7AACF500D3F1 Certificate serial: 01B0 Authority key identifier: 36:9B:3E:9B:7B:66:E8:F5:BB:97:9A:6E:2F:2E:7A:AC:F5:00:D3:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nps-m3tm6PW7l5puLy56rPUA0_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/CA5B7DA48ECA11EEA3901581C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:26:49 +0000 ROA not before: Tue 09 Dec 2025 02:10:53 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 134564 IP address blocks: 36.50.30.0/24 maxlen: 24 163.61.86.0/24 maxlen: 24 2001:df3:3240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/Nps-m3tm6PW7l5puLy56rPUA0_E.crl rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/Nps-m3tm6PW7l5puLy56rPUA0_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nps-m3tm6PW7l5puLy56rPUA0_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 03:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB8C8, serialNumber=369B3E9B7B66E8F5BB979A6E2F2E7AACF500D3F1 Validity Not Before: Dec 9 02:10:53 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41469-81b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:88:89:d9:f0:71:b9:b0:0e:c0:b2:3a:6e:6d: dd:20:02:23:45:10:a1:2a:e2:e1:48:78:c9:b1:c5: 9a:cc:1a:2a:63:02:0a:93:ef:11:30:3c:9c:56:83: 85:c4:6d:af:4e:5c:10:4d:70:e2:e2:f7:b1:6d:d0: 95:34:3a:d5:fd:73:3c:7c:ff:52:4d:c8:47:2e:ed: c4:85:f4:d3:29:f2:a6:ec:df:b2:bf:4a:84:47:d9: c8:2d:55:c4:e0:6b:2b:50:ff:e5:03:a9:e1:61:86: 86:cf:21:a5:d1:4b:29:f7:e8:45:1a:3d:fc:01:f4: 15:10:cf:f9:83:e6:03:5e:27:e7:57:87:a6:cc:c4: 65:ab:a5:e2:be:64:b9:ed:47:08:86:ee:db:ad:86: e6:8b:6b:9f:ac:ed:f6:6f:60:dc:b7:de:ae:5e:3f: 98:e9:e3:46:45:e2:3d:e6:9c:a8:33:ad:30:75:e8: ad:1a:ca:2a:e5:bf:dd:cf:05:b0:07:d8:2c:10:df: ad:fb:31:d3:ac:ee:13:59:bc:76:37:1b:9f:92:71: 71:08:a5:36:01:f0:d0:43:8e:b7:5a:9b:43:3b:99: 81:e9:d1:fc:5e:f6:c7:34:25:30:f9:00:cd:fc:b7: b4:d9:b6:b4:8a:ad:e5:74:2c:08:00:1c:6f:ea:73: dd:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D0:BD:7C:5E:84:CC:A9:67:9B:2C:EC:B3:C9:2A:9E:98:CA:FE:DB X509v3 Authority Key Identifier: keyid:36:9B:3E:9B:7B:66:E8:F5:BB:97:9A:6E:2F:2E:7A:AC:F5:00:D3:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/Nps-m3tm6PW7l5puLy56rPUA0_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nps-m3tm6PW7l5puLy56rPUA0_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB8C8/C44C04528EC911EE9F8E447FC4F9AE02/CA5B7DA48ECA11EEA3901581C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.30.0/24 163.61.86.0/24 IPv6: 2001:df3:3240::/48 Signature Algorithm: sha256WithRSAEncryption a3:db:e6:7a:5f:8c:32:12:39:22:18:15:df:67:be:4e:bb:6d: c0:a1:b5:ee:61:86:1c:99:22:de:72:83:37:6c:90:a5:0f:1b: 73:8f:b2:b1:63:fc:7f:8e:25:78:94:17:85:e2:fe:23:a2:42: 2f:3d:e2:52:9b:e1:e9:ce:9b:35:0c:ea:77:a3:f1:98:42:71: 88:d5:ad:9f:c7:72:34:2e:af:77:45:31:6d:02:a8:6f:29:df: a4:39:95:73:73:68:10:0f:26:9f:12:b6:18:a7:13:10:98:2d: 8a:1b:6a:f8:68:9c:24:3f:80:81:67:75:29:e2:0f:b5:a0:a2: fc:e4:76:d1:dd:32:19:a6:cc:68:b3:1b:1c:c7:23:02:9c:e9: 9e:3c:0b:79:4e:93:56:e6:67:48:af:c9:0e:f5:ac:75:46:1d: 7f:b7:a5:e2:22:98:56:6f:ad:bd:fb:56:7b:e8:b9:ab:6b:28: 18:8a:9f:ee:74:e4:26:a2:ce:bb:29:6c:a9:1e:1c:9c:0a:f0: 47:88:23:ce:a9:55:0b:a6:90:f6:33:1e:66:47:0d:68:f5:c7: b6:14:9a:e3:16:e1:9f:1f:04:0f:29:b3:2a:ec:c3:a3:43:2f: b4:ff:c7:c6:18:e4:8d:60:54:90:ce:f7:6c:f8:f1:0e:66:57: 6b:84:67:31 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI4QzgxMTAvBgNVBAUTKDM2OUIzRTlCN0I2NkU4RjVCQjk3OUE2RTJGMkU3QUFD RjUwMEQzRjEwHhcNMjUxMjA5MDIxMDUzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTQ2OS04MWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYiJ2fBxubAOwLI6bm3dIAIjRRChKuLhSHjJscWazBoqYwIKk+8RMDycVoOF xG2vTlwQTXDi4vexbdCVNDrV/XM8fP9STchHLu3EhfTTKfKm7N+yv0qER9nILVXE 4GsrUP/lA6nhYYaGzyGl0Usp9+hFGj38AfQVEM/5g+YDXifnV4emzMRlq6XivmS5 7UcIhu7brYbmi2ufrO32b2Dct96uXj+Y6eNGReI95pyoM60wdeitGsoq5b/dzwWw B9gsEN+t+zHTrO4TWbx2NxufknFxCKU2AfDQQ463WptDO5mB6dH8XvbHNCUw+QDN /Le02ba0iq3ldCwIABxv6nPdcQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFPvQvXxe hMypZ5ss7LPJKp6Yyv7bMB8GA1UdIwQYMBaAFDabPpt7Zuj1u5eabi8ueqz1ANPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjhDOC9DNDRDMDQ1MjhF QzkxMUVFOUY4RTQ0N0ZDNEY5QUUwMi9OcHMtbTN0bTZQVzdsNXB1THk1NnJQVUEw X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wcy1tM3RtNlBXN2w1cHVMeTU2clBVQTBfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI4QzgvQzQ0QzA0NTI4RUM5MTFFRTlGOEU0NDdGQzRGOUFFMDIvQ0E1QjdEQTQ4 RUNBMTFFRUEzOTAxNTgxQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAJDIeAwQAoz1WMA8EAgACMAkDBwAgAQ3zMkAwDQYJKoZIhvcNAQEL BQADggEBAKPb5npfjDISOSIYFd9nvk67bcChte5hhhyZIt5ygzdskKUPG3OPsrFj /H+OJXiUF4Xi/iOiQi894lKb4enOmzUM6nej8ZhCcYjVrZ/HcjQur3dFMW0CqG8p 36Q5lXNzaBAPJp8SthinExCYLYobavhonCQ/gIFndSniD7WgovzkdtHdMhmmzGiz GxzHIwKc6Z48C3lOk1bmZ0ivyQ71rHVGHX+3peIimFZvrb37VnvouatrKBiKn+50 5CaizrspbKkeHJwK8EeII86pVQumkPYzHmZHDWj1x7YUmuMW4Z8fBA8psyrsw6ND L7T/x8YY5I1gVJDO92z48Q5mV2uEZzE= -----END CERTIFICATE-----Generated at Sat Mar 28 13:39:52 2026 by rpki-client