$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/10F77754D28311EDB1655152C4F9AE02.roa File: 10F77754D28311EDB1655152C4F9AE02.roa (raw, json) Hash identifier: 49BUIWXY2kRKbxVwv8L7UkKYY+v5irFyHsawrnEYjXc= Subject key identifier: 3D:CA:76:D7:BE:D9:40:7E:38:2B:BE:7F:FB:2E:E7:69:03:7D:BF:AB Certificate issuer: /CN=A91FDD4D/serialNumber=A977932193312DE8F59384F9097F43DD6BC317E1 Certificate serial: 0238 Authority key identifier: A9:77:93:21:93:31:2D:E8:F5:93:84:F9:09:7F:43:DD:6B:C3:17:E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qXeTIZMxLej1k4T5CX9D3WvDF-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/10F77754D28311EDB1655152C4F9AE02.roa Signing time: Wed 04 Mar 2026 16:19:48 +0000 ROA not before: Wed 04 Mar 2026 16:19:48 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137549 IP address blocks: 67.213.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/qXeTIZMxLej1k4T5CX9D3WvDF-E.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/qXeTIZMxLej1k4T5CX9D3WvDF-E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qXeTIZMxLej1k4T5CX9D3WvDF-E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D, serialNumber=A977932193312DE8F59384F9097F43DD6BC317E1 Validity Not Before: Mar 4 16:19:48 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a85ba4-c652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9a:13:0f:c9:7b:95:0e:16:4e:2d:a5:32:5b: 01:72:1b:ce:d8:b5:8e:2e:02:5b:6a:7f:ea:98:4b: 62:12:6b:d1:32:c1:3c:87:fc:a3:d3:3a:6b:62:fb: 7b:d1:e0:29:0d:0c:8c:41:97:57:07:26:26:5b:d4: 24:b8:64:6e:c8:cb:35:70:a7:4f:81:d0:e5:77:29: 31:20:79:c8:45:57:d1:43:97:08:25:cf:06:ce:d8: bb:c0:61:0b:5a:f4:39:01:c6:e2:16:d7:c4:11:8c: 37:92:14:ec:95:a5:2d:a2:28:f9:f7:31:37:44:b3: 38:55:8f:34:9b:aa:77:9f:f3:91:c0:c2:42:b9:3a: 87:a2:fa:b2:b3:bf:77:b9:39:c9:1a:89:1d:66:68: 32:19:2c:61:96:5c:3b:ee:48:e9:d5:e8:65:6f:6c: 20:b1:fa:70:55:54:49:fb:dd:39:d3:bd:15:f2:9f: 2e:32:d6:0c:9f:55:11:9d:39:df:6b:a8:c6:5f:8f: e9:11:b5:4f:45:81:1e:53:3e:45:09:95:7e:4b:62: 7b:61:4c:ac:3b:5b:84:0f:bc:65:86:d0:f2:71:fb: c2:92:de:a5:fe:cb:1a:14:89:25:21:bb:0c:97:d9: 31:b1:be:46:7f:13:64:6f:7b:b8:ab:e1:a0:c2:37: 98:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:CA:76:D7:BE:D9:40:7E:38:2B:BE:7F:FB:2E:E7:69:03:7D:BF:AB X509v3 Authority Key Identifier: keyid:A9:77:93:21:93:31:2D:E8:F5:93:84:F9:09:7F:43:DD:6B:C3:17:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/qXeTIZMxLej1k4T5CX9D3WvDF-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qXeTIZMxLej1k4T5CX9D3WvDF-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/6E94AAFED27D11ED8E9A2580C4F9AE02/10F77754D28311EDB1655152C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 67.213.140.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:56:27:17:61:20:1e:a1:44:c6:14:08:d5:85:b7:56:23:14: ec:cc:6f:16:72:b2:39:4e:73:6d:b8:6f:ed:85:3b:dd:e1:2d: ec:6d:a6:a2:1d:b8:c0:4d:ea:17:e2:3a:ab:59:70:d5:56:5d: c5:e6:c0:26:be:ba:2d:41:24:0f:0f:d6:d5:cf:34:be:d3:94: 7e:34:16:4f:0f:e2:f7:5e:33:d2:e2:ca:78:3d:e1:b4:f7:5e: 3f:1f:1d:ae:4d:01:2f:4a:e3:b1:33:45:55:53:96:50:24:88: 23:cc:80:de:74:8c:a0:2f:3a:bf:ce:57:2c:ef:3b:f9:cb:68: 94:51:f4:a7:27:9a:7f:d7:17:93:ba:f7:5b:b0:81:ba:a9:48: 7d:7b:8c:7b:29:3c:97:26:7e:50:7c:e0:54:de:70:0b:1a:b9: 95:ba:31:e1:85:e1:96:f2:59:68:e4:eb:24:71:a8:b0:dd:76: 4d:b7:f7:00:57:45:87:03:65:71:cc:26:7a:09:42:69:0d:3a: 0a:87:32:98:f5:43:d5:4c:6f:66:af:d8:59:06:17:6c:42:9f: bc:20:2f:c4:6c:65:97:9b:f0:17:a6:e6:87:92:f0:a5:56:5e: 10:56:9d:51:2c:1e:6d:8f:49:36:6f:12:93:1b:f4:2c:df:43: 1a:35:6f:a0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKEE5Nzc5MzIxOTMzMTJERThGNTkzODRGOTA5N0Y0M0RE NkJDMzE3RTEwHhcNMjYwMzA0MTYxOTQ4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE4NWJhNC1jNjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnZoTD8l7lQ4WTi2lMlsBchvO2LWOLgJban/qmEtiEmvRMsE8h/yj0zprYvt7 0eApDQyMQZdXByYmW9QkuGRuyMs1cKdPgdDldykxIHnIRVfRQ5cIJc8Gzti7wGEL WvQ5AcbiFtfEEYw3khTslaUtoij59zE3RLM4VY80m6p3n/ORwMJCuTqHovqys793 uTnJGokdZmgyGSxhllw77kjp1ehlb2wgsfpwVVRJ+905070V8p8uMtYMn1URnTnf a6jGX4/pEbVPRYEeUz5FCZV+S2J7YUysO1uED7xlhtDycfvCkt6l/ssaFIklIbsM l9kxsb5GfxNkb3u4q+GgwjeYfwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFD3Kdte+ 2UB+OCu+f/su52kDfb+rMB8GA1UdIwQYMBaAFKl3kyGTMS3o9ZOE+Ql/Q91rwxfh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC82RTk0QUFGRUQy N0QxMUVEOEU5QTI1ODBDNEY5QUUwMi9xWGVUSVpNeExlajFrNFQ1Q1g5RDNXdkRG LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FYZVRJWk14TGVqMWs0VDVDWDlEM1d2REYtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvNkU5NEFBRkVEMjdEMTFFRDhFOUEyNTgwQzRGOUFFMDIvMTBGNzc3NTRE MjgzMTFFREIxNjU1MTUyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCQ9WMMA0GCSqGSIb3DQEBCwUAA4IBAQCKVicXYSAeoUTGFAjVhbdW IxTszG8WcrI5TnNtuG/thTvd4S3sbaaiHbjATeoX4jqrWXDVVl3F5sAmvrotQSQP D9bVzzS+05R+NBZPD+L3XjPS4sp4PeG0914/Hx2uTQEvSuOxM0VVU5ZQJIgjzIDe dIygLzq/zlcs7zv5y2iUUfSnJ5p/1xeTuvdbsIG6qUh9e4x7KTyXJn5QfOBU3nAL GrmVujHhheGW8llo5Oskcaiw3XZNt/cAV0WHA2VxzCZ6CUJpDToKhzKY9UPVTG9m r9hZBhdsQp+8IC/EbGWXm/AXpuaHkvClVl4QVp1RLB5tj0k2bxKTG/Qs30MaNW+g -----END CERTIFICATE-----Generated at Thu Mar 26 08:46:29 2026 by rpki-client