$ rpki-client -vvf rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/4B3A3F3CC6DD11EFA7A63533C4F9AE02.roa File: 4B3A3F3CC6DD11EFA7A63533C4F9AE02.roa (raw, json) Hash identifier: p6zGTgqZJ7iiiCzsm415AfpPsLOlXyGxbt61Izp1Z6U= Subject key identifier: C3:37:70:68:06:86:5D:2C:09:BC:D6:41:98:FE:98:70:39:E7:4C:C3 Certificate issuer: /CN=A91A192D/serialNumber=A81D0D61F7B730DDB742CC48ADD88A04D46FD024 Certificate serial: 01F4 Authority key identifier: A8:1D:0D:61:F7:B7:30:DD:B7:42:CC:48:AD:D8:8A:04:D4:6F:D0:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0NYfe3MN23QsxIrdiKBNRv0CQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/4B3A3F3CC6DD11EFA7A63533C4F9AE02.roa Signing time: Tue 31 Mar 2026 04:36:17 +0000 ROA not before: Tue 31 Mar 2026 04:36:17 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 140934 IP address blocks: 36.50.240.0/23 maxlen: 31 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/qB0NYfe3MN23QsxIrdiKBNRv0CQ.crl rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/qB0NYfe3MN23QsxIrdiKBNRv0CQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0NYfe3MN23QsxIrdiKBNRv0CQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:32:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A192D, serialNumber=A81D0D61F7B730DDB742CC48ADD88A04D46FD024 Validity Not Before: Mar 31 04:36:17 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69cb4f41-c104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:34:27:7b:ab:f8:66:53:7a:c3:d5:61:ba:48: c2:a2:64:91:86:06:cf:d8:60:a4:7c:d8:50:00:22: 46:4d:f7:37:e9:9e:5f:24:b6:5a:2d:e7:39:34:1f: a6:ea:0b:39:c7:d6:c8:cf:8b:65:75:d3:74:bb:b8: bc:e4:78:c4:99:99:8d:4f:65:26:a2:5d:77:9d:49: c5:7e:79:19:55:fe:49:67:99:f3:dc:1e:da:47:a0: a5:e3:f8:b2:1c:57:7b:a1:be:ae:4c:3b:89:c8:d5: 16:63:92:ac:13:a7:6c:4a:7c:0f:01:62:43:7f:d3: 63:e5:89:bc:5c:53:73:70:4e:37:14:bc:bf:02:70: e2:66:a8:0d:82:db:d6:78:46:78:f7:8a:f6:0d:42: a8:f0:4d:05:06:00:d1:fd:e4:4f:51:e0:03:6f:dd: c8:53:31:0e:2c:b3:1e:25:51:6f:ab:8d:8c:96:29: 10:cb:5a:71:3b:e1:6e:c1:91:3b:03:6f:0d:92:8f: 5f:03:9d:19:2e:cb:c3:e8:89:88:2c:f8:b9:74:ba: 0b:3e:7a:de:c2:48:48:3a:00:33:5a:04:64:ef:cf: bf:42:89:22:de:78:6a:f4:b7:19:fd:69:4c:e7:70: b2:72:29:02:fc:9f:f2:62:82:5d:d1:9f:24:78:fb: 7d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:37:70:68:06:86:5D:2C:09:BC:D6:41:98:FE:98:70:39:E7:4C:C3 X509v3 Authority Key Identifier: keyid:A8:1D:0D:61:F7:B7:30:DD:B7:42:CC:48:AD:D8:8A:04:D4:6F:D0:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/qB0NYfe3MN23QsxIrdiKBNRv0CQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0NYfe3MN23QsxIrdiKBNRv0CQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A192D/CC67D252A4BC11EE9E5A5D72C4F9AE02/4B3A3F3CC6DD11EFA7A63533C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.240.0/23 Signature Algorithm: sha256WithRSAEncryption b7:4d:a7:4e:39:fe:97:43:29:4d:f4:f2:90:fe:f6:7a:b2:0e: 57:be:28:af:5e:f4:a4:5a:ca:c4:a2:23:d8:8b:03:72:7a:be: a6:f0:03:42:06:60:0c:5d:e3:ae:a1:d8:67:57:24:7b:ff:6a: 2e:41:18:8b:de:f5:2f:00:6f:57:6e:bc:36:02:1c:3b:13:7b: 69:e5:84:d1:de:36:86:b1:2f:13:98:63:b9:b9:f4:3e:d4:5f: 90:f5:16:05:b3:7b:c3:4d:6f:6b:db:72:11:47:ad:fd:50:b8: 3b:bb:1d:77:57:2c:36:0c:36:0a:de:78:41:d3:aa:da:4e:47: d8:cc:5e:ad:99:36:d9:a9:d1:b4:cb:dc:54:60:10:d6:11:ab: 6f:a9:e4:f3:8c:f7:c0:c1:6e:f8:86:8c:32:ad:2e:ee:8d:ca: 6f:87:4a:5b:d3:ea:4d:01:2e:dc:e8:27:b8:f3:fc:51:69:e7: d8:20:aa:5a:a6:e9:28:65:cb:ff:81:b4:14:db:17:17:d6:61: 57:97:c9:48:ac:71:f8:de:0c:e0:6f:d3:27:dd:66:de:89:b3: bb:21:8c:19:b9:ec:56:0c:42:49:02:51:ee:3f:90:d9:d3:9a: c6:fc:cf:ff:f3:6a:9b:e4:de:74:aa:68:85:ca:7f:75:47:2c: f2:20:1f:26 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE5MkQxMTAvBgNVBAUTKEE4MUQwRDYxRjdCNzMwRERCNzQyQ0M0OEFERDg4QTA0 RDQ2RkQwMjQwHhcNMjYwMzMxMDQzNjE3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiNGY0MS1jMTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjQne6v4ZlN6w9VhukjComSRhgbP2GCkfNhQACJGTfc36Z5fJLZaLec5NB+m 6gs5x9bIz4tlddN0u7i85HjEmZmNT2Umol13nUnFfnkZVf5JZ5nz3B7aR6Cl4/iy HFd7ob6uTDuJyNUWY5KsE6dsSnwPAWJDf9Nj5Ym8XFNzcE43FLy/AnDiZqgNgtvW eEZ494r2DUKo8E0FBgDR/eRPUeADb93IUzEOLLMeJVFvq42MlikQy1pxO+FuwZE7 A28Nko9fA50ZLsvD6ImILPi5dLoLPnrewkhIOgAzWgRk78+/Qoki3nhq9LcZ/WlM 53CycikC/J/yYoJd0Z8kePt9FwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMM3cGgG hl0sCbzWQZj+mHA550zDMB8GA1UdIwQYMBaAFKgdDWH3tzDdt0LMSK3YigTUb9Ak MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTkyRC9DQzY3RDI1MkE0 QkMxMUVFOUU1QTVENzJDNEY5QUUwMi9xQjBOWWZlM01OMjNRc3hJcmRpS0JOUnYw Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FCME5ZZmUzTU4yM1FzeElyZGlLQk5SdjBDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE5MkQvQ0M2N0QyNTJBNEJDMTFFRTlFNUE1RDcyQzRGOUFFMDIvNEIzQTNGM0ND NkREMTFFRkE3QTYzNTMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBJDLwMA0GCSqGSIb3DQEBCwUAA4IBAQC3TadOOf6XQylN9PKQ/vZ6 sg5XviivXvSkWsrEoiPYiwNyer6m8ANCBmAMXeOuodhnVyR7/2ouQRiL3vUvAG9X brw2Ahw7E3tp5YTR3jaGsS8TmGO5ufQ+1F+Q9RYFs3vDTW9r23IRR639ULg7ux13 Vyw2DDYK3nhB06raTkfYzF6tmTbZqdG0y9xUYBDWEatvqeTzjPfAwW74howyrS7u jcpvh0pb0+pNAS7c6Ce48/xRaefYIKpapukoZcv/gbQU2xcX1mFXl8lIrHH43gzg b9Mn3WbeibO7IYwZuexWDEJJAlHuP5DZ05rG/M//82qb5N50qmiFyn91RyzyIB8m -----END CERTIFICATE-----Generated at Sun Apr 5 21:08:28 2026 by rpki-client