$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa File: 0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa (raw, json) Hash identifier: 0xjrhrzhcF2TP7hbGCfIkkv1d3ejOyQjTSqFxvzesSU= Subject key identifier: 9F:FA:EF:BD:A7:1B:92:A2:EC:E6:43:DB:4B:B5:E6:F9:DF:58:3D:7A Certificate issuer: /CN=A917B1EE/serialNumber=6B3BE8F34CEA694B0D64BCF85785D917443695D4 Certificate serial: 01BA Authority key identifier: 6B:3B:E8:F3:4C:EA:69:4B:0D:64:BC:F8:57:85:D9:17:44:36:95:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa Signing time: Sun 29 Mar 2026 04:38:07 +0000 ROA not before: Sun 29 Mar 2026 04:38:07 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 152193 IP address blocks: 36.50.250.0/23 maxlen: 23 36.50.250.0/24 maxlen: 24 36.50.251.0/24 maxlen: 24 2401:5f60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.crl rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 03:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1EE, serialNumber=6B3BE8F34CEA694B0D64BCF85785D917443695D4 Validity Not Before: Mar 29 04:38:07 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69c8acaf-ca52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:94:51:fd:7e:4d:8a:0e:71:81:7f:da:57:b6: 39:2a:c6:26:63:62:dd:39:1b:bf:1a:39:50:2b:ea: 9c:5f:5f:cb:b1:93:11:e1:82:69:2c:ed:90:c9:f1: 74:56:45:6a:be:96:49:df:ac:6a:36:3f:a6:d6:a5: a5:d1:fc:1d:79:60:86:b7:b4:0d:00:c0:27:1e:5f: dc:4c:72:d7:b1:7c:01:1a:91:5c:25:91:e1:13:64: 85:08:b1:b9:01:ac:e2:f3:06:3a:3a:8b:4b:08:0b: d9:ae:ba:9d:48:8c:28:66:61:b5:9e:7c:3e:08:6a: 2d:fd:cc:a8:8a:b2:ef:35:55:a9:53:aa:20:1b:db: f8:b7:d3:7d:a0:ad:09:a7:b1:ae:38:e2:65:70:6c: 6f:f8:e8:f6:af:f6:25:2b:4e:62:ed:7e:96:eb:94: a5:d6:0e:35:1e:93:38:56:d8:85:8c:16:c7:c6:d8: f9:d6:31:2b:c2:4f:fc:d1:b8:ba:df:5c:da:a4:90: dc:f1:5d:02:12:36:cd:6d:7e:78:02:bc:a4:e3:f4: e2:08:aa:a7:ce:50:b3:af:7d:6c:d9:98:46:d6:cb: 4f:09:62:f5:ab:8b:22:89:a7:c8:81:84:12:c0:f1: 60:2f:92:24:69:89:00:b3:73:32:7d:18:63:79:d9: e7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:FA:EF:BD:A7:1B:92:A2:EC:E6:43:DB:4B:B5:E6:F9:DF:58:3D:7A X509v3 Authority Key Identifier: keyid:6B:3B:E8:F3:4C:EA:69:4B:0D:64:BC:F8:57:85:D9:17:44:36:95:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/azvo80zqaUsNZLz4V4XZF0Q2ldQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/azvo80zqaUsNZLz4V4XZF0Q2ldQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1EE/DE6A6130A55D11EEB8E9CE10C4F9AE02/0F7A0CD4C72E11EEAA6B423BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 36.50.250.0/23 IPv6: 2401:5f60::/32 Signature Algorithm: sha256WithRSAEncryption 58:f7:8a:05:f0:86:af:f3:5e:74:c3:5f:8e:ff:d3:97:6f:cb: 87:ef:51:c4:cd:5c:26:d8:38:f0:42:5a:35:89:31:1d:1f:8c: f7:19:bf:ae:7c:ba:9c:92:0e:1c:3d:fa:94:76:f0:e3:ee:ef: 52:f7:af:91:3c:a2:4f:4f:75:98:a6:3a:c5:9a:99:c2:ee:4b: 4f:a7:05:a4:fa:1c:31:48:7d:2e:4a:c9:bd:38:9f:14:d1:96: 71:c3:9b:30:fb:13:27:ad:7e:47:4f:70:75:a5:bc:3b:9b:ef: 9e:f7:a8:b1:c5:97:0d:0d:01:68:ae:f8:a5:39:11:d7:69:17: aa:1f:c1:19:62:86:32:5b:4c:40:b9:10:e6:da:98:f8:a4:bf: 63:92:f7:55:db:3c:9d:f2:9f:82:76:7d:c7:c6:01:01:78:ea: 0c:f1:06:27:e9:c1:98:88:f2:da:96:ad:e7:d8:24:f8:a3:ac: 78:ef:47:cd:ea:6a:11:b6:89:74:6f:11:12:07:96:41:fc:27: c8:02:31:63:c5:79:52:fc:fe:77:04:8b:34:fe:e4:41:6b:9d: 8e:09:2e:b2:d2:03:9f:14:7b:08:75:1f:a1:da:25:04:94:22: f0:fa:cc:cd:71:8b:fb:e9:f9:09:a2:e8:21:dd:c7:fd:bc:56: d9:58:89:7c -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxRUUxMTAvBgNVBAUTKDZCM0JFOEYzNENFQTY5NEIwRDY0QkNGODU3ODVEOTE3 NDQzNjk1RDQwHhcNMjYwMzI5MDQzODA3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4YWNhZi1jYTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZRR/X5Nig5xgX/aV7Y5KsYmY2LdORu/GjlQK+qcX1/LsZMR4YJpLO2QyfF0 VkVqvpZJ36xqNj+m1qWl0fwdeWCGt7QNAMAnHl/cTHLXsXwBGpFcJZHhE2SFCLG5 Aazi8wY6OotLCAvZrrqdSIwoZmG1nnw+CGot/cyoirLvNVWpU6ogG9v4t9N9oK0J p7GuOOJlcGxv+Oj2r/YlK05i7X6W65Sl1g41HpM4VtiFjBbHxtj51jErwk/80bi6 31zapJDc8V0CEjbNbX54Aryk4/TiCKqnzlCzr31s2ZhG1stPCWL1q4siiafIgYQS wPFgL5IkaYkAs3MyfRhjednndQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFJ/6772n G5Ki7OZD20u15vnfWD16MB8GA1UdIwQYMBaAFGs76PNM6mlLDWS8+FeF2RdENpXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFFRS9ERTZBNjEzMEE1 NUQxMUVFQjhFOUNFMTBDNEY5QUUwMi9henZvODB6cWFVc05aTHo0VjRYWkYwUTJs ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F6dm84MHpxYVVzTlpMejRWNFhaRjBRMmxkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0IxRUUvREU2QTYxMzBBNTVEMTFFRUI4RTlDRTEwQzRGOUFFMDIvMEY3QTBDRDRD NzJFMTFFRUFBNkI0MjNCQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBJDL6MA0EAgACMAcDBQAkAV9gMA0GCSqGSIb3DQEBCwUAA4IBAQBY 94oF8Iav8150w1+O/9OXb8uH71HEzVwm2DjwQlo1iTEdH4z3Gb+ufLqckg4cPfqU dvDj7u9S96+RPKJPT3WYpjrFmpnC7ktPpwWk+hwxSH0uSsm9OJ8U0ZZxw5sw+xMn rX5HT3B1pbw7m++e96ixxZcNDQForvilORHXaReqH8EZYoYyW0xAuRDm2pj4pL9j kvdV2zyd8p+Cdn3HxgEBeOoM8QYn6cGYiPLalq3n2CT4o6x470fN6moRtol0bxES B5ZB/CfIAjFjxXlS/P53BIs0/uRBa52OCS6y0gOfFHsIdR+h2iUElCLw+szNcYv7 6fkJough3cf9vFbZWIl8 -----END CERTIFICATE-----Generated at Mon Apr 6 10:09:43 2026 by rpki-client