$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa File: 7A58C8D6BBEA11EA8DF46778C4F9AE02.roa (raw, json) Hash identifier: ozYdcypfMCZyOHk5qYBu5zAL7TAlhpoz1aafR9o/eV8= Subject key identifier: B0:70:BD:7D:86:ED:27:E4:76:4B:7F:F7:F6:9A:8D:52:74:D2:1B:0E Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 37B1 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa Signing time: Thu 12 Mar 2026 06:02:20 +0000 ROA not before: Thu 12 Mar 2026 06:02:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132165 IP address blocks: 39.34.128.0/18 maxlen: 24 59.103.138.0/23 maxlen: 24 59.103.140.0/22 maxlen: 24 59.103.192.0/19 maxlen: 24 119.152.40.0/24 maxlen: 24 119.152.41.0/24 maxlen: 24 119.152.42.0/24 maxlen: 24 119.152.43.0/24 maxlen: 24 119.152.44.0/24 maxlen: 24 119.152.224.0/20 maxlen: 24 119.157.64.0/20 maxlen: 24 119.157.80.0/20 maxlen: 24 119.158.64.0/24 maxlen: 24 182.189.0.0/17 maxlen: 24 182.189.192.0/18 maxlen: 24 182.190.96.0/20 maxlen: 24 182.190.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14257 (0x37b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 12 06:02:20 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69b256ec-b6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:70:a6:a6:b1:3c:a5:88:96:b6:d0:62:92:64: 62:a9:a8:ea:42:04:69:d8:bc:8e:d7:b2:8c:f8:6e: 8b:aa:43:20:31:de:b3:c8:d5:75:8c:31:99:d2:09: b5:5b:03:3b:ca:31:b8:76:7e:50:27:fe:e9:fd:90: 13:bb:90:b4:c6:29:37:bd:3d:fb:b8:bd:e3:65:7d: fa:b1:cf:90:a5:ee:00:55:56:de:05:75:07:aa:a4: 92:58:38:b5:57:59:a7:67:a5:e0:18:9f:83:fc:e1: b0:e0:7a:49:5c:fd:dc:de:ee:9a:61:13:a7:f7:64: 23:62:2f:64:e5:ef:f6:55:fb:8e:08:aa:a0:b7:2d: 0b:42:d7:a9:e0:bf:51:f9:a6:9a:9a:8c:05:1d:0d: 96:71:85:ad:cb:73:24:24:7c:60:e8:a2:23:98:2b: 94:79:2c:c2:63:db:51:39:c5:e3:6e:76:05:c9:3f: cf:2b:30:20:5e:f2:13:27:52:16:fa:c2:46:7b:a8: db:12:c3:08:4c:65:b1:2c:ad:cd:6b:0e:88:ba:71: be:86:a5:bb:cd:bc:16:7b:aa:ac:ec:0b:bc:5b:21: 6b:93:a7:4d:9b:eb:85:2a:d3:76:38:bd:0f:ac:a6: 13:16:75:2a:2c:1f:5f:15:c0:1b:fa:7b:eb:d1:e5: 0b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:70:BD:7D:86:ED:27:E4:76:4B:7F:F7:F6:9A:8D:52:74:D2:1B:0E X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7A58C8D6BBEA11EA8DF46778C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.34.128.0/18 59.103.138.0-59.103.143.255 59.103.192.0/19 119.152.40.0-119.152.44.255 119.152.224.0/20 119.157.64.0/19 119.158.64.0/24 182.189.0.0/17 182.189.192.0/18 182.190.96.0/20 182.190.192.0/19 Signature Algorithm: sha256WithRSAEncryption b9:90:a3:44:05:e8:8b:cf:c6:e0:ed:94:0d:9c:3a:fd:4b:36: 41:1c:3f:96:9f:45:a9:57:51:df:db:88:4f:54:75:d2:2b:d2: 32:dd:c5:cf:0f:b4:88:1b:b7:4e:fb:fb:c2:1d:a8:21:04:cd: a5:5c:a5:5f:21:73:72:0c:e4:61:83:7f:5f:7e:cd:49:97:6c: 24:3c:b7:e9:70:7b:e7:ab:60:3f:8d:cc:e1:0d:59:a1:dd:31: 18:95:3a:b7:50:8a:16:a4:c8:bf:b0:8f:03:c4:fc:d2:f9:a6: d7:b6:9d:86:f2:5f:73:5d:e7:99:f1:20:ec:b0:a6:35:46:ac: 71:fe:67:4f:b8:66:0d:a8:6a:4d:c0:50:0d:74:85:35:5b:a1: 67:41:cc:28:89:7b:98:a4:ee:89:f5:bb:da:ca:d7:bf:25:73: 0a:77:7a:9f:e3:44:4f:4e:ab:ba:77:6b:21:54:59:79:6d:ec: 04:0e:0f:6d:2f:e0:b2:d6:4c:9d:5f:a6:44:f2:dd:83:8d:fc: c9:f1:f0:b4:8a:75:e5:ca:06:92:05:69:b2:e3:16:1b:7c:4d: 5e:49:ef:76:ba:71:af:d2:a5:53:62:bf:b9:be:0b:0b:53:89: 02:af:0a:4a:07:ba:dc:9f:00:ef:74:38:7e:9d:5c:32:55:2c: a8:de:76:5d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICN7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjYwMzEyMDYwMjIwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIyNTZlYy1iNmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXCmprE8pYiWttBikmRiqajqQgRp2LyO17KM+G6LqkMgMd6zyNV1jDGZ0gm1 WwM7yjG4dn5QJ/7p/ZATu5C0xik3vT37uL3jZX36sc+Qpe4AVVbeBXUHqqSSWDi1 V1mnZ6XgGJ+D/OGw4HpJXP3c3u6aYROn92QjYi9k5e/2VfuOCKqgty0LQtep4L9R +aaamowFHQ2WcYWty3MkJHxg6KIjmCuUeSzCY9tROcXjbnYFyT/PKzAgXvITJ1IW +sJGe6jbEsMITGWxLK3Naw6IunG+hqW7zbwWe6qs7Au8WyFrk6dNm+uFKtN2OL0P rKYTFnUqLB9fFcAb+nvr0eULcwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLBwvX2G 7Sfkdkt/9/aajVJ00hsOMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvN0E1OEM4RDZC QkVBMTFFQThERjQ2Nzc4QzRGOUFFMDIucm9hMGsGCCsGAQUFBwEHAQH/BFwwWjBY BAIAATBSAwQGJyKAMAwDBAE7Z4oDBAQ7Z4ADBAU7Z8AwDAMEA3eYKAMEAHeYLAME BHeY4AMEBXedQAMEAHeeQAMEB7a9AAMEBra9wAMEBLa+YAMEBba+wDANBgkqhkiG 9w0BAQsFAAOCAQEAuZCjRAXoi8/G4O2UDZw6/Us2QRw/lp9FqVdR39uIT1R10ivS Mt3Fzw+0iBu3Tvv7wh2oIQTNpVylXyFzcgzkYYN/X37NSZdsJDy36XB756tgP43M 4Q1Zod0xGJU6t1CKFqTIv7CPA8T80vmm17adhvJfc13nmfEg7LCmNUascf5nT7hm DahqTcBQDXSFNVuhZ0HMKIl7mKTuifW72srXvyVzCnd6n+NET06rundrIVRZeW3s BA4PbS/gstZMnV+mRPLdg438yfHwtIp15coGkgVpsuMWG3xNXknvdrpxr9KlU2K/ ub4LC1OJAq8KSge63J8A73Q4fp1cMlUsqN52XQ== -----END CERTIFICATE-----Generated at Sat Mar 14 01:03:18 2026 by rpki-client