$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/D56D9FD87E8711EC9A928B6AC4F9AE02.roa File: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (raw, json) Hash identifier: l9+xBEny0RtitxX+horpYy85rL+QwU54sl8n7bTIiQE= Subject key identifier: D9:FB:E1:10:FA:BF:36:69:ED:8F:5D:52:51:F3:BC:91:A4:D2:BE:B5 Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 358C Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/D56D9FD87E8711EC9A928B6AC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:38:31 +0000 ROA not before: Wed 14 Jan 2026 15:10:52 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133160 IP address blocks: 112.137.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13708 (0x358c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Jan 14 15:10:52 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47997-6c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:71:92:4d:48:53:c7:08:3c:5c:2a:ae:a6:2e: 81:e7:d2:03:04:01:e5:3c:d4:10:ce:8f:25:e1:02: 93:43:f5:7d:a1:83:0f:d9:60:c6:9e:b2:bd:08:16: 5b:87:ec:c6:d7:ac:9c:ad:30:3f:c4:5c:ff:ee:c2: 28:22:1b:82:ca:ea:6f:74:01:e1:ae:ff:53:de:bd: a9:8d:99:f8:c6:81:48:b2:67:dc:8f:73:f1:4b:ab: c8:21:75:a7:6a:2a:fd:95:28:11:5d:03:ad:55:21: 3b:38:e1:82:d5:8c:7e:a0:9a:b9:2f:0d:4f:5f:c7: 6f:cd:a7:87:a7:3a:a0:4a:5b:c2:6d:91:dc:55:ce: cd:b5:05:f0:7d:61:6f:90:dd:98:42:c8:56:ec:9d: 40:a9:39:3c:bb:56:7f:46:57:dd:21:3d:c3:db:47: ce:ee:94:93:2e:48:67:ac:61:ec:f0:a9:2e:36:ff: 2f:f2:c7:5e:69:04:4e:be:76:0f:b6:ec:f0:9e:b5: 36:5d:6f:a5:e9:c0:b3:f8:de:27:a7:5f:bb:19:18: 21:52:f9:f8:d3:3a:05:ae:d0:b2:b3:12:2c:6b:cc: 88:f5:e3:55:a0:ab:89:3f:56:a4:1a:c3:88:c3:b4: c0:71:b7:bd:fe:17:1d:86:80:3e:d0:5b:48:b3:2e: 30:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FB:E1:10:FA:BF:36:69:ED:8F:5D:52:51:F3:BC:91:A4:D2:BE:B5 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/D56D9FD87E8711EC9A928B6AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 112.137.24.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:70:3e:55:ea:7c:71:53:40:17:06:22:01:b7:0a:39:32:c4: e8:9a:d6:fb:b1:79:9b:02:49:83:cb:04:56:c1:8f:42:22:7d: 67:b0:16:e6:c8:ff:82:21:74:02:e6:97:e1:e3:71:be:46:1f: 14:ba:52:8b:48:9a:a0:c2:4c:f6:4c:f4:00:da:f7:7d:b8:a5: 95:e9:4b:a4:05:b8:0e:15:ff:2a:18:8b:a7:9f:85:7d:c1:eb: fa:c4:47:69:9c:20:16:19:3d:8a:50:2b:48:40:d5:13:ef:66: e4:a2:17:df:8b:e9:40:e9:5d:2e:e1:cd:17:c6:4c:3c:d9:0f: f7:05:a5:72:74:db:3c:31:f2:1f:f8:95:8e:78:41:26:c8:a5: da:3d:9d:0d:35:f4:9a:a9:89:31:0b:5b:a0:37:c2:b5:40:f2: 35:7b:8f:ad:bc:45:12:b1:33:05:1a:41:a7:65:9e:f9:02:ea: 57:97:32:94:12:bd:e5:f4:d1:b0:c3:fd:7e:49:f7:ab:56:3e: 9f:ed:e2:35:34:65:2f:23:52:ee:64:50:58:b2:5d:49:d8:f9: f3:5f:61:ce:13:bf:2b:46:db:94:9e:eb:ef:a6:aa:25:c1:67: 5c:3a:25:77:24:a6:78:d9:98:5d:4c:48:2f:96:f3:e2:68:dc: e4:8f:9f:ba -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjYwMTE0MTUxMDUyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Nzk5Ny02YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXGSTUhTxwg8XCqupi6B59IDBAHlPNQQzo8l4QKTQ/V9oYMP2WDGnrK9CBZb h+zG16ycrTA/xFz/7sIoIhuCyupvdAHhrv9T3r2pjZn4xoFIsmfcj3PxS6vIIXWn air9lSgRXQOtVSE7OOGC1Yx+oJq5Lw1PX8dvzaeHpzqgSlvCbZHcVc7NtQXwfWFv kN2YQshW7J1AqTk8u1Z/RlfdIT3D20fO7pSTLkhnrGHs8KkuNv8v8sdeaQROvnYP tuzwnrU2XW+l6cCz+N4np1+7GRghUvn40zoFrtCysxIsa8yI9eNVoKuJP1akGsOI w7TAcbe9/hcdhoA+0FtIsy4wVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNn74RD6 vzZp7Y9dUlHzvJGk0r61MB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM5NUMvQkIzNDE3QzAxRDk2MTFFMkI4QkI4MjdGMDhCMDJDRDIvRDU2RDlGRDg3 RTg3MTFFQzlBOTI4QjZBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAcIkYMA0GCSqGSIb3DQEBCwUAA4IBAQA9cD5V6nxxU0AXBiIBtwo5 MsTomtb7sXmbAkmDywRWwY9CIn1nsBbmyP+CIXQC5pfh43G+Rh8UulKLSJqgwkz2 TPQA2vd9uKWV6UukBbgOFf8qGIunn4V9wev6xEdpnCAWGT2KUCtIQNUT72bkohff i+lA6V0u4c0Xxkw82Q/3BaVydNs8MfIf+JWOeEEmyKXaPZ0NNfSaqYkxC1ugN8K1 QPI1e4+tvEUSsTMFGkGnZZ75AupXlzKUEr3l9NGww/1+SferVj6f7eI1NGUvI1Lu ZFBYsl1J2PnzX2HOE78rRtuUnuvvpqolwWdcOiV3JKZ42ZhdTEgvlvPiaNzkj5+6 -----END CERTIFICATE-----Generated at Thu Mar 12 22:42:10 2026 by rpki-client