$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/3B8DEC18F67C11EFA12FD55AC4F9AE02.roa File: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (raw, json) Hash identifier: Zntrf+XRFU/LUFPqt460t/df6T24vxpmkd5azGcAX5E= Subject key identifier: 8D:56:E6:2B:60:B4:09:1C:5B:3D:96:4F:15:A4:94:03:9B:00:7A:17 Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 381D Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/3B8DEC18F67C11EFA12FD55AC4F9AE02.roa Signing time: Mon 02 Mar 2026 23:21:05 +0000 ROA not before: Mon 12 Jan 2026 01:46:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140766 IP address blocks: 79.108.216.0/21 maxlen: 24 109.237.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14365 (0x381d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Jan 12 01:46:44 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a61b61-84b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:73:d3:d6:29:13:5b:a2:12:cd:1d:b2:3e:e7: 8d:fe:fd:51:c1:98:cb:01:36:52:f0:59:2b:48:84: 00:50:66:a4:82:33:c4:db:12:bc:bf:a0:c6:b6:33: 7c:f0:6b:4f:92:d6:f4:c8:1b:91:63:1f:19:e2:e5: 9f:f8:2b:77:1b:fb:49:bc:35:c5:90:e9:af:62:ff: fd:23:18:b1:21:64:75:15:ed:8f:05:1a:c2:19:2c: d1:58:86:d6:9a:a8:c6:82:3c:98:c4:ea:dc:44:68: ef:d1:41:dc:a0:a7:2a:e2:7d:5f:62:e1:6a:35:42: 79:de:05:59:76:e6:b0:fd:12:c2:ab:9b:6a:9d:0d: ba:78:2a:d5:5d:7f:fb:a0:22:53:73:60:f8:e5:42: 2d:0f:35:49:34:9a:2d:a1:54:7c:e7:de:4f:34:61: 73:b6:f5:ee:9d:3d:c7:dd:f4:53:f3:62:fa:10:89: 5f:5c:50:2b:99:1c:db:b1:76:5d:79:c6:7c:47:9f: c1:3b:28:a0:79:30:c8:6a:97:66:e7:ec:9e:28:a0: 80:2a:48:ed:d7:f2:2c:8a:ac:13:86:f8:dc:62:b7: 7f:b1:4a:6c:07:f5:43:bd:49:d1:ed:e4:78:ac:a5: f7:19:08:f1:55:60:74:c6:42:45:cd:4f:24:b8:d5: b6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:56:E6:2B:60:B4:09:1C:5B:3D:96:4F:15:A4:94:03:9B:00:7A:17 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/3B8DEC18F67C11EFA12FD55AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 79.108.216.0/21 109.237.64.0/21 Signature Algorithm: sha256WithRSAEncryption ca:29:2c:6b:ea:48:e0:1b:fb:b0:30:82:d3:98:51:22:54:fd: 4c:00:82:4d:6f:25:d8:de:e0:02:d1:27:a4:9d:47:12:c6:db: 70:bf:fe:a3:ab:9f:eb:a0:ac:92:0e:07:dd:7d:0c:75:78:fb: f2:83:5f:c0:6c:b6:53:bb:e5:07:dc:8b:a4:27:47:dc:0d:ca: 83:34:03:9a:aa:3a:22:1f:3d:d8:5e:e9:00:b0:58:91:a3:29: bd:91:2b:76:ca:a9:29:6b:a0:45:c0:9a:79:93:89:d8:c5:73: 53:43:16:da:fd:36:9b:8b:fd:32:5b:77:bb:15:09:cb:9b:38: 6e:49:a0:10:b1:d4:66:d6:41:a7:cd:be:de:55:93:8d:c4:76: 92:9b:f3:a5:b7:81:78:2f:bc:7b:26:56:f5:42:34:f9:2d:31: fa:c5:7a:05:9c:ff:de:84:48:f4:84:00:a7:5b:95:e6:fe:9a: 64:94:b8:36:ab:3a:58:c0:26:d7:d4:17:94:b3:cb:e4:84:83: 7b:69:86:fc:7c:ca:44:11:4c:3d:6e:4e:63:3f:0e:69:98:67: bf:e0:6d:b7:b9:58:0d:51:aa:d5:bf:2e:3b:51:f9:63:d6:5d: 09:98:24:6c:4e:b2:a0:f3:80:be:16:be:50:fd:9f:ed:d8:ae: a6:03:61:d9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICOB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjYwMTEyMDE0NjQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MWI2MS04NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HPT1ikTW6ISzR2yPueN/v1RwZjLATZS8FkrSIQAUGakgjPE2xK8v6DGtjN8 8GtPktb0yBuRYx8Z4uWf+Ct3G/tJvDXFkOmvYv/9IxixIWR1Fe2PBRrCGSzRWIbW mqjGgjyYxOrcRGjv0UHcoKcq4n1fYuFqNUJ53gVZduaw/RLCq5tqnQ26eCrVXX/7 oCJTc2D45UItDzVJNJotoVR8595PNGFztvXunT3H3fRT82L6EIlfXFArmRzbsXZd ecZ8R5/BOyigeTDIapdm5+yeKKCAKkjt1/IsiqwThvjcYrd/sUpsB/VDvUnR7eR4 rKX3GQjxVWB0xkJFzU8kuNW2GQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFI1W5itg tAkcWz2WTxWklAObAHoXMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQjk5NTNEQkExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvM0I4REVDMThG NjdDMTFFRkExMkZENTVBQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDT2zYAwQDbe1AMA0GCSqGSIb3DQEBCwUAA4IBAQDKKSxr6kjgG/uw MILTmFEiVP1MAIJNbyXY3uAC0SeknUcSxttwv/6jq5/roKySDgfdfQx1ePvyg1/A bLZTu+UH3IukJ0fcDcqDNAOaqjoiHz3YXukAsFiRoym9kSt2yqkpa6BFwJp5k4nY xXNTQxba/Tabi/0yW3e7FQnLmzhuSaAQsdRm1kGnzb7eVZONxHaSm/Olt4F4L7x7 Jlb1QjT5LTH6xXoFnP/ehEj0hACnW5Xm/ppklLg2qzpYwCbX1BeUs8vkhIN7aYb8 fMpEEUw9bk5jPw5pmGe/4G23uVgNUarVvy47Uflj1l0JmCRsTrKg84C+Fr5Q/Z/t 2K6mA2HZ -----END CERTIFICATE-----Generated at Sat Mar 7 16:16:25 2026 by rpki-client