$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa File: E21E1C6CF3EE11ECBAE10054C4F9AE02.roa (raw, json) Hash identifier: M+Wr8rsuFkv+pEdccGdYS8z/By6LwokW8IQrKL2jIU8= Subject key identifier: 93:F5:48:C9:BC:21:BF:0A:80:9D:58:CB:3A:1A:C4:15:26:98:48:F2 Certificate issuer: /CN=A91C5B46/serialNumber=56CD32D13F8CAE1E92F9C97F395F1A23ABB9C6F7 Certificate serial: 267C Authority key identifier: 56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa Signing time: Fri 06 Mar 2026 16:19:50 +0000 ROA not before: Fri 06 Mar 2026 16:19:50 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 4755 IP address blocks: 123.136.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9852 (0x267c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5B46, serialNumber=56CD32D13F8CAE1E92F9C97F395F1A23ABB9C6F7 Validity Not Before: Mar 6 16:19:50 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69aafea6-badf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0a:93:a2:7a:40:ec:b5:c6:fc:4f:cf:f3:ab: e9:91:65:1d:ee:c8:7c:92:8f:ba:2c:0b:87:00:86: e7:df:61:ff:44:d5:ad:31:c1:85:e2:ea:68:2a:91: b3:d1:fe:cd:f1:c2:90:cf:3e:dd:08:2b:c4:8b:42: 4c:c1:c2:9e:88:38:55:1e:10:aa:26:b3:42:db:98: 2e:d3:63:1b:21:ee:14:17:fa:f5:88:db:f7:41:37: 46:b4:03:5e:62:23:ac:72:2a:f7:f3:27:b8:30:29: 1d:3c:b1:fe:fe:4a:b6:46:cf:03:77:bf:5d:63:16: 4d:4d:2a:58:d9:83:d4:26:02:ec:da:47:8c:b3:e1: 64:43:3d:7c:92:ba:16:e1:02:78:e1:53:44:4b:80: 63:23:f2:bc:ef:f7:ba:bb:61:88:c5:3f:b8:a5:57: 88:d3:69:6f:ba:29:69:1d:46:52:c0:c4:b2:62:77: 31:3d:d1:f6:60:9f:2d:fe:b8:88:34:02:c6:3f:33: 14:5c:69:60:71:01:65:bd:57:9f:df:41:16:3d:16: d7:1d:09:8f:a2:9b:66:33:fc:e7:49:2d:71:17:f4: cf:59:85:be:3c:0b:c8:2f:f0:ff:05:44:88:af:a9: c0:ba:0e:64:ff:15:30:db:8a:03:81:5d:0d:e7:e4: 26:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F5:48:C9:BC:21:BF:0A:80:9D:58:CB:3A:1A:C4:15:26:98:48:F2 X509v3 Authority Key Identifier: keyid:56:CD:32:D1:3F:8C:AE:1E:92:F9:C9:7F:39:5F:1A:23:AB:B9:C6:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vs0y0T-Mrh6S-cl_OV8aI6u5xvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5B46/BA0B8430028811E5AE1E4761C4F9AE02/E21E1C6CF3EE11ECBAE10054C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.136.16.0/21 Signature Algorithm: sha256WithRSAEncryption 47:a2:7f:35:e5:fd:95:83:2d:29:b9:ac:1a:62:b0:de:86:ad: fe:76:24:8e:89:af:72:fb:a5:f2:e0:c5:ca:9e:e3:7c:89:19: 8f:87:f2:69:a6:20:82:3d:7b:9a:15:28:15:e4:b5:a4:48:06: 79:64:ea:ba:16:4b:2b:87:c6:0e:31:7a:5a:3b:3c:0d:95:7e: e3:65:e1:19:20:a1:4a:f5:ff:0c:92:11:e1:2c:f9:f9:d5:34: f1:a0:11:66:15:b0:64:dd:0f:9e:0d:6c:d9:2a:0d:2f:04:cc: ee:17:c8:3b:69:4a:02:bb:54:45:cd:d9:28:c8:a5:d8:55:92: 44:98:52:2b:41:fa:60:75:0c:a3:30:94:2a:7b:35:a9:2f:ac: 7d:c3:e0:8f:33:08:19:e5:5e:22:1e:9e:22:04:a2:81:68:1f: c0:75:c6:64:7a:69:97:0a:78:db:a0:69:c9:19:b4:7c:30:42: 2e:24:c5:64:5d:3b:48:0e:93:b5:66:50:36:d2:a1:f3:dd:52: a4:b2:5f:77:f5:ec:6e:b2:7e:0b:03:b7:4a:2e:58:23:de:fd: 43:b9:44:c1:d3:c3:01:4a:0d:19:ca:60:ea:44:0d:35:14:af: 87:47:9d:40:9a:2a:04:44:fa:46:8d:82:b6:a9:35:49:59:e7: cf:db:bf:76 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICJnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVCNDYxMTAvBgNVBAUTKDU2Q0QzMkQxM0Y4Q0FFMUU5MkY5Qzk3RjM5NUYxQTIz QUJCOUM2RjcwHhcNMjYwMzA2MTYxOTUwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFhZmVhNi1iYWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQqTonpA7LXG/E/P86vpkWUd7sh8ko+6LAuHAIbn32H/RNWtMcGF4upoKpGz 0f7N8cKQzz7dCCvEi0JMwcKeiDhVHhCqJrNC25gu02MbIe4UF/r1iNv3QTdGtANe YiOscir38ye4MCkdPLH+/kq2Rs8Dd79dYxZNTSpY2YPUJgLs2keMs+FkQz18kroW 4QJ44VNES4BjI/K87/e6u2GIxT+4pVeI02lvuilpHUZSwMSyYncxPdH2YJ8t/riI NALGPzMUXGlgcQFlvVef30EWPRbXHQmPoptmM/znSS1xF/TPWYW+PAvIL/D/BUSI r6nAug5k/xUw24oDgV0N5+Qm0QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJP1SMm8 Ib8KgJ1YyzoaxBUmmEjyMB8GA1UdIwQYMBaAFFbNMtE/jK4ekvnJfzlfGiOrucb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUI0Ni9CQTBCODQzMDAy ODgxMUU1QUUxRTQ3NjFDNEY5QUUwMi9WczB5MFQtTXJoNlMtY2xfT1Y4YUk2dTV4 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZzMHkwVC1Ncmg2Uy1jbF9PVjhhSTZ1NXh2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzVCNDYvQkEwQjg0MzAwMjg4MTFFNUFFMUU0NzYxQzRGOUFFMDIvRTIxRTFDNkNG M0VFMTFFQ0JBRTEwMDU0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDe4gQMA0GCSqGSIb3DQEBCwUAA4IBAQBHon815f2Vgy0puawaYrDe hq3+diSOia9y+6Xy4MXKnuN8iRmPh/JppiCCPXuaFSgV5LWkSAZ5ZOq6Fksrh8YO MXpaOzwNlX7jZeEZIKFK9f8MkhHhLPn51TTxoBFmFbBk3Q+eDWzZKg0vBMzuF8g7 aUoCu1RFzdkoyKXYVZJEmFIrQfpgdQyjMJQqezWpL6x9w+CPMwgZ5V4iHp4iBKKB aB/AdcZkemmXCnjboGnJGbR8MEIuJMVkXTtIDpO1ZlA20qHz3VKksl939exusn4L A7dKLlgj3v1DuUTB08MBSg0ZymDqRA01FK+HR51AmioERPpGjYK2qTVJWefP2792 -----END CERTIFICATE-----Generated at Sat Mar 7 11:22:20 2026 by rpki-client