$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa File: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (raw, json) Hash identifier: cp7bTb5LQaah3kkUkaBafNzpnRd6bBUnxxFCOx5DKVc= Subject key identifier: 1B:65:BC:BA:3A:E4:63:9D:75:8B:7C:C8:E5:4E:7F:19:8F:BE:62:F1 Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 03D2 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa Signing time: Fri 03 Apr 2026 00:33:12 +0000 ROA not before: Fri 03 Apr 2026 00:33:12 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 135069 IP address blocks: 192.94.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 Apr 2026 00:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 978 (0x3d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Apr 3 00:33:12 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cf0ac8-5b87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a3:fb:b2:0b:06:49:a0:fa:a2:c5:f3:bc:72: 75:df:c3:a1:28:5c:73:95:0b:c2:4c:94:02:8f:13: 58:57:8b:ff:25:31:b0:2f:04:2c:19:a8:43:dd:09: df:5f:d1:af:85:0d:ba:75:68:b9:fd:ec:74:5b:2a: d5:58:6c:46:3d:3a:18:03:1e:85:93:8d:ca:b4:d8: 9b:a0:06:d1:ad:0b:d2:a8:b9:55:83:5c:06:23:19: 40:c0:5d:c4:4c:32:1a:09:3e:31:b3:92:4d:42:47: 89:0c:77:91:ab:7d:2d:87:19:fe:b3:fe:38:41:c8: 03:42:21:24:cf:10:0c:57:ef:41:b9:5b:44:73:21: 45:fc:0c:dc:8c:60:dd:bf:a9:08:e3:13:f4:0e:95: 87:42:72:ff:d1:d7:5d:ae:99:33:85:24:c9:4a:bf: 61:ca:c2:45:85:80:ce:aa:c2:ca:12:35:22:b0:a2: 64:69:cf:34:54:67:d0:fe:9a:5d:79:6a:42:c8:85: d9:b0:56:17:cf:ac:d7:75:c6:99:4e:73:1d:ee:b1: e9:61:7d:ab:f0:e0:d9:10:d6:6f:91:a1:c9:f0:a5: 85:04:8b:ab:ae:d8:fc:58:3a:76:33:61:26:3d:1d: cb:82:52:6e:8c:f9:e2:9c:5d:7d:a9:d3:1e:75:d9: 7b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:65:BC:BA:3A:E4:63:9D:75:8B:7C:C8:E5:4E:7F:19:8F:BE:62:F1 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.94.236.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:6a:49:8b:f0:2b:f9:8e:3a:fe:06:4f:4b:84:dc:d3:16:7b: 0a:9a:4a:92:f9:0e:15:19:d0:f1:09:c3:d3:ed:1b:0d:ae:57: 7c:02:31:cd:8f:22:b7:5b:20:6f:18:e2:cc:4c:ca:60:50:2c: c1:87:6d:7e:8c:2a:e3:49:ab:81:43:b6:ef:5c:fe:b9:e8:f3: 4e:0b:cd:41:53:e7:bf:b9:7b:0e:70:90:49:b4:8b:66:11:2f: f7:f3:aa:b1:72:65:70:42:3b:46:1c:aa:9b:9a:24:4d:09:2d: f4:a5:5a:6f:b7:56:89:e1:5e:62:36:f8:5e:a4:87:ec:7d:26: 79:d4:16:82:9c:ac:9f:2c:07:e3:20:d5:c9:dc:9d:05:b8:1b: da:15:e4:8f:7a:46:fd:34:a1:c5:88:5e:c9:2c:5c:9c:2b:7f: fc:f5:56:30:c8:41:51:9c:28:48:c3:66:45:aa:34:cb:35:12: 87:27:2e:22:72:ec:fa:e4:79:01:d9:98:ce:db:18:c7:6f:b8: e2:28:66:f5:d3:8f:c3:23:96:7a:34:79:6c:ee:4b:a5:da:6e: b1:ac:b0:e9:37:98:d7:5c:9e:d0:ca:7e:85:5f:5e:20:49:6e: 67:ef:c9:94:7b:29:42:16:53:4e:fc:1d:e0:26:11:d9:87:19: 4e:70:55:57 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjYwNDAzMDAzMzEyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNmMGFjOC01Yjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqP7sgsGSaD6osXzvHJ138OhKFxzlQvCTJQCjxNYV4v/JTGwLwQsGahD3Qnf X9GvhQ26dWi5/ex0WyrVWGxGPToYAx6Fk43KtNiboAbRrQvSqLlVg1wGIxlAwF3E TDIaCT4xs5JNQkeJDHeRq30thxn+s/44QcgDQiEkzxAMV+9BuVtEcyFF/AzcjGDd v6kI4xP0DpWHQnL/0dddrpkzhSTJSr9hysJFhYDOqsLKEjUisKJkac80VGfQ/ppd eWpCyIXZsFYXz6zXdcaZTnMd7rHpYX2r8ODZENZvkaHJ8KWFBIurrtj8WDp2M2Em PR3LglJujPninF19qdMeddl7cQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBtlvLo6 5GOddYt8yOVOfxmPvmLxMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBQjkvMUNENDRGOUVDNzdBMTFFQ0I5NDM0QzJDQzRGOUFFMDIvMzlBMzM1RDZD QjNGMTFFQ0JFQkM5QTFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAwF7sMA0GCSqGSIb3DQEBCwUAA4IBAQBqakmL8Cv5jjr+Bk9LhNzT FnsKmkqS+Q4VGdDxCcPT7RsNrld8AjHNjyK3WyBvGOLMTMpgUCzBh21+jCrjSauB Q7bvXP656PNOC81BU+e/uXsOcJBJtItmES/386qxcmVwQjtGHKqbmiRNCS30pVpv t1aJ4V5iNvhepIfsfSZ51BaCnKyfLAfjINXJ3J0FuBvaFeSPekb9NKHFiF7JLFyc K3/89VYwyEFRnChIw2ZFqjTLNRKHJy4icuz65HkB2ZjO2xjHb7jiKGb104/DI5Z6 NHls7kul2m6xrLDpN5jXXJ7Qyn6FX14gSW5n78mUeylCFlNO/B3gJhHZhxlOcFVX -----END CERTIFICATE-----Generated at Mon Apr 6 12:42:42 2026 by rpki-client