$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa File: 68EBA63A48B911EFB80D9535C4F9AE02.roa (raw, json) Hash identifier: iZo2C57Z9aeJt224wtweP1I+ZMSYFsBAndFJeCnjn1U= Subject key identifier: 27:34:10:F6:70:28:F2:58:04:82:E8:72:02:64:B3:D2:48:7C:42:85 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 014D Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:54:29 +0000 ROA not before: Sat 17 Jan 2026 05:47:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 6453 IP address blocks: 192.8.33.0/24 maxlen: 24 192.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 04:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Jan 17 05:47:45 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a46f45-cbe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:b9:3d:6e:ad:b4:e3:4e:63:c4:81:f4:ae: bd:6d:90:80:54:e6:63:42:26:d8:9c:cf:15:65:90: 52:8c:e4:96:97:a8:e3:52:b9:31:21:7e:1e:28:62: cc:44:d5:ab:4b:06:6c:24:27:05:ec:00:4d:08:67: de:39:c3:0b:6b:6a:75:b1:ae:ca:84:cd:8e:82:50: 9f:29:6d:05:5b:6a:88:ad:79:20:5f:ae:0d:5b:db: 4b:e5:7a:38:a4:96:ab:29:4f:08:5d:12:58:7e:12: 74:1f:70:0e:87:d3:e9:d8:c5:29:f2:ef:2d:c5:e2: 46:e8:92:3a:62:2e:fc:f9:46:d6:fa:9a:ac:4e:65: c7:f5:1c:65:f8:ed:1a:6f:35:79:fb:1a:13:66:ea: d2:2f:85:ee:9e:3f:d0:ef:24:45:a4:58:c6:e6:17: 7a:89:15:20:07:f1:66:a6:3f:92:8f:24:7f:61:44: fa:9b:25:18:57:e8:5a:09:1d:f0:19:34:3c:dc:df: 97:e8:af:4e:06:49:17:55:13:4d:a6:1d:fb:0c:c6: 8e:cc:e6:be:53:cf:87:ab:0a:ad:0c:61:a1:91:6b: 47:50:a4:8f:9e:21:cc:3d:46:c2:7a:79:49:68:96: f1:61:84:42:d8:d6:13:f9:f5:f8:27:25:06:9a:95: 64:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:34:10:F6:70:28:F2:58:04:82:E8:72:02:64:B3:D2:48:7C:42:85 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 192.8.33.0/24 192.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption 29:f6:a4:43:76:15:0c:6b:8d:8f:d9:eb:04:4c:58:54:59:6e: 1b:78:1d:94:aa:1a:40:5b:a5:ae:0f:73:5d:40:e6:48:82:7f: b8:24:bc:d9:17:4c:46:12:c2:e3:c5:fc:2e:64:8e:8a:a8:dc: fd:3b:7d:dc:11:94:c8:38:5c:74:bd:5d:08:42:0d:08:39:0c: e7:65:95:0f:94:40:c2:1b:9b:03:a8:e6:13:42:ed:9a:83:08: 8a:53:11:b8:ff:27:af:fa:06:ed:d3:9f:27:b6:de:ad:0d:3c: ac:70:04:ec:e4:a6:cf:37:f9:10:37:b3:e6:45:95:3d:65:a9: b6:f9:58:fa:21:35:d0:a9:ce:cd:95:e9:44:69:d7:5f:f4:81: c9:fc:19:27:e3:3d:3a:16:38:be:6a:5e:c6:cc:2f:f5:7c:e5: 03:3a:ec:f8:d2:c1:b2:b6:b2:1b:8b:8a:81:b3:26:16:1c:56: 57:60:2f:08:72:1d:58:6b:f4:8a:76:9e:98:9f:2b:26:57:62: bb:fa:55:75:2a:0f:50:42:9b:81:6a:33:c0:bb:1d:04:ae:ab: a7:10:89:b2:0a:b3:b9:b1:fd:08:c2:e5:5c:ea:ed:cb:ef:49: 27:1a:76:9c:5f:56:60:62:fa:cc:0b:77:12:cd:da:af:bb:ce: 10:46:f5:97 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjYwMTE3MDU0NzQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmY0NS1jYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYy5PW6ttONOY8SB9K69bZCAVOZjQibYnM8VZZBSjOSWl6jjUrkxIX4eKGLM RNWrSwZsJCcF7ABNCGfeOcMLa2p1sa7KhM2OglCfKW0FW2qIrXkgX64NW9tL5Xo4 pJarKU8IXRJYfhJ0H3AOh9Pp2MUp8u8txeJG6JI6Yi78+UbW+pqsTmXH9Rxl+O0a bzV5+xoTZurSL4Xunj/Q7yRFpFjG5hd6iRUgB/Fmpj+SjyR/YUT6myUYV+haCR3w GTQ83N+X6K9OBkkXVRNNph37DMaOzOa+U8+HqwqtDGGhkWtHUKSPniHMPUbCenlJ aJbxYYRC2NYT+fX4JyUGmpVkUQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCc0EPZw KPJYBILocgJks9JIfEKFMB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc4MkYvNkQyMDc1RjY0MDcwMTFFRkJEQTlENjZGQzRGOUFFMDIvNjhFQkE2M0E0 OEI5MTFFRkI4MEQ5NTM1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAwAghAwQAwAjuMA0GCSqGSIb3DQEBCwUAA4IBAQAp9qRDdhUMa42P 2esETFhUWW4beB2UqhpAW6WuD3NdQOZIgn+4JLzZF0xGEsLjxfwuZI6KqNz9O33c EZTIOFx0vV0IQg0IOQznZZUPlEDCG5sDqOYTQu2agwiKUxG4/yev+gbt058ntt6t DTyscATs5KbPN/kQN7PmRZU9Zam2+Vj6ITXQqc7NlelEaddf9IHJ/Bkn4z06Fji+ al7GzC/1fOUDOuz40sGytrIbi4qBsyYWHFZXYC8Ich1Ya/SKdp6YnysmV2K7+lV1 Kg9QQpuBajPAux0ErqunEImyCrO5sf0IwuVc6u3L70knGnacX1ZgYvrMC3cSzdqv u84QRvWX -----END CERTIFICATE-----Generated at Sat Mar 7 17:27:10 2026 by rpki-client