$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa File: 36D3DC38AA9311ECB5C88036C4F9AE02.roa (raw, json) Hash identifier: WqpExzPxROe/gg2lhd3nPsvBRgnONfUMf1SNNkrCRwg= Subject key identifier: A9:10:34:A2:1D:92:E7:6C:0F:91:F7:76:77:F4:34:F9:96:4F:10:4A Certificate issuer: /CN=A91EA198/serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Certificate serial: 1F87 Authority key identifier: 9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:24:56 +0000 ROA not before: Fri 12 Dec 2025 16:13:46 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 147019 IP address blocks: 43.92.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 16:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8071 (0x1f87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA198, serialNumber=9E1C3531D0045EA389B68CFF9286A08FBCBBD8BD Validity Not Before: Dec 12 16:13:46 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a48478-77a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8a:31:34:11:15:42:1e:08:04:fc:ad:77:02: d6:e9:21:5b:4c:c8:ad:5b:76:c7:09:c8:0b:45:86: 04:89:54:08:23:cb:78:ad:0d:d2:79:17:0d:ab:6c: 56:47:9e:a1:6d:58:96:91:2d:8e:89:08:03:a0:29: 8e:0b:d5:77:bf:b2:7a:63:23:62:6a:af:93:c9:0d: 0b:71:16:08:ea:03:1b:9a:d9:a7:78:8b:ee:8d:35: c6:c7:ca:9a:9e:8a:22:63:86:c2:ef:50:13:b7:c2: 2f:33:a7:7d:55:b1:92:1b:e0:b8:f9:a4:2f:8b:e5: 41:20:37:51:5f:ed:66:79:32:e6:40:05:ff:04:7d: 8e:b3:7f:28:19:97:08:68:6f:35:d1:cb:c6:44:06: 87:6b:da:6d:ae:ad:7e:19:6b:50:2c:fa:47:59:2b: 66:0c:a3:41:60:9b:8c:80:43:1f:41:08:a0:f2:bb: 93:ce:4d:9b:b4:e2:13:d0:93:c8:70:4d:f3:92:0c: b9:c3:54:4f:31:a8:50:76:07:9b:46:85:0a:15:42: ff:d9:67:af:73:a9:65:18:3a:43:73:97:40:3b:4d: fb:0f:4d:14:6f:49:61:95:cc:ef:19:0b:0b:a8:95: d3:ca:8b:b3:1a:bb:e1:5a:fe:3c:35:d3:ce:97:c7: 48:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:10:34:A2:1D:92:E7:6C:0F:91:F7:76:77:F4:34:F9:96:4F:10:4A X509v3 Authority Key Identifier: keyid:9E:1C:35:31:D0:04:5E:A3:89:B6:8C:FF:92:86:A0:8F:BC:BB:D8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/nhw1MdAEXqOJtoz_koagj7y72L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhw1MdAEXqOJtoz_koagj7y72L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA198/993F2090ABC411E6BD6BED14C4F9AE02/36D3DC38AA9311ECB5C88036C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.92.224.0/19 Signature Algorithm: sha256WithRSAEncryption 36:4c:78:e2:7f:70:91:e3:57:f9:d1:79:65:cb:f8:75:a7:f0: ea:32:3d:82:3e:07:2e:46:be:eb:ea:94:9a:f3:3a:30:a7:0d: c9:87:82:8a:8c:1a:f2:be:9d:cf:34:47:3c:ec:a8:19:40:52: 1f:5d:20:d0:32:7b:51:99:89:5d:02:60:84:c2:00:18:f1:c1: 45:75:89:dd:b4:f1:58:e7:c2:49:fd:d6:0c:76:69:95:30:f6: 85:41:91:8b:aa:1a:18:28:67:cb:8a:b3:dd:d9:f6:1e:dd:19: f9:6d:63:a5:3c:f4:06:58:07:32:82:c9:02:08:99:6b:c0:e8: 3a:71:bc:50:a5:31:ab:59:df:bd:b6:bb:33:c3:ce:96:5d:a6: e0:a1:ca:86:5f:a8:10:7e:17:73:04:d7:f5:c2:cc:23:df:33: a9:73:1d:6e:14:54:62:7a:e7:62:d7:69:69:1e:44:2f:80:02: bc:d6:80:8b:d2:38:ac:59:7b:6f:cc:f8:16:a1:84:73:27:e8: d8:fb:0f:69:27:53:a2:69:ff:01:4f:10:8a:2b:23:5e:3d:93: e1:20:64:a7:24:47:9c:8e:f5:3e:1d:db:ad:76:d9:e6:eb:f7: 2d:74:93:00:df:31:b2:ad:d4:24:7d:5a:a3:d9:f2:e0:55:4e: 06:3e:f1:19 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICH4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExOTgxMTAvBgNVBAUTKDlFMUMzNTMxRDAwNDVFQTM4OUI2OENGRjkyODZBMDhG QkNCQkQ4QkQwHhcNMjUxMjEyMTYxMzQ2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQ3OC03N2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYoxNBEVQh4IBPytdwLW6SFbTMitW3bHCcgLRYYEiVQII8t4rQ3SeRcNq2xW R56hbViWkS2OiQgDoCmOC9V3v7J6YyNiaq+TyQ0LcRYI6gMbmtmneIvujTXGx8qa nooiY4bC71ATt8IvM6d9VbGSG+C4+aQvi+VBIDdRX+1meTLmQAX/BH2Os38oGZcI aG810cvGRAaHa9ptrq1+GWtQLPpHWStmDKNBYJuMgEMfQQig8ruTzk2btOIT0JPI cE3zkgy5w1RPMahQdgebRoUKFUL/2Wevc6llGDpDc5dAO037D00Ub0lhlczvGQsL qJXTyouzGrvhWv48NdPOl8dIfQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKkQNKId kudsD5H3dnf0NPmWTxBKMB8GA1UdIwQYMBaAFJ4cNTHQBF6jibaM/5KGoI+8u9i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE5OC85OTNGMjA5MEFC QzQxMUU2QkQ2QkVEMTRDNEY5QUUwMi9uaHcxTWRBRVhxT0p0b3pfa29hZ2o3eTcy TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25odzFNZEFFWHFPSnRvel9rb2Fnajd5NzJMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUExOTgvOTkzRjIwOTBBQkM0MTFFNkJENkJFRDE0QzRGOUFFMDIvMzZEM0RDMzhB QTkzMTFFQ0I1Qzg4MDM2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFK1zgMA0GCSqGSIb3DQEBCwUAA4IBAQA2THjif3CR41f50Xlly/h1 p/DqMj2CPgcuRr7r6pSa8zowpw3Jh4KKjBryvp3PNEc87KgZQFIfXSDQMntRmYld AmCEwgAY8cFFdYndtPFY58JJ/dYMdmmVMPaFQZGLqhoYKGfLirPd2fYe3Rn5bWOl PPQGWAcygskCCJlrwOg6cbxQpTGrWd+9trszw86WXabgocqGX6gQfhdzBNf1wswj 3zOpcx1uFFRieudi12lpHkQvgAK81oCL0jisWXtvzPgWoYRzJ+jY+w9pJ1Oiaf8B TxCKKyNePZPhIGSnJEecjvU+Hdutdtnm6/ctdJMA3zGyrdQkfVqj2fLgVU4GPvEZ -----END CERTIFICATE-----Generated at Fri Mar 13 05:25:58 2026 by rpki-client