$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa File: 9FCD0EE6A34411EB94DFE619C4F9AE02.roa (raw, json) Hash identifier: Xr3+TbIOof9u/LmbNudhZ3Fw1f9PhHkFv4UjhuCI3JM= Subject key identifier: 0C:F3:F3:FC:59:1F:2E:B0:03:4A:37:5E:F6:D3:46:3C:F8:23:8C:43 Certificate issuer: /CN=A91EEBAD/serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Certificate serial: 06BB Authority key identifier: 81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa Signing time: Sat 28 Mar 2026 22:30:02 +0000 ROA not before: Sat 28 Mar 2026 22:30:02 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 45136 IP address blocks: 119.235.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 22:10:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1723 (0x6bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEBAD, serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Validity Not Before: Mar 28 22:30:02 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c8566a-68c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:c4:e7:3e:cd:c2:a2:e9:db:a7:74:74:17: dc:0e:ef:c6:3d:ed:19:40:1e:81:12:5f:29:08:a6: d7:1a:2c:ff:e6:a2:56:f9:ed:5b:ad:62:66:56:1e: e9:7b:b1:f1:00:7c:ca:4b:56:7f:cf:04:d6:c7:e2: 4a:69:89:43:c3:35:fc:c4:de:50:e9:57:53:d0:45: 98:2f:ca:33:b6:e0:c8:91:7c:ff:d5:d0:20:99:88: b4:7a:72:74:d4:ce:22:52:ce:04:40:1b:5d:78:94: 4f:bb:86:d2:ca:3c:01:b2:52:0c:bc:ba:54:e3:17: 92:04:74:58:77:a7:81:fe:42:6c:ae:7c:bd:25:8c: 5e:15:ab:ae:ed:ae:49:9e:51:2e:32:72:86:5e:8c: 42:5d:56:46:ae:44:c8:10:6b:9f:0e:f6:77:c9:d5: 77:c5:eb:5b:3a:03:11:04:da:e5:48:d0:b7:0b:01: 16:50:8b:68:68:e8:cf:73:85:4b:8e:00:1b:52:b9: c0:f5:d1:93:d5:b6:7f:9f:a3:1b:8c:8c:b9:bb:96: 3b:3d:a6:d8:05:d6:2a:c7:6e:05:58:e4:c1:41:9e: e6:42:bc:64:e4:84:76:36:2c:27:be:b4:e3:54:64: d2:6d:b2:55:e5:a7:a0:50:0a:2d:87:6f:60:a2:60: 31:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F3:F3:FC:59:1F:2E:B0:03:4A:37:5E:F6:D3:46:3C:F8:23:8C:43 X509v3 Authority Key Identifier: keyid:81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 119.235.40.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:87:32:3e:b4:54:6b:06:8f:42:dc:70:0a:02:77:18:e5:f5: 38:8a:13:8c:49:cf:0f:a4:14:66:11:a8:fc:db:73:cd:2a:c9: 92:b6:d6:4e:94:34:38:5d:96:77:a7:d9:b9:49:16:7b:0f:b1: a3:9e:f6:2f:2b:69:6b:39:3c:ab:8c:85:e2:47:90:b6:d5:49: 93:3e:e4:93:cd:65:ff:66:27:80:23:06:3a:62:18:4c:85:05: ab:e3:45:ed:79:5b:b9:86:93:e5:d3:64:e6:32:fb:b4:02:8a: 31:40:30:a5:17:d5:0c:56:d2:a8:fd:20:bc:fc:78:d7:ee:ea: bf:32:31:fd:18:ed:bf:5f:bb:17:ea:35:71:5f:19:dd:12:32: 90:c5:fa:a3:3d:dd:16:20:4c:56:9b:53:fe:1c:4e:59:cc:83: c4:0a:e4:bb:4a:27:aa:32:72:05:aa:d9:9a:c3:f4:79:a8:8a: 6d:72:a0:3b:e6:71:da:e2:90:b6:eb:bb:a1:c1:a7:ef:22:51: ee:72:25:b0:c1:47:37:c9:d1:79:9c:eb:b0:00:6d:b5:21:27: 80:21:8c:f6:35:81:8f:f3:fc:5b:3e:69:1b:f9:82:90:f6:60: 4f:b6:07:ab:73:f9:bb:e0:49:5b:cb:b5:a5:89:75:2d:4c:90: 4a:92:cb:c4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVCQUQxMTAvBgNVBAUTKDgxRkZGMjE1MDA1REExQUZBQzVFMjRBQkJDQzAzQ0E3 MEY2NjRCNTYwHhcNMjYwMzI4MjIzMDAyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4NTY2YS02OGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNvE5z7NwqLp26d0dBfcDu/GPe0ZQB6BEl8pCKbXGiz/5qJW+e1brWJmVh7p e7HxAHzKS1Z/zwTWx+JKaYlDwzX8xN5Q6VdT0EWYL8oztuDIkXz/1dAgmYi0enJ0 1M4iUs4EQBtdeJRPu4bSyjwBslIMvLpU4xeSBHRYd6eB/kJsrny9JYxeFauu7a5J nlEuMnKGXoxCXVZGrkTIEGufDvZ3ydV3xetbOgMRBNrlSNC3CwEWUItoaOjPc4VL jgAbUrnA9dGT1bZ/n6MbjIy5u5Y7PabYBdYqx24FWOTBQZ7mQrxk5IR2NiwnvrTj VGTSbbJV5aegUAoth29gomAxmwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAzz8/xZ Hy6wA0o3XvbTRjz4I4xDMB8GA1UdIwQYMBaAFIH/8hUAXaGvrF4kq7zAPKcPZktW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUJBRC81MEQ5MUU2NkEz NDMxMUVCOTk3QjMzMTlDNEY5QUUwMi9nZl95RlFCZG9hLXNYaVNydk1BOHB3OW1T MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dmX3lGUUJkb2Etc1hpU3J2TUE4cHc5bVMxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVCQUQvNTBEOTFFNjZBMzQzMTFFQjk5N0IzMzE5QzRGOUFFMDIvOUZDRDBFRTZB MzQ0MTFFQjk0REZFNjE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDd+soMA0GCSqGSIb3DQEBCwUAA4IBAQCNhzI+tFRrBo9C3HAKAncY 5fU4ihOMSc8PpBRmEaj823PNKsmSttZOlDQ4XZZ3p9m5SRZ7D7GjnvYvK2lrOTyr jIXiR5C21UmTPuSTzWX/ZieAIwY6YhhMhQWr40XteVu5hpPl02TmMvu0AooxQDCl F9UMVtKo/SC8/HjX7uq/MjH9GO2/X7sX6jVxXxndEjKQxfqjPd0WIExWm1P+HE5Z zIPECuS7SieqMnIFqtmaw/R5qIptcqA75nHa4pC267uhwafvIlHuciWwwUc3ydF5 nOuwAG21ISeAIYz2NYGP8/xbPmkb+YKQ9mBPtgerc/m74Elby7WliXUtTJBKksvE -----END CERTIFICATE-----Generated at Mon Apr 6 09:53:46 2026 by rpki-client