$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa File: 0791DE6034A511ED9D82D13BC4F9AE02.roa (raw, json) Hash identifier: mOy9DmAYzZsYbEQhE2U9Un7tfVf8mtaB1bU3ox64k7k= Subject key identifier: 8A:21:25:08:56:FF:D2:34:43:C0:73:7F:A3:35:73:3E:BE:25:26:44 Certificate issuer: /CN=A91F7DCD/serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Certificate serial: 0AC8 Authority key identifier: 3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:31:14 +0000 ROA not before: Thu 04 Sep 2025 20:00:29 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 149175 IP address blocks: 39.109.92.0/24 maxlen: 24 39.109.93.0/24 maxlen: 24 39.109.94.0/24 maxlen: 24 39.109.95.0/24 maxlen: 24 103.120.228.0/23 maxlen: 24 103.227.128.0/24 maxlen: 24 103.227.129.0/24 maxlen: 24 103.227.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Mar 2026 19:12:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2760 (0xac8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DCD, serialNumber=3BD302FA7A2E866A679B1B6096DB67453A03AB86 Validity Not Before: Sep 4 20:00:29 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a469d2-3e55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:9b:79:48:6d:a1:7c:e1:02:66:1e:4c:6e:3c: a9:2e:b6:f0:2a:9b:fc:f7:14:4f:32:ae:29:36:de: 6f:de:f7:c1:89:cb:59:77:72:85:fd:39:6d:55:bb: b8:28:49:c2:1e:22:ff:10:a7:be:89:d8:6c:17:b6: d8:a3:8d:b0:1a:8d:59:a9:c4:38:68:cf:e7:1c:47: 8a:70:14:b0:b3:79:25:01:f9:4c:b3:5c:6a:36:3b: 1a:69:8d:71:e7:9b:0c:98:ec:ab:62:04:98:a4:a4: 75:89:2d:12:84:e8:67:6d:7b:9a:1e:64:91:d3:9b: 0f:24:56:e7:07:05:0c:ac:bf:9b:c0:31:b9:60:84: 92:97:33:03:ee:21:b9:e8:c3:d3:76:3e:b0:6a:af: c2:68:41:97:a4:18:20:be:a4:63:46:5a:df:ed:10: b3:ec:69:81:45:06:6b:b0:66:90:e4:11:71:d6:34: ff:cc:4a:60:bf:78:2b:fa:2a:8c:f9:4c:f9:9b:c0: 5f:7a:8a:ee:f6:9c:8f:17:a4:76:a7:31:97:42:ca: fb:03:f9:60:21:5b:78:4e:b4:6c:10:d0:11:ac:e1: 5d:8e:7a:b1:9d:66:91:23:aa:47:f9:88:ee:62:80: 35:dd:de:5c:43:27:d6:1e:f3:99:98:4b:02:94:d9: db:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:21:25:08:56:FF:D2:34:43:C0:73:7F:A3:35:73:3E:BE:25:26:44 X509v3 Authority Key Identifier: keyid:3B:D3:02:FA:7A:2E:86:6A:67:9B:1B:60:96:DB:67:45:3A:03:AB:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/O9MC-nouhmpnmxtglttnRToDq4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O9MC-nouhmpnmxtglttnRToDq4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DCD/84428B0E73D111EA9CDEC534C4F9AE02/0791DE6034A511ED9D82D13BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 39.109.92.0/22 103.120.228.0/23 103.227.128.0/23 103.227.131.0/24 Signature Algorithm: sha256WithRSAEncryption a1:61:fd:9b:6e:67:b0:27:0a:79:03:6b:3e:4c:7e:9d:16:78: 5b:de:7f:47:ce:04:a7:44:47:c5:71:aa:6b:17:ca:41:87:8f: e5:52:e5:8d:6f:94:71:f3:da:68:af:c7:4d:79:58:ee:6f:54: 3a:c2:08:ef:29:89:8d:64:75:62:06:aa:1f:a7:f3:bf:3b:51: c5:8e:88:8b:63:8d:f3:56:a7:a6:6c:99:81:54:8d:ef:06:e9: 04:ff:f8:9b:d5:4d:e2:8b:2b:55:a3:46:d1:d2:5d:99:6a:4b: 5d:c4:c2:b9:4c:06:d3:3d:44:8c:14:d1:b7:12:5a:81:06:7a: 72:ea:62:34:92:cd:5a:86:19:23:02:47:b4:4d:1b:73:61:b8: 31:ef:ab:f4:70:45:b3:4e:d8:38:00:0c:67:4f:1a:85:55:8f: d1:ad:c8:1e:5d:f2:b9:2c:8a:ec:a3:0d:f6:f4:cb:62:2e:1b: 1e:fd:3b:af:7e:a0:19:1f:ae:d8:39:24:e0:4f:c9:fa:9a:e7: da:5f:6e:b4:32:86:5d:ab:73:3a:ef:87:73:c1:a7:83:fe:2e: be:5e:7f:3f:39:ec:5a:54:ee:b6:c9:a9:cf:9a:51:b6:f4:5a: f0:b6:54:96:90:fe:cf:0e:a4:be:fb:9d:0d:95:02:73:48:87: ec:25:a0:dc -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQ0QxMTAvBgNVBAUTKDNCRDMwMkZBN0EyRTg2NkE2NzlCMUI2MDk2REI2NzQ1 M0EwM0FCODYwHhcNMjUwOTA0MjAwMDI5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjlkMi0zZTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpt5SG2hfOECZh5MbjypLrbwKpv89xRPMq4pNt5v3vfBictZd3KF/TltVbu4 KEnCHiL/EKe+idhsF7bYo42wGo1ZqcQ4aM/nHEeKcBSws3klAflMs1xqNjsaaY1x 55sMmOyrYgSYpKR1iS0ShOhnbXuaHmSR05sPJFbnBwUMrL+bwDG5YISSlzMD7iG5 6MPTdj6waq/CaEGXpBggvqRjRlrf7RCz7GmBRQZrsGaQ5BFx1jT/zEpgv3gr+iqM +Uz5m8Bfeoru9pyPF6R2pzGXQsr7A/lgIVt4TrRsENARrOFdjnqxnWaRI6pH+Yju YoA13d5cQyfWHvOZmEsClNnbjwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFIohJQhW /9I0Q8Bzf6M1cz6+JSZEMB8GA1UdIwQYMBaAFDvTAvp6LoZqZ5sbYJbbZ0U6A6uG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RDRC84NDQyOEIwRTcz RDExMUVBOUNERUM1MzRDNEY5QUUwMi9POU1DLW5vdWhtcG5teHRnbHR0blJUb0Rx NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL085TUMtbm91aG1wbm14dGdsdHRuUlRvRHE0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjdEQ0QvODQ0MjhCMEU3M0QxMTFFQTlDREVDNTM0QzRGOUFFMDIvMDc5MURFNjAz NEE1MTFFRDlEODJEMTNCQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQCJ21cAwQBZ3jkAwQBZ+OAAwQAZ+ODMA0GCSqGSIb3DQEBCwUAA4IB AQChYf2bbmewJwp5A2s+TH6dFnhb3n9HzgSnREfFcaprF8pBh4/lUuWNb5Rx89po r8dNeVjub1Q6wgjvKYmNZHViBqofp/O/O1HFjoiLY43zVqembJmBVI3vBukE//ib 1U3iiytVo0bR0l2ZaktdxMK5TAbTPUSMFNG3ElqBBnpy6mI0ks1ahhkjAke0TRtz Ybgx76v0cEWzTtg4AAxnTxqFVY/RrcgeXfK5LIrsow329MtiLhse/TuvfqAZH67Y OSTgT8n6mufaX260MoZdq3M674dzwaeD/i6+Xn8/OexaVO62yanPmlG29FrwtlSW kP7PDqS++50NlQJzSIfsJaDc -----END CERTIFICATE-----Generated at Thu Mar 12 13:43:50 2026 by rpki-client