$ rpki-client -vvf rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/1A824A0E993511EF9BB0A677C4F9AE02.roa File: 1A824A0E993511EF9BB0A677C4F9AE02.roa (raw, json) Hash identifier: Wov/fGWwE46zeG8/aS8pJUUxgZwuFIk+0TXxAf2AhQQ= Subject key identifier: 11:4B:B8:48:95:CB:94:0C:FC:A5:BF:BE:C7:DA:C4:7E:CF:D5:F8:B7 Certificate issuer: /CN=A91338F0/serialNumber=8317FC7A82B0EE86520DF18FFD57295116DA5DF2 Certificate serial: 0106 Authority key identifier: 83:17:FC:7A:82:B0:EE:86:52:0D:F1:8F:FD:57:29:51:16:DA:5D:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/1A824A0E993511EF9BB0A677C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:00:40 +0000 ROA not before: Tue 19 Aug 2025 07:14:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45327 IP address blocks: 116.90.64.0/21 maxlen: 21 116.90.64.0/24 maxlen: 24 116.90.65.0/24 maxlen: 24 116.90.66.0/24 maxlen: 24 116.90.67.0/24 maxlen: 24 116.90.70.0/24 maxlen: 24 116.90.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.crl rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91338F0, serialNumber=8317FC7A82B0EE86520DF18FFD57295116DA5DF2 Validity Not Before: Aug 19 07:14:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3e418-9266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:bc:9d:ef:7f:56:ae:d3:f1:b2:88:e6:a8:90: 3d:a0:93:f4:7e:09:46:cb:f2:c8:8b:b9:49:9a:c0: b3:f2:2e:20:a1:1a:aa:04:57:49:0d:ab:07:ee:36: 01:81:51:39:cb:fa:2f:a8:88:4d:a7:83:ee:ca:0f: e4:d1:93:8b:f7:37:6c:ad:84:c0:96:f0:6c:ef:ef: 28:89:b9:33:4b:3e:56:ec:ce:0d:c4:40:dc:54:61: c3:f1:67:83:95:d6:67:ee:ae:41:ab:a6:ab:ea:2d: 7d:25:1c:18:f2:16:fc:cc:c3:63:66:87:fe:04:23: da:16:70:f1:e3:12:11:ea:37:40:c2:ba:ab:f5:53: 20:6d:ab:89:a9:de:bd:22:9b:ea:5d:22:d0:99:ca: 3f:c2:5c:ed:30:27:2e:b2:25:b8:05:d7:c1:34:89: c9:71:9e:92:49:59:4e:7e:fa:b9:29:58:da:98:39: 75:15:b6:7f:fe:7b:14:35:8c:a1:0c:c9:e0:f5:6f: 4d:45:07:23:9c:88:69:fb:fe:f7:d1:c6:51:09:62: 9c:de:78:21:59:5c:bf:01:35:15:49:e2:80:dc:c6: 89:c7:c5:fd:1b:6f:ac:5f:6a:2b:0c:44:6b:7b:7c: a7:10:11:63:ff:0c:2a:b1:07:38:f3:f1:9f:76:cb: 1d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:4B:B8:48:95:CB:94:0C:FC:A5:BF:BE:C7:DA:C4:7E:CF:D5:F8:B7 X509v3 Authority Key Identifier: keyid:83:17:FC:7A:82:B0:EE:86:52:0D:F1:8F:FD:57:29:51:16:DA:5D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/1A824A0E993511EF9BB0A677C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.90.64.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:64:d9:69:e6:3a:ab:11:c8:51:31:c8:a0:53:c0:c3:4b:fc: 89:d9:c1:80:d8:04:35:8c:5e:00:37:49:cd:50:3c:16:02:46: 1f:f3:52:a9:e7:d6:36:93:10:04:d0:3d:b8:75:9c:c1:ee:91: 06:9e:5a:a5:48:36:e7:cf:b0:b9:f2:58:34:1e:7b:08:85:7c: 95:a3:9a:ad:fb:91:7e:8c:19:ad:3e:fc:ed:0b:53:e4:4b:f0: ee:55:15:3f:a4:0b:88:28:05:e4:a2:ac:4e:72:51:ac:2c:9e: 34:c1:62:95:55:a6:4c:fd:e4:fc:fb:6f:04:93:18:6e:e7:18: c3:fb:94:88:36:ef:fe:b0:d4:b3:d2:7b:c6:20:bb:02:70:57: ad:49:b0:fd:62:cc:1a:05:39:1f:93:97:ed:b8:21:0e:a4:c2: cd:69:bd:76:3b:e5:32:99:43:c6:4d:66:60:20:25:a6:ff:97: 9d:b2:cf:ee:53:af:68:98:37:fb:ed:82:2a:dd:6b:f6:4b:91: ea:c2:59:2e:45:c9:a3:df:b4:a5:a7:6d:0c:82:dc:ef:96:eb: b3:45:47:d9:82:d2:60:02:32:d0:c0:3c:90:20:71:51:b3:43: 07:cf:83:9d:fc:d4:38:bc:6a:68:54:0e:a5:93:af:38:8d:f7: e7:e1:2a:f5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4RjAxMTAvBgNVBAUTKDgzMTdGQzdBODJCMEVFODY1MjBERjE4RkZENTcyOTUx MTZEQTVERjIwHhcNMjUwODE5MDcxNDU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTQxOC05MjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl7yd739WrtPxsojmqJA9oJP0fglGy/LIi7lJmsCz8i4goRqqBFdJDasH7jYB gVE5y/ovqIhNp4Puyg/k0ZOL9zdsrYTAlvBs7+8oibkzSz5W7M4NxEDcVGHD8WeD ldZn7q5Bq6ar6i19JRwY8hb8zMNjZof+BCPaFnDx4xIR6jdAwrqr9VMgbauJqd69 IpvqXSLQmco/wlztMCcusiW4BdfBNInJcZ6SSVlOfvq5KVjamDl1FbZ//nsUNYyh DMng9W9NRQcjnIhp+/730cZRCWKc3nghWVy/ATUVSeKA3MaJx8X9G2+sX2orDERr e3ynEBFj/wwqsQc48/GfdssdJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBFLuEiV y5QM/KW/vsfaxH7P1fi3MB8GA1UdIwQYMBaAFIMX/HqCsO6GUg3xj/1XKVEW2l3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzhGMC8wQTc3MUEzNjkz QUUxMUVGOEY0OEFCNDNDNEY5QUUwMi9neGY4ZW9LdzdvWlNEZkdQX1ZjcFVSYmFY ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d4Zjhlb0t3N29aU0RmR1BfVmNwVVJiYVhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM4RjAvMEE3NzFBMzY5M0FFMTFFRjhGNDhBQjQzQzRGOUFFMDIvMUE4MjRBMEU5 OTM1MTFFRjlCQjBBNjc3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDdFpAMA0GCSqGSIb3DQEBCwUAA4IBAQA/ZNlp5jqrEchRMcigU8DD S/yJ2cGA2AQ1jF4AN0nNUDwWAkYf81Kp59Y2kxAE0D24dZzB7pEGnlqlSDbnz7C5 8lg0HnsIhXyVo5qt+5F+jBmtPvztC1PkS/DuVRU/pAuIKAXkoqxOclGsLJ40wWKV VaZM/eT8+28Ekxhu5xjD+5SINu/+sNSz0nvGILsCcFetSbD9YswaBTkfk5ftuCEO pMLNab12O+UymUPGTWZgICWm/5edss/uU69omDf77YIq3Wv2S5HqwlkuRcmj37Sl p20MgtzvluuzRUfZgtJgAjLQwDyQIHFRs0MHz4Od/NQ4vGpoVA6lk684jffn4Sr1 -----END CERTIFICATE-----Generated at Mon Mar 2 10:24:13 2026 by rpki-client