$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/8D7F07D6555A11F09950400BC4F9AE02.roa File: 8D7F07D6555A11F09950400BC4F9AE02.roa (raw, json) Hash identifier: MdGux5KuG5vHcPm7yZJEdfJJ2QMTyqn8Ch7aLATLVTw= Subject key identifier: 3E:31:B4:65:C7:33:0C:29:03:89:2B:D3:06:0C:44:4D:7F:3D:AE:11 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 087D Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/8D7F07D6555A11F09950400BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:44:32 +0000 ROA not before: Wed 08 Oct 2025 22:24:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9889 IP address blocks: 123.100.64.0/18 maxlen: 24 202.89.32.0/19 maxlen: 19 203.89.160.0/19 maxlen: 19 203.89.176.0/24 maxlen: 24 203.89.177.0/24 maxlen: 24 2401:5c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 8 22:24:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48910-6d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cc:f8:4c:00:f4:3b:aa:34:92:ef:bf:97:20: 2c:f1:43:fe:38:ca:79:b3:72:d6:b6:67:64:ed:ce: 09:24:16:b4:36:7f:cf:5c:51:70:2a:49:15:e4:49: fb:bc:bc:d4:4b:47:ce:45:a7:ef:23:85:c7:67:fd: b3:23:0f:0f:f9:5d:be:6f:13:15:7a:ee:f4:02:12: fd:62:11:e8:83:c4:ca:3b:cc:b9:2a:d9:78:3a:7f: 9f:b9:7b:38:1d:5b:a4:69:a6:4e:d2:e2:d0:10:8a: de:d9:7f:88:b7:ff:10:2f:53:2f:f9:ba:bb:10:e9: 0d:be:03:77:b7:2e:58:a6:07:79:0e:82:6c:8c:2a: 28:b7:e4:4e:68:27:e4:af:b1:07:83:c5:2d:c2:38: fc:74:58:7f:7a:5d:4d:8e:f0:f3:2b:6d:f2:f2:b5: 02:1e:6f:38:c5:ca:e8:5c:dc:6e:b7:5d:d0:17:14: b3:5c:d2:cb:ab:01:55:4e:e2:1c:ba:4f:6c:4b:b4: 7b:13:49:ee:e3:13:dd:1c:8b:a9:23:e0:2c:3f:75: 7d:8e:63:e4:01:0b:82:6d:eb:8e:21:2d:2a:af:ca: ca:47:cf:70:7b:c5:ad:f5:8f:c3:05:e5:40:21:d1: 15:2e:06:73:da:60:62:8a:b4:78:53:fd:33:8f:81: 17:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:31:B4:65:C7:33:0C:29:03:89:2B:D3:06:0C:44:4D:7F:3D:AE:11 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/8D7F07D6555A11F09950400BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.100.64.0/18 202.89.32.0/19 203.89.160.0/19 IPv6: 2401:5c00::/32 Signature Algorithm: sha256WithRSAEncryption 46:61:44:a1:d7:f4:99:18:43:8c:63:ad:ae:6b:8c:fd:4c:bf: 56:09:94:9d:f5:19:0b:5a:ae:7a:4d:19:6a:94:c0:0f:6a:48: 21:d2:a3:5d:21:89:01:b2:5c:5b:c9:38:a7:37:3f:08:2b:3b: 96:91:2e:42:6a:ec:f6:16:58:5c:cb:9f:e8:11:65:7f:43:03: 52:28:71:cc:8f:e4:1e:66:24:52:37:d1:12:c7:b1:b6:61:12: 2a:91:d3:0e:71:ba:83:11:ee:15:52:ed:14:b9:63:34:fc:55: 56:e6:6e:91:40:c6:44:0a:96:22:3b:98:a1:9d:ca:a7:14:4f: 27:87:b0:a6:b2:e0:21:94:71:6f:7a:59:e6:49:db:44:e4:b8: be:b2:be:0b:97:1b:5d:2e:d7:b1:3e:62:07:9c:24:a8:47:f0: 11:3f:e3:1a:4f:44:e5:24:0b:d7:8a:8c:65:a4:59:ba:e1:a3: e4:8f:a3:7f:16:b1:80:4b:b3:71:f5:ef:ce:05:91:77:a2:fb: 68:39:9b:f4:2a:23:c7:87:39:07:1c:56:ab:c8:50:0e:fb:09: 94:6d:10:60:da:cb:d2:a1:93:81:2a:a1:40:7f:02:ae:dd:6c: 65:e1:d1:b7:11:8e:a2:49:1f:b2:17:ce:e6:0e:46:15:9f:72: c2:70:ee:83 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjUxMDA4MjIyNDM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODkxMC02ZDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMz4TAD0O6o0ku+/lyAs8UP+OMp5s3LWtmdk7c4JJBa0Nn/PXFFwKkkV5En7 vLzUS0fORafvI4XHZ/2zIw8P+V2+bxMVeu70AhL9YhHog8TKO8y5Ktl4On+fuXs4 HVukaaZO0uLQEIre2X+It/8QL1Mv+bq7EOkNvgN3ty5Ypgd5DoJsjCoot+ROaCfk r7EHg8Utwjj8dFh/el1NjvDzK23y8rUCHm84xcroXNxut13QFxSzXNLLqwFVTuIc uk9sS7R7E0nu4xPdHIupI+AsP3V9jmPkAQuCbeuOIS0qr8rKR89we8Wt9Y/DBeVA IdEVLgZz2mBiirR4U/0zj4EXOQIDAQABo4ICezCCAncwHQYDVR0OBBYEFD4xtGXH MwwpA4kr0wYMRE1/Pa4RMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvOEQ3RjA3RDY1 NTVBMTFGMDk5NTA0MDBCQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQGe2RAAwQFylkgAwQFy1mgMA0EAgACMAcDBQAkAVwAMA0GCSqGSIb3 DQEBCwUAA4IBAQBGYUSh1/SZGEOMY62ua4z9TL9WCZSd9RkLWq56TRlqlMAPakgh 0qNdIYkBslxbyTinNz8IKzuWkS5Cauz2Flhcy5/oEWV/QwNSKHHMj+QeZiRSN9ES x7G2YRIqkdMOcbqDEe4VUu0UuWM0/FVW5m6RQMZECpYiO5ihncqnFE8nh7CmsuAh lHFvelnmSdtE5Li+sr4LlxtdLtexPmIHnCSoR/ARP+MaT0TlJAvXioxlpFm64aPk j6N/FrGAS7Nx9e/OBZF3ovtoOZv0KiPHhzkHHFaryFAO+wmUbRBg2svSoZOBKqFA fwKu3Wxl4dG3EY6iSR+yF87mDkYVn3LCcO6D -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:42 2026 by rpki-client