$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/DAAFB93452D811ECB51CE973C4F9AE02.roa File: DAAFB93452D811ECB51CE973C4F9AE02.roa (raw, json) Hash identifier: p7G3QRM/2uhtQj3wtDMDeZf0kzeIU6oXaiulKt6wFug= Subject key identifier: 2B:01:47:DE:43:F4:C6:AF:E9:7C:DB:91:85:4E:8F:7D:8C:08:6D:B5 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 0876 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/DAAFB93452D811ECB51CE973C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:44:26 +0000 ROA not before: Wed 08 Oct 2025 22:24:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38084 IP address blocks: 123.255.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2166 (0x876) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 8 22:24:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48909-a3ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6e:2b:d6:27:9c:c8:72:92:67:96:9c:09:00: 6b:88:06:95:f7:bb:2c:6a:dc:ea:ec:97:20:3c:d7: 75:1c:fd:3d:75:cc:f9:f7:aa:fb:21:b1:26:b5:e9: f4:4f:e2:c2:af:9b:7a:65:71:30:52:c3:fe:1d:33: 44:50:1a:a1:20:fb:9c:b7:3c:c2:75:90:1b:b7:6e: 0b:2b:78:78:b9:70:53:a0:3c:e6:f1:5b:5e:6e:f3: 9a:fc:c2:be:c7:90:33:04:54:4a:90:56:11:cb:97: 94:b0:df:f8:b4:41:21:3c:1f:96:ca:84:c8:51:f3: 4b:81:e2:c9:05:1d:a0:a9:37:ae:f1:5c:b0:51:a0: 5c:9b:7a:47:b0:fe:81:b0:56:48:e7:f7:3c:a8:47: 40:93:89:38:5b:39:b3:b5:27:98:37:54:60:73:2d: 78:6b:06:73:15:c0:7a:3f:b9:53:6d:43:45:21:ff: 76:28:0c:6f:33:a9:b9:bd:f4:f2:cf:ef:d1:a4:46: 91:1e:ad:fa:bb:1c:73:3f:8a:66:d3:ef:29:9b:dd: 84:71:9a:86:f8:ff:80:a4:98:92:6b:09:a1:c7:e3: 02:f0:d3:ee:08:5b:06:c7:3f:7e:bc:e3:53:fc:e9: 6a:80:bf:52:92:c2:c5:7b:6e:80:f9:24:6e:61:b5: d9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:01:47:DE:43:F4:C6:AF:E9:7C:DB:91:85:4E:8F:7D:8C:08:6D:B5 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/DAAFB93452D811ECB51CE973C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.255.13.0/24 Signature Algorithm: sha256WithRSAEncryption 30:9a:43:6e:30:e8:b3:12:17:56:cd:a8:1d:1e:fa:cb:bd:c9: 6d:9b:ae:2f:1c:c2:aa:a2:f3:64:a3:37:17:c1:27:a4:d2:64: 41:36:52:d2:93:ca:63:77:a6:53:88:e0:24:3d:7e:f6:5f:d5: 8d:24:1b:45:af:0f:c1:13:0d:a0:5b:c8:26:e2:36:f0:b3:8c: 09:97:b6:cb:87:05:58:f2:15:75:e8:b9:4d:86:53:00:8a:19: d4:7b:e3:a1:9c:d9:7a:6a:51:f5:43:f8:da:4f:23:8a:23:98: 96:b7:04:c9:d0:a8:21:1c:4a:ed:41:16:75:8b:66:e3:5e:65: 50:72:9e:c4:f1:67:b7:0c:04:28:f9:c5:67:21:11:65:b1:d8: 97:1c:03:e3:62:5a:9d:4b:f7:9c:51:c6:e5:64:c6:7e:06:42: e1:5d:6c:21:69:35:6b:b1:44:4f:96:ca:39:63:d0:dd:ea:49: 18:25:1e:4e:f4:21:cf:d7:2c:92:0e:e9:93:6b:dd:91:b2:de: 6e:9a:4d:7a:97:14:a7:0b:71:09:0c:6f:66:5b:80:b1:92:30: 30:7b:aa:91:64:dd:2d:ea:53:b9:8f:bd:97:92:d3:59:2e:af: 9c:ac:81:c1:83:70:54:4e:e1:c6:79:dd:1e:79:a0:37:38:c6: c5:e2:82:e5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjUxMDA4MjIyNDMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODkwOS1hM2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAum4r1iecyHKSZ5acCQBriAaV97ssatzq7JcgPNd1HP09dcz596r7IbEmten0 T+LCr5t6ZXEwUsP+HTNEUBqhIPuctzzCdZAbt24LK3h4uXBToDzm8VtebvOa/MK+ x5AzBFRKkFYRy5eUsN/4tEEhPB+WyoTIUfNLgeLJBR2gqTeu8VywUaBcm3pHsP6B sFZI5/c8qEdAk4k4WzmztSeYN1Rgcy14awZzFcB6P7lTbUNFIf92KAxvM6m5vfTy z+/RpEaRHq36uxxzP4pm0+8pm92EcZqG+P+ApJiSawmhx+MC8NPuCFsGxz9+vONT /OlqgL9SksLFe26A+SRuYbXZDQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCsBR95D 9Mav6XzbkYVOj32MCG21MB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvREFBRkI5MzQ1 MkQ4MTFFQ0I1MUNFOTczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAe/8NMA0GCSqGSIb3DQEBCwUAA4IBAQAwmkNuMOizEhdWzagdHvrL vcltm64vHMKqovNkozcXwSek0mRBNlLSk8pjd6ZTiOAkPX72X9WNJBtFrw/BEw2g W8gm4jbws4wJl7bLhwVY8hV16LlNhlMAihnUe+OhnNl6alH1Q/jaTyOKI5iWtwTJ 0KghHErtQRZ1i2bjXmVQcp7E8We3DAQo+cVnIRFlsdiXHAPjYlqdS/ecUcblZMZ+ BkLhXWwhaTVrsURPlso5Y9Dd6kkYJR5O9CHP1yySDumTa92Rst5umk16lxSnC3EJ DG9mW4CxkjAwe6qRZN0t6lO5j72XktNZLq+crIHBg3BUTuHGed0eeaA3OMbF4oLl -----END CERTIFICATE-----Generated at Mon Mar 2 09:13:33 2026 by rpki-client