$ rpki-client -vvf rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/F34C44FC3F7511F0A963EE11C4F9AE02.roa File: F34C44FC3F7511F0A963EE11C4F9AE02.roa (raw, json) Hash identifier: esjeBUskXeiuKK+21nCPNNCLp5PBYsrkVGWW22aTj9g= Subject key identifier: 0D:D8:81:DE:D5:00:D5:7F:B8:BC:46:3A:AE:40:66:5F:93:6C:58:04 Certificate issuer: /CN=A91426E8/serialNumber=F3718957050C4BCE14A4EC38EAACEE9C74244C4F Certificate serial: 8F Authority key identifier: F3:71:89:57:05:0C:4B:CE:14:A4:EC:38:EA:AC:EE:9C:74:24:4C:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83GJVwUMS84UpOw46qzunHQkTE8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/F34C44FC3F7511F0A963EE11C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:09:40 +0000 ROA not before: Mon 02 Jun 2025 05:53:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4694 IP address blocks: 223.27.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/83GJVwUMS84UpOw46qzunHQkTE8.crl rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/83GJVwUMS84UpOw46qzunHQkTE8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83GJVwUMS84UpOw46qzunHQkTE8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91426E8, serialNumber=F3718957050C4BCE14A4EC38EAACEE9C74244C4F Validity Not Before: Jun 2 05:53:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3f444-2130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:7e:1e:c1:a4:e1:e2:dc:d1:ff:b4:72:66:89: d2:5f:0b:94:4e:bb:05:3c:03:c6:cc:30:52:b2:22: 99:87:91:82:91:84:24:75:54:45:b0:02:e0:8d:49: 37:a2:7e:31:12:6b:58:e3:82:36:3e:68:97:40:6d: aa:3b:c7:07:90:b3:c9:49:b1:b4:91:66:db:44:09: 4c:99:c4:b5:08:23:04:13:41:cb:11:f6:0d:b9:89: b6:b8:4b:7b:97:70:69:e8:90:54:fb:70:b4:f8:8b: 46:62:a0:02:b2:8a:8a:92:f4:43:fc:16:2f:37:e9: 4f:06:9f:3c:b4:dc:d4:87:5f:18:85:af:9a:5d:a2: 38:13:d2:2d:cc:db:6b:d6:49:44:77:e5:c9:a1:90: 96:18:a2:ef:92:11:73:28:4d:80:95:1d:e5:68:4e: 96:60:0f:26:2a:a4:ff:fa:d9:6e:4e:b5:2c:61:60: 3e:b1:77:d7:03:63:64:b2:05:0b:25:4d:d9:5a:64: 16:58:97:76:93:00:27:ab:38:b4:0a:2e:7a:0a:e7: da:46:20:7f:ad:6d:32:cd:61:be:44:fc:b1:ae:8c: 53:cc:92:98:48:f5:8a:11:fd:0c:f3:22:d2:d2:8e: 9c:8b:45:e7:5c:cd:55:3f:30:ec:50:22:36:c1:4d: 0f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D8:81:DE:D5:00:D5:7F:B8:BC:46:3A:AE:40:66:5F:93:6C:58:04 X509v3 Authority Key Identifier: keyid:F3:71:89:57:05:0C:4B:CE:14:A4:EC:38:EA:AC:EE:9C:74:24:4C:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/83GJVwUMS84UpOw46qzunHQkTE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83GJVwUMS84UpOw46qzunHQkTE8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91426E8/8D5AA17A3F7511F096232A11C4F9AE02/F34C44FC3F7511F0A963EE11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 223.27.118.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:ba:af:61:b4:f0:c2:80:d0:b4:46:54:23:3b:e0:0c:3a:9f: b9:ed:09:73:3b:80:86:38:82:5c:30:81:08:0e:7f:d8:5a:20: a3:dd:85:dc:02:54:87:07:a2:9d:c1:94:74:e9:a8:a5:2b:95: 2d:47:3d:1a:b3:6c:2c:b8:a7:55:b4:2a:7a:33:02:d1:ac:75: 94:83:f4:d4:dd:2f:f5:ca:e5:64:08:d5:d4:27:d1:2a:10:1f: 15:4b:53:16:81:e8:dd:34:b0:1e:4e:e7:d4:de:96:44:c8:82: 5e:77:e0:51:95:a9:78:58:1b:ff:2b:31:26:53:47:8e:8f:df: 83:0e:43:04:86:08:1e:14:22:15:76:20:60:ba:4e:6b:09:86: a7:ce:02:83:8a:a2:b9:ed:fe:d2:0b:d4:8b:e5:51:02:eb:39: ea:d5:66:10:d2:0b:70:68:39:f4:f5:c5:ef:be:cb:c3:de:08: 4b:70:a7:44:da:41:49:2f:43:f6:3f:cc:80:f4:f1:2b:1e:61: 8b:88:83:c1:62:67:3a:79:14:68:7b:c4:9f:d9:51:df:4c:f7: 5f:63:6a:ff:47:9c:a0:a2:a2:74:f3:81:58:cc:22:9a:e5:da: 72:9d:1e:84:a0:3e:5f:6d:e3:fa:46:b7:8e:8a:3a:1d:62:70: 79:88:bd:2d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI2RTgxMTAvBgNVBAUTKEYzNzE4OTU3MDUwQzRCQ0UxNEE0RUMzOEVBQUNFRTlD NzQyNDRDNEYwHhcNMjUwNjAyMDU1MzQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjQ0NC0yMTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAon4ewaTh4tzR/7RyZonSXwuUTrsFPAPGzDBSsiKZh5GCkYQkdVRFsALgjUk3 on4xEmtY44I2PmiXQG2qO8cHkLPJSbG0kWbbRAlMmcS1CCMEE0HLEfYNuYm2uEt7 l3Bp6JBU+3C0+ItGYqACsoqKkvRD/BYvN+lPBp88tNzUh18Yha+aXaI4E9ItzNtr 1klEd+XJoZCWGKLvkhFzKE2AlR3laE6WYA8mKqT/+tluTrUsYWA+sXfXA2NksgUL JU3ZWmQWWJd2kwAnqzi0Ci56CufaRiB/rW0yzWG+RPyxroxTzJKYSPWKEf0M8yLS 0o6ci0XnXM1VPzDsUCI2wU0PowIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA3Ygd7V ANV/uLxGOq5AZl+TbFgEMB8GA1UdIwQYMBaAFPNxiVcFDEvOFKTsOOqs7px0JExP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjZFOC84RDVBQTE3QTNG NzUxMUYwOTYyMzJBMTFDNEY5QUUwMi84M0dKVndVTVM4NFVwT3c0NnF6dW5IUWtU RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgzR0pWd1VNUzg0VXBPdzQ2cXp1bkhRa1RFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI2RTgvOEQ1QUExN0EzRjc1MTFGMDk2MjMyQTExQzRGOUFFMDIvRjM0QzQ0RkMz Rjc1MTFGMEE5NjNFRTExQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQB3xt2MA0GCSqGSIb3DQEBCwUAA4IBAQBPuq9htPDCgNC0RlQjO+AM Op+57QlzO4CGOIJcMIEIDn/YWiCj3YXcAlSHB6KdwZR06ailK5UtRz0as2wsuKdV tCp6MwLRrHWUg/TU3S/1yuVkCNXUJ9EqEB8VS1MWgejdNLAeTufU3pZEyIJed+BR lal4WBv/KzEmU0eOj9+DDkMEhggeFCIVdiBguk5rCYanzgKDiqK57f7SC9SL5VEC 6znq1WYQ0gtwaDn09cXvvsvD3ghLcKdE2kFJL0P2P8yA9PErHmGLiIPBYmc6eRRo e8Sf2VHfTPdfY2r/R5ygoqJ084FYzCKa5dpynR6EoD5fbeP6RreOijodYnB5iL0t -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:09 2026 by rpki-client