$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa File: AF08CB4CC77511EC81DCA645C4F9AE02.roa (raw, json) Hash identifier: epKRw41KBWpJS0cS06bdYab65bSZPCjDLsCD9m8JyLg= Subject key identifier: 27:D9:00:40:8F:48:C7:BC:01:47:18:4B:8B:4C:EB:12:2A:DB:5B:7F Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 03FE Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:04:05 +0000 ROA not before: Thu 29 Jan 2026 00:20:23 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134697 IP address blocks: 87.121.72.0/23 maxlen: 24 87.121.74.0/23 maxlen: 24 87.121.92.0/23 maxlen: 24 87.121.94.0/23 maxlen: 24 87.121.248.0/23 maxlen: 24 87.121.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:04:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Jan 29 00:20:23 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a58ac5-be1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cd:d3:fb:bc:d0:4a:f8:8c:d2:b1:6f:2f:44: dd:c3:7a:5a:17:fd:ab:6d:a1:da:b2:db:ca:24:0b: b6:f7:83:26:3c:11:9e:a1:c1:f5:ec:94:c9:50:12: 5d:44:51:6a:9f:da:b7:01:5f:aa:de:6b:3a:77:85: 30:a3:16:c5:df:56:73:36:37:a6:75:b2:c7:04:0b: e7:a1:9f:e7:26:33:89:4b:dd:86:12:7c:74:15:b9: 9d:ee:62:cc:b5:42:2f:8f:34:ab:fe:1d:24:76:54: a4:36:1c:24:97:b9:52:39:bd:26:7e:de:e7:94:bf: 72:3d:f5:69:a5:14:f6:ac:96:4e:d2:09:18:d2:75: a1:e5:86:dd:be:ae:ea:ae:e3:e3:19:08:81:45:64: f7:ac:88:82:92:ce:8e:08:06:5c:72:b3:15:49:5e: db:f1:bb:1e:70:3e:85:e8:a1:c4:d5:86:5d:1c:96: d2:ff:6f:6a:f0:e9:97:4b:4a:93:03:80:d2:7b:37: 92:0a:3f:34:b6:ed:86:32:e0:ed:3a:cc:4e:29:fe: 7b:66:a1:86:1f:ef:89:8d:06:21:a3:f5:cd:14:c6: ea:85:49:9c:ef:e8:15:e5:78:4d:a9:20:90:ad:6a: 03:d0:12:5b:d5:24:c9:fc:0b:01:05:bd:1a:d2:68: 7f:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:D9:00:40:8F:48:C7:BC:01:47:18:4B:8B:4C:EB:12:2A:DB:5B:7F X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 87.121.72.0/22 87.121.92.0/22 87.121.248.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:9b:75:7e:5a:c4:4f:4f:0d:ed:49:d9:ba:3e:de:e2:5a:87: 85:33:78:2d:06:e7:fb:b5:58:4f:de:11:9e:2e:96:61:76:28: 51:db:d8:8d:a8:f5:a3:26:e9:56:64:96:cf:d3:75:f5:f7:00: 19:c7:42:7f:78:6f:0b:2b:d3:6e:6d:42:33:fd:32:8e:94:f2: 8d:26:0f:74:03:47:29:f8:d9:99:13:73:02:56:eb:c4:43:3f: 71:c7:fe:75:e1:9b:97:3a:95:e8:cf:d7:9d:fa:3d:7e:70:c2: 9d:3b:26:41:d8:5b:1b:11:a5:b1:d4:55:29:b5:f8:f0:3e:fe: ec:d1:67:fc:25:38:53:4c:18:1f:c1:a2:61:48:5f:35:e7:0e: 81:fb:9a:19:5c:57:75:f3:e5:2b:44:24:77:72:8d:16:a3:06: c8:0b:d1:2c:ba:e7:51:16:2b:00:2b:54:20:4f:c0:14:b0:83: 9a:4a:c5:48:9c:12:bb:83:8c:d1:b8:03:ba:38:cd:e6:89:a5: 71:68:df:3b:4a:a6:c2:5e:3f:08:77:5c:46:21:10:a2:ab:80: 67:55:19:57:eb:dd:38:99:fe:df:de:59:ce:63:e5:e4:be:d4: 42:c9:ee:57:cd:63:8a:54:c6:ac:81:d9:4f:31:b7:13:76:3c: d4:48:44:15 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjYwMTI5MDAyMDIzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGFjNS1iZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2M3T+7zQSviM0rFvL0Tdw3paF/2rbaHastvKJAu294MmPBGeocH17JTJUBJd RFFqn9q3AV+q3ms6d4UwoxbF31ZzNjemdbLHBAvnoZ/nJjOJS92GEnx0Fbmd7mLM tUIvjzSr/h0kdlSkNhwkl7lSOb0mft7nlL9yPfVppRT2rJZO0gkY0nWh5Ybdvq7q ruPjGQiBRWT3rIiCks6OCAZccrMVSV7b8bsecD6F6KHE1YZdHJbS/29q8OmXS0qT A4DSezeSCj80tu2GMuDtOsxOKf57ZqGGH++JjQYho/XNFMbqhUmc7+gV5XhNqSCQ rWoD0BJb1STJ/AsBBb0a0mh/rQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFCfZAECP SMe8AUcYS4tM6xIq21t/MB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTc1Q0MvMTNFN0Q3MkVBRkUzMTFFQ0EyQ0IwNjZEQzRGOUFFMDIvQUYwOENCNEND Nzc1MTFFQzgxRENBNjQ1QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQCV3lIAwQCV3lcAwQCV3n4MA0GCSqGSIb3DQEBCwUAA4IBAQAdm3V+ WsRPTw3tSdm6Pt7iWoeFM3gtBuf7tVhP3hGeLpZhdihR29iNqPWjJulWZJbP03X1 9wAZx0J/eG8LK9NubUIz/TKOlPKNJg90A0cp+NmZE3MCVuvEQz9xx/514ZuXOpXo z9ed+j1+cMKdOyZB2FsbEaWx1FUptfjwPv7s0Wf8JThTTBgfwaJhSF815w6B+5oZ XFd18+UrRCR3co0WowbIC9EsuudRFisAK1QgT8AUsIOaSsVInBK7g4zRuAO6OM3m iaVxaN87SqbCXj8Id1xGIRCiq4BnVRlX6904mf7f3lnOY+XkvtRCye5XzWOKVMas gdlPMbcTdjzUSEQV -----END CERTIFICATE-----Generated at Mon Mar 2 19:08:52 2026 by rpki-client