$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa File: 9E40D11CC9EC11EE9644540FC4F9AE02.roa (raw, json) Hash identifier: jbj4Yy/3xKCdrnlEt3ZmRfUpNSYGQZxNQdTc35FyOXs= Subject key identifier: 93:6F:74:CF:B9:C0:94:1E:33:50:77:9F:9F:F7:4E:6A:DA:AC:E3:DB Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: 0186 Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:43:41 +0000 ROA not before: Mon 03 Mar 2025 07:29:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59383 IP address blocks: 143.119.96.0/20 maxlen: 20 143.119.112.0/24 maxlen: 24 143.119.208.0/20 maxlen: 20 143.119.210.0/24 maxlen: 24 143.119.211.0/24 maxlen: 24 143.119.223.0/24 maxlen: 24 143.119.224.0/20 maxlen: 20 143.119.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9, serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Validity Not Before: Mar 3 07:29:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3ee2d-8c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:89:08:a8:3e:f6:1f:2e:ed:46:aa:fe:55:33: 52:6a:f1:30:1d:35:f1:08:ee:bb:18:4f:32:77:cf: 81:4c:23:a8:db:9f:94:ba:4a:f8:da:61:36:fa:58: 37:34:8c:fd:f4:b9:39:0f:90:b0:d6:cb:2b:2c:49: c7:51:49:75:62:07:7a:d8:01:39:c5:fa:64:8b:f2: 2e:d4:41:28:19:de:05:9f:a0:5d:30:7b:93:d2:0f: 9e:9d:4e:72:1b:9b:04:71:f8:65:f4:48:8e:6c:01: 1e:ac:1f:1f:6b:57:72:77:be:27:7b:0e:5f:32:1f: 6c:29:e4:45:ea:f7:99:b7:fd:bf:cd:e3:e6:59:18: 48:26:8a:fc:51:3e:e8:5c:94:b6:c2:ee:0e:25:ea: ae:41:92:4d:23:6d:3d:89:03:7a:43:d3:ce:9f:b4: 7e:45:a7:5d:ef:7e:27:5a:2d:54:6a:4b:50:57:37: 7e:2e:d2:ea:82:72:68:22:33:a1:0c:88:87:17:30: 9f:69:22:08:a2:ad:0c:6d:c5:78:82:5f:e8:2a:a0: 2c:6b:62:41:e7:d5:fc:ae:7b:36:44:9c:b3:13:17: e2:8d:b4:14:8c:ef:79:89:a8:24:c7:79:6f:33:39: 8f:e1:f1:59:83:d7:52:c7:0a:47:c9:e8:e8:c6:2c: bb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:6F:74:CF:B9:C0:94:1E:33:50:77:9F:9F:F7:4E:6A:DA:AC:E3:DB X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 143.119.96.0-143.119.112.255 143.119.208.0-143.119.239.255 Signature Algorithm: sha256WithRSAEncryption 01:0b:be:ae:c9:12:39:3b:fe:69:ce:37:e2:43:68:fe:56:e4: b9:03:8a:ac:da:47:5f:55:f7:e0:4a:5e:2e:c3:c7:e8:f7:d0: 10:41:88:04:bd:dc:74:02:ce:84:a3:b1:1d:3b:f8:03:95:46: 6c:bc:ed:f1:c6:7e:a5:99:0d:99:2d:4f:89:15:c1:7e:a0:6f: 68:cf:91:5f:0f:5a:cc:5b:6a:04:02:30:57:af:01:6c:56:21: 2a:91:21:e8:46:d0:4b:24:21:a9:a0:99:1b:3a:b4:27:51:6f: ee:8c:9d:12:1d:09:af:28:7f:da:07:42:36:fa:0c:9d:e8:d4: 46:78:2a:1d:8e:90:a4:8b:a3:f1:d8:7a:10:11:c2:09:fc:33: fd:a4:cb:dc:54:0f:a5:44:6e:15:ae:67:bd:7c:84:f6:22:c0: f4:11:9e:fe:fc:f2:17:d3:99:72:c1:85:a8:12:ba:5e:0b:88: 6d:0e:de:32:56:b9:2f:11:98:54:df:a1:97:97:bf:0c:54:c2: 74:ee:8c:f0:59:ba:3e:7b:6d:41:21:6c:35:dd:5c:db:2c:9f: bd:c5:cd:75:01:2c:a6:b4:c0:4a:95:b8:23:d4:50:49:62:b6: f0:e3:74:26:0e:33:b1:6e:51:45:57:7b:cf:bb:e7:ea:cd:09: 25:5d:d0:a6 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUwMzAzMDcyOTI1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWUyZC04YzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4kIqD72Hy7tRqr+VTNSavEwHTXxCO67GE8yd8+BTCOo25+Uukr42mE2+lg3 NIz99Lk5D5Cw1ssrLEnHUUl1Ygd62AE5xfpki/Iu1EEoGd4Fn6BdMHuT0g+enU5y G5sEcfhl9EiObAEerB8fa1dyd74new5fMh9sKeRF6veZt/2/zePmWRhIJor8UT7o XJS2wu4OJequQZJNI209iQN6Q9POn7R+Radd734nWi1UaktQVzd+LtLqgnJoIjOh DIiHFzCfaSIIoq0MbcV4gl/oKqAsa2JB59X8rns2RJyzExfijbQUjO95iagkx3lv MzmP4fFZg9dSxwpHyejoxiy7ywIDAQABo4ICdjCCAnIwHQYDVR0OBBYEFJNvdM+5 wJQeM1B3n5/3TmrarOPbMB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1QzkvN0UyRjEyNjhDOUVCMTFFRThCODU3QjBDQzRGOUFFMDIvOUU0MEQxMUND OUVDMTFFRTk2NDQ1NDBGQzRGOUFFMDIucm9hMDUGCCsGAQUFBwEHAQH/BCYwJDAi BAIAATAcMAwDBAWPd2ADBACPd3AwDAMEBI930AMEBI934DANBgkqhkiG9w0BAQsF AAOCAQEAAQu+rskSOTv+ac434kNo/lbkuQOKrNpHX1X34EpeLsPH6PfQEEGIBL3c dALOhKOxHTv4A5VGbLzt8cZ+pZkNmS1PiRXBfqBvaM+RXw9azFtqBAIwV68BbFYh KpEh6EbQSyQhqaCZGzq0J1Fv7oydEh0Jryh/2gdCNvoMnejURngqHY6QpIuj8dh6 EBHCCfwz/aTL3FQPpURuFa5nvXyE9iLA9BGe/vzyF9OZcsGFqBK6XguIbQ7eMla5 LxGYVN+hl5e/DFTCdO6M8Fm6PnttQSFsNd1c2yyfvcXNdQEsprTASpW4I9RQSWK2 8ON0Jg4zsW5RRVd7z7vn6s0JJV3Qpg== -----END CERTIFICATE-----Generated at Mon Mar 2 01:59:11 2026 by rpki-client