$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/EA1E8B8A51C711EE9A3CC954C4F9AE02.roa File: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (raw, json) Hash identifier: G97KXaER8oHFpVxJ9Nr+pWkbaSoOX+AJP+0tU8j2jBg= Subject key identifier: FC:3A:1D:91:97:F3:D2:B3:EF:ED:0E:E0:69:21:E3:71:EA:E2:90:CC Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 01F0 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/EA1E8B8A51C711EE9A3CC954C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:16:53 +0000 ROA not before: Thu 06 Nov 2025 23:38:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 19905 IP address blocks: 58.28.0.0/16 maxlen: 16 118.90.0.0/16 maxlen: 16 182.154.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Nov 6 23:38:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46675-b120 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:35:e6:39:e8:0d:34:cf:04:d9:ee:4c:00:55: 99:d5:b6:8c:28:5b:7f:c8:e2:55:9a:72:3b:98:b4: 39:5a:2e:8e:3e:db:65:4c:43:54:c3:aa:6f:53:d1: 1e:c2:53:9f:92:23:a3:28:87:71:2e:3a:df:8f:37: b5:44:30:b5:82:53:ee:c0:7d:10:7e:e6:87:d9:ec: 72:04:12:10:c9:57:0b:1c:75:be:e7:99:3b:58:08: c2:a5:8f:f2:2e:6c:6c:f2:ab:15:e5:21:8a:11:e5: 6f:e8:63:01:fe:bc:ef:f1:e9:b9:6c:80:26:e7:f9: 55:1d:08:91:35:93:89:ef:64:fa:b9:f4:9c:4c:83: 15:a8:8c:d9:0e:c0:59:e6:30:48:0c:a9:ed:4c:62: 67:98:bc:6e:d7:a2:dc:2f:75:90:a6:ba:89:56:26: ff:7e:24:ad:e2:c8:65:d7:f6:40:85:cf:b7:d9:63: d6:8e:12:3b:ae:d5:31:8f:3f:7d:6e:9b:28:b6:bd: 36:4c:2d:25:7d:06:4e:3d:72:b0:ba:97:48:7c:a3: 9e:7f:bc:50:5b:b8:4f:9b:48:f6:60:8c:0d:f5:e5: b8:5d:d7:1e:82:3e:c1:e7:22:c9:bf:6f:0c:12:f0: ca:29:5f:f9:e5:11:10:62:65:55:1f:7d:85:f7:7d: bb:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3A:1D:91:97:F3:D2:B3:EF:ED:0E:E0:69:21:E3:71:EA:E2:90:CC X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/EA1E8B8A51C711EE9A3CC954C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.28.0.0/16 118.90.0.0/16 182.154.0.0/16 Signature Algorithm: sha256WithRSAEncryption 36:95:91:fe:59:8b:71:71:55:bf:76:a1:aa:31:0c:3e:4e:42: d1:7e:8e:ea:9d:f4:87:eb:cb:f9:e6:fe:63:ca:ff:da:39:0d: 9b:d1:d9:a4:1c:7f:49:c9:bd:6a:aa:33:bc:ee:9b:86:13:1d: aa:d0:56:59:37:8f:a3:77:21:66:e6:68:18:18:b5:81:dd:6f: 37:9d:b3:8c:3b:cf:40:72:01:31:3e:9a:38:cc:55:1a:94:23: 4b:6b:89:f5:48:e7:62:cc:93:7f:3e:05:ca:96:43:02:cb:e4: 42:b1:10:7a:4a:7f:34:7d:20:5d:ad:01:e7:ef:bb:eb:80:8f: d8:68:5c:0b:4a:cd:ea:ed:fb:78:19:ea:bb:0d:cc:37:54:bf: ca:6b:98:4b:3b:2c:de:30:51:4a:4f:b0:82:9d:d9:db:81:b4: 9b:90:23:9c:d5:80:76:9d:2f:a2:19:c0:85:de:ec:45:a0:f0: 92:43:92:77:73:f0:0a:04:b8:0e:11:4a:b7:a0:3e:4a:d4:eb: 7d:3f:c4:ba:8e:aa:81:d7:bb:68:d0:89:a4:26:64:43:a7:31: e2:a7:72:4a:93:a1:cb:57:a1:9e:02:67:6f:bf:de:f0:47:87: 4a:49:ff:4b:cf:74:32:f5:e9:4e:13:11:e8:89:68:df:41:fc: fb:60:72:e3 -----BEGIN CERTIFICATE----- MIIFRTCCBC2gAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUxMTA2MjMzODM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjY3NS1iMTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DXmOegNNM8E2e5MAFWZ1baMKFt/yOJVmnI7mLQ5Wi6OPttlTENUw6pvU9Ee wlOfkiOjKIdxLjrfjze1RDC1glPuwH0QfuaH2exyBBIQyVcLHHW+55k7WAjCpY/y Lmxs8qsV5SGKEeVv6GMB/rzv8em5bIAm5/lVHQiRNZOJ72T6ufScTIMVqIzZDsBZ 5jBIDKntTGJnmLxu16LcL3WQprqJVib/fiSt4shl1/ZAhc+32WPWjhI7rtUxjz99 bpsotr02TC0lfQZOPXKwupdIfKOef7xQW7hPm0j2YIwN9eW4Xdcegj7B5yLJv28M EvDKKV/55REQYmVVH32F9327dQIDAQABo4ICaTCCAmUwHQYDVR0OBBYEFPw6HZGX 89Kz7+0O4Gkh43Hq4pDMMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE1QzYvRDU1NTE5QjQ0QzM0MTFFRUFFRURBMjJDQzRGOUFFMDIvRUExRThCOEE1 MUM3MTFFRTlBM0NDOTU0QzRGOUFFMDIucm9hMCgGCCsGAQUFBwEHAQH/BBkwFzAV BAIAATAPAwMAOhwDAwB2WgMDALaaMA0GCSqGSIb3DQEBCwUAA4IBAQA2lZH+WYtx cVW/dqGqMQw+TkLRfo7qnfSH68v55v5jyv/aOQ2b0dmkHH9Jyb1qqjO87puGEx2q 0FZZN4+jdyFm5mgYGLWB3W83nbOMO89AcgExPpo4zFUalCNLa4n1SOdizJN/PgXK lkMCy+RCsRB6Sn80fSBdrQHn77vrgI/YaFwLSs3q7ft4Geq7Dcw3VL/Ka5hLOyze MFFKT7CCndnbgbSbkCOc1YB2nS+iGcCF3uxFoPCSQ5J3c/AKBLgOEUq3oD5K1Ot9 P8S6jqqB17to0ImkJmRDpzHip3JKk6HLV6GeAmdvv97wR4dKSf9Lz3Qy9elOExHo iWjfQfz7YHLj -----END CERTIFICATE-----Generated at Mon Mar 2 07:51:12 2026 by rpki-client