$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa File: FAA2E3324C3811EEB7116433C4F9AE02.roa (raw, json) Hash identifier: lY4zHcYM+OKzlDFbmIejzsChBG9D4T2+3+SOYmgyPIs= Subject key identifier: F5:2D:17:49:83:35:3E:DB:02:83:D8:B7:EF:06:FA:42:EF:BD:91:5F Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 01EF Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:16:52 +0000 ROA not before: Thu 06 Nov 2025 23:38:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 17435 IP address blocks: 58.28.0.0/16 maxlen: 16 118.90.0.0/16 maxlen: 16 182.154.0.0/16 maxlen: 16 2001:e20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:26:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Nov 6 23:38:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a46674-ee25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:40:53:b9:6c:a7:8e:09:e3:87:d2:3a:6e:31: b6:99:8b:9e:a5:e5:df:8e:d4:d6:09:2e:72:38:2a: 2c:c5:82:df:e7:4d:b1:7b:95:9c:5c:86:be:fe:6c: 8c:72:49:8d:ba:ba:23:94:a5:57:54:72:34:12:bf: 85:2e:e8:ce:a9:6b:81:71:a2:c6:5f:d9:15:a8:1d: fa:61:6b:c4:31:17:89:d8:fc:2c:69:5c:61:92:15: 18:4f:df:0e:98:5d:f6:1c:30:56:02:0e:b5:02:04: e4:02:25:9f:2d:ff:57:14:57:34:02:2c:3b:b5:c4: e3:c8:8d:3d:60:dc:21:55:9a:49:4e:22:8c:8d:5a: 11:24:2c:d4:3c:7d:59:62:80:9c:68:df:98:8d:91: 28:59:bc:40:ae:31:79:0f:3b:4f:bc:be:c9:02:1f: cb:12:bb:60:c3:49:86:34:66:d2:c1:d7:58:03:31: ef:28:39:1a:58:e8:9e:77:0b:26:31:8d:a5:9e:78: ed:04:9c:dc:aa:2e:8b:93:a6:6d:61:8b:9d:dc:97: b7:b0:23:28:aa:b2:48:ab:89:7d:1b:0c:e9:f2:fe: 96:68:46:96:53:70:36:a1:f9:54:ad:29:b0:62:ad: 1e:ac:bc:2b:9b:df:2d:39:8d:18:e5:5d:6d:22:90: 6c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:2D:17:49:83:35:3E:DB:02:83:D8:B7:EF:06:FA:42:EF:BD:91:5F X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/FAA2E3324C3811EEB7116433C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.28.0.0/16 118.90.0.0/16 182.154.0.0/16 IPv6: 2001:e20::/32 Signature Algorithm: sha256WithRSAEncryption 21:18:5b:30:ca:3b:c9:66:7e:1d:e6:bb:84:37:81:0f:12:e1: 4d:84:83:85:8d:4e:3d:76:c9:c0:7f:9b:4c:b1:30:86:15:13: 7a:bc:d7:c3:85:8c:54:b5:ef:69:83:6f:3b:80:b3:33:69:b2: 27:7a:93:c1:09:20:21:17:9d:a6:5c:f7:2a:da:7f:17:c7:3a: fa:a4:92:67:5c:69:32:3b:d9:69:31:2d:28:27:e2:f7:c6:3c: 73:60:67:2b:df:87:37:1a:9e:ac:bf:45:61:6a:f6:c0:ad:e8: f1:8e:0f:6f:51:ac:32:7f:ed:8a:a4:48:e5:fc:0f:6a:30:68: f8:7d:9b:7d:13:e3:14:88:0f:8e:75:df:92:1a:ac:11:50:ae: 54:97:b0:04:d6:cb:d4:b4:af:2d:76:6b:28:07:15:44:0c:cb: ce:4e:df:de:d8:cb:d5:b6:c1:23:04:d0:50:4a:63:10:2b:8e: 84:a4:e5:0a:21:cb:e0:64:0e:6e:4c:96:46:8f:b3:7a:e0:8e: d3:91:8c:1d:ef:53:36:57:bf:6e:cb:a0:83:62:b1:ec:ca:89: 68:d7:36:f1:f3:0b:b0:71:83:b8:9c:e2:13:5a:ed:95:c5:ce: e9:ce:75:c4:2c:f5:e2:45:10:e9:89:01:4b:72:d8:fd:b9:49: d3:b1:e2:06 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUxMTA2MjMzODM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjY3NC1lZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40BTuWynjgnjh9I6bjG2mYuepeXfjtTWCS5yOCosxYLf502xe5WcXIa+/myM ckmNurojlKVXVHI0Er+FLujOqWuBcaLGX9kVqB36YWvEMReJ2PwsaVxhkhUYT98O mF32HDBWAg61AgTkAiWfLf9XFFc0Aiw7tcTjyI09YNwhVZpJTiKMjVoRJCzUPH1Z YoCcaN+YjZEoWbxArjF5DztPvL7JAh/LErtgw0mGNGbSwddYAzHvKDkaWOiedwsm MY2lnnjtBJzcqi6Lk6ZtYYud3Je3sCMoqrJIq4l9Gwzp8v6WaEaWU3A2oflUrSmw Yq0erLwrm98tOY0Y5V1tIpBsgQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFPUtF0mD NT7bAoPYt+8G+kLvvZFfMB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE1QzYvRDU1NTE5QjQ0QzM0MTFFRUFFRURBMjJDQzRGOUFFMDIvRkFBMkUzMzI0 QzM4MTFFRUI3MTE2NDMzQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAV BAIAATAPAwMAOhwDAwB2WgMDALaaMA0EAgACMAcDBQAgAQ4gMA0GCSqGSIb3DQEB CwUAA4IBAQAhGFswyjvJZn4d5ruEN4EPEuFNhIOFjU49dsnAf5tMsTCGFRN6vNfD hYxUte9pg287gLMzabInepPBCSAhF52mXPcq2n8Xxzr6pJJnXGkyO9lpMS0oJ+L3 xjxzYGcr34c3Gp6sv0VhavbArejxjg9vUawyf+2KpEjl/A9qMGj4fZt9E+MUiA+O dd+SGqwRUK5Ul7AE1svUtK8tdmsoBxVEDMvOTt/e2MvVtsEjBNBQSmMQK46EpOUK IcvgZA5uTJZGj7N64I7TkYwd71M2V79uy6CDYrHsyolo1zbx8wuwcYO4nOITWu2V xc7pznXELPXiRRDpiQFLctj9uUnTseIG -----END CERTIFICATE-----Generated at Mon Mar 2 07:47:22 2026 by rpki-client