$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa File: 2F4FE7325B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: E2zSUWy4cWvpgz8q4AaLfJBcy0d+iSwSELQj17OFM9I= Subject key identifier: 61:28:DD:43:C8:3A:5D:4A:2C:B5:BD:76:08:78:67:1A:44:42:F5:BB Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 032C Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:08 +0000 ROA not before: Sat 31 Jan 2026 01:21:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 65501 IP address blocks: 140.168.244.0/22 maxlen: 22 140.168.244.0/24 maxlen: 24 140.168.245.0/24 maxlen: 24 140.168.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Jan 31 01:21:25 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48537-ae0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:11:f5:1e:b3:2f:ad:b6:b8:a2:68:8c:98:78: 11:de:9a:9e:43:3e:32:b0:73:c4:6c:b8:50:61:cb: c5:4f:e6:fb:8e:c4:ae:3e:28:92:6a:4a:9e:58:75: 9e:ae:b3:5a:25:3d:93:19:b0:43:b0:9d:e6:ba:2c: e7:1c:7f:08:ba:b2:1d:2c:69:77:ca:3f:a8:af:34: 1b:87:85:c8:a9:c6:7d:26:ca:f8:16:b0:42:57:5a: a8:cb:81:33:2f:c9:b2:88:2a:00:3b:e5:87:9c:12: bb:87:fa:3e:1b:f2:cc:0a:ca:1d:e6:fb:e9:eb:4c: 65:95:21:a5:b6:dd:d0:3c:b8:0b:3d:f5:b8:4a:93: f4:80:2c:e3:38:e8:97:6d:ec:aa:d1:ef:72:3d:e6: 1e:0d:52:48:32:17:52:73:04:12:59:3a:cb:bc:62: a4:2d:4c:9b:75:a9:43:e7:c6:91:eb:3f:6d:ad:77: 18:50:44:fc:b1:98:11:8f:b0:0d:28:73:80:c6:3f: 25:88:eb:49:91:35:d9:15:92:a9:25:07:74:ef:ad: e9:52:a7:9a:84:88:eb:c7:85:44:12:93:fe:59:27: e0:19:6c:8d:5f:66:80:d4:ec:4e:15:d9:64:ef:a1: ae:bf:b5:98:15:b7:84:14:48:0a:60:ba:e5:63:10: 66:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:28:DD:43:C8:3A:5D:4A:2C:B5:BD:76:08:78:67:1A:44:42:F5:BB X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 140.168.244.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:0d:a0:33:52:cc:bf:ec:d5:4b:3c:08:53:32:fe:dd:1f:99: cd:3c:fd:d5:a7:c4:21:1c:2f:6b:bc:2e:71:a4:2b:ef:61:e5: f5:28:2e:e0:7e:75:5d:31:3c:df:88:aa:82:ea:ff:8f:cc:15: 1a:5f:da:4d:77:92:b5:2a:7f:86:af:3b:2d:f8:d4:90:54:78: a2:28:64:d8:91:cb:b9:84:20:89:37:b8:52:fe:d9:52:5d:f8: e1:b0:33:0f:e8:9e:05:98:bc:74:2a:28:8a:0d:45:91:75:75: b6:38:e4:d3:42:8f:3b:50:be:22:c1:c6:eb:c3:46:9e:e4:78: 55:a5:17:97:53:75:59:06:4f:bb:02:06:2b:96:9b:f7:fc:e3: 68:cf:30:19:ea:6a:56:64:b7:09:cb:f8:0b:28:69:0b:0d:66: bb:99:90:5d:d2:85:10:84:aa:07:ef:41:2b:6a:30:60:5b:37: 34:e9:1e:fc:df:b8:e1:22:c8:d2:59:79:62:9a:9c:1e:19:b6: 0d:60:6a:e7:47:7b:0a:f5:1d:21:2a:eb:8e:34:9d:16:85:a1: fc:36:34:ff:fc:94:1f:93:70:da:d4:87:23:b7:91:6b:ae:b7: 2a:86:82:b6:97:d4:d8:d2:dd:f2:25:8d:d8:4b:e8:aa:74:23: 2f:50:64:fc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjYwMTMxMDEyMTI1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODUzNy1hZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BH1HrMvrba4omiMmHgR3pqeQz4ysHPEbLhQYcvFT+b7jsSuPiiSakqeWHWe rrNaJT2TGbBDsJ3muiznHH8IurIdLGl3yj+orzQbh4XIqcZ9Jsr4FrBCV1qoy4Ez L8myiCoAO+WHnBK7h/o+G/LMCsod5vvp60xllSGltt3QPLgLPfW4SpP0gCzjOOiX beyq0e9yPeYeDVJIMhdScwQSWTrLvGKkLUybdalD58aR6z9trXcYUET8sZgRj7AN KHOAxj8liOtJkTXZFZKpJQd0763pUqeahIjrx4VEEpP+WSfgGWyNX2aA1OxOFdlk 76Guv7WYFbeEFEgKYLrlYxBm4wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGEo3UPI Ol1KLLW9dgh4ZxpEQvW7MB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkY0RkU3MzI1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCjKj0MA0GCSqGSIb3DQEBCwUAA4IBAQAbDaAzUsy/7NVLPAhTMv7d H5nNPP3Vp8QhHC9rvC5xpCvvYeX1KC7gfnVdMTzfiKqC6v+PzBUaX9pNd5K1Kn+G rzst+NSQVHiiKGTYkcu5hCCJN7hS/tlSXfjhsDMP6J4FmLx0KiiKDUWRdXW2OOTT Qo87UL4iwcbrw0ae5HhVpReXU3VZBk+7AgYrlpv3/ONozzAZ6mpWZLcJy/gLKGkL DWa7mZBd0oUQhKoH70ErajBgWzc06R7837jhIsjSWXlimpweGbYNYGrnR3sK9R0h KuuONJ0WhaH8NjT//JQfk3Da1Icjt5FrrrcqhoK2l9TY0t3yJY3YS+iqdCMvUGT8 -----END CERTIFICATE-----Generated at Mon Mar 2 02:10:58 2026 by rpki-client