$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa File: 2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: 4YK/YXNaP55xzsT3tIBQWLpaJchht9fsYf/coW+ZF9I= Subject key identifier: D6:D3:4B:64:1F:7C:36:C3:74:89:37:3F:FE:6A:62:ED:C3:8B:F2:DA Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 032D Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:08 +0000 ROA not before: Sat 31 Jan 2026 01:21:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 65510 IP address blocks: 140.168.64.0/19 maxlen: 19 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Jan 31 01:21:25 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48538-7598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:69:03:7b:36:fd:8c:7b:85:b6:04:2a:1e:08: 68:34:2e:94:29:61:02:81:93:71:ff:76:f2:c3:fa: b5:87:b4:d2:88:5a:a8:d8:0e:e4:e9:0d:e3:3f:86: f1:69:a2:16:c6:45:67:58:cf:04:f4:56:59:2f:6b: 0f:ac:f2:89:56:99:2f:7d:8d:15:10:20:b5:cc:1b: 0c:26:b6:95:7a:c8:60:40:b8:56:b1:8c:0b:f1:3c: 34:38:66:93:ea:ca:89:61:ea:49:9f:e4:b5:a2:7e: 0e:52:12:51:73:48:6e:41:09:36:b7:d6:9e:00:c0: 77:2c:57:9d:67:2c:dc:5b:81:42:a6:08:eb:0d:f2: 4c:b0:05:cb:be:c2:72:c6:75:64:f6:8b:4a:ed:5c: 6e:9b:81:e6:8a:d8:fb:4d:65:9e:4a:cc:94:8d:40: 4b:2b:6a:6a:1c:e9:c8:3b:16:ba:63:63:6c:67:b5: ac:1c:10:41:4e:d3:8f:30:3e:a7:dd:97:47:71:e5: e8:9f:58:7b:bf:57:2f:70:75:57:59:a0:95:a0:b0: 94:48:b7:86:3f:21:27:01:71:51:a6:01:8d:d8:b9: f1:91:1e:50:b8:b6:98:13:e6:7f:88:48:21:92:ac: c1:36:17:3e:98:4d:8c:c9:e8:40:bf:ab:ae:3d:38: c1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D3:4B:64:1F:7C:36:C3:74:89:37:3F:FE:6A:62:ED:C3:8B:F2:DA X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 140.168.64.0/18 Signature Algorithm: sha256WithRSAEncryption 42:e5:41:f6:c0:00:27:c6:4d:93:a2:00:91:fb:29:09:40:74: 74:11:68:fa:15:fb:78:b0:76:16:16:ac:3b:11:39:cc:30:45: 68:9b:9f:8a:10:74:d6:cb:60:02:9e:8c:0d:9e:22:23:f4:0a: 7f:b3:fc:21:08:69:68:60:83:1c:a4:b3:86:4d:14:3d:22:04: a7:23:1d:42:7a:78:4b:05:2b:aa:4c:f8:5a:4c:54:ce:8b:17: 51:ad:2d:00:3e:30:70:d7:af:fa:8c:52:82:b1:8a:a4:7a:78: ec:ea:49:51:77:fc:9c:63:48:c4:e5:a7:84:8e:b3:bf:3c:dd: 60:fe:76:ce:b8:00:fd:93:a0:52:39:ff:97:c9:b0:5d:d5:d5: af:1b:32:57:fd:b8:04:fe:ae:58:a3:82:fe:35:01:6b:af:c7: 9b:b3:4a:3c:93:17:fe:91:93:84:3c:7c:4d:6c:e1:f1:62:59: 2a:40:d5:a2:9e:b9:8d:53:bc:79:7e:4d:b4:01:c5:94:16:f2: 9c:5f:cd:8c:53:8c:81:78:75:19:d5:36:56:59:37:1e:35:7b: 42:75:b8:25:ca:94:f6:e0:b9:65:e1:25:1d:21:76:62:46:a7: 85:b5:b1:45:cf:8a:d5:51:19:ee:44:07:04:b3:b2:11:03:39: cd:94:15:b6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjYwMTMxMDEyMTI1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODUzOC03NTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmkDezb9jHuFtgQqHghoNC6UKWECgZNx/3byw/q1h7TSiFqo2A7k6Q3jP4bx aaIWxkVnWM8E9FZZL2sPrPKJVpkvfY0VECC1zBsMJraVeshgQLhWsYwL8Tw0OGaT 6sqJYepJn+S1on4OUhJRc0huQQk2t9aeAMB3LFedZyzcW4FCpgjrDfJMsAXLvsJy xnVk9otK7Vxum4Hmitj7TWWeSsyUjUBLK2pqHOnIOxa6Y2NsZ7WsHBBBTtOPMD6n 3ZdHceXon1h7v1cvcHVXWaCVoLCUSLeGPyEnAXFRpgGN2LnxkR5QuLaYE+Z/iEgh kqzBNhc+mE2MyehAv6uuPTjB4QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNbTS2Qf fDbDdIk3P/5qYu3Di/LaMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkZEOEE0NkU1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQGjKhAMA0GCSqGSIb3DQEBCwUAA4IBAQBC5UH2wAAnxk2TogCR+ykJ QHR0EWj6Fft4sHYWFqw7ETnMMEVom5+KEHTWy2ACnowNniIj9Ap/s/whCGloYIMc pLOGTRQ9IgSnIx1CenhLBSuqTPhaTFTOixdRrS0APjBw16/6jFKCsYqkenjs6klR d/ycY0jE5aeEjrO/PN1g/nbOuAD9k6BSOf+XybBd1dWvGzJX/bgE/q5Yo4L+NQFr r8ebs0o8kxf+kZOEPHxNbOHxYlkqQNWinrmNU7x5fk20AcWUFvKcX82MU4yBeHUZ 1TZWWTceNXtCdbglypT24Lll4SUdIXZiRqeFtbFFz4rVURnuRAcEs7IRAznNlBW2 -----END CERTIFICATE-----Generated at Mon Mar 2 02:10:54 2026 by rpki-client