$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa File: 4CB6FAD482E511F0B57EE434C4F9AE02.roa (raw, json) Hash identifier: o5XF6z3k79blxIS/ad2ttgEipJDkM4Ua82QSBP/kUcI= Subject key identifier: 17:C4:7C:C6:B9:03:12:8F:E3:93:9E:1A:BE:0F:04:83:B6:F4:22:23 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 032B Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:28:07 +0000 ROA not before: Sat 31 Jan 2026 01:21:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45867 IP address blocks: 140.168.64.0/18 maxlen: 20 140.168.66.0/24 maxlen: 24 140.168.67.0/24 maxlen: 24 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.80.0/24 maxlen: 24 140.168.81.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.128.0/18 maxlen: 20 140.168.135.0/24 maxlen: 24 140.168.138.0/24 maxlen: 24 140.168.139.0/24 maxlen: 24 140.168.166.0/24 maxlen: 24 140.168.236.0/22 maxlen: 24 140.168.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 811 (0x32b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Jan 31 01:21:23 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a48536-ecf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cf:8a:2b:c2:9f:18:c9:61:81:3d:e4:4a:5a: 6a:0c:24:b7:73:e9:d1:d9:ee:fd:59:fb:56:7f:6e: 53:e7:7f:14:d3:85:11:34:db:62:c8:5e:d5:1d:84: fb:7e:91:7c:f5:d4:fa:da:86:f3:f0:48:bf:cf:7d: 8e:93:bf:3d:4a:d2:54:a4:d9:0a:02:88:f0:a2:e7: 32:e1:af:88:fe:d7:81:fd:69:2d:d0:3f:f6:48:d4: 83:f2:fc:c9:1f:21:43:8e:5c:b7:40:d4:10:c3:0b: 3b:86:fd:68:8d:79:57:a6:27:df:bf:26:cc:0c:35: 81:55:b1:ca:33:df:bd:90:d3:6b:f2:26:e8:ea:ad: 63:a7:f2:99:bf:a0:32:16:c6:95:46:05:68:ab:b5: 7d:0d:0d:d2:0c:ef:6a:7f:da:a9:b9:a8:78:12:04: 57:f9:7f:39:d3:4d:01:e2:e8:d9:20:90:39:27:50: 1f:09:35:d7:a2:d2:79:08:a8:ed:f4:03:e6:0c:02: d0:e4:4d:15:b0:08:da:7a:dd:84:38:37:50:2f:a0: f9:8e:0c:fd:a0:7c:21:8f:93:43:5e:16:e6:6c:83: 6e:37:53:44:a0:2b:5b:1d:af:fa:7d:14:29:7d:4a: 2b:7c:0e:0c:f4:4e:21:97:f6:90:60:4b:12:cf:5a: e8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:C4:7C:C6:B9:03:12:8F:E3:93:9E:1A:BE:0F:04:83:B6:F4:22:23 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/4CB6FAD482E511F0B57EE434C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 140.168.64.0-140.168.191.255 140.168.236.0/22 140.168.250.0/23 Signature Algorithm: sha256WithRSAEncryption 19:21:6b:f4:d3:4a:18:4d:03:c3:c1:e4:95:7a:e1:84:dc:ba: 50:1e:db:dd:67:a4:c2:7e:3c:d4:a9:fe:9b:02:0a:86:58:e6: 3d:49:b2:3a:c6:ee:ed:23:39:b3:ff:33:52:07:04:40:a6:d5: 89:69:42:ff:6e:31:05:74:15:8a:65:f7:10:63:62:cd:aa:57: e5:f9:88:af:8b:c2:91:54:69:b3:45:a1:97:4d:bf:63:1f:0e: c4:b2:04:6a:2b:c1:15:0a:c3:7a:7f:6f:92:ff:d3:a6:6f:74: 81:0b:a1:e3:0a:26:6c:81:fb:a1:b1:e8:77:35:cd:e2:93:0b: ec:af:88:97:03:88:6d:fd:27:73:fe:9c:c0:22:9a:14:10:cb: 4f:c5:5d:fb:a9:07:8e:31:4e:5c:48:19:e6:cc:c7:13:4a:e9: 6f:78:96:82:cf:20:4c:ae:32:d7:ab:0a:62:5f:b0:86:50:04: 04:c7:a6:df:a1:9e:0e:7c:c0:2d:1f:23:3b:92:0d:9c:31:e7: 1d:4a:2e:f1:72:6e:71:a1:12:1e:88:bb:e9:b4:2d:8c:96:c7: 28:30:5d:12:d4:55:3c:0c:6b:44:2c:c1:3d:33:70:a5:82:12: 09:1a:65:ef:d3:c5:64:14:3c:99:91:f0:4a:e5:09:ff:f8:f5: 9b:eb:be:31 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICAyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjYwMTMxMDEyMTIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODUzNi1lY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1M+KK8KfGMlhgT3kSlpqDCS3c+nR2e79WftWf25T538U04URNNtiyF7VHYT7 fpF89dT62obz8Ei/z32Ok789StJUpNkKAojwoucy4a+I/teB/Wkt0D/2SNSD8vzJ HyFDjly3QNQQwws7hv1ojXlXpiffvybMDDWBVbHKM9+9kNNr8ibo6q1jp/KZv6Ay FsaVRgVoq7V9DQ3SDO9qf9qpuah4EgRX+X85000B4ujZIJA5J1AfCTXXotJ5CKjt 9APmDALQ5E0VsAjaet2EODdQL6D5jgz9oHwhj5NDXhbmbINuN1NEoCtbHa/6fRQp fUorfA4M9E4hl/aQYEsSz1ro+wIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFBfEfMa5 AxKP45OeGr4PBIO29CIjMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvNENCNkZBRDQ4 MkU1MTFGMEI1N0VFNDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBAaMqEADBAaMqIADBAKMqOwDBAGMqPowDQYJKoZIhvcNAQELBQAD ggEBABkha/TTShhNA8PB5JV64YTculAe291npMJ+PNSp/psCCoZY5j1JsjrG7u0j ObP/M1IHBECm1YlpQv9uMQV0FYpl9xBjYs2qV+X5iK+LwpFUabNFoZdNv2MfDsSy BGorwRUKw3p/b5L/06ZvdIELoeMKJmyB+6Gx6Hc1zeKTC+yviJcDiG39J3P+nMAi mhQQy0/FXfupB44xTlxIGebMxxNK6W94loLPIEyuMterCmJfsIZQBATHpt+hng58 wC0fIzuSDZwx5x1KLvFybnGhEh6Iu+m0LYyWxygwXRLUVTwMa0QswT0zcKWCEgka Ze/TxWQUPJmR8ErlCf/49ZvrvjE= -----END CERTIFICATE-----Generated at Mon Mar 2 02:12:01 2026 by rpki-client