$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEE28/F1B1FBB090C111E8A493397FC4F9AE02/7BD0C11E8C3311EAB2E95132C4F9AE02.roa File: 7BD0C11E8C3311EAB2E95132C4F9AE02.roa (raw, json) Hash identifier: +ZJ1g+2pZPRVqfmAmxvYebAdilEir6PlbHcye0iiufA= Subject key identifier: 66:05:20:03:7C:DB:E5:C7:88:10:A6:C3:2F:68:2D:DC:63:4F:B6:C7 Certificate issuer: /CN=A91AEE28/serialNumber=A6CB9EFB4FE8C1C4E0C2F1B00E84C7F1A2F49C6F Certificate serial: 1446 Authority key identifier: A6:CB:9E:FB:4F:E8:C1:C4:E0:C2:F1:B0:0E:84:C7:F1:A2:F4:9C:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psue-0_owcTgwvGwDoTH8aL0nG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEE28/F1B1FBB090C111E8A493397FC4F9AE02/7BD0C11E8C3311EAB2E95132C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:18:00 +0000 ROA not before: Tue 04 Feb 2025 16:54:59 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 9246 IP address blocks: 43.240.88.0/22 maxlen: 22 103.7.100.0/22 maxlen: 22 114.142.192.0/18 maxlen: 18 114.142.212.0/24 maxlen: 24 117.20.120.0/21 maxlen: 21 202.151.64.0/19 maxlen: 19 202.151.76.0/24 maxlen: 24 202.151.85.0/24 maxlen: 24 2405:7400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEE28/F1B1FBB090C111E8A493397FC4F9AE02/psue-0_owcTgwvGwDoTH8aL0nG8.crl rsync://rpki.apnic.net/member_repository/A91AEE28/F1B1FBB090C111E8A493397FC4F9AE02/psue-0_owcTgwvGwDoTH8aL0nG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psue-0_owcTgwvGwDoTH8aL0nG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:18:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5190 (0x1446) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEE28, serialNumber=A6CB9EFB4FE8C1C4E0C2F1B00E84C7F1A2F49C6F Validity Not Before: Feb 4 16:54:59 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a40448-ef4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f0:99:75:3f:a2:3f:08:14:0f:02:32:5c:1e: b0:7b:22:4b:56:8a:4c:7a:4f:da:9a:81:55:87:53: 02:9c:7d:8d:9f:20:98:1a:df:0f:f4:55:f2:f9:f0: d3:57:6c:24:07:4c:3d:b9:4f:54:30:4a:75:17:d2: 0d:cc:58:f4:89:cc:f5:68:8d:51:63:27:d6:70:d1: 23:4d:8d:7f:60:dd:8e:e2:5b:a8:ce:ac:02:08:22: 1c:63:66:e8:d9:74:7a:c8:14:dd:e9:61:9e:ba:24: 85:77:b4:96:79:93:96:42:47:d4:b7:13:0c:1c:42: 60:35:77:2d:41:cf:fe:b5:a6:88:8d:6c:29:81:79: 45:9e:13:ed:04:b5:e1:fe:95:a9:b0:64:52:55:61: e9:eb:b0:72:95:15:8c:9c:f2:48:27:ae:3e:ee:1a: 85:a5:2a:c7:dd:4d:f6:cd:9d:7f:14:0c:a9:af:7a: 9b:9c:0a:d9:4a:2d:9f:a1:fa:ee:82:e4:41:24:3d: 28:9d:be:33:bb:31:d8:83:c4:c5:bc:24:82:7a:a0: 1c:a0:fe:d5:5a:18:5f:b7:1a:21:14:c6:15:63:61: de:73:8f:09:70:c2:7e:dd:25:dc:e2:35:57:ea:6e: f4:6a:a6:76:c4:1a:d3:02:b7:6c:2c:6d:53:e6:33: c8:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:05:20:03:7C:DB:E5:C7:88:10:A6:C3:2F:68:2D:DC:63:4F:B6:C7 X509v3 Authority Key Identifier: keyid:A6:CB:9E:FB:4F:E8:C1:C4:E0:C2:F1:B0:0E:84:C7:F1:A2:F4:9C:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEE28/F1B1FBB090C111E8A493397FC4F9AE02/psue-0_owcTgwvGwDoTH8aL0nG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/psue-0_owcTgwvGwDoTH8aL0nG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEE28/F1B1FBB090C111E8A493397FC4F9AE02/7BD0C11E8C3311EAB2E95132C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 43.240.88.0/22 103.7.100.0/22 114.142.192.0/18 117.20.120.0/21 202.151.64.0/19 IPv6: 2405:7400::/32 Signature Algorithm: sha256WithRSAEncryption d4:82:a6:6b:b3:ed:d5:5c:50:2a:54:fc:fd:df:bc:e7:66:55: f6:72:14:c9:1d:ca:8e:a4:47:dd:47:e4:31:da:1a:12:3b:d7: 6a:ed:e7:bc:13:02:de:ed:ff:87:16:19:31:83:59:d3:a9:0e: 7f:77:f2:76:f4:20:f3:c0:d3:cd:25:06:c4:15:cc:0c:26:d8: a9:e6:47:b7:72:42:20:f7:2a:62:8c:02:d1:cd:12:01:2e:a5: e3:8b:5b:72:ac:eb:d1:0a:d3:99:1b:20:92:be:8d:db:ee:ab: 73:81:3d:81:79:b6:47:6e:2e:20:77:06:69:fc:d6:6a:c2:29: a6:f7:da:2b:5e:fb:e1:e6:d3:39:61:28:ac:b2:ad:b2:4c:c7: 89:ed:8b:96:b9:0e:4b:a4:68:f5:c8:89:a3:2a:72:ac:e9:24: 04:11:79:5d:51:80:d9:0a:10:a7:24:6a:d9:cc:2c:f1:ce:d7: a4:5c:95:6d:88:44:37:fc:54:c3:3d:fb:b1:f8:ce:d5:88:41: 00:53:7b:0d:43:d8:25:c5:40:ae:71:b2:b8:33:30:9d:bb:f0: 99:97:a3:3a:82:f6:84:d3:c7:67:4d:f1:2d:98:9f:1e:9e:5d: bf:05:5d:da:59:85:29:df:de:36:f3:bb:26:26:ea:a3:27:f8: f0:cf:f9:cd -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICFEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVFMjgxMTAvBgNVBAUTKEE2Q0I5RUZCNEZFOEMxQzRFMEMyRjFCMDBFODRDN0Yx QTJGNDlDNkYwHhcNMjUwMjA0MTY1NDU5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDQ0OC1lZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fCZdT+iPwgUDwIyXB6weyJLVopMek/amoFVh1MCnH2NnyCYGt8P9FXy+fDT V2wkB0w9uU9UMEp1F9INzFj0icz1aI1RYyfWcNEjTY1/YN2O4luozqwCCCIcY2bo 2XR6yBTd6WGeuiSFd7SWeZOWQkfUtxMMHEJgNXctQc/+taaIjWwpgXlFnhPtBLXh /pWpsGRSVWHp67BylRWMnPJIJ64+7hqFpSrH3U32zZ1/FAypr3qbnArZSi2fofru guRBJD0onb4zuzHYg8TFvCSCeqAcoP7VWhhftxohFMYVY2Hec48JcMJ+3SXc4jVX 6m70aqZ2xBrTArdsLG1T5jPIMQIDAQABo4IChzCCAoMwHQYDVR0OBBYEFGYFIAN8 2+XHiBCmwy9oLdxjT7bHMB8GA1UdIwQYMBaAFKbLnvtP6MHE4MLxsA6Ex/Gi9Jxv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUUyOC9GMUIxRkJCMDkw QzExMUU4QTQ5MzM5N0ZDNEY5QUUwMi9wc3VlLTBfb3djVGd3dkd3RG9USDhhTDBu RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BzdWUtMF9vd2NUZ3d2R3dEb1RIOGFMMG5HOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVFMjgvRjFCMUZCQjA5MEMxMTFFOEE0OTMzOTdGQzRGOUFFMDIvN0JEMEMxMUU4 QzMzMTFFQUIyRTk1MTMyQzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQCK/BYAwQCZwdkAwQGco7AAwQDdRR4AwQFypdAMA0EAgACMAcDBQAk BXQAMA0GCSqGSIb3DQEBCwUAA4IBAQDUgqZrs+3VXFAqVPz937znZlX2chTJHcqO pEfdR+Qx2hoSO9dq7ee8EwLe7f+HFhkxg1nTqQ5/d/J29CDzwNPNJQbEFcwMJtip 5ke3ckIg9ypijALRzRIBLqXji1tyrOvRCtOZGyCSvo3b7qtzgT2BebZHbi4gdwZp /NZqwimm99orXvvh5tM5YSissq2yTMeJ7YuWuQ5LpGj1yImjKnKs6SQEEXldUYDZ ChCnJGrZzCzxztekXJVtiEQ3/FTDPfux+M7ViEEAU3sNQ9glxUCucbK4MzCdu/CZ l6M6gvaE08dnTfEtmJ8enl2/BV3aWYUp394287smJuqjJ/jwz/nN -----END CERTIFICATE-----Generated at Mon Mar 2 07:51:07 2026 by rpki-client