$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa File: CF85B73C74F011F0847A5D0DC4F9AE02.roa (raw, json) Hash identifier: zguPLjQ7EYK5huo8cUQuMnIJCKWigpE0oK0hmMTe1UA= Subject key identifier: CF:B9:B8:B2:A5:B2:3A:95:B4:F6:D0:D8:9C:EE:97:51:59:E7:8F:0F Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 0255 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:07:01 +0000 ROA not before: Fri 09 Jan 2026 02:21:44 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 18450 IP address blocks: 116.204.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD, serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Jan 9 02:21:44 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a45615-5416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e5:42:1c:84:33:f8:27:b3:ae:d1:bc:1e:db: 01:cd:62:35:71:71:2d:e1:8f:3e:61:1e:1a:ad:07: c8:21:e2:31:3a:e9:15:9c:de:47:36:1d:4b:cf:ac: 1f:57:90:e8:9d:37:ba:84:0a:68:6c:39:b9:24:ca: e4:3d:e1:73:57:00:c0:3e:d9:d0:e0:ec:5d:36:40: e1:3d:40:72:54:e1:30:a9:8c:b0:d3:54:40:0c:e3: aa:2b:80:45:e2:7f:b1:fc:57:56:32:aa:40:a8:23: 53:9d:2f:d0:4e:53:19:ca:9a:07:2f:31:b6:2a:5e: 4e:93:e9:f5:1d:df:32:4d:6c:9c:e9:c9:b9:ef:b1: 17:13:75:66:9b:3f:97:02:4a:e4:ea:28:f0:f7:4d: ad:49:a1:d9:85:bf:67:a1:4d:a3:87:23:c1:1d:37: 09:63:a9:e0:9a:c8:a1:a9:09:59:e8:4a:fd:55:32: 48:ea:e2:7b:6e:1d:cb:9b:10:8a:06:16:b2:d1:b0: b2:d6:ab:81:f7:90:37:fe:a2:e6:67:56:ae:9b:3c: b3:56:19:f8:a4:7d:cb:dc:2a:c4:46:26:42:3e:68: 0b:41:a1:6e:96:18:36:5f:b4:aa:f2:f8:07:6e:46: 32:fb:e4:82:df:23:b7:f3:e6:01:09:f0:b6:ab:77: 66:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B9:B8:B2:A5:B2:3A:95:B4:F6:D0:D8:9C:EE:97:51:59:E7:8F:0F X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.204.239.0/24 Signature Algorithm: sha256WithRSAEncryption 46:5a:ca:46:01:02:d1:11:8c:f1:88:41:ce:8a:e2:b4:56:87: 9a:67:3e:5a:e3:3f:7a:69:5d:ea:ae:73:4b:fb:9d:d0:ce:24: a4:fd:b2:41:00:2e:d0:be:ce:bb:37:fb:64:c3:fc:a5:91:c2: 02:6e:d4:d4:69:bc:8d:b8:18:7a:c1:d2:66:0b:09:4a:a0:11: d3:cc:ec:4c:91:7f:58:e4:c3:6b:54:6f:0d:dc:bb:e1:d5:29: 7b:53:31:c1:bc:87:75:b0:98:07:a2:1c:16:42:c0:08:c8:17: e5:b9:f4:54:35:6d:10:f9:37:83:34:53:28:86:55:84:f6:da: 1e:4c:e2:c0:5d:10:3d:27:a4:4f:fe:3b:69:02:ef:c7:9b:30: 14:be:08:4d:58:bc:a8:76:af:30:90:60:e9:ee:0d:5e:67:ba: 49:58:5e:cf:46:2a:21:2e:d8:23:26:2d:8e:77:d1:3c:78:21: f0:c5:97:c3:76:5b:ed:18:c0:93:78:a8:30:d9:e3:50:4e:03: 77:f9:47:a7:e9:4e:4f:4c:f0:f0:c1:b8:86:11:30:c6:25:1a: 90:f3:0e:5f:6a:d2:61:0d:4f:55:85:d2:ef:29:0f:ed:6d:fc: d6:49:3a:9e:7b:84:e8:3d:07:18:85:70:73:74:6a:9b:4a:51: 2b:25:2f:8b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjYwMTA5MDIyMTQ0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTYxNS01NDE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OVCHIQz+CezrtG8HtsBzWI1cXEt4Y8+YR4arQfIIeIxOukVnN5HNh1Lz6wf V5DonTe6hApobDm5JMrkPeFzVwDAPtnQ4OxdNkDhPUByVOEwqYyw01RADOOqK4BF 4n+x/FdWMqpAqCNTnS/QTlMZypoHLzG2Kl5Ok+n1Hd8yTWyc6cm577EXE3Vmmz+X Akrk6ijw902tSaHZhb9noU2jhyPBHTcJY6ngmsihqQlZ6Er9VTJI6uJ7bh3LmxCK Bhay0bCy1quB95A3/qLmZ1aumzyzVhn4pH3L3CrERiZCPmgLQaFulhg2X7Sq8vgH bkYy++SC3yO38+YBCfC2q3dmgQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM+5uLKl sjqVtPbQ2Jzul1FZ548PMB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYyQ0QvNEZDQkFDMDBENDRDMTFFRDg2MjcxNTgyQzRGOUFFMDIvQ0Y4NUI3M0M3 NEYwMTFGMDg0N0E1RDBEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAdMzvMA0GCSqGSIb3DQEBCwUAA4IBAQBGWspGAQLREYzxiEHOiuK0 VoeaZz5a4z96aV3qrnNL+53QziSk/bJBAC7Qvs67N/tkw/ylkcICbtTUabyNuBh6 wdJmCwlKoBHTzOxMkX9Y5MNrVG8N3Lvh1Sl7UzHBvId1sJgHohwWQsAIyBflufRU NW0Q+TeDNFMohlWE9toeTOLAXRA9J6RP/jtpAu/HmzAUvghNWLyodq8wkGDp7g1e Z7pJWF7PRiohLtgjJi2Od9E8eCHwxZfDdlvtGMCTeKgw2eNQTgN3+Uen6U5PTPDw wbiGETDGJRqQ8w5fatJhDU9VhdLvKQ/tbfzWSTqee4ToPQcYhXBzdGqbSlErJS+L -----END CERTIFICATE-----Generated at Mon Mar 2 05:15:31 2026 by rpki-client