$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/FE84EF96F16211F08FA76A8B5F6F56BC.roa File: FE84EF96F16211F08FA76A8B5F6F56BC.roa (raw, json) Hash identifier: LswMfaH47y3DaYLf6YvWkUTkv4VF2qVi2QmgGi//KfI= Subject key identifier: 7D:4D:A4:E7:22:99:A3:EF:A3:50:C7:3A:E1:71:16:2B:04:51:36:85 Certificate issuer: /CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Certificate serial: 0AC5 Authority key identifier: F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/FE84EF96F16211F08FA76A8B5F6F56BC.roa Signing time: Sun 01 Mar 2026 16:00:57 +0000 ROA not before: Wed 14 Jan 2026 16:07:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135420 IP address blocks: 45.249.184.0/22 maxlen: 22 45.249.184.0/24 maxlen: 24 45.249.185.0/24 maxlen: 24 45.249.186.0/24 maxlen: 24 45.249.187.0/24 maxlen: 24 103.218.188.0/22 maxlen: 22 103.218.188.0/24 maxlen: 24 103.218.189.0/24 maxlen: 24 103.218.190.0/24 maxlen: 24 103.218.191.0/24 maxlen: 24 2402:48c0::/32 maxlen: 36 2402:48c0::/48 maxlen: 48 2402:48c0:1::/48 maxlen: 48 2402:48c0:2::/48 maxlen: 48 2402:48c0:3::/48 maxlen: 48 2402:48c0:4::/48 maxlen: 48 2402:48c0:5::/48 maxlen: 48 2402:48c0:6::/48 maxlen: 48 2402:48c0:7::/48 maxlen: 48 2402:48c0:8::/48 maxlen: 48 2402:48c0:9::/48 maxlen: 48 2402:48c0:a::/48 maxlen: 48 2402:48c0:b::/48 maxlen: 48 2402:48c0:c::/48 maxlen: 48 2402:48c0:d::/48 maxlen: 48 2402:48c0:e::/48 maxlen: 48 2402:48c0:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:41:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2757 (0xac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F3F, serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Validity Not Before: Jan 14 16:07:15 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a462b9-39b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:89:50:06:10:f4:b1:3e:59:ab:34:f0:4d:1f: 8c:a7:20:fb:8c:bd:91:1e:60:8f:0b:9c:b7:dd:c8: 4c:e4:5c:79:04:11:87:14:8a:b6:b9:c8:22:3e:29: bb:38:21:b5:9d:df:4a:fb:2b:88:f6:47:9a:2c:2e: a3:71:75:8d:a7:ca:08:db:aa:e3:bc:51:a5:f8:fa: 93:11:9b:9f:39:27:0b:9c:98:f1:59:53:47:48:b3: 9d:1a:8b:b7:a9:3f:3a:2b:e4:2a:eb:89:bb:96:ff: 07:95:04:d0:53:29:7f:72:be:cd:cd:89:23:5c:c1: 39:1f:15:1a:3f:a7:17:70:92:7e:b0:f0:4e:ff:1d: cc:b5:9d:07:35:d6:fd:f2:50:dd:7b:39:cd:a6:f8: f3:d3:e1:4f:34:56:d1:e8:43:67:a9:4a:f3:3b:d0: 3f:47:8a:fe:f1:6e:d5:00:93:d0:d5:07:f9:b2:df: b3:4e:cd:b9:41:e2:e6:c2:0f:a3:dd:bd:ca:d6:88: c9:77:81:ac:a1:a2:d9:f4:6e:10:1a:7e:1e:13:ef: 28:02:3c:18:64:ec:71:e6:45:08:b4:5d:d9:5b:58: 1b:81:c4:fa:25:11:19:67:57:6e:b3:b4:43:c6:c5: 0e:c4:6e:c2:aa:c2:92:84:2e:62:0e:31:32:96:ad: a7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:4D:A4:E7:22:99:A3:EF:A3:50:C7:3A:E1:71:16:2B:04:51:36:85 X509v3 Authority Key Identifier: keyid:F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/FE84EF96F16211F08FA76A8B5F6F56BC.roa sbgp-ipAddrBlock: critical IPv4: 45.249.184.0/22 103.218.188.0/22 IPv6: 2402:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 18:ef:cf:74:68:9c:4e:0e:66:f5:66:79:cc:72:bd:e4:fc:78: b2:9a:58:fc:6e:d9:29:78:76:3f:5c:bb:57:ee:47:b8:84:84: 5e:97:09:66:55:bc:2e:ee:85:25:a3:58:df:cd:de:89:6d:b4: cc:2b:3f:43:ce:8f:e6:ef:ce:49:af:de:1a:bb:77:71:38:23: eb:0f:37:53:f6:dc:09:5a:b2:d7:13:7d:75:34:b8:2b:c4:02: 04:56:d5:d9:1d:24:61:9e:82:95:89:b5:55:6f:08:a6:92:e1: 11:fe:0f:fe:3c:02:7f:c9:12:da:65:ce:c2:aa:9c:d2:c1:77: 65:ab:13:06:db:cc:f0:9b:ee:52:78:72:65:0b:67:80:61:c4: e4:16:36:02:4f:28:f9:26:6c:c3:4b:a1:dc:99:f8:b7:f1:be: e7:4f:aa:e1:5a:9e:b3:e3:e6:ad:c7:34:9e:fa:80:81:d6:cd: 8b:a1:5e:af:dd:98:a1:09:86:21:f9:3a:57:63:47:d6:79:f4: 26:0a:b1:6f:b5:ab:18:2f:98:3b:87:8a:48:03:7c:9e:8e:13: 6f:3f:7e:f6:69:1f:e2:74:93:5f:96:97:d1:30:72:f8:42:64: b1:1b:0a:c2:0d:1e:55:bd:d9:29:01:86:a7:bc:fb:b2:b1:18: b8:a2:1c:c4 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGM0YxMTAvBgNVBAUTKEY4MThGQzk4OEVDNzAzMkMzRTJDNkE0OEE1NTQ5OEFC N0NENTY1RkQwHhcNMjYwMTE0MTYwNzE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjJiOS0zOWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyolQBhD0sT5ZqzTwTR+MpyD7jL2RHmCPC5y33chM5Fx5BBGHFIq2ucgiPim7 OCG1nd9K+yuI9keaLC6jcXWNp8oI26rjvFGl+PqTEZufOScLnJjxWVNHSLOdGou3 qT86K+Qq64m7lv8HlQTQUyl/cr7NzYkjXME5HxUaP6cXcJJ+sPBO/x3MtZ0HNdb9 8lDdeznNpvjz0+FPNFbR6ENnqUrzO9A/R4r+8W7VAJPQ1Qf5st+zTs25QeLmwg+j 3b3K1ojJd4GsoaLZ9G4QGn4eE+8oAjwYZOxx5kUItF3ZW1gbgcT6JREZZ1dus7RD xsUOxG7CqsKShC5iDjEylq2nSQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFH1NpOci maPvo1DHOuFxFisEUTaFMB8GA1UdIwQYMBaAFPgY/JiOxwMsPixqSKVUmKt81WX9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEYzRi8wOTM3M0FENjc4 QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5dy1MR3BJcFZTWXEzelZa ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CajhtSTdIQXl3LUxHcElwVlNZcTN6VlpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBGM0YvMDkzNzNBRDY3OEMyMTFFQUJENzcyMzU5QzRGOUFFMDIvRkU4NEVGOTZG MTYyMTFGMDhGQTc2QThCNUY2RjU2QkMucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQCLfm4AwQCZ9q8MA0EAgACMAcDBQAkAkjAMA0GCSqGSIb3DQEBCwUA A4IBAQAY7890aJxODmb1ZnnMcr3k/Hiymlj8btkpeHY/XLtX7ke4hIRelwlmVbwu 7oUlo1jfzd6JbbTMKz9Dzo/m785Jr94au3dxOCPrDzdT9twJWrLXE311NLgrxAIE VtXZHSRhnoKVibVVbwimkuER/g/+PAJ/yRLaZc7CqpzSwXdlqxMG28zwm+5SeHJl C2eAYcTkFjYCTyj5JmzDS6Hcmfi38b7nT6rhWp6z4+atxzSe+oCB1s2LoV6v3Zih CYYh+TpXY0fWefQmCrFvtasYL5g7h4pIA3yejhNvP372aR/idJNflpfRMHL4QmSx GwrCDR5VvdkpAYanvPuysRi4ohzE -----END CERTIFICATE-----Generated at Mon Mar 2 19:20:07 2026 by rpki-client