$ rpki-client -vvf rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/65DA620C798111EBBD22251CC4F9AE02.roa File: 65DA620C798111EBBD22251CC4F9AE02.roa (raw, json) Hash identifier: MGgDBuK2ozCNY4Vjvqi7F7BY4x+uvNZ9GpBczQ7FuCg= Subject key identifier: 23:E0:F1:0A:7C:C7:DD:CD:21:70:B6:6A:B0:67:B9:7E:21:6C:26:BF Certificate issuer: /CN=A91B58FF/serialNumber=24443AE83EDF96AF1942DBFF0ED4F8C17DD6796F Certificate serial: 07D1 Authority key identifier: 24:44:3A:E8:3E:DF:96:AF:19:42:DB:FF:0E:D4:F8:C1:7D:D6:79:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/65DA620C798111EBBD22251CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:46:56 +0000 ROA not before: Fri 28 Nov 2025 20:53:47 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38172 IP address blocks: 110.238.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B58FF, serialNumber=24443AE83EDF96AF1942DBFF0ED4F8C17DD6796F Validity Not Before: Nov 28 20:53:47 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a46d80-13df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:79:30:78:12:d5:9b:48:16:94:0d:1c:60:28: 76:65:2f:7d:c3:b2:91:b7:e7:0f:e0:b3:23:fd:26: bb:23:63:8b:02:63:e6:65:8d:ab:5b:d5:49:75:01: 71:64:58:cd:04:1a:9c:be:fd:24:60:ad:a8:92:9a: db:9f:a1:3f:22:5c:6e:e7:92:1c:d3:71:c8:40:06: 56:29:ac:ac:79:8d:eb:d3:c0:ab:12:58:0a:c5:00: 36:70:72:cf:89:69:c3:d0:1c:cb:19:84:5e:f0:83: 4e:e7:c0:39:69:59:54:60:97:18:b6:ba:fd:a1:56: 20:2c:b3:5d:d2:aa:d8:b0:0a:b3:2b:d9:d6:c7:aa: 81:5b:a7:c3:42:d4:9f:74:ed:5e:9b:1b:6a:ef:3d: 61:7d:3a:e5:27:9c:6a:fe:b3:c5:5b:d5:22:f5:04: a6:b8:87:f7:82:f0:82:86:47:95:95:de:60:c1:18: 76:93:da:93:c3:1d:8f:52:ec:01:68:e5:7a:43:9b: d9:3d:ef:f4:35:04:53:50:a8:28:60:fb:e4:08:1d: a7:3b:be:39:98:ce:35:8c:c1:2b:c3:53:93:e1:64: cf:12:36:37:2a:97:ce:af:b0:e6:4c:96:94:24:f7: 47:9c:7a:20:3b:6d:80:a6:c0:0b:01:80:5b:2e:09: e0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:E0:F1:0A:7C:C7:DD:CD:21:70:B6:6A:B0:67:B9:7E:21:6C:26:BF X509v3 Authority Key Identifier: keyid:24:44:3A:E8:3E:DF:96:AF:19:42:DB:FF:0E:D4:F8:C1:7D:D6:79:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/JEQ66D7flq8ZQtv_DtT4wX3WeW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JEQ66D7flq8ZQtv_DtT4wX3WeW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B58FF/1204AB3C3C3D11EBB9381F71C4F9AE02/65DA620C798111EBBD22251CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 110.238.184.0/21 Signature Algorithm: sha256WithRSAEncryption 88:69:5e:64:d8:7a:5c:58:20:9f:8a:bf:33:40:0a:b7:0a:bf: f7:65:77:73:8b:93:73:dd:15:75:ce:e5:53:d4:41:88:ca:8f: ab:39:1e:96:09:49:3f:40:6c:17:60:0c:db:6d:b0:eb:0f:55: 09:e1:03:4d:c4:6b:8c:31:c7:6d:db:0b:fe:cf:f0:e4:36:70: d9:d5:ae:ee:90:c2:ff:cf:ce:44:69:6d:68:1d:7b:2d:0a:df: d4:85:0c:6c:7d:f4:3f:68:04:96:87:92:ad:9e:8b:98:f5:41: 73:3e:6a:37:70:84:e7:7f:66:50:34:43:e3:f3:c6:43:6c:10: 80:f9:98:eb:89:1d:29:f0:87:a9:2d:6b:63:18:fe:53:1b:0e: 9c:bd:0a:9b:22:dc:ec:cd:53:4b:d0:71:b6:e1:65:e5:1a:98: 98:a7:50:68:54:17:c1:8c:d8:87:5d:01:ce:4f:a9:96:ed:ca: a2:76:1d:08:49:d3:1c:ce:5a:d1:4e:20:92:8a:14:a2:a2:75: b4:91:c7:a2:2c:fe:55:26:87:04:78:5f:aa:6a:3d:2b:32:ba: 20:fc:70:17:f4:f6:9c:06:0f:9f:dc:a5:01:9c:c5:70:44:0a: 61:3f:41:3b:44:b5:67:46:54:9f:b7:5e:88:0c:73:a5:a1:46: 33:32:0f:35 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4RkYxMTAvBgNVBAUTKDI0NDQzQUU4M0VERjk2QUYxOTQyREJGRjBFRDRGOEMx N0RENjc5NkYwHhcNMjUxMTI4MjA1MzQ3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQ4MC0xM2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHkweBLVm0gWlA0cYCh2ZS99w7KRt+cP4LMj/Sa7I2OLAmPmZY2rW9VJdQFx ZFjNBBqcvv0kYK2okprbn6E/Ilxu55Ic03HIQAZWKayseY3r08CrElgKxQA2cHLP iWnD0BzLGYRe8INO58A5aVlUYJcYtrr9oVYgLLNd0qrYsAqzK9nWx6qBW6fDQtSf dO1emxtq7z1hfTrlJ5xq/rPFW9Ui9QSmuIf3gvCChkeVld5gwRh2k9qTwx2PUuwB aOV6Q5vZPe/0NQRTUKgoYPvkCB2nO745mM41jMErw1OT4WTPEjY3KpfOr7DmTJaU JPdHnHogO22ApsALAYBbLgngBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCPg8Qp8 x93NIXC2arBnuX4hbCa/MB8GA1UdIwQYMBaAFCREOug+35avGULb/w7U+MF91nlv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNThGRi8xMjA0QUIzQzND M0QxMUVCQjkzODFGNzFDNEY5QUUwMi9KRVE2NkQ3ZmxxOFpRdHZfRHRUNHdYM1dl VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pFUTY2RDdmbHE4WlF0dl9EdFQ0d1gzV2VXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU4RkYvMTIwNEFCM0MzQzNEMTFFQkI5MzgxRjcxQzRGOUFFMDIvNjVEQTYyMEM3 OTgxMTFFQkJEMjIyNTFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDbu64MA0GCSqGSIb3DQEBCwUAA4IBAQCIaV5k2HpcWCCfir8zQAq3 Cr/3ZXdzi5Nz3RV1zuVT1EGIyo+rOR6WCUk/QGwXYAzbbbDrD1UJ4QNNxGuMMcdt 2wv+z/DkNnDZ1a7ukML/z85EaW1oHXstCt/UhQxsffQ/aASWh5KtnouY9UFzPmo3 cITnf2ZQNEPj88ZDbBCA+ZjriR0p8IepLWtjGP5TGw6cvQqbItzszVNL0HG24WXl GpiYp1BoVBfBjNiHXQHOT6mW7cqidh0ISdMczlrRTiCSihSionW0kceiLP5VJocE eF+qaj0rMrog/HAX9PacBg+f3KUBnMVwRAphP0E7RLVnRlSft16IDHOloUYzMg81 -----END CERTIFICATE-----Generated at Mon Mar 2 08:51:08 2026 by rpki-client