$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/80222864027211F19767E73A2C3D8C67.roa File: 80222864027211F19767E73A2C3D8C67.roa (raw, json) Hash identifier: ywqZnsw0viWQVsstxlcIR8TqE6o6V9nWSSr21sJVdy4= Subject key identifier: 22:6A:FC:12:00:3D:80:7E:7C:45:11:AA:F3:20:4A:8E:E6:0A:8E:35 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3617 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/80222864027211F19767E73A2C3D8C67.roa Signing time: Sun 01 Mar 2026 18:23:45 +0000 ROA not before: Thu 05 Feb 2026 09:23:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 18042 IP address blocks: 58.114.0.0/15 maxlen: 16 58.114.0.0/17 maxlen: 17 58.114.0.0/18 maxlen: 18 58.114.64.0/18 maxlen: 18 58.114.128.0/18 maxlen: 18 58.114.192.0/18 maxlen: 18 58.115.0.0/18 maxlen: 21 58.115.64.0/18 maxlen: 18 58.115.128.0/18 maxlen: 18 58.115.192.0/18 maxlen: 18 61.70.0.0/15 maxlen: 15 61.70.0.0/16 maxlen: 24 61.71.0.0/16 maxlen: 24 111.184.0.0/15 maxlen: 24 182.233.0.0/16 maxlen: 24 182.234.0.0/15 maxlen: 24 202.2.52.0/22 maxlen: 24 203.133.0.0/17 maxlen: 24 203.187.0.0/17 maxlen: 24 203.203.0.0/16 maxlen: 24 203.204.0.0/16 maxlen: 24 219.68.0.0/14 maxlen: 14 219.68.0.0/15 maxlen: 15 219.68.0.0/16 maxlen: 24 219.69.0.0/17 maxlen: 24 219.69.128.0/17 maxlen: 24 219.70.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:25:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13847 (0x3617) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Feb 5 09:23:17 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48431-ceb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fd:3e:31:ae:f3:8c:62:8a:90:27:3d:c4:c3: 18:f5:11:6e:cc:9f:3e:2e:18:28:c3:8c:8e:bb:e0: 59:e2:c4:8f:5b:87:fb:47:5e:84:2b:aa:1b:5a:14: 72:a5:60:38:58:f5:7f:20:48:2a:60:e5:0e:52:86: 1d:e2:fe:9d:4e:a0:e6:cb:1e:86:ad:dd:2f:30:36: 77:40:43:e0:ad:ae:bd:e7:3d:76:4a:41:96:c1:82: af:16:67:7d:f8:30:68:15:6d:a2:70:77:2d:8c:83: 1c:d1:a0:c5:5d:9e:40:35:6e:b5:0d:57:53:2c:2c: 44:7d:94:c7:f4:6c:f3:8d:93:08:53:6c:cf:36:5a: 2e:82:76:9d:c3:3c:51:b8:35:a0:90:9b:57:56:b3: 30:e0:54:ea:97:35:3d:9e:55:65:46:0b:e7:56:ff: ad:94:36:2a:79:68:e5:d5:7c:6a:5d:11:ff:2a:e8: 79:2c:ff:92:be:c5:f6:cd:5f:77:08:25:3e:30:ff: c4:60:a2:19:8a:3a:b4:ef:1c:75:ee:9d:72:5a:19: 9c:6a:d8:b6:cd:93:13:c4:f3:a3:f5:59:a8:19:47: e0:7a:6a:67:d2:47:35:36:15:08:35:2d:62:64:53: 7f:1c:f3:f7:6b:a3:4d:78:02:e2:3d:ca:90:df:16: da:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6A:FC:12:00:3D:80:7E:7C:45:11:AA:F3:20:4A:8E:E6:0A:8E:35 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/80222864027211F19767E73A2C3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 58.114.0.0/15 61.70.0.0/15 111.184.0.0/15 182.233.0.0-182.235.255.255 202.2.52.0/22 203.133.0.0/17 203.187.0.0/17 203.203.0.0-203.204.255.255 219.68.0.0/14 Signature Algorithm: sha256WithRSAEncryption 75:2e:c6:6d:f9:85:1a:e5:94:2b:ea:34:72:8d:6d:42:95:fc: c0:2c:7c:70:41:c6:8f:bb:e9:ff:92:d9:06:b3:99:85:96:79: d6:5f:91:59:d4:4c:56:b0:2d:ce:0c:8a:6e:6c:fc:f1:e9:4c: dd:2d:85:6f:90:ad:02:b8:0c:02:34:93:fc:a6:48:7c:15:55: 42:a4:c2:6f:a0:ae:88:3b:fe:3f:7b:57:27:ab:e5:78:32:b9: 51:3c:bd:92:b6:8d:a1:11:ac:59:48:83:b9:22:22:a6:89:e7: 3e:1f:f4:93:de:31:59:a5:d0:90:f5:1a:7a:a8:1d:0a:53:33: a3:a7:a4:ba:76:3b:ee:e0:f0:c5:e6:bb:d0:fa:51:bf:35:01: 17:aa:b5:7e:56:b2:e3:34:d9:d7:fa:89:bb:b8:4d:80:72:ff: 22:0c:ef:46:2e:41:52:ec:62:fb:33:d7:18:86:53:f9:62:77: d4:f4:dd:a0:19:6f:cc:5f:b8:00:8a:ec:37:61:af:0b:fa:12: 31:93:79:6e:63:88:4b:26:2f:9c:39:89:8b:09:cc:06:39:f9: d2:97:5e:d0:9f:9d:21:5b:36:20:3e:70:7f:ef:3a:03:21:28: bb:32:71:06:fa:93:5a:1c:ed:98:a7:fb:ac:84:81:21:1c:fc: 56:8f:11:0f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICNhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjYwMjA1MDkyMzE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQzMS1jZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/0+Ma7zjGKKkCc9xMMY9RFuzJ8+Lhgow4yOu+BZ4sSPW4f7R16EK6obWhRy pWA4WPV/IEgqYOUOUoYd4v6dTqDmyx6Grd0vMDZ3QEPgra695z12SkGWwYKvFmd9 +DBoFW2icHctjIMc0aDFXZ5ANW61DVdTLCxEfZTH9GzzjZMIU2zPNlougnadwzxR uDWgkJtXVrMw4FTqlzU9nlVlRgvnVv+tlDYqeWjl1XxqXRH/Kuh5LP+SvsX2zV93 CCU+MP/EYKIZijq07xx17p1yWhmcati2zZMTxPOj9VmoGUfgempn0kc1NhUINS1i ZFN/HPP3a6NNeALiPcqQ3xbaXQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCJq/BIA PYB+fEURqvMgSo7mCo41MB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvODAyMjI4NjQw MjcyMTFGMTk3NjdFNzNBMkMzRDhDNjcucm9hMFcGCCsGAQUFBwEHAQH/BEgwRjBE BAIAATA+AwMBOnIDAwE9RgMDAW+4MAoDAwC26QMDArboAwQCygI0AwQHy4UAAwQH y7sAMAoDAwDLywMDAMvMAwMC20QwDQYJKoZIhvcNAQELBQADggEBAHUuxm35hRrl lCvqNHKNbUKV/MAsfHBBxo+76f+S2QazmYWWedZfkVnUTFawLc4Mim5s/PHpTN0t hW+QrQK4DAI0k/ymSHwVVUKkwm+grog7/j97Vyer5XgyuVE8vZK2jaERrFlIg7ki IqaJ5z4f9JPeMVml0JD1GnqoHQpTM6OnpLp2O+7g8MXmu9D6Ub81AReqtX5WsuM0 2df6ibu4TYBy/yIM70YuQVLsYvsz1xiGU/lid9T03aAZb8xfuACK7Ddhrwv6EjGT eW5jiEsmL5w5iYsJzAY5+dKXXtCfnSFbNiA+cH/vOgMhKLsycQb6k1oc7Zin+6yE gSEc/FaPEQ8= -----END CERTIFICATE-----Generated at Tue Mar 3 00:45:22 2026 by rpki-client