$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/AB9889725E5E11EDB5361D3BC4F9AE02.roa File: AB9889725E5E11EDB5361D3BC4F9AE02.roa (raw, json) Hash identifier: 2+uDGIyNCQwdI4kpyLzkpL270iQx3eFCTQmOCW4llcA= Subject key identifier: EF:1C:06:EA:ED:FD:00:D4:E1:AD:F1:E4:29:4A:C4:E2:3B:84:22:68 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3618 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/AB9889725E5E11EDB5361D3BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:23:45 +0000 ROA not before: Thu 05 Feb 2026 09:25:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9416 IP address blocks: 58.114.0.0/15 maxlen: 24 61.70.0.0/15 maxlen: 15 61.70.0.0/16 maxlen: 24 61.71.0.0/16 maxlen: 24 111.184.0.0/15 maxlen: 24 182.233.0.0/16 maxlen: 24 182.234.0.0/15 maxlen: 15 182.234.0.0/16 maxlen: 24 182.235.0.0/16 maxlen: 24 202.2.52.0/22 maxlen: 24 203.133.0.0/17 maxlen: 17 203.133.0.0/18 maxlen: 24 203.133.64.0/18 maxlen: 24 203.187.0.0/17 maxlen: 24 203.203.0.0/16 maxlen: 24 203.204.0.0/16 maxlen: 24 219.68.0.0/14 maxlen: 14 219.68.0.0/15 maxlen: 15 219.68.0.0/16 maxlen: 24 219.69.0.0/17 maxlen: 24 219.69.128.0/17 maxlen: 24 219.70.0.0/15 maxlen: 15 219.70.0.0/16 maxlen: 24 219.71.0.0/16 maxlen: 24 2001:d58::/32 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13848 (0x3618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Feb 5 09:25:13 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48431-33a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b1:90:8a:94:b5:b2:f1:e4:f3:df:f7:04:5f: 58:7e:89:8d:ff:70:c2:fa:03:c4:2e:f9:ac:65:e1: e5:a3:5a:13:73:8b:13:89:87:9b:78:84:ef:ce:2c: d9:58:3e:1b:e7:84:e1:34:3a:b7:d3:cd:f8:55:5f: 66:69:9d:57:47:4c:8d:eb:1e:29:43:eb:be:47:33: 35:14:1c:d7:b5:7e:48:2b:e3:cd:bb:99:83:24:79: 78:23:a8:e3:f4:51:77:78:e7:5d:ed:76:54:ed:9c: 65:6e:10:d9:a0:b8:4c:12:27:82:77:18:b2:1e:d8: b7:9c:d8:8c:7a:8a:27:aa:1e:8e:08:7c:be:88:c0: 54:82:19:7d:c4:bb:b9:35:69:66:ee:78:81:67:53: 2d:64:32:8e:bd:63:43:c1:09:39:11:82:1d:87:2c: 11:3d:6d:e9:af:55:01:67:bb:9f:31:88:2e:bd:85: bb:69:d9:fe:ab:54:67:f5:64:b3:8a:7d:c9:76:14: a9:d1:0f:73:14:1b:dd:9c:5a:41:b5:ec:42:0c:0e: c9:03:6b:24:3e:01:13:2f:97:cc:60:c3:f6:bd:6a: f6:51:15:2b:16:81:46:66:23:3c:f2:68:ee:b1:86: fb:b1:56:d0:87:ae:b7:16:91:72:8a:df:84:6c:75: 74:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:1C:06:EA:ED:FD:00:D4:E1:AD:F1:E4:29:4A:C4:E2:3B:84:22:68 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/AB9889725E5E11EDB5361D3BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.114.0.0/15 61.70.0.0/15 111.184.0.0/15 182.233.0.0-182.235.255.255 202.2.52.0/22 203.133.0.0/17 203.187.0.0/17 203.203.0.0-203.204.255.255 219.68.0.0/14 IPv6: 2001:d58::/32 Signature Algorithm: sha256WithRSAEncryption 4d:b5:c4:93:11:1a:e0:4c:1a:d7:e0:fa:41:a9:f6:d7:ba:3e: 99:9a:2c:f8:71:4b:70:84:a3:e9:13:af:c5:d7:81:84:81:b2: c6:a8:51:f5:eb:10:1d:3d:57:4e:23:d2:fc:7b:0a:b0:be:6b: 57:bf:cc:c0:27:67:95:72:2b:97:b7:91:00:54:1b:17:41:73: c1:f2:2b:a3:8d:84:70:6a:46:e3:7c:f9:cd:a9:0a:d9:2d:b9: 6e:8a:44:b3:c3:8c:00:0d:d8:f9:fd:d0:83:f2:2a:6c:c1:d1: 12:e5:10:2a:56:c0:44:89:c1:34:de:88:4b:18:af:f7:64:84: 6d:b4:9b:ff:5f:22:e5:0a:46:56:3a:c3:e7:a7:3d:3b:97:2d: 5a:f8:9f:a6:dc:4e:be:ee:62:6e:e4:6c:c0:8b:3e:30:7e:e2: 97:40:b5:aa:1f:30:11:15:bc:8d:0d:75:cc:ae:35:03:b3:45: 9e:09:f2:2f:e7:9c:8b:57:d0:e8:23:f1:5d:9c:50:22:bd:3a: ee:60:71:78:bb:8c:53:65:ec:01:08:b8:d4:c0:8b:1d:12:27: 02:ea:c2:4e:99:cf:bd:8b:92:6e:6a:2a:5b:52:bf:4e:12:05: 2e:3e:50:ef:4e:85:43:4b:a4:3d:18:9d:bd:fa:71:09:0b:28: 15:6f:dd:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICNhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjYwMjA1MDkyNTEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQzMS0zM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbGQipS1svHk89/3BF9YfomN/3DC+gPELvmsZeHlo1oTc4sTiYebeITvzizZ WD4b54ThNDq30834VV9maZ1XR0yN6x4pQ+u+RzM1FBzXtX5IK+PNu5mDJHl4I6jj 9FF3eOdd7XZU7ZxlbhDZoLhMEieCdxiyHti3nNiMeoonqh6OCHy+iMBUghl9xLu5 NWlm7niBZ1MtZDKOvWNDwQk5EYIdhywRPW3pr1UBZ7ufMYguvYW7adn+q1Rn9WSz in3JdhSp0Q9zFBvdnFpBtexCDA7JA2skPgETL5fMYMP2vWr2URUrFoFGZiM88mju sYb7sVbQh663FpFyit+EbHV0aQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFO8cBurt /QDU4a3x5ClKxOI7hCJoMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvQUI5ODg5NzI1 RTVFMTFFREI1MzYxRDNCQzRGOUFFMDIucm9hMGYGCCsGAQUFBwEHAQH/BFcwVTBE BAIAATA+AwMBOnIDAwE9RgMDAW+4MAoDAwC26QMDArboAwQCygI0AwQHy4UAAwQH y7sAMAoDAwDLywMDAMvMAwMC20QwDQQCAAIwBwMFACABDVgwDQYJKoZIhvcNAQEL BQADggEBAE21xJMRGuBMGtfg+kGp9te6PpmaLPhxS3CEo+kTr8XXgYSBssaoUfXr EB09V04j0vx7CrC+a1e/zMAnZ5VyK5e3kQBUGxdBc8HyK6ONhHBqRuN8+c2pCtkt uW6KRLPDjAAN2Pn90IPyKmzB0RLlECpWwESJwTTeiEsYr/dkhG20m/9fIuUKRlY6 w+enPTuXLVr4n6bcTr7uYm7kbMCLPjB+4pdAtaofMBEVvI0NdcyuNQOzRZ4J8i/n nItX0Ogj8V2cUCK9Ou5gcXi7jFNl7AEIuNTAix0SJwLqwk6Zz72Lkm5qKltSv04S BS4+UO9OhUNLpD0Ynb36cQkLKBVv3bc= -----END CERTIFICATE-----Generated at Mon Mar 2 04:33:19 2026 by rpki-client