$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/D0886954188811EC8E86754FC4F9AE02.roa File: D0886954188811EC8E86754FC4F9AE02.roa (raw, json) Hash identifier: W4C6/CMmIu13G3sy+4epSwhK8wjgstVqttIzDULu+ak= Subject key identifier: 59:29:9F:BE:1E:C9:80:93:3D:A6:D2:4F:F0:18:05:E4:1E:66:8E:29 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 3616 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/D0886954188811EC8E86754FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:23:44 +0000 ROA not before: Tue 04 Nov 2025 14:30:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7532 IP address blocks: 219.69.251.0/24 maxlen: 24 219.69.252.0/22 maxlen: 22 219.69.252.0/23 maxlen: 23 219.69.252.0/24 maxlen: 24 219.69.253.0/24 maxlen: 24 219.69.254.0/23 maxlen: 23 219.69.254.0/24 maxlen: 24 219.69.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13846 (0x3616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Nov 4 14:30:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a48430-ac63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:04:c2:fb:71:74:95:64:57:6a:05:76:75:8c: 57:5e:70:db:b3:73:28:5b:1e:3b:6a:ab:6f:e2:99: 56:56:2b:b3:ac:ec:12:75:73:8d:25:82:71:05:10: b1:1e:6e:85:73:0a:d0:21:a1:ef:54:2c:0e:14:4b: 67:70:a7:43:c8:2e:86:2a:f9:c4:a1:30:a6:22:ca: 2c:71:e1:37:44:dc:67:b2:a8:64:7f:04:38:5f:fd: 74:78:72:0d:59:bb:46:e4:99:b0:87:9b:62:ee:91: 46:9f:2b:c7:f9:cf:f8:37:14:80:04:5d:68:f8:aa: 71:7e:47:af:1d:7c:2c:45:d6:d0:78:b5:56:db:93: f0:77:0b:ac:89:95:e2:f6:df:91:ed:c6:6b:0a:fe: 1e:ea:b8:99:64:63:36:d3:2e:b1:9d:4f:48:b9:4c: df:0f:60:06:01:c0:db:4c:e6:d0:d2:48:8f:7e:f6: 0e:f5:0d:6a:d0:88:6e:51:c9:2c:96:71:81:5b:89: b1:b1:99:be:8e:e1:8e:3c:f0:28:a5:c6:d9:88:2a: 6a:d5:30:09:fa:be:d3:48:fc:b2:f1:fd:8b:c0:d6: b4:66:78:2f:92:f5:2e:ec:05:f1:af:69:c0:c1:17: b6:12:d0:19:a4:8a:ce:b7:b5:48:06:32:db:ce:05: 27:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:29:9F:BE:1E:C9:80:93:3D:A6:D2:4F:F0:18:05:E4:1E:66:8E:29 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/D0886954188811EC8E86754FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 219.69.251.0-219.69.255.255 Signature Algorithm: sha256WithRSAEncryption 3f:30:dd:8a:c3:28:21:79:be:c2:7d:98:5d:4a:f7:83:b8:d0: 76:8a:31:75:98:86:8a:4d:68:fd:67:d6:7b:ca:b3:39:4d:fb: 84:17:f7:e4:04:e6:d8:66:b4:61:86:83:0e:28:17:b2:d8:bf: 2c:39:bf:02:db:cb:0e:52:0b:75:cd:4b:96:48:08:06:c1:6f: 94:b6:a5:ee:4f:8d:40:82:92:87:ca:15:39:9c:f7:aa:89:b9: 7c:54:49:12:99:f5:dd:ac:48:4f:bc:7b:f5:b3:b5:c0:ff:7e: ea:15:15:ec:da:a9:7e:78:52:41:eb:31:26:eb:21:a9:b4:80: 83:c0:6d:68:c9:13:25:8a:03:04:19:b8:fd:66:70:f0:16:4d: 87:a2:06:73:7f:80:55:83:ee:a2:26:45:16:1a:67:66:b6:a1: 65:f5:68:94:7a:fa:c4:d1:97:25:1f:3f:0d:ed:2a:59:e0:bc: 52:b2:64:9f:f8:ee:56:05:c0:58:4f:45:c7:64:a4:61:79:50: 2b:6a:95:7c:8a:7e:40:33:ee:73:3b:90:88:84:13:0c:92:3c: 86:bb:25:3e:e9:09:be:df:24:f6:8c:17:27:39:ac:97:13:d0: db:18:a5:25:79:a1:a4:bb:ff:81:50:8e:38:32:b4:c1:95:cf: 36:e9:d7:42 -----BEGIN CERTIFICATE----- MIIFQzCCBCugAwIBAgICNhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMTA0MTQzMDIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODQzMC1hYzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApgTC+3F0lWRXagV2dYxXXnDbs3MoWx47aqtv4plWViuzrOwSdXONJYJxBRCx Hm6FcwrQIaHvVCwOFEtncKdDyC6GKvnEoTCmIsosceE3RNxnsqhkfwQ4X/10eHIN WbtG5Jmwh5ti7pFGnyvH+c/4NxSABF1o+KpxfkevHXwsRdbQeLVW25PwdwusiZXi 9t+R7cZrCv4e6riZZGM20y6xnU9IuUzfD2AGAcDbTObQ0kiPfvYO9Q1q0IhuUcks lnGBW4mxsZm+juGOPPAopcbZiCpq1TAJ+r7TSPyy8f2LwNa0ZngvkvUu7AXxr2nA wRe2EtAZpIrOt7VIBjLbzgUngQIDAQABo4ICZzCCAmMwHQYDVR0OBBYEFFkpn74e yYCTPabST/AYBeQeZo4pMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvRDA4ODY5NTQx ODg4MTFFQzhFODY3NTRGQzRGOUFFMDIucm9hMCYGCCsGAQUFBwEHAQH/BBcwFTAT BAIAATANMAsDBADbRfsDAwHbRDANBgkqhkiG9w0BAQsFAAOCAQEAPzDdisMoIXm+ wn2YXUr3g7jQdooxdZiGik1o/WfWe8qzOU37hBf35ATm2Ga0YYaDDigXsti/LDm/ AtvLDlILdc1LlkgIBsFvlLal7k+NQIKSh8oVOZz3qom5fFRJEpn13axIT7x79bO1 wP9+6hUV7NqpfnhSQesxJushqbSAg8BtaMkTJYoDBBm4/WZw8BZNh6IGc3+AVYPu oiZFFhpnZrahZfVolHr6xNGXJR8/De0qWeC8UrJkn/juVgXAWE9Fx2SkYXlQK2qV fIp+QDPuczuQiIQTDJI8hrslPukJvt8k9owXJzmslxPQ2xilJXmhpLv/gVCOODK0 wZXPNunXQg== -----END CERTIFICATE-----Generated at Mon Mar 2 15:52:28 2026 by rpki-client