$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa File: D66D72562EAB11EF9B369566C4F9AE02.roa (raw, json) Hash identifier: Jpr2rdfDo4+UmyigrHHOPqRZP94BLcmyPwbnjdRwNGQ= Subject key identifier: 7A:FB:DD:89:BD:5E:49:8F:E8:E3:14:70:2C:81:2C:9A:15:FF:18:52 Certificate issuer: /CN=A91B7BDC/serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE Certificate serial: 0199 Authority key identifier: EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:08:42 +0000 ROA not before: Thu 13 Nov 2025 02:12:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132139 IP address blocks: 185.81.70.0/24 maxlen: 24 185.81.70.144/29 maxlen: 29 185.81.70.160/29 maxlen: 29 185.81.70.176/29 maxlen: 29 185.81.70.184/29 maxlen: 29 185.81.70.192/29 maxlen: 29 185.81.70.200/29 maxlen: 29 185.81.70.208/29 maxlen: 29 185.81.70.216/29 maxlen: 29 185.81.70.224/31 maxlen: 31 185.81.70.226/31 maxlen: 31 185.81.70.236/31 maxlen: 31 185.81.70.238/31 maxlen: 31 185.81.70.240/29 maxlen: 29 185.81.70.248/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.crl rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7BDC, serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE Validity Not Before: Nov 13 02:12:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4648a-f1dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b0:3b:fc:af:1a:f5:8a:4c:0d:05:ba:4a:bb: 31:39:57:3a:01:7f:d0:61:cc:51:1d:4e:e0:43:80: 8b:51:cb:53:2f:75:79:de:51:94:0d:09:b4:84:9f: c6:bc:fd:53:a8:39:83:8b:34:25:5f:ad:f6:45:a2: 6a:83:f4:0b:61:1a:d4:a0:24:6e:c7:cf:ad:7f:61: 69:df:57:77:31:e3:a6:cf:69:7d:b3:72:a9:0b:39: ca:e8:fc:1f:c4:fa:33:b8:0a:ee:c2:05:ca:16:7f: 60:ac:15:75:54:2c:57:79:fe:77:4f:75:5a:e5:7c: a5:3a:ae:9a:d0:d5:4f:29:64:40:11:70:20:bc:7b: 7c:7d:2a:4f:bb:f4:16:aa:4f:0e:7d:23:44:77:f0: 6c:63:18:c5:0c:3d:02:f4:76:04:bd:77:2e:0f:e6: dc:88:22:91:3e:e9:a6:bd:a6:51:91:8c:36:b5:e3: 1d:e0:6c:5b:ca:5f:f2:43:9b:f5:be:2f:99:bb:1d: 9c:49:98:8e:e7:9b:32:da:20:fc:c5:09:4e:5a:0c: e8:09:fa:4d:40:0b:a6:94:75:e4:0c:e3:f0:55:3b: c7:6b:3c:94:75:a5:b1:d0:48:0c:d8:41:2f:70:81: 40:7b:d0:95:bd:07:ec:e7:03:44:e4:de:d7:26:cb: b4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:FB:DD:89:BD:5E:49:8F:E8:E3:14:70:2C:81:2C:9A:15:FF:18:52 X509v3 Authority Key Identifier: keyid:EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 185.81.70.0/24 Signature Algorithm: sha256WithRSAEncryption 50:77:72:d3:d5:ca:2d:db:44:b2:89:64:25:ce:c0:09:70:c1: 78:8a:6d:24:2b:97:0d:73:85:41:d1:92:04:07:af:ad:4b:8c: 6a:8c:28:72:44:67:ed:12:86:b4:4e:67:cf:70:f4:d3:40:28: d3:55:6b:b2:fd:e8:9a:94:4e:ee:87:05:ef:98:8c:3b:41:e2: c4:b8:83:bb:2f:9d:08:6e:92:12:a9:a2:f0:52:66:8e:4f:30: c2:5d:f5:62:ff:d4:c8:ca:1a:f0:5b:e2:5c:20:f6:dc:88:d6: 25:71:76:a1:f2:5c:c5:22:3b:ae:55:4a:aa:61:b3:5f:d3:11: c2:9e:13:61:f8:9c:0e:1c:d8:8e:f7:d7:d6:9b:0d:eb:b2:15: 5e:e7:c3:88:70:99:3f:55:10:00:c6:e2:54:76:94:71:8a:b0: c5:a2:6a:8f:db:0a:4c:71:d9:35:8a:7d:8a:f5:6c:e7:1f:05: 1c:72:a7:a1:dc:d2:43:8b:95:54:3a:d7:2f:9b:bf:5f:cf:30: 25:9e:7c:a3:e9:08:a3:a5:e9:ce:51:23:bd:af:ab:ab:26:9d: 72:05:bc:6c:12:6d:c6:da:b5:93:92:67:06:bb:54:31:25:fc: 0c:0d:45:1b:5d:85:14:77:11:e3:2f:76:ab:df:f3:ac:4d:c4: 4f:23:a6:c6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCREMxMTAvBgNVBAUTKEVGMjVBOTI1QkZCRDRDQkFFRjUyNDU2QUIzQjMwOUI3 NDcwNDBERkUwHhcNMjUxMTEzMDIxMjM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQ4YS1mMWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57A7/K8a9YpMDQW6SrsxOVc6AX/QYcxRHU7gQ4CLUctTL3V53lGUDQm0hJ/G vP1TqDmDizQlX632RaJqg/QLYRrUoCRux8+tf2Fp31d3MeOmz2l9s3KpCznK6Pwf xPozuAruwgXKFn9grBV1VCxXef53T3Va5XylOq6a0NVPKWRAEXAgvHt8fSpPu/QW qk8OfSNEd/BsYxjFDD0C9HYEvXcuD+bciCKRPummvaZRkYw2teMd4Gxbyl/yQ5v1 vi+Zux2cSZiO55sy2iD8xQlOWgzoCfpNQAumlHXkDOPwVTvHazyUdaWx0EgM2EEv cIFAe9CVvQfs5wNE5N7XJsu08QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHr73Ym9 XkmP6OMUcCyBLJoV/xhSMB8GA1UdIwQYMBaAFO8lqSW/vUy671JFarOzCbdHBA3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0JEQy83OUVFMEJDNEUy NzIxMUVFQjgzRDYwNkJDNEY5QUUwMi83eVdwSmItOVRMcnZVa1ZxczdNSnQwY0VE ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzd5V3BKYi05VExydlVrVnFzN01KdDBjRURmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdCREMvNzlFRTBCQzRFMjcyMTFFRUI4M0Q2MDZCQzRGOUFFMDIvRDY2RDcyNTYy RUFCMTFFRjlCMzY5NTY2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAuVFGMA0GCSqGSIb3DQEBCwUAA4IBAQBQd3LT1cot20SyiWQlzsAJ cMF4im0kK5cNc4VB0ZIEB6+tS4xqjChyRGftEoa0TmfPcPTTQCjTVWuy/eialE7u hwXvmIw7QeLEuIO7L50IbpISqaLwUmaOTzDCXfVi/9TIyhrwW+JcIPbciNYlcXah 8lzFIjuuVUqqYbNf0xHCnhNh+JwOHNiO99fWmw3rshVe58OIcJk/VRAAxuJUdpRx irDFomqP2wpMcdk1in2K9WznHwUccqeh3NJDi5VUOtcvm79fzzAlnnyj6QijpenO USO9r6urJp1yBbxsEm3G2rWTkmcGu1QxJfwMDUUbXYUUdxHjL3ar3/OsTcRPI6bG -----END CERTIFICATE-----Generated at Mon Mar 2 12:40:58 2026 by rpki-client