$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/8FFA61D4B13D11EF9EFDE433C4F9AE02.roa File: 8FFA61D4B13D11EF9EFDE433C4F9AE02.roa (raw, json) Hash identifier: WmeiamuyqIiXqThgaQ7WjBlL81T70JeikrMmaNzPLPQ= Subject key identifier: 6F:60:2A:1E:02:0D:F8:02:06:2F:3E:5A:95:E7:BF:4A:78:33:73:0D Certificate issuer: /CN=A91B8AC8/serialNumber=E4C589B893D27289CF846DF05ADFB596036428FD Certificate serial: F4 Authority key identifier: E4:C5:89:B8:93:D2:72:89:CF:84:6D:F0:5A:DF:B5:96:03:64:28:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/8FFA61D4B13D11EF9EFDE433C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:49:15 +0000 ROA not before: Mon 15 Dec 2025 05:25:15 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 9433 IP address blocks: 130.123.0.0/16 maxlen: 16 130.123.96.0/22 maxlen: 22 130.123.104.0/23 maxlen: 23 130.123.108.0/23 maxlen: 23 130.123.128.0/18 maxlen: 18 130.123.128.0/23 maxlen: 23 130.123.192.0/19 maxlen: 19 130.123.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.crl rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8AC8, serialNumber=E4C589B893D27289CF846DF05ADFB596036428FD Validity Not Before: Dec 15 05:25:15 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a419aa-abf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:c9:5e:70:a2:94:70:42:8d:e2:53:72:e9: 19:89:ce:a9:96:73:10:ea:eb:af:16:c8:95:7d:01: b6:14:39:f1:93:b2:86:4b:38:63:39:ee:85:b7:03: 2d:6e:aa:23:61:39:1f:2a:66:c5:42:12:47:dc:6c: b7:e2:07:ca:1f:a4:e7:e4:6b:4b:f8:54:3a:64:df: 4f:08:f1:8d:20:7b:d3:05:48:da:cd:f4:17:4f:13: 68:ba:48:1d:4a:6f:f1:13:e7:f8:1d:83:07:03:72: 7d:ab:e4:a5:44:84:47:7e:a9:20:54:96:8f:2f:de: bb:cc:fb:c9:14:7c:03:d2:b9:d5:50:bf:28:4b:20: ee:dd:78:9b:60:ef:a9:9f:b7:d6:3c:d5:94:1c:30: 27:b1:33:9b:2d:7f:e5:f7:09:99:55:2c:76:ae:44: 25:ae:d7:31:24:2f:77:05:c9:8d:6c:63:12:60:17: 94:7e:11:2f:ee:75:c7:c5:b6:b9:d9:7c:ce:66:26: 47:68:82:3d:b6:bf:de:16:da:83:bc:0f:e7:1a:c6: fa:8f:a3:96:cf:3b:5b:09:23:75:b1:ad:65:44:53: 2f:80:7a:2c:06:c6:18:f0:5c:9e:14:e1:74:c5:3e: a4:83:95:75:35:59:e4:b6:d3:94:fa:5f:6d:a4:24: 67:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:60:2A:1E:02:0D:F8:02:06:2F:3E:5A:95:E7:BF:4A:78:33:73:0D X509v3 Authority Key Identifier: keyid:E4:C5:89:B8:93:D2:72:89:CF:84:6D:F0:5A:DF:B5:96:03:64:28:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/5MWJuJPSconPhG3wWt-1lgNkKP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5MWJuJPSconPhG3wWt-1lgNkKP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8AC8/E12D1052B13C11EFAAF9D731C4F9AE02/8FFA61D4B13D11EF9EFDE433C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 130.123.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:45:b7:f5:15:49:4b:71:b0:b4:e2:bf:d8:1f:dd:d0:61:b1: bb:bf:e6:5b:ff:70:07:cf:28:c0:2c:8c:7d:36:9a:b8:8c:a1: ce:08:71:13:62:1c:d5:84:dd:44:1b:46:5b:d6:d3:8c:6f:42: ec:3c:32:d3:f6:55:2c:e0:ba:b9:f7:65:f9:3a:e8:d8:4a:d8: ef:9c:81:fd:37:0c:9d:0f:3d:bb:94:67:47:60:42:5a:62:5a: 39:3b:ab:07:d9:8b:2b:2f:7c:48:64:a4:03:54:e1:47:e1:fc: a0:33:cf:1a:6b:42:55:5a:98:fa:2c:74:06:0c:ed:09:b8:57: 4f:0f:92:73:68:51:18:03:88:09:8e:0b:96:ac:3b:41:33:47: 38:c2:d4:18:d3:b3:7d:5f:3f:0c:74:74:7a:ea:bf:af:8c:0e: 3c:80:a0:42:94:27:e4:78:15:27:27:21:b1:f2:68:bf:e2:3e: f5:53:60:95:7e:09:6c:07:1a:cc:3f:ae:50:53:fc:19:30:e3: 82:25:a0:a3:1e:2f:33:7c:18:a8:da:fe:14:8b:00:ae:46:ea: 7f:36:82:7b:ab:d7:2c:1c:79:75:4d:ad:48:db:92:8b:d2:6a: 91:0c:0d:e2:85:43:8e:74:c0:63:4d:88:97:aa:f3:27:5c:44: 0f:77:84:d7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhBQzgxMTAvBgNVBAUTKEU0QzU4OUI4OTNEMjcyODlDRjg0NkRGMDVBREZCNTk2 MDM2NDI4RkQwHhcNMjUxMjE1MDUyNTE1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTlhYS1hYmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6LJXnCilHBCjeJTcukZic6plnMQ6uuvFsiVfQG2FDnxk7KGSzhjOe6FtwMt bqojYTkfKmbFQhJH3Gy34gfKH6Tn5GtL+FQ6ZN9PCPGNIHvTBUjazfQXTxNoukgd Sm/xE+f4HYMHA3J9q+SlRIRHfqkgVJaPL967zPvJFHwD0rnVUL8oSyDu3XibYO+p n7fWPNWUHDAnsTObLX/l9wmZVSx2rkQlrtcxJC93BcmNbGMSYBeUfhEv7nXHxba5 2XzOZiZHaII9tr/eFtqDvA/nGsb6j6OWzztbCSN1sa1lRFMvgHosBsYY8FyeFOF0 xT6kg5V1NVnkttOU+l9tpCRnwwIDAQABo4ICXzCCAlswHQYDVR0OBBYEFG9gKh4C DfgCBi8+WpXnv0p4M3MNMB8GA1UdIwQYMBaAFOTFibiT0nKJz4Rt8FrftZYDZCj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEFDOC9FMTJEMTA1MkIx M0MxMUVGQUFGOUQ3MzFDNEY5QUUwMi81TVdKdUpQU2NvblBoRzN3V3QtMWxnTmtL UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVNV0p1SlBTY29uUGhHM3dXdC0xbGdOa0tQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhBQzgvRTEyRDEwNTJCMTNDMTFFRkFBRjlENzMxQzRGOUFFMDIvOEZGQTYxRDRC MTNEMTFFRjlFRkRFNDMzQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAgnswDQYJKoZIhvcNAQELBQADggEBAABFt/UVSUtxsLTiv9gf3dBh sbu/5lv/cAfPKMAsjH02mriMoc4IcRNiHNWE3UQbRlvW04xvQuw8MtP2VSzgurn3 Zfk66NhK2O+cgf03DJ0PPbuUZ0dgQlpiWjk7qwfZiysvfEhkpANU4Ufh/KAzzxpr QlVamPosdAYM7Qm4V08PknNoURgDiAmOC5asO0EzRzjC1BjTs31fPwx0dHrqv6+M DjyAoEKUJ+R4FScnIbHyaL/iPvVTYJV+CWwHGsw/rlBT/Bkw44IloKMeLzN8GKja /hSLAK5G6n82gnur1ywceXVNrUjbkovSapEMDeKFQ450wGNNiJeq8ydcRA93hNc= -----END CERTIFICATE-----Generated at Mon Mar 2 10:00:19 2026 by rpki-client