$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa File: 8FFA8D36FF0C11EA854DE24CC4F9AE02.roa (raw, json) Hash identifier: mYIBQRF3hI40eKX3tGkCtcYc8DmTtM88bTd9cHNVL/c= Subject key identifier: 21:0B:C9:43:6C:F5:FA:46:0F:DB:F7:8B:E3:CA:A5:1A:B6:CD:C7:70 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 614C Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:39:29 +0000 ROA not before: Sat 17 May 2025 20:37:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55355 IP address blocks: 118.143.194.0/24 maxlen: 24 118.143.207.0/24 maxlen: 24 118.143.209.0/24 maxlen: 24 218.188.96.0/24 maxlen: 24 218.188.97.0/24 maxlen: 24 218.188.98.0/24 maxlen: 24 218.188.99.0/24 maxlen: 24 218.188.100.0/24 maxlen: 24 218.188.101.0/24 maxlen: 24 218.188.102.0/24 maxlen: 24 218.189.10.0/24 maxlen: 24 218.189.124.0/24 maxlen: 24 218.189.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24908 (0x614c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: May 17 20:37:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a487e1-cba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:59:cb:94:2d:cb:cb:b5:66:f9:3f:6e:5f:a6: 40:44:ec:e4:7d:04:7e:87:5e:12:88:b5:8c:f4:cc: 70:8d:35:2b:b3:ff:16:f7:63:c9:af:e1:a0:7c:4a: 79:80:4e:9a:3e:5a:4c:55:30:a2:a0:79:3b:36:cd: 28:3e:87:a9:2a:b0:94:90:ac:a2:90:5c:db:2e:97: 39:b8:7a:b6:a0:23:99:0f:cd:2a:54:3c:d0:71:75: 04:8f:82:e9:cc:08:3b:d8:5b:f5:5d:9e:cd:58:46: 9d:b3:0d:79:27:99:3b:62:30:26:74:52:cd:af:de: 8c:73:74:cd:32:f4:e2:4a:87:df:97:05:64:92:d9: 14:ed:5d:4a:9b:ee:2b:a3:61:29:1a:0d:cc:4d:18: f1:c1:fc:42:91:8e:15:1b:33:ab:ac:a8:d7:1f:fa: a4:53:6d:68:09:0a:49:4a:34:8b:69:b8:38:9f:11: 52:bc:e9:09:27:ab:80:e4:da:7c:d0:22:72:62:32: 7b:c1:eb:2d:d2:40:3e:e8:08:52:d6:19:fe:54:55: 99:ce:f3:d9:36:20:7f:eb:07:9d:53:18:78:d3:f5: bb:a8:de:55:14:74:9c:35:b5:eb:3a:36:19:b6:5a: ac:22:c4:dc:2f:18:ae:72:77:e0:07:4b:bd:50:18: 57:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:0B:C9:43:6C:F5:FA:46:0F:DB:F7:8B:E3:CA:A5:1A:B6:CD:C7:70 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 118.143.194.0/24 118.143.207.0/24 118.143.209.0/24 218.188.96.0-218.188.102.255 218.189.10.0/24 218.189.124.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:f1:94:07:2a:1f:7b:1c:27:e8:45:cb:f3:34:08:c0:e2:31: c5:10:a3:33:35:e7:1d:77:ac:e6:a7:12:29:e9:77:8a:c2:8d: cc:6a:00:6d:f8:c9:0d:86:66:a7:e9:db:ce:31:97:d5:1e:b2: f5:12:95:3d:cb:80:64:78:84:20:66:0d:fe:c1:c2:bb:69:4a: 50:71:8d:7f:83:25:93:65:0e:ac:6e:ec:58:e9:2a:7f:86:c6: 29:38:10:ff:9a:62:60:5f:42:f0:78:be:ed:d5:e6:b9:37:04: fc:fc:f3:f6:e9:e8:98:d2:4c:bb:43:44:96:ba:44:6b:f2:dc: 58:b0:6a:8d:60:65:74:4e:09:67:f9:14:0e:9b:79:ff:db:fe: cf:dd:04:4b:5f:54:98:cc:41:4e:11:ab:e0:ec:c0:06:28:94: 4c:f9:8a:1d:2a:77:f4:d0:30:95:36:a4:d9:ce:f9:f0:9a:ac: bc:31:8c:22:92:89:67:d8:a4:b5:af:80:0f:17:da:76:68:bc: 18:de:c3:ce:f4:d0:f8:ba:c0:02:ec:46:38:53:c7:50:6d:9a: a6:6f:6f:1b:01:96:53:ed:31:38:ef:1b:f5:26:f0:4e:a7:7b: 08:2f:4a:91:8d:9c:95:ec:4e:12:3f:39:f9:3a:a6:a7:e9:a0: 26:e8:d1:60 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICYUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNTE3MjAzNzIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdlMS1jYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlnLlC3Ly7Vm+T9uX6ZAROzkfQR+h14SiLWM9MxwjTUrs/8W92PJr+GgfEp5 gE6aPlpMVTCioHk7Ns0oPoepKrCUkKyikFzbLpc5uHq2oCOZD80qVDzQcXUEj4Lp zAg72Fv1XZ7NWEadsw15J5k7YjAmdFLNr96Mc3TNMvTiSofflwVkktkU7V1Km+4r o2EpGg3MTRjxwfxCkY4VGzOrrKjXH/qkU21oCQpJSjSLabg4nxFSvOkJJ6uA5Np8 0CJyYjJ7west0kA+6AhS1hn+VFWZzvPZNiB/6wedUxh40/W7qN5VFHScNbXrOjYZ tlqsIsTcLxiucnfgB0u9UBhXtwIDAQABo4IChjCCAoIwHQYDVR0OBBYEFCELyUNs 9fpGD9v3i+PKpRq2zcdwMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvOEZGQThEMzZG RjBDMTFFQTg1NERFMjRDQzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAy BAIAATAsAwQAdo/CAwQAdo/PAwQAdo/RMAwDBAXavGADBADavGYDBADavQoDBAHa vXwwDQYJKoZIhvcNAQELBQADggEBAD7xlAcqH3scJ+hFy/M0CMDiMcUQozM15x13 rOanEinpd4rCjcxqAG34yQ2GZqfp284xl9UesvUSlT3LgGR4hCBmDf7BwrtpSlBx jX+DJZNlDqxu7FjpKn+Gxik4EP+aYmBfQvB4vu3V5rk3BPz88/bp6JjSTLtDRJa6 RGvy3Fiwao1gZXROCWf5FA6bef/b/s/dBEtfVJjMQU4Rq+DswAYolEz5ih0qd/TQ MJU2pNnO+fCarLwxjCKSiWfYpLWvgA8X2nZovBjew8700Pi6wALsRjhTx1BtmqZv bxsBllPtMTjvG/Um8E6newgvSpGNnJXsThI/Ofk6pqfpoCbo0WA= -----END CERTIFICATE-----Generated at Mon Mar 2 06:05:30 2026 by rpki-client