$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/465DBB30BA8811EAAF996D39C4F9AE02.roa File: 465DBB30BA8811EAAF996D39C4F9AE02.roa (raw, json) Hash identifier: tEVppuvDqO2Igjts26bHGw8+2Z3qSj1DL7NhnyY1wWw= Subject key identifier: CB:B5:E6:3A:58:F9:4F:3E:B7:5C:14:4F:BF:07:DB:F6:08:7C:DC:F2 Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 095B Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/465DBB30BA8811EAAF996D39C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:41:34 +0000 ROA not before: Mon 12 Jan 2026 20:16:38 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137280 IP address blocks: 104.250.32.0/23 maxlen: 23 104.250.32.0/24 maxlen: 24 104.250.33.0/24 maxlen: 24 104.250.34.0/23 maxlen: 23 104.250.38.0/23 maxlen: 23 104.250.40.0/23 maxlen: 23 104.250.42.0/23 maxlen: 23 104.250.44.0/24 maxlen: 24 104.250.46.0/23 maxlen: 23 104.250.48.0/23 maxlen: 23 104.250.50.0/23 maxlen: 23 104.250.52.0/22 maxlen: 22 104.250.56.0/22 maxlen: 22 104.250.56.0/23 maxlen: 23 104.250.58.0/23 maxlen: 23 104.250.60.0/23 maxlen: 23 104.250.60.0/24 maxlen: 24 104.250.62.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2395 (0x95b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Jan 12 20:16:38 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a45e2d-d0b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:05:55:11:10:2b:0d:5a:ca:59:fd:58:32: e7:ba:2b:6f:4b:f0:6c:5b:9a:ed:e5:fb:dc:20:d4: 61:2c:7e:9d:6a:b8:30:db:80:83:10:60:37:52:e7: 68:94:02:1a:4c:fe:e6:15:21:64:4f:92:38:84:56: a6:ac:a2:52:ac:7c:fa:47:70:c3:65:7b:06:2e:e3: 37:59:4d:64:21:91:5f:bf:a4:ad:8b:16:de:bb:65: d0:4f:27:03:52:6b:57:c3:4c:56:bf:4d:9c:42:82: 15:0e:b8:38:ee:9f:f7:9f:ad:ce:9a:d5:87:2b:25: d2:89:16:12:4e:f7:70:4c:39:60:61:23:3f:17:f1: dd:54:f9:b5:3b:8c:7c:f3:7d:fb:3d:af:f0:da:e9: f6:d1:80:1c:f9:f6:92:b2:51:13:73:51:95:05:68: 6f:f5:0f:d6:52:1d:a3:ac:31:5d:10:a4:ff:12:7c: 83:68:9a:1f:df:42:a9:f8:5a:59:72:b1:5a:b3:56: d0:85:4a:d3:28:30:84:81:0d:91:4f:e0:9d:ba:76: 64:4c:7d:46:7e:b3:fc:53:68:af:8d:4b:ef:68:23: 5d:e2:3c:c0:05:a1:90:a7:ad:ef:8a:4e:2a:cc:2d: 81:bd:6d:72:7f:e8:e6:ba:57:52:8c:06:6c:6e:4e: 65:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B5:E6:3A:58:F9:4F:3E:B7:5C:14:4F:BF:07:DB:F6:08:7C:DC:F2 X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/465DBB30BA8811EAAF996D39C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 104.250.32.0/22 104.250.38.0-104.250.44.255 104.250.46.0-104.250.63.255 Signature Algorithm: sha256WithRSAEncryption 0e:44:40:45:1a:f6:b4:d9:4c:b1:26:bb:14:bf:42:c2:c2:22: 90:57:b6:a0:d6:51:ce:6b:29:75:d4:61:58:8b:74:e9:7b:1c: 4c:81:4c:a9:f0:fb:76:40:40:2b:27:1f:09:ca:d4:80:fa:9d: 1d:c4:cf:17:b0:33:54:58:63:79:ff:eb:f4:40:e8:21:46:ad: 12:a5:64:4e:cd:b7:3f:bb:7a:78:ac:a3:0c:77:e8:82:81:bd: 42:57:7a:54:1a:83:4d:2e:17:f8:9f:4b:76:ed:0e:10:2b:12: a3:00:da:3a:ea:9b:5e:6d:f3:3e:ae:77:de:d2:2b:8e:21:72: 7f:e4:4b:20:33:82:87:d7:b7:94:20:f9:19:39:74:08:54:b1: f5:e3:56:59:f8:3c:9d:61:b1:6a:b9:b3:06:a6:19:ed:a1:1d: 3d:97:f4:10:1b:d6:97:74:69:2b:32:d9:69:2f:18:a9:bc:d8: 31:c3:6b:b9:de:30:a7:7a:c7:81:d8:22:5e:f0:81:3b:96:b7: 97:b4:fb:cb:e7:65:af:42:d6:56:24:72:cd:47:39:c2:49:69: f8:41:03:4b:6d:04:3d:2c:be:34:24:27:c2:93:8e:b7:33:c2: 48:91:6c:b3:f3:34:1a:5f:d0:db:e0:cf:93:5a:27:a9:2a:9f: fb:77:eb:75 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICCVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjYwMTEyMjAxNjM4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWUyZC1kMGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArscFVREQKw1ayln9WDLnuitvS/BsW5rt5fvcINRhLH6dargw24CDEGA3Uudo lAIaTP7mFSFkT5I4hFamrKJSrHz6R3DDZXsGLuM3WU1kIZFfv6Stixbeu2XQTycD UmtXw0xWv02cQoIVDrg47p/3n63OmtWHKyXSiRYSTvdwTDlgYSM/F/HdVPm1O4x8 8337Pa/w2un20YAc+faSslETc1GVBWhv9Q/WUh2jrDFdEKT/EnyDaJof30Kp+FpZ crFas1bQhUrTKDCEgQ2RT+CdunZkTH1GfrP8U2ivjUvvaCNd4jzABaGQp63vik4q zC2BvW1yf+jmuldSjAZsbk5lkQIDAQABo4ICfDCCAngwHQYDVR0OBBYEFMu15jpY +U8+t1wUT78H2/YIfNzyMB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I4QkEvMkI3MzJFNzBCQTg1MTFFQUJBODM4RTMwQzRGOUFFMDIvNDY1REJCMzBC QTg4MTFFQUFGOTk2RDM5QzRGOUFFMDIucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAo BAIAATAiAwQCaPogMAwDBAFo+iYDBABo+iwwDAMEAWj6LgMEBmj6ADANBgkqhkiG 9w0BAQsFAAOCAQEADkRARRr2tNlMsSa7FL9CwsIikFe2oNZRzmspddRhWIt06Xsc TIFMqfD7dkBAKycfCcrUgPqdHcTPF7AzVFhjef/r9EDoIUatEqVkTs23P7t6eKyj DHfogoG9Qld6VBqDTS4X+J9Ldu0OECsSowDaOuqbXm3zPq533tIrjiFyf+RLIDOC h9e3lCD5GTl0CFSx9eNWWfg8nWGxarmzBqYZ7aEdPZf0EBvWl3RpKzLZaS8YqbzY McNrud4wp3rHgdgiXvCBO5a3l7T7y+dlr0LWViRyzUc5wklp+EEDS20EPSy+NCQn wpOOtzPCSJFss/M0Gl/Q2+DPk1onqSqf+3frdQ== -----END CERTIFICATE-----Generated at Mon Mar 2 05:37:14 2026 by rpki-client