$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/598351E2476011F097E14360C4F9AE02.roa File: 598351E2476011F097E14360C4F9AE02.roa (raw, json) Hash identifier: qAy1pty8d3DwYn+MfzlGLyg2MOZZ+erLpBFe5d2Q6G0= Subject key identifier: 4F:1D:F1:0D:D2:E5:B3:B2:51:1F:F5:00:1D:97:CA:C1:8D:2B:9C:AA Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FF8 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/598351E2476011F097E14360C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:47:00 +0000 ROA not before: Wed 14 Jan 2026 18:15:02 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 16224 IP address blocks: 116.92.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4088 (0xff8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:15:02 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a489a4-94c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6f:d5:78:58:1c:45:91:14:f9:19:5e:a6:28: 97:1c:12:9c:1a:bb:7f:77:cc:6f:90:48:8f:dd:5a: 17:40:55:c9:0b:78:ed:eb:02:b5:37:18:ac:c2:2f: e0:bb:2d:17:11:c2:d5:46:ca:d6:c4:bb:f5:69:00: b3:bd:86:19:10:fb:6f:53:c6:9b:02:45:e8:69:89: ab:47:14:e0:9a:00:e5:d5:22:00:8b:f9:6c:8f:f9: 2e:e0:92:87:e7:9f:b5:66:89:6e:7b:ec:c3:4b:8a: 67:92:7c:9a:0c:39:4a:e4:4b:e3:41:84:7b:bd:69: 7c:37:57:22:b7:22:0d:9a:48:33:e0:ac:8d:71:e5: bd:73:37:14:35:1d:59:15:8e:c2:9f:86:ee:72:d1: da:a6:8f:64:6b:fb:0d:36:87:0d:67:00:3e:d0:df: fc:fb:42:b8:c8:f0:3a:f1:ef:0e:b8:8c:5e:49:bd: 67:71:00:8b:75:ac:b2:ec:32:53:e4:31:88:b3:d8: be:fb:73:ee:3c:2a:a9:97:53:ca:66:ab:c8:4f:9c: 46:52:97:91:bb:56:6b:8e:09:56:82:0d:b7:b6:e9: da:40:25:7b:94:f8:35:d5:f2:38:4e:1e:77:23:19: 8e:02:3f:49:e0:c3:53:3d:48:a9:46:28:50:33:2a: a0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1D:F1:0D:D2:E5:B3:B2:51:1F:F5:00:1D:97:CA:C1:8D:2B:9C:AA X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/598351E2476011F097E14360C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.92.64.0/21 Signature Algorithm: sha256WithRSAEncryption 86:7a:db:92:6e:df:4f:76:9e:d7:ba:12:42:2e:72:c6:b1:61: 18:52:df:90:80:5f:32:5e:a3:8e:c8:4f:1f:75:a5:b2:04:c8: b4:12:cd:8f:3c:f5:06:99:cc:98:11:44:0f:c2:0e:43:9e:98: 4f:ce:97:f0:4f:20:6b:a0:75:db:56:32:cd:bf:07:5a:09:d6: 4e:11:9f:65:66:73:f4:be:0c:60:a9:98:a6:83:fe:ce:2a:77: 21:50:62:62:7b:be:fe:bd:1e:80:c8:ae:da:ac:73:00:00:6b: 0b:5c:96:39:1e:a8:b2:c2:82:6b:1a:d4:13:fe:38:f2:38:97: 7e:b8:b3:1c:d4:1e:6a:8a:84:05:b4:4b:50:bf:58:b2:6a:ef: cc:8f:67:5b:06:9d:1e:ad:bf:9f:ae:48:e4:a4:38:5c:46:8a: 99:39:3e:c6:59:73:6d:b9:8b:4b:06:48:cd:40:87:d9:1d:c1: 1f:7d:31:76:6b:09:b9:99:61:cc:29:18:0a:2a:36:3c:35:4d: 12:cb:8b:8b:f6:41:22:5d:b1:88:22:8f:34:3d:13:93:8e:f4: e4:8b:f0:1f:8d:5d:cc:cc:b2:20:f6:d1:21:a0:0d:fa:c8:4a: 2b:4c:f3:77:3d:7d:03:d5:f2:56:e3:b5:80:24:de:a5:df:f5: 0e:e9:56:6c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICD/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNTAyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODlhNC05NGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm/VeFgcRZEU+RlepiiXHBKcGrt/d8xvkEiP3VoXQFXJC3jt6wK1Nxiswi/g uy0XEcLVRsrWxLv1aQCzvYYZEPtvU8abAkXoaYmrRxTgmgDl1SIAi/lsj/ku4JKH 55+1Zolue+zDS4pnknyaDDlK5EvjQYR7vWl8N1cityINmkgz4KyNceW9czcUNR1Z FY7Cn4buctHapo9ka/sNNocNZwA+0N/8+0K4yPA68e8OuIxeSb1ncQCLdayy7DJT 5DGIs9i++3PuPCqpl1PKZqvIT5xGUpeRu1ZrjglWgg23tunaQCV7lPg11fI4Th53 IxmOAj9J4MNTPUipRihQMyqgUwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE8d8Q3S 5bOyUR/1AB2XysGNK5yqMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNTk4MzUxRTI0 NzYwMTFGMDk3RTE0MzYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDdFxAMA0GCSqGSIb3DQEBCwUAA4IBAQCGetuSbt9Pdp7XuhJCLnLG sWEYUt+QgF8yXqOOyE8fdaWyBMi0Es2PPPUGmcyYEUQPwg5DnphPzpfwTyBroHXb VjLNvwdaCdZOEZ9lZnP0vgxgqZimg/7OKnchUGJie77+vR6AyK7arHMAAGsLXJY5 HqiywoJrGtQT/jjyOJd+uLMc1B5qioQFtEtQv1iyau/Mj2dbBp0erb+frkjkpDhc RoqZOT7GWXNtuYtLBkjNQIfZHcEffTF2awm5mWHMKRgKKjY8NU0Sy4uL9kEiXbGI Io80PROTjvTki/AfjV3MzLIg9tEhoA36yEorTPN3PX0D1fJW47WAJN6l3/UO6VZs -----END CERTIFICATE-----Generated at Mon Mar 2 02:36:48 2026 by rpki-client