$ rpki-client -vvf rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/339F0FFA9D9D11F0981B7A12C4F9AE02.roa File: 339F0FFA9D9D11F0981B7A12C4F9AE02.roa (raw, json) Hash identifier: jyVb2J10ghDTNiboflhNHqzohuklyhcVSq+ScQxlKA8= Subject key identifier: 66:54:44:CF:27:23:85:08:2E:4F:08:F5:80:0E:F0:8E:DA:7B:4F:E9 Certificate issuer: /CN=A91D41AC/serialNumber=BF98688E98B01E84D7366F67864CE8F3EBBD4377 Certificate serial: F7 Authority key identifier: BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/339F0FFA9D9D11F0981B7A12C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:14:07 +0000 ROA not before: Thu 19 Feb 2026 04:30:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55573 IP address blocks: 121.200.215.0/24 maxlen: 24 2405:7d80::/48 maxlen: 48 2405:7d80:5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.crl rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D41AC, serialNumber=BF98688E98B01E84D7366F67864CE8F3EBBD4377 Validity Not Before: Feb 19 04:30:57 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a481ef-fb0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:db:82:70:f2:42:d7:32:5c:27:e3:95:be:49: 65:a9:13:c9:cd:71:68:f2:58:ad:9f:13:37:c9:37: 65:7c:b6:c7:fd:fc:bd:1f:62:82:c6:27:e6:4a:f3: 76:e3:78:b5:05:4b:e1:81:7a:f9:fd:b5:87:3a:00: f4:d7:ef:db:be:82:23:b0:12:c5:38:c7:65:cd:1d: 03:16:6c:ae:ce:3f:0a:6d:4f:39:cf:64:c7:18:14: b8:cd:ff:61:ac:48:98:14:12:8d:16:6e:98:cc:ac: 46:e4:a4:57:d8:69:8f:ad:d2:67:3b:a0:03:9b:b4: a9:b3:af:0c:1e:fa:37:14:43:ab:51:1b:26:19:99: 7e:d1:5c:23:8f:ef:36:d0:19:03:ac:8f:28:58:55: 32:15:b7:14:77:9b:e5:28:9a:90:05:94:5b:2d:6d: df:e1:f9:60:30:d4:de:7e:65:aa:80:bc:13:4e:ee: 77:9a:56:08:0a:54:48:84:44:cf:14:6b:94:e2:ee: a0:9f:af:3a:54:66:02:23:94:5e:00:cb:47:02:bf: 86:38:10:bc:18:d4:72:73:58:30:f8:95:3b:7c:bb: 3d:4a:7c:be:2a:c7:48:2c:e8:7e:4b:1f:ba:00:05: 66:94:92:0a:62:6e:77:6f:cf:7f:cc:f7:0d:b7:13: a2:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:54:44:CF:27:23:85:08:2E:4F:08:F5:80:0E:F0:8E:DA:7B:4F:E9 X509v3 Authority Key Identifier: keyid:BF:98:68:8E:98:B0:1E:84:D7:36:6F:67:86:4C:E8:F3:EB:BD:43:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/v5hojpiwHoTXNm9nhkzo8-u9Q3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v5hojpiwHoTXNm9nhkzo8-u9Q3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D41AC/2445BCE2E93F11EF8DF1E035C4F9AE02/339F0FFA9D9D11F0981B7A12C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.200.215.0/24 IPv6: 2405:7d80::/48 2405:7d80:5::/48 Signature Algorithm: sha256WithRSAEncryption a1:6f:19:4e:e2:46:f4:86:d0:b4:44:32:0a:c0:08:07:00:42: 4a:fd:97:61:54:bf:28:f5:87:85:93:0a:83:22:cf:56:fb:6c: a8:59:56:23:3c:e6:c1:bb:05:74:83:6e:e2:e8:0f:55:0a:21: 41:ba:18:c8:79:59:0a:c9:0c:07:71:69:e3:ce:d6:ec:ec:5a: fd:8b:b9:1a:02:a0:68:a0:9e:2c:0e:e1:9f:e2:b7:c6:2b:7e: 52:1d:41:78:de:76:bc:e1:c4:65:53:72:59:f2:8c:36:0d:fc: 72:2b:72:b0:7a:c2:1a:3c:94:ed:8c:8b:ff:1c:38:8c:fc:8f: 46:a7:49:90:47:5c:e2:3a:d2:11:f1:56:24:4b:73:a1:ec:c3: 1c:38:8f:2d:cb:b2:2c:ab:c8:74:50:67:52:85:0f:fc:a3:d7: b1:c7:e1:69:44:47:de:c0:fc:70:98:3b:19:0d:04:1a:1c:e8: f9:85:e3:94:d9:1a:76:f4:ac:34:48:7e:ee:16:17:cb:6f:b1: 6f:19:62:76:d3:b7:d4:8d:af:46:49:ab:56:82:41:d6:3b:ee: 51:7b:fd:9c:13:4f:dc:a4:73:74:3f:68:a5:15:9a:3b:e3:d9: 63:41:34:61:e5:61:98:3d:a0:2b:8d:2e:4d:ab:e4:d6:9a:8c: 15:11:db:39 -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQxQUMxMTAvBgNVBAUTKEJGOTg2ODhFOThCMDFFODRENzM2NkY2Nzg2NENFOEYz RUJCRDQzNzcwHhcNMjYwMjE5MDQzMDU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODFlZi1mYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5tuCcPJC1zJcJ+OVvkllqRPJzXFo8litnxM3yTdlfLbH/fy9H2KCxifmSvN2 43i1BUvhgXr5/bWHOgD01+/bvoIjsBLFOMdlzR0DFmyuzj8KbU85z2THGBS4zf9h rEiYFBKNFm6YzKxG5KRX2GmPrdJnO6ADm7Sps68MHvo3FEOrURsmGZl+0Vwjj+82 0BkDrI8oWFUyFbcUd5vlKJqQBZRbLW3f4flgMNTefmWqgLwTTu53mlYIClRIhETP FGuU4u6gn686VGYCI5ReAMtHAr+GOBC8GNRyc1gw+JU7fLs9Sny+KsdILOh+Sx+6 AAVmlJIKYm53b89/zPcNtxOiEQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFGZURM8n I4UILk8I9YAO8I7ae0/pMB8GA1UdIwQYMBaAFL+YaI6YsB6E1zZvZ4ZM6PPrvUN3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDFBQy8yNDQ1QkNFMkU5 M0YxMUVGOERGMUUwMzVDNEY5QUUwMi92NWhvanBpd0hvVFhObTluaGt6bzgtdTlR M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y1aG9qcGl3SG9UWE5tOW5oa3pvOC11OVEzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQxQUMvMjQ0NUJDRTJFOTNGMTFFRjhERjFFMDM1QzRGOUFFMDIvMzM5RjBGRkE5 RDlEMTFGMDk4MUI3QTEyQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAM BAIAATAGAwQAecjXMBgEAgACMBIDBwAkBX2AAAADBwAkBX2AAAUwDQYJKoZIhvcN AQELBQADggEBAKFvGU7iRvSG0LREMgrACAcAQkr9l2FUvyj1h4WTCoMiz1b7bKhZ ViM85sG7BXSDbuLoD1UKIUG6GMh5WQrJDAdxaePO1uzsWv2LuRoCoGigniwO4Z/i t8YrflIdQXjedrzhxGVTclnyjDYN/HIrcrB6who8lO2Mi/8cOIz8j0anSZBHXOI6 0hHxViRLc6Hswxw4jy3LsiyryHRQZ1KFD/yj17HH4WlER97A/HCYOxkNBBoc6PmF 45TZGnb0rDRIfu4WF8tvsW8ZYnbTt9SNr0ZJq1aCQdY77lF7/ZwTT9ykc3Q/aKUV mjvj2WNBNGHlYZg9oCuNLk2r5NaajBUR2zk= -----END CERTIFICATE-----Generated at Mon Mar 2 23:23:51 2026 by rpki-client