$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa File: FE60ECB0879311EB84047577C4F9AE02.roa (raw, json) Hash identifier: z8K9NFfgSR+lYBTmglUzfygULgy/XVJpR7AJN5E7qvo= Subject key identifier: C4:45:98:CE:B6:C3:A3:B8:64:4B:39:56:65:81:D2:69:65:01:36:E8 Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 08FE Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:53:16 +0000 ROA not before: Fri 08 Aug 2025 21:02:03 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18422 IP address blocks: 140.96.0.0/16 maxlen: 19 140.96.0.0/18 maxlen: 24 140.96.2.0/24 maxlen: 24 140.96.4.0/23 maxlen: 23 140.96.4.0/24 maxlen: 24 140.96.10.0/23 maxlen: 24 140.96.64.0/19 maxlen: 23 140.96.64.0/20 maxlen: 24 140.96.80.0/21 maxlen: 24 140.96.88.0/22 maxlen: 24 140.96.92.0/23 maxlen: 24 140.96.94.0/24 maxlen: 24 140.96.100.0/22 maxlen: 24 140.96.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Aug 8 21:02:03 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a428ac-3a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ea:3b:f3:68:d1:8b:5f:72:ff:5a:25:93:a3: 19:a4:67:00:51:a9:73:7c:50:2b:65:b5:82:90:0e: d6:30:4b:f6:76:8a:4d:d1:95:8d:1e:fd:47:a7:69: 76:d2:84:89:e9:04:35:24:44:2d:dd:c6:89:f2:ff: 9f:db:1e:80:81:80:da:6a:fd:7e:38:71:0b:fd:6f: 69:c6:44:be:78:f3:7b:59:7c:1c:35:49:db:27:8e: 48:c3:fb:f5:9f:24:c5:28:1e:78:76:68:6c:e1:a7: b6:16:ad:52:84:c7:e1:42:a3:e7:28:36:75:14:e3: 5a:e5:97:71:3b:f8:a4:1e:e6:59:ac:75:5b:de:4b: ea:56:cf:c6:8e:44:b7:69:84:7d:d0:99:84:5c:00: 7b:e6:f5:e9:b7:eb:55:22:8c:ac:82:f1:f0:b4:e3: 40:29:cb:1d:02:14:22:27:ed:5f:30:39:ab:8e:00: 4e:bb:77:28:bb:d5:98:fb:2b:0e:3a:85:ed:b5:ed: 7a:8d:81:48:5e:67:da:dc:53:ae:11:86:84:31:e4: d9:70:d0:9e:19:1c:3d:9a:ed:2b:d9:26:57:91:9c: 1a:82:98:5e:8e:c4:a5:d5:39:df:51:a9:c1:a9:9c: f5:fd:48:36:06:dc:fa:c3:5d:bd:2a:e8:d1:16:88: 1d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:45:98:CE:B6:C3:A3:B8:64:4B:39:56:65:81:D2:69:65:01:36:E8 X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 140.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption bd:3a:60:15:73:73:7b:a7:b3:ef:0f:d5:7e:d9:e9:13:9d:21: 4b:a3:8e:02:e4:11:1a:9a:cb:c4:3c:5c:1b:ac:3f:0b:03:64: a5:8d:8e:07:1d:c3:53:e6:70:c4:94:84:97:83:4c:82:f5:05: 65:82:8f:a1:60:15:43:94:21:b5:34:60:15:ff:57:c7:67:46: a0:2e:79:f8:87:19:f0:09:8e:3a:68:e6:50:f6:9e:2a:96:a8: 0b:a1:b3:05:a3:b7:31:7f:a7:29:67:d5:a6:02:36:9c:d2:cc: f0:d8:f4:7f:a1:fb:5d:8c:37:ae:08:00:9a:1c:5e:1d:b8:3b: ba:d6:81:da:d1:08:d1:29:14:65:17:52:cb:17:41:24:87:5b: cb:4f:c6:91:1e:8f:ff:9b:85:f5:00:77:ec:a9:2f:9a:b4:17: dc:af:17:61:be:1c:32:be:4e:1b:8d:06:a1:72:04:26:c7:23: f1:13:2e:14:3f:3a:98:b7:8e:7b:76:50:ea:a4:e3:0d:ba:31: 1b:e4:1e:9c:04:d5:5a:3f:70:51:3c:2f:0b:a3:c8:d1:08:0d: e1:57:e3:f8:ea:6e:06:55:3d:a6:47:36:ce:07:e3:6e:76:9f: bf:02:75:00:b5:e1:9a:b5:f1:cd:f1:d6:e6:82:a2:85:91:79: 57:75:ba:31 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUwODA4MjEwMjAzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjhhYy0zYTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOo782jRi19y/1olk6MZpGcAUalzfFArZbWCkA7WMEv2dopN0ZWNHv1Hp2l2 0oSJ6QQ1JEQt3caJ8v+f2x6AgYDaav1+OHEL/W9pxkS+ePN7WXwcNUnbJ45Iw/v1 nyTFKB54dmhs4ae2Fq1ShMfhQqPnKDZ1FONa5ZdxO/ikHuZZrHVb3kvqVs/GjkS3 aYR90JmEXAB75vXpt+tVIoysgvHwtONAKcsdAhQiJ+1fMDmrjgBOu3cou9WY+ysO OoXtte16jYFIXmfa3FOuEYaEMeTZcNCeGRw9mu0r2SZXkZwagphejsSl1TnfUanB qZz1/Ug2Btz6w129KujRFogdFwIDAQABo4ICXzCCAlswHQYDVR0OBBYEFMRFmM62 w6O4ZEs5VmWB0mllATboMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhCNkYvRTQ0OEJGMThDNEVGMTFFQTg3RjQzODEwQzRGOUFFMDIvRkU2MEVDQjA4 NzkzMTFFQjg0MDQ3NTc3QzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAjGAwDQYJKoZIhvcNAQELBQADggEBAL06YBVzc3uns+8P1X7Z6ROd IUujjgLkERqay8Q8XBusPwsDZKWNjgcdw1PmcMSUhJeDTIL1BWWCj6FgFUOUIbU0 YBX/V8dnRqAuefiHGfAJjjpo5lD2niqWqAuhswWjtzF/pyln1aYCNpzSzPDY9H+h +12MN64IAJocXh24O7rWgdrRCNEpFGUXUssXQSSHW8tPxpEej/+bhfUAd+ypL5q0 F9yvF2G+HDK+ThuNBqFyBCbHI/ETLhQ/Opi3jnt2UOqk4w26MRvkHpwE1Vo/cFE8 LwujyNEIDeFX4/jqbgZVPaZHNs4H4252n78CdQC14Zq18c3x1uaCooWReVd1ujE= -----END CERTIFICATE-----Generated at Mon Mar 2 07:39:16 2026 by rpki-client