$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa File: 2AECA58494EE11EE84F9D73CC4F9AE02.roa (raw, json) Hash identifier: Q6rfj53pf8UB4FBvHHs00agRED73Fq/tWE6oYVaqkaw= Subject key identifier: 4A:15:BD:7C:41:1F:21:37:37:BA:2A:8F:14:C7:0B:DA:77:11:46:0C Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Certificate serial: 0809 Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:26:28 +0000 ROA not before: Wed 11 Feb 2026 06:57:49 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 19551 IP address blocks: 166.81.2.0/24 maxlen: 24 166.81.5.0/24 maxlen: 24 166.81.6.0/24 maxlen: 24 166.81.32.0/24 maxlen: 24 166.81.33.0/24 maxlen: 24 166.81.34.0/24 maxlen: 24 166.81.38.0/24 maxlen: 24 166.81.39.0/24 maxlen: 24 166.81.40.0/24 maxlen: 24 166.81.51.0/24 maxlen: 24 166.81.52.0/24 maxlen: 24 166.81.53.0/24 maxlen: 24 166.81.54.0/24 maxlen: 24 166.81.56.0/24 maxlen: 24 166.81.57.0/24 maxlen: 24 166.81.61.0/24 maxlen: 24 166.81.62.0/24 maxlen: 24 166.81.63.0/24 maxlen: 24 166.81.81.0/24 maxlen: 24 166.81.83.0/24 maxlen: 24 166.81.84.0/24 maxlen: 24 166.81.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC31B, serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Validity Not Before: Feb 11 06:57:49 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a484d4-4e78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ac:5d:87:60:65:8c:95:ff:16:75:e5:c6:b8: d5:5c:11:63:55:43:de:c5:44:e6:b0:26:22:73:60: 58:7d:42:56:e1:c5:39:ef:26:f7:c8:3d:46:be:73: 72:4d:f1:73:d5:40:88:01:65:01:e3:d2:c9:56:02: 66:9d:6f:9d:a7:f0:0a:51:b5:45:e5:b4:13:b4:cb: b7:6c:8e:7d:14:4c:0e:0e:a1:ff:e9:c6:3d:c6:ab: 60:18:00:6f:ef:45:38:8c:7f:87:dc:71:a0:17:0c: 99:0f:c0:2a:b6:13:42:9a:2d:72:cc:9d:53:8a:c1: 55:51:50:a2:3d:c8:72:20:de:00:9a:fe:37:ee:0b: 7d:5d:76:f6:9b:c7:0f:5b:2d:02:d9:ec:4d:57:b8: 05:c6:d6:21:d0:45:fc:fe:6a:b8:04:34:34:4e:5a: aa:32:33:c0:58:ee:06:98:d8:40:3f:69:9e:9b:97: c1:86:ed:83:00:24:da:e1:80:1f:a3:cc:94:8e:d8: fc:76:f8:a9:b3:cf:25:ef:ec:15:ea:b9:f0:aa:b5: 2b:30:2a:28:91:98:b5:fc:87:6f:6d:19:a9:d0:fe: 71:d1:2a:58:64:16:c1:7b:d6:83:b5:ca:ce:96:6d: e7:23:bd:58:7d:3e:72:1b:d6:e0:2a:10:fc:75:71: e1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:15:BD:7C:41:1F:21:37:37:BA:2A:8F:14:C7:0B:DA:77:11:46:0C X509v3 Authority Key Identifier: keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 166.81.2.0/24 166.81.5.0-166.81.6.255 166.81.32.0-166.81.34.255 166.81.38.0-166.81.40.255 166.81.51.0-166.81.54.255 166.81.56.0/23 166.81.61.0-166.81.63.255 166.81.81.0/24 166.81.83.0-166.81.84.255 166.81.95.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:17:fd:bc:ff:ed:07:4a:33:b1:1b:b9:e5:28:a7:d4:71:f9: 94:3e:7b:53:75:3e:86:de:8c:95:29:fb:4f:45:0f:35:9b:70: 8a:27:03:e1:7a:9a:13:60:ac:3f:ab:37:44:2f:a8:1f:11:f2: 09:3e:48:1b:d7:5f:ba:f1:87:5a:5d:19:c7:65:a0:52:43:e1: c0:b5:ce:35:e5:11:21:f2:61:e3:b0:36:cf:64:24:34:d4:48: 19:77:46:72:7a:74:32:6c:2e:9d:b4:4c:c3:7d:35:a8:68:77: 01:23:8b:97:c2:da:e4:46:d4:dd:4d:0f:da:3f:81:e8:43:0b: eb:24:07:04:6d:b2:d7:dc:f1:10:6b:33:20:7b:99:c2:0e:37: 3d:43:1e:2d:44:39:d9:49:59:fd:86:b2:40:53:a3:09:97:b3: 26:3d:54:9f:65:45:20:10:01:f5:29:4a:2b:56:a0:75:86:11: c5:d2:8d:a4:a3:d3:b7:ab:ff:a0:66:21:34:70:58:4b:bb:b2: e3:3b:72:c4:a3:70:0d:25:1a:15:94:35:69:42:08:90:53:50: 7e:e3:24:d8:d6:ba:43:41:cf:15:d5:31:a2:5a:46:fc:50:02: 5c:b1:a8:b5:c9:ed:f6:90:ae:9f:35:7e:ad:db:0f:e7:4b:b9: a7:83:d2:8c -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMUIxMTAvBgNVBAUTKDhCOEFENUNBMUMzRThCOENGNDY4QjVGNDk2QTkxQUJC MEU0OENGQTgwHhcNMjYwMjExMDY1NzQ5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODRkNC00ZTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKxdh2BljJX/FnXlxrjVXBFjVUPexUTmsCYic2BYfUJW4cU57yb3yD1GvnNy TfFz1UCIAWUB49LJVgJmnW+dp/AKUbVF5bQTtMu3bI59FEwODqH/6cY9xqtgGABv 70U4jH+H3HGgFwyZD8AqthNCmi1yzJ1TisFVUVCiPchyIN4Amv437gt9XXb2m8cP Wy0C2exNV7gFxtYh0EX8/mq4BDQ0TlqqMjPAWO4GmNhAP2mem5fBhu2DACTa4YAf o8yUjtj8dvips88l7+wV6rnwqrUrMCookZi1/IdvbRmp0P5x0SpYZBbBe9aDtcrO lm3nI71YfT5yG9bgKhD8dXHhdQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFEoVvXxB HyE3N7oqjxTHC9p3EUYMMB8GA1UdIwQYMBaAFIuK1cocPouM9Gi19JapGrsOSM+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMxQi9EMEVDQ0Q0ODg5 M0QxMUVCOTE2REYwMjJDNEY5QUUwMi9pNHJWeWh3LWk0ejBhTFgwbHFrYXV3NUl6 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2k0clZ5aHctaTR6MGFMWDBscWthdXc1SXo2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMUIvRDBFQ0NENDg4OTNEMTFFQjkxNkRGMDIyQzRGOUFFMDIvMkFFQ0E1ODQ5 NEVFMTFFRTg0RjlENzNDQzRGOUFFMDIucm9hMIGFBggrBgEFBQcBBwEB/wR2MHQw cgQCAAEwbAMEAKZRAjAMAwQAplEFAwQAplEGMAwDBAWmUSADBACmUSIwDAMEAaZR JgMEAKZRKDAMAwQAplEzAwQAplE2AwQBplE4MAwDBACmUT0DBAamUQADBACmUVEw DAMEAKZRUwMEAKZRVAMEAKZRXzANBgkqhkiG9w0BAQsFAAOCAQEAbhf9vP/tB0oz sRu55Sin1HH5lD57U3U+ht6MlSn7T0UPNZtwiicD4XqaE2CsP6s3RC+oHxHyCT5I G9dfuvGHWl0Zx2WgUkPhwLXONeURIfJh47A2z2QkNNRIGXdGcnp0MmwunbRMw301 qGh3ASOLl8La5EbU3U0P2j+B6EML6yQHBG2y19zxEGszIHuZwg43PUMeLUQ52UlZ /YayQFOjCZezJj1Un2VFIBAB9SlKK1agdYYRxdKNpKPTt6v/oGYhNHBYS7uy4zty xKNwDSUaFZQ1aUIIkFNQfuMk2Na6Q0HPFdUxolpG/FACXLGotcnt9pCunzV+rdsP 50u5p4PSjA== -----END CERTIFICATE-----Generated at Mon Mar 2 10:49:44 2026 by rpki-client