$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/A7034AFA7F8411EC9036F64CC4F9AE02.roa File: A7034AFA7F8411EC9036F64CC4F9AE02.roa (raw, json) Hash identifier: 8aOJR7dq5H1FSBWehu29UN5DlJmLrfgs2ryVPbFuTNA= Subject key identifier: 82:23:19:FC:60:4D:E9:E6:70:0E:B9:D9:3F:B8:81:C3:C0:29:C6:F2 Certificate issuer: /CN=A91DDCB6/serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Certificate serial: 08F4 Authority key identifier: 65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/A7034AFA7F8411EC9036F64CC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:42:07 +0000 ROA not before: Wed 08 Oct 2025 20:51:35 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132420 IP address blocks: 146.88.24.0/22 maxlen: 24 164.52.192.0/19 maxlen: 24 205.147.96.0/21 maxlen: 24 205.147.108.0/22 maxlen: 24 216.48.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 14:59:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2292 (0x8f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=65DFF2EE3F9BB2EB24551E1D18F1D63DEC0A6E17 Validity Not Before: Oct 8 20:51:35 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a45e4f-b9d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cf:ef:92:70:b1:15:aa:95:04:49:9c:03:dc: 2e:b2:c5:27:fa:6e:41:bc:d6:f3:ea:74:7e:51:7a: 57:c6:6c:34:21:63:eb:18:9c:47:17:ed:f3:3b:b4: 46:f5:c1:fe:90:63:31:8c:c4:c5:69:58:04:e7:ae: 78:ff:f5:6d:8c:9a:fa:26:3c:4d:de:be:6d:6f:0d: 03:06:81:6c:3f:63:75:49:b6:0e:6b:00:4e:11:27: 78:55:4d:7d:13:4d:4e:ec:45:a3:4c:12:7b:07:1f: 01:e3:35:0d:df:36:97:de:5a:94:2c:fc:e3:93:00: 41:b0:16:b2:2c:54:e0:0b:c9:04:14:53:ca:13:4d: 0e:22:ff:44:0e:52:b5:48:83:a7:ab:cb:18:47:ba: 39:b4:cd:17:cc:76:e2:ba:18:43:30:48:cf:71:80: 46:a2:f7:42:e4:87:1a:11:de:23:47:62:de:ad:37: 93:91:4d:74:a9:26:0a:76:61:a3:81:04:bf:50:2a: 89:17:aa:14:8d:44:21:dc:a5:1b:9a:e9:ed:bb:f1: e4:ce:30:82:fa:73:1e:af:9a:87:84:7b:3a:0d:7b: 7e:db:89:db:0b:e1:6d:a1:e0:93:3f:70:5f:77:08: c8:f2:54:2d:11:94:0c:62:1a:f9:61:87:cc:a6:98: 9b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:23:19:FC:60:4D:E9:E6:70:0E:B9:D9:3F:B8:81:C3:C0:29:C6:F2 X509v3 Authority Key Identifier: keyid:65:DF:F2:EE:3F:9B:B2:EB:24:55:1E:1D:18:F1:D6:3D:EC:0A:6E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/Zd_y7j-bsuskVR4dGPHWPewKbhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zd_y7j-bsuskVR4dGPHWPewKbhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/E883DFD6CC3D11EA8BC45C29C4F9AE02/A7034AFA7F8411EC9036F64CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 146.88.24.0/22 164.52.192.0/19 205.147.96.0/21 205.147.108.0/22 216.48.176.0/20 Signature Algorithm: sha256WithRSAEncryption 91:1b:de:fa:bb:ed:83:62:cb:47:29:e1:a5:95:37:bb:77:0f: 4f:bb:f1:5f:65:81:99:38:b2:e8:f9:95:e5:0d:22:f2:cc:5b: 53:f5:95:ba:6a:a2:10:71:b1:9a:b1:66:81:1a:e7:69:7a:67: 74:99:34:bd:42:e1:39:9e:e2:cb:99:f0:60:cd:b2:60:be:c7: e2:e4:bf:58:44:bd:c5:b2:1a:43:49:ee:6b:a1:87:74:e0:a4: c2:fd:80:40:f0:34:f9:03:e9:6a:9b:7e:42:ac:c0:01:22:de: 27:ea:a6:3e:19:8a:81:02:e4:17:1e:5f:89:e8:c1:7a:98:9c: d8:96:b9:ec:96:39:57:9f:6e:bb:30:1e:49:a9:73:2b:35:a3: 5f:5c:94:4c:5f:be:af:11:20:a0:37:6f:bf:84:a0:6b:ff:d2: 28:15:f8:40:c9:92:9a:7e:49:22:f5:84:a6:0e:9a:45:4c:8f: a3:22:4a:61:25:5f:06:cc:18:63:aa:02:a7:23:5e:08:34:2d: 37:74:38:c4:08:66:21:88:89:88:f2:48:d8:74:3c:b6:85:eb: 5f:a5:02:fe:7b:c9:96:81:f3:b6:84:2f:58:17:77:c9:a5:25: 93:de:5c:73:ed:f3:04:f5:e0:0b:c5:9b:0e:0e:40:d5:92:77: d0:dc:44:f4 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICCPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDY1REZGMkVFM0Y5QkIyRUIyNDU1MUUxRDE4RjFENjNE RUMwQTZFMTcwHhcNMjUxMDA4MjA1MTM1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWU0Zi1iOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsM/vknCxFaqVBEmcA9wussUn+m5BvNbz6nR+UXpXxmw0IWPrGJxHF+3zO7RG 9cH+kGMxjMTFaVgE5654//VtjJr6JjxN3r5tbw0DBoFsP2N1SbYOawBOESd4VU19 E01O7EWjTBJ7Bx8B4zUN3zaX3lqULPzjkwBBsBayLFTgC8kEFFPKE00OIv9EDlK1 SIOnq8sYR7o5tM0XzHbiuhhDMEjPcYBGovdC5IcaEd4jR2LerTeTkU10qSYKdmGj gQS/UCqJF6oUjUQh3KUbmuntu/HkzjCC+nMer5qHhHs6DXt+24nbC+FtoeCTP3Bf dwjI8lQtEZQMYhr5YYfMppib/QIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFIIjGfxg TenmcA652T+4gcPAKcbyMB8GA1UdIwQYMBaAFGXf8u4/m7LrJFUeHRjx1j3sCm4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi9FODgzREZENkND M0QxMUVBOEJDNDVDMjlDNEY5QUUwMi9aZF95N2otYnN1c2tWUjRkR1BIV1Bld0ti aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1pkX3k3ai1ic3Vza1ZSNGRHUEhXUGV3S2JoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RERDQjYvRTg4M0RGRDZDQzNEMTFFQThCQzQ1QzI5QzRGOUFFMDIvQTcwMzRBRkE3 Rjg0MTFFQzkwMzZGNjRDQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQCklgYAwQFpDTAAwQDzZNgAwQCzZNsAwQE2DCwMA0GCSqGSIb3DQEB CwUAA4IBAQCRG976u+2DYstHKeGllTe7dw9Pu/FfZYGZOLLo+ZXlDSLyzFtT9ZW6 aqIQcbGasWaBGudpemd0mTS9QuE5nuLLmfBgzbJgvsfi5L9YRL3FshpDSe5roYd0 4KTC/YBA8DT5A+lqm35CrMABIt4n6qY+GYqBAuQXHl+J6MF6mJzYlrnsljlXn267 MB5JqXMrNaNfXJRMX76vESCgN2+/hKBr/9IoFfhAyZKafkki9YSmDppFTI+jIkph JV8GzBhjqgKnI14INC03dDjECGYhiImI8kjYdDy2hetfpQL+e8mWgfO2hC9YF3fJ pSWT3lxz7fME9eALxZsODkDVknfQ3ET0 -----END CERTIFICATE-----Generated at Mon Mar 2 01:50:43 2026 by rpki-client