$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB01/32EE0A6E99E911F0978D4072C4F9AE02/8EA99A70B53311F09D886D26C4F9AE02.roa File: 8EA99A70B53311F09D886D26C4F9AE02.roa (raw, json) Hash identifier: 8wP/NlNE2Z/JRbzUdllp1czpJ2kBXEzpgll4z9yQeFg= Subject key identifier: 0A:5C:1D:F2:4A:B5:01:3A:62:EE:2A:26:C9:9A:AA:E5:54:A5:22:86 Certificate issuer: /CN=A91DEB01/serialNumber=447D5983BF0DB911AD8FDCB674145F6C58F83CD5 Certificate serial: 5C Authority key identifier: 44:7D:59:83:BF:0D:B9:11:AD:8F:DC:B6:74:14:5F:6C:58:F8:3C:D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RH1Zg78NuRGtj9y2dBRfbFj4PNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB01/32EE0A6E99E911F0978D4072C4F9AE02/8EA99A70B53311F09D886D26C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:28:53 +0000 ROA not before: Wed 19 Nov 2025 05:53:36 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136167 IP address blocks: 74.119.64.0/21 maxlen: 21 74.119.64.0/22 maxlen: 22 74.119.64.0/24 maxlen: 24 74.119.65.0/24 maxlen: 24 74.119.66.0/24 maxlen: 24 74.119.67.0/24 maxlen: 24 74.119.68.0/22 maxlen: 22 74.119.68.0/24 maxlen: 24 74.119.69.0/24 maxlen: 24 74.119.70.0/24 maxlen: 24 74.119.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB01/32EE0A6E99E911F0978D4072C4F9AE02/RH1Zg78NuRGtj9y2dBRfbFj4PNU.crl rsync://rpki.apnic.net/member_repository/A91DEB01/32EE0A6E99E911F0978D4072C4F9AE02/RH1Zg78NuRGtj9y2dBRfbFj4PNU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RH1Zg78NuRGtj9y2dBRfbFj4PNU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB01, serialNumber=447D5983BF0DB911AD8FDCB674145F6C58F83CD5 Validity Not Before: Nov 19 05:53:36 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3f8c5-9061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:ea:f4:3e:f7:4e:fa:e2:0d:aa:21:c5:b4:04: 19:fb:25:06:00:a0:ab:c8:59:ee:65:ad:a0:64:d7: 7a:45:ad:38:0e:8c:84:e5:3d:ad:03:79:96:34:ac: fe:cc:ea:27:19:13:23:00:ad:c3:c8:96:c9:a1:08: df:a0:7e:5a:1c:c3:c7:73:cb:19:be:2b:05:ab:68: b1:3a:0f:68:2d:71:ad:79:b9:7e:cc:a0:9a:c8:db: 7b:6f:12:4a:3e:df:6a:17:e6:c5:43:cd:a6:99:cf: 3f:0a:79:f6:23:e1:be:63:c4:86:24:b4:03:3f:4f: 65:1f:1b:80:42:68:8f:a9:88:fe:36:c6:fd:9b:4e: b4:7d:ad:84:5a:d9:8f:d6:f2:ce:b6:1b:37:0b:bb: cf:d8:30:46:cf:99:c7:48:23:6d:e2:1b:f2:f2:23: 6a:c8:8b:2f:c3:2a:48:cd:e0:60:13:26:0b:51:d0: 5b:5a:bf:08:bb:16:c4:72:bd:f5:19:fb:ed:36:c7: 60:ba:c3:bc:7b:aa:f8:87:50:fc:ad:a0:f8:3a:8d: 27:a5:38:f8:03:ec:b6:24:bd:d7:63:e8:94:3d:16: e9:ea:fa:53:87:f4:21:7d:8e:55:fc:1a:87:8f:68: 85:e9:5c:70:eb:fe:0f:91:23:a7:c2:c3:ae:19:34: 68:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:5C:1D:F2:4A:B5:01:3A:62:EE:2A:26:C9:9A:AA:E5:54:A5:22:86 X509v3 Authority Key Identifier: keyid:44:7D:59:83:BF:0D:B9:11:AD:8F:DC:B6:74:14:5F:6C:58:F8:3C:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB01/32EE0A6E99E911F0978D4072C4F9AE02/RH1Zg78NuRGtj9y2dBRfbFj4PNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RH1Zg78NuRGtj9y2dBRfbFj4PNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB01/32EE0A6E99E911F0978D4072C4F9AE02/8EA99A70B53311F09D886D26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 74.119.64.0/21 Signature Algorithm: sha256WithRSAEncryption ae:b3:aa:73:66:32:d4:cd:9a:0e:db:d1:e8:78:35:cc:b1:52: ba:5a:dd:e7:a4:f1:5b:5a:20:a0:9a:6c:e0:8b:32:60:6f:00: d1:e1:ce:97:aa:5b:a6:46:33:eb:38:07:69:b5:cc:a3:41:1a: 7a:e1:d7:93:19:af:0d:0e:1a:47:3f:f2:6e:cd:34:b2:35:f0: 2a:f1:39:7a:69:82:6d:ee:90:36:2a:02:47:dd:9f:b6:22:76: 2e:7c:29:66:b2:02:d3:24:08:de:a6:26:f7:03:e4:30:ed:2c: db:73:ad:a4:6e:e1:80:14:9b:79:07:d3:3d:8a:86:95:6f:e9: e5:04:72:87:ef:5d:6c:90:f0:de:3d:4c:09:65:d2:0c:09:30: 79:2c:d8:59:53:e1:bc:c7:e9:28:98:3d:bb:54:e1:22:84:01: d7:6e:47:49:fa:2a:22:7d:53:87:25:57:12:95:41:8f:5c:6b: 97:73:37:86:2e:07:9b:a3:91:9f:e4:9a:52:08:b8:8d:9e:53: 75:e0:bd:86:c1:fb:31:56:c0:9d:7a:34:a8:e7:ba:59:02:a4: b9:86:07:ab:6c:83:f7:43:cf:5d:c6:d2:7d:cc:0f:e8:13:9f: 65:0b:06:d5:f0:66:48:05:2d:57:83:21:61:2c:c1:6e:34:0b: b7:1b:3f:23 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RUIwMTExMC8GA1UEBRMoNDQ3RDU5ODNCRjBEQjkxMUFEOEZEQ0I2NzQxNDVGNkM1 OEY4M0NENTAeFw0yNTExMTkwNTUzMzZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNmOGM1LTkwNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCM6vQ+90764g2qIcW0BBn7JQYAoKvIWe5lraBk13pFrTgOjITlPa0DeZY0rP7M 6icZEyMArcPIlsmhCN+gflocw8dzyxm+KwWraLE6D2gtca15uX7MoJrI23tvEko+ 32oX5sVDzaaZzz8KefYj4b5jxIYktAM/T2UfG4BCaI+piP42xv2bTrR9rYRa2Y/W 8s62GzcLu8/YMEbPmcdII23iG/LyI2rIiy/DKkjN4GATJgtR0Ftavwi7FsRyvfUZ ++02x2C6w7x7qviHUPytoPg6jSelOPgD7LYkvddj6JQ9Funq+lOH9CF9jlX8GoeP aIXpXHDr/g+RI6fCw64ZNGiVAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUClwd8kq1 ATpi7iomyZqq5VSlIoYwHwYDVR0jBBgwFoAURH1Zg78NuRGtj9y2dBRfbFj4PNUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFQjAxLzMyRUUwQTZFOTlF OTExRjA5NzhENDA3MkM0RjlBRTAyL1JIMVpnNzhOdVJHdGo5eTJkQlJmYkZqNFBO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUkgxWmc3OE51Ukd0ajl5MmRCUmZiRmo0UE5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUIwMS8zMkVFMEE2RTk5RTkxMUYwOTc4RDQwNzJDNEY5QUUwMi84RUE5OUE3MEI1 MzMxMUYwOUQ4ODZEMjZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBANKd0AwDQYJKoZIhvcNAQELBQADggEBAK6zqnNmMtTNmg7b0eh4Ncyx Urpa3eek8VtaIKCabOCLMmBvANHhzpeqW6ZGM+s4B2m1zKNBGnrh15MZrw0OGkc/ 8m7NNLI18CrxOXppgm3ukDYqAkfdn7Yidi58KWayAtMkCN6mJvcD5DDtLNtzraRu 4YAUm3kH0z2KhpVv6eUEcofvXWyQ8N49TAll0gwJMHks2FlT4bzH6SiYPbtU4SKE AdduR0n6KiJ9U4clVxKVQY9ca5dzN4YuB5ujkZ/kmlIIuI2eU3XgvYbB+zFWwJ16 NKjnulkCpLmGB6tsg/dDz13G0n3MD+gTn2ULBtXwZkgFLVeDIWEswW40C7cbPyM= -----END CERTIFICATE-----Generated at Mon Mar 2 11:10:15 2026 by rpki-client