$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa File: 909AA4DC567011EFA451BD7CC4F9AE02.roa (raw, json) Hash identifier: YkWYNrxgO0n51u4sQpXTHmpzMu712XYl/YRt4XSQRKE= Subject key identifier: 5F:ED:55:D8:E7:97:76:72:A1:EB:4B:A0:CB:DF:B5:80:E4:12:4F:E2 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 33C9 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:08:00 +0000 ROA not before: Wed 24 Dec 2025 16:12:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 59211 IP address blocks: 116.251.216.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13257 (0x33c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Dec 24 16:12:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a47270-ec35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a1:ab:ae:02:ca:06:0f:ef:b4:eb:25:bf:7f: 63:d5:87:35:27:e6:4f:3d:53:ac:06:45:1e:84:d2: 1e:33:d9:31:5c:4b:a9:ab:12:8f:0d:35:e0:5c:d9: 1a:4e:bb:21:e2:0d:95:77:04:ad:e0:57:3c:05:1f: 39:d3:00:43:29:dc:59:5f:96:41:78:02:de:a5:f9: 9b:37:86:3f:56:4b:a4:96:2a:47:cf:9c:a3:98:04: 56:65:12:c2:d7:ea:8f:14:4d:47:a0:13:d2:c4:4f: 84:fc:1e:db:c3:e3:53:cd:65:b9:9e:0c:13:c7:6f: 9c:20:83:29:2b:d3:8c:25:ee:36:04:75:1e:35:59: 2c:51:6d:bb:89:da:f4:e4:9b:08:61:af:39:50:b3: be:5e:46:51:d6:4d:fa:c4:b9:a4:67:2e:cc:05:2f: 69:df:3d:d0:74:1d:02:2c:bf:be:7d:2c:ad:10:03: 5b:42:b7:56:9d:12:c4:93:2e:48:87:0e:8f:66:c6: 65:44:35:09:bf:94:06:74:96:a0:65:45:67:c4:c4: 9f:f9:cb:a1:b7:58:b9:be:c7:ec:3a:37:81:ff:18: 5b:25:38:95:59:0c:ce:97:4c:0d:11:0f:1e:9c:a3: d5:eb:fb:d6:40:8b:6e:fd:6c:86:a8:18:15:1f:18: ef:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:ED:55:D8:E7:97:76:72:A1:EB:4B:A0:CB:DF:B5:80:E4:12:4F:E2 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/909AA4DC567011EFA451BD7CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.251.216.0/21 Signature Algorithm: sha256WithRSAEncryption 6e:07:4f:75:02:2c:53:2b:15:84:0f:99:e0:ad:de:85:68:e7: 6c:98:8f:21:ce:e4:3c:f7:6c:cd:c3:67:ad:30:03:4d:dd:cd: 4f:30:a3:95:7f:30:84:76:75:29:60:59:fc:a2:d1:91:8f:17: b2:50:54:44:61:db:d5:06:54:f4:13:11:c9:e8:21:9d:ca:b0: b7:dc:65:05:c4:3c:6f:4b:e2:56:d5:72:1d:68:b5:e0:b6:36: 1b:59:29:95:1e:f2:a1:16:8f:ae:d6:7a:93:5c:6b:69:8c:bd: 4b:4a:43:bf:a3:f4:62:98:e1:14:bf:35:a4:c5:a6:d5:e6:e1: cb:9f:df:4b:12:b2:4b:44:e5:4b:2c:c7:59:40:d3:d1:78:36: 58:e8:97:ac:82:2e:6e:d6:c4:72:aa:54:27:17:8d:0e:1f:87: e4:3b:4e:50:86:be:57:49:20:07:7c:44:9b:08:f6:39:7b:00: 2a:c1:af:1a:99:e3:3e:09:15:95:fe:62:73:31:46:3d:ab:25: a9:e1:c5:50:ea:aa:56:ce:ed:17:db:92:b1:dd:0b:d0:18:24: 25:8f:82:b6:3e:8d:c1:a2:d2:cf:8d:df:05:1b:64:8c:5a:6e: 4d:7b:78:df:f8:e8:4e:28:8e:2b:95:ce:96:ca:8a:07:87:33: 74:86:3a:63 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICM8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUxMjI0MTYxMjUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzI3MC1lYzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqGrrgLKBg/vtOslv39j1Yc1J+ZPPVOsBkUehNIeM9kxXEupqxKPDTXgXNka Trsh4g2VdwSt4Fc8BR850wBDKdxZX5ZBeALepfmbN4Y/VkuklipHz5yjmARWZRLC 1+qPFE1HoBPSxE+E/B7bw+NTzWW5ngwTx2+cIIMpK9OMJe42BHUeNVksUW27idr0 5JsIYa85ULO+XkZR1k36xLmkZy7MBS9p3z3QdB0CLL++fSytEANbQrdWnRLEky5I hw6PZsZlRDUJv5QGdJagZUVnxMSf+cuht1i5vsfsOjeB/xhbJTiVWQzOl0wNEQ8e nKPV6/vWQItu/WyGqBgVHxjvTQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFF/tVdjn l3ZyoetLoMvftYDkEk/iMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NjMvQkZFNTRBNjg4MTVCMTFFMjlCNThBNzNCMzI5MkI1RTgvOTA5QUE0REM1 NjcwMTFFRkE0NTFCRDdDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDdPvYMA0GCSqGSIb3DQEBCwUAA4IBAQBuB091AixTKxWED5ngrd6F aOdsmI8hzuQ892zNw2etMANN3c1PMKOVfzCEdnUpYFn8otGRjxeyUFREYdvVBlT0 ExHJ6CGdyrC33GUFxDxvS+JW1XIdaLXgtjYbWSmVHvKhFo+u1nqTXGtpjL1LSkO/ o/RimOEUvzWkxabV5uHLn99LErJLROVLLMdZQNPReDZY6Jesgi5u1sRyqlQnF40O H4fkO05Qhr5XSSAHfESbCPY5ewAqwa8ameM+CRWV/mJzMUY9qyWp4cVQ6qpWzu0X 25Kx3QvQGCQlj4K2Po3BotLPjd8FG2SMWm5Ne3jf+OhOKI4rlc6WyooHhzN0hjpj -----END CERTIFICATE-----Generated at Mon Mar 2 20:17:21 2026 by rpki-client