$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F8C02F3CDA4E11EC9C09A446C4F9AE02.roa File: F8C02F3CDA4E11EC9C09A446C4F9AE02.roa (raw, json) Hash identifier: HAMfTfZzKgQr1S5Al/mmH4wqYSjJ80ubOBRue4CFJYE= Subject key identifier: A6:17:83:9D:25:92:2E:54:75:68:88:49:5A:29:38:CE:C7:ED:92:63 Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Certificate serial: 0950 Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F8C02F3CDA4E11EC9C09A446C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:41:41 +0000 ROA not before: Wed 18 Jun 2025 21:07:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 36131 IP address blocks: 164.90.99.0/24 maxlen: 24 164.90.100.0/24 maxlen: 24 164.90.101.0/24 maxlen: 24 164.90.118.0/24 maxlen: 24 164.90.119.0/24 maxlen: 24 164.90.120.0/24 maxlen: 24 202.63.47.0/24 maxlen: 24 202.63.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2384 (0x950) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Validity Not Before: Jun 18 21:07:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47a55-400a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:da:61:50:82:30:a0:b3:20:6d:59:39:9d:e9: d2:15:88:a5:12:88:b8:18:97:f5:27:6d:06:9c:36: 2a:5c:57:b2:d0:b1:3e:aa:be:7e:82:b7:89:02:0e: 28:0d:d4:55:43:c0:20:87:9c:03:6e:51:fd:a8:63: ad:8e:5b:21:6e:61:b3:4f:7b:f8:39:87:22:f6:7d: 63:d5:47:de:61:f3:3e:ec:57:72:1a:d4:32:fd:6c: 62:8c:28:96:9b:b1:20:08:44:a8:79:cb:ac:45:07: f8:4f:c4:34:21:92:a3:d6:1f:26:b6:86:af:13:bf: 04:ef:11:94:40:76:f8:8c:0a:6d:67:3b:7f:12:ef: a7:64:8a:7c:94:1f:e6:ff:fd:93:ce:30:1d:66:c8: 26:dd:9f:61:d9:02:b9:11:97:84:72:77:4c:45:e8: b0:f8:af:f6:70:2c:0d:ad:15:17:47:6c:78:be:b0: 43:30:e2:1d:83:57:62:c9:32:9e:ba:ca:a8:22:ef: 09:a1:c1:25:40:06:21:77:7a:67:6d:90:c2:f3:68: 2d:49:44:48:0d:17:ae:b6:b7:e8:86:ac:c7:7e:37: 31:06:36:51:1c:ed:d8:e1:20:19:51:98:9b:5a:be: c3:4f:5f:2d:ad:36:d9:3a:8f:92:56:1a:76:4a:5d: 74:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:17:83:9D:25:92:2E:54:75:68:88:49:5A:29:38:CE:C7:ED:92:63 X509v3 Authority Key Identifier: keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F8C02F3CDA4E11EC9C09A446C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 164.90.99.0-164.90.101.255 164.90.118.0-164.90.120.255 202.63.47.0-202.63.48.255 Signature Algorithm: sha256WithRSAEncryption af:e5:f5:14:f0:ed:65:b7:90:25:b3:3a:9c:48:dd:8f:5a:e7: fe:ec:1b:51:24:91:62:f2:18:43:a8:5e:b0:4d:1f:e6:0b:39: 68:63:90:0e:57:b3:df:6d:f6:de:b8:5c:18:76:f6:f6:b7:29: d4:e3:a6:e5:8c:d9:dd:98:04:fe:8b:7e:ad:04:11:ba:d4:2f: f9:b7:3f:a3:b9:1e:66:6c:c0:e8:ba:68:6a:40:5c:5e:5d:31: 6c:ee:b3:38:cd:67:fe:b6:ea:6f:5a:88:8e:5a:ff:65:f4:83: 81:17:0e:db:0b:9b:b6:21:f2:ac:3b:2f:46:af:9f:90:3b:b2: 6f:d6:91:08:5e:53:ee:45:87:b4:50:e9:05:39:24:26:52:21: 09:6a:8d:06:ee:b4:5f:5f:fc:fd:46:e1:c1:c7:b4:d9:75:85: 7b:56:46:8e:f8:42:27:50:d1:ca:bc:2e:7c:79:9e:8f:7f:ef: 20:8c:af:02:40:4f:73:b4:b0:c9:b9:0d:29:5c:e1:95:e3:2a: 2e:a2:a9:75:14:60:85:9d:a8:1f:f2:29:07:60:bc:77:3c:fc: 5e:a5:0e:c8:aa:5a:33:e3:14:c4:a2:45:37:9d:00:43:fc:bd: 31:14:f1:99:a5:81:53:81:ed:94:40:de:61:67:22:c4:88:7d: 78:2c:59:5b -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICCVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDA3QTFDMDg1NDVDQUNDNjVFMDg4MkQ0OUU5RjJGOENG RDJCRTgyNjAwHhcNMjUwNjE4MjEwNzU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E1NS00MDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dphUIIwoLMgbVk5nenSFYilEoi4GJf1J20GnDYqXFey0LE+qr5+greJAg4o DdRVQ8Agh5wDblH9qGOtjlshbmGzT3v4OYci9n1j1UfeYfM+7FdyGtQy/WxijCiW m7EgCESoecusRQf4T8Q0IZKj1h8mtoavE78E7xGUQHb4jAptZzt/Eu+nZIp8lB/m //2TzjAdZsgm3Z9h2QK5EZeEcndMReiw+K/2cCwNrRUXR2x4vrBDMOIdg1diyTKe usqoIu8JocElQAYhd3pnbZDC82gtSURIDReutrfohqzHfjcxBjZRHO3Y4SAZUZib Wr7DT18trTbZOo+SVhp2Sl10yQIDAQABo4IChDCCAoAwHQYDVR0OBBYEFKYXg50l ki5UdWiISVopOM7H7ZJjMB8GA1UdIwQYMBaAFAehwIVFysxl4IgtSeny+M/SvoJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GRjUxRTU5RUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9CNkhBaFVYS3pHWGdpQzFKNmZMNHo5Sy1n bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I2SEFoVVhLekdYZ2lDMUo2Zkw0ejlLLWdtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRkY1MUU1OUVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvRjhDMDJGM0NE QTRFMTFFQzlDMDlBNDQ2QzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqMAwDBACkWmMDBAGkWmQwDAMEAaRadgMEAKRaeDAMAwQAyj8vAwQAyj8w MA0GCSqGSIb3DQEBCwUAA4IBAQCv5fUU8O1lt5AlszqcSN2PWuf+7BtRJJFi8hhD qF6wTR/mCzloY5AOV7PfbfbeuFwYdvb2tynU46bljNndmAT+i36tBBG61C/5tz+j uR5mbMDoumhqQFxeXTFs7rM4zWf+tupvWoiOWv9l9IOBFw7bC5u2IfKsOy9Gr5+Q O7Jv1pEIXlPuRYe0UOkFOSQmUiEJao0G7rRfX/z9RuHBx7TZdYV7VkaO+EInUNHK vC58eZ6Pf+8gjK8CQE9ztLDJuQ0pXOGV4youoql1FGCFnagf8ikHYLx3PPxepQ7I qloz4xTEokU3nQBD/L0xFPGZpYFTge2UQN5hZyLEiH14LFlb -----END CERTIFICATE-----Generated at Mon Mar 2 04:30:52 2026 by rpki-client