$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa File: 743ABB72997011EAB50D6934C4F9AE02.roa (raw, json) Hash identifier: JIMCivXQm/F+J5XB/uHxfLEh01A2Hvvkqyybv5BZ078= Subject key identifier: B7:47:22:60:DB:31:C8:2D:16:23:00:E9:33:0B:03:99:9E:C7:C0:35 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2847 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa Signing time: Wed 11 Feb 2026 03:25:27 +0000 ROA not before: Wed 11 Feb 2026 03:25:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20940 IP address blocks: 122.2.208.0/24 maxlen: 24 124.106.8.0/24 maxlen: 24 124.106.175.0/24 maxlen: 24 202.138.183.0/24 maxlen: 24 2001:4450:40::/48 maxlen: 48 2001:4457:ff0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 15:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10311 (0x2847) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Feb 11 03:25:27 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=698bf6a7-6be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:77:a3:aa:dd:53:c0:98:97:1e:c5:aa:58:e4: 06:a0:4d:d8:f0:1f:0f:4c:96:4b:24:78:b4:b5:ce: c2:0e:0c:1a:8b:aa:51:f8:11:07:fb:ec:c7:78:9a: 82:fa:4b:87:2a:73:b8:fb:fa:ce:ce:22:c5:5d:d4: 29:2a:69:bb:c7:fb:d6:1a:e7:87:52:18:e3:74:11: 83:80:d1:a0:b6:a1:19:fc:66:4a:96:69:29:ca:65: 0b:fd:20:26:08:30:07:c1:82:f0:e3:7a:3b:b1:5b: 2a:47:dc:96:9e:0e:14:36:e4:fb:65:75:4f:fc:b7: bd:fe:98:ac:60:ab:95:15:ed:fa:5e:a4:0c:30:c7: 3e:6c:6f:1d:33:09:3b:98:77:6d:52:d5:4d:90:6f: f3:d4:27:f2:32:0a:45:9d:2e:ee:c3:a0:8f:09:50: 97:84:bb:d4:a1:76:d0:b3:8a:08:c5:d5:86:3e:3f: a8:df:33:7f:88:ed:42:57:31:c3:32:53:48:61:57: 77:a7:3e:df:d2:ad:9c:b0:9d:e2:a6:8e:b3:48:f5: 15:03:40:bb:98:32:0d:91:f6:79:63:c5:88:1d:ff: f6:6e:07:c1:c3:d4:78:44:a8:e0:d8:15:ef:7e:86: df:ad:1f:f5:26:c3:56:97:07:8d:ae:a7:e7:9a:4b: ee:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:47:22:60:DB:31:C8:2D:16:23:00:E9:33:0B:03:99:9E:C7:C0:35 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.2.208.0/24 124.106.8.0/24 124.106.175.0/24 202.138.183.0/24 IPv6: 2001:4450:40::/48 2001:4457:ff0::/48 Signature Algorithm: sha256WithRSAEncryption 5a:dd:fa:85:e4:35:e9:d8:87:99:d2:9a:9f:d1:ca:84:f3:6b: 36:a1:da:16:7b:9b:39:33:e2:ca:39:6e:25:87:f9:76:dd:b2: ee:8c:44:4f:ed:20:0e:b5:fc:3e:b7:00:a4:8b:86:b6:02:3f: 2c:a8:eb:49:5f:27:d9:34:62:72:e8:45:97:26:fa:85:e9:25: 76:80:01:8e:97:f8:ff:9a:cb:91:e8:5b:d2:33:b6:c2:08:1d: 24:b9:64:6a:2f:6c:d0:cf:7c:03:a2:78:13:53:57:24:dd:27: c6:24:cc:5b:4d:b4:13:36:d3:0a:d8:5b:23:3b:32:67:61:a7: 6e:de:71:a4:ed:bb:ef:9e:71:2d:02:8b:bb:a6:ff:77:93:d8: eb:ca:6d:00:a6:95:5c:2f:5b:e8:70:04:c4:ed:1d:87:53:9c: 22:c6:95:c4:44:f9:a7:6b:26:90:be:a3:69:3a:89:b1:38:44: 24:81:7a:2a:a2:ed:49:6d:95:43:8b:6e:6c:b1:59:e5:85:78: 46:ed:14:b4:22:39:1c:96:4f:07:1f:db:f8:d8:3c:09:d2:11: a0:c2:ca:62:26:9b:29:d6:46:1d:60:2a:f7:a5:29:2e:ae:51: 75:06:bb:c9:74:6c:31:c7:b4:bb:d2:c5:f5:46:19:18:58:a8: a1:0b:46:b8 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICKEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwMjExMDMyNTI3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDDA02OThiZjZhNy02YmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlHejqt1TwJiXHsWqWOQGoE3Y8B8PTJZLJHi0tc7CDgwai6pR+BEH++zHeJqC +kuHKnO4+/rOziLFXdQpKmm7x/vWGueHUhjjdBGDgNGgtqEZ/GZKlmkpymUL/SAm CDAHwYLw43o7sVsqR9yWng4UNuT7ZXVP/Le9/pisYKuVFe36XqQMMMc+bG8dMwk7 mHdtUtVNkG/z1CfyMgpFnS7uw6CPCVCXhLvUoXbQs4oIxdWGPj+o3zN/iO1CVzHD MlNIYVd3pz7f0q2csJ3ipo6zSPUVA0C7mDINkfZ5Y8WIHf/2bgfBw9R4RKjg2BXv fobfrR/1JsNWlweNrqfnmkvuCwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFLdHImDb McgtFiMA6TMLA5mex8A1MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNzQzQUJCNzI5 OTcwMTFFQUI1MEQ2OTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MB4EAgABMBgDBAB6AtADBAB8aggDBAB8aq8DBADKircwGAQCAAIwEgMHACAB RFAAQAMHACABRFcP8DANBgkqhkiG9w0BAQsFAAOCAQEAWt36heQ16diHmdKan9HK hPNrNqHaFnubOTPiyjluJYf5dt2y7oxET+0gDrX8PrcApIuGtgI/LKjrSV8n2TRi cuhFlyb6hekldoABjpf4/5rLkehb0jO2wggdJLlkai9s0M98A6J4E1NXJN0nxiTM W020EzbTCthbIzsyZ2Gnbt5xpO27755xLQKLu6b/d5PY68ptAKaVXC9b6HAExO0d h1OcIsaVxET5p2smkL6jaTqJsThEJIF6KqLtSW2VQ4tubLFZ5YV4Ru0UtCI5HJZP Bx/b+Ng8CdIRoMLKYiabKdZGHWAq96UpLq5RdQa7yXRsMce0u9LF9UYZGFiooQtG uA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:59:28 2026 by rpki-client