$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/40310456D8D211EB97FF5586C4F9AE02.roa File: 40310456D8D211EB97FF5586C4F9AE02.roa (raw, json) Hash identifier: ljhzAAAHOEbQtw8/O2WirKoWv6XtLYHxhjuJKY3iiZM= Subject key identifier: AB:0B:64:DA:83:99:54:EE:0C:8A:5D:28:0E:1C:FB:89:E8:F0:0B:42 Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 063A Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/40310456D8D211EB97FF5586C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:05:59 +0000 ROA not before: Thu 22 Jan 2026 22:19:06 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 13150 IP address blocks: 140.82.192.0/24 maxlen: 24 140.82.193.0/24 maxlen: 24 140.82.194.0/24 maxlen: 24 140.82.195.0/24 maxlen: 24 140.82.196.0/24 maxlen: 24 140.82.198.0/24 maxlen: 24 140.82.199.0/24 maxlen: 24 140.82.200.0/24 maxlen: 24 140.82.201.0/24 maxlen: 24 140.82.202.0/24 maxlen: 24 140.82.203.0/24 maxlen: 24 140.82.204.0/24 maxlen: 24 140.82.205.0/24 maxlen: 24 140.82.206.0/24 maxlen: 24 140.82.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Jan 22 22:19:06 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a463e7-6cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:50:d4:1c:57:12:f2:85:56:05:5d:79:60:be: d0:5d:c7:69:a5:4f:7d:07:fc:8f:91:e8:cc:2c:f7: 0d:26:10:5d:15:70:8a:ab:3b:3d:68:11:7b:c8:7e: ca:89:35:1a:5c:c4:e4:ce:15:38:3e:32:fd:ea:2e: f1:e0:cf:ec:0f:27:1a:20:d7:8b:68:c0:c0:29:99: 1f:ef:4d:4b:88:61:32:d0:7f:62:2b:6c:7d:dc:c6: 17:ae:9d:20:98:0a:a1:1d:8d:b4:d6:13:bd:d8:7a: af:c3:43:ce:37:c9:62:8b:cd:e2:ca:4c:5a:73:df: ae:e4:24:92:26:68:96:90:08:93:2a:3e:9f:cd:b7: 65:9a:53:ca:d5:92:28:fc:00:72:bd:71:7f:25:66: d0:c3:ad:b0:07:49:a2:ac:91:2e:04:09:8a:44:6b: e6:6f:fe:82:05:c1:c3:65:ae:e1:61:37:cd:42:12: e8:0b:68:30:a6:a6:41:89:e9:c5:7c:f7:0f:c6:b6: 1c:f3:11:69:92:c1:9c:38:9b:55:c8:e9:ae:cc:81: c4:ba:e4:ba:9a:79:7d:6a:41:84:f3:15:0d:58:1a: 7d:57:d1:19:81:1f:8c:70:3c:80:5c:53:a7:6b:27: 1b:e7:59:7f:98:b2:f9:ce:40:91:91:48:a5:7f:b9: d1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:0B:64:DA:83:99:54:EE:0C:8A:5D:28:0E:1C:FB:89:E8:F0:0B:42 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/40310456D8D211EB97FF5586C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 140.82.192.0-140.82.196.255 140.82.198.0-140.82.207.255 Signature Algorithm: sha256WithRSAEncryption a7:77:71:3f:4d:12:3f:b5:4e:66:e0:52:9d:c8:53:e2:91:8c: d5:87:b9:31:ec:f9:07:b5:b2:4f:2f:d6:ab:41:2b:80:d7:0f: 7f:d6:b4:5e:92:92:26:5d:df:df:29:70:0c:cb:f0:e2:17:21: 33:ac:f7:7d:c7:73:e5:76:99:a0:70:9b:31:2c:3b:56:a0:2e: 9b:53:77:40:41:9a:30:0e:4e:03:39:b9:b6:5a:88:81:ac:11: 3c:a3:63:42:ad:00:a6:3b:40:2b:71:04:17:88:df:47:2c:7f: 59:74:91:18:22:79:b8:db:df:33:60:7a:7c:e5:ac:1f:fe:20: 34:7f:e6:e8:58:9b:24:de:c7:de:ee:ae:9e:26:e7:2a:11:36: 76:2c:8e:1e:09:48:28:12:0e:78:85:2e:7a:2c:43:23:72:28: 29:c9:02:c7:89:d4:f7:1a:c2:13:ff:0c:d4:07:1d:b3:63:d3: 44:ed:86:37:f7:0e:84:d0:cd:fe:5e:9d:62:a9:20:5d:d3:df: 04:c9:d5:07:c2:17:30:ed:52:2a:21:a7:48:85:31:5a:68:11: 08:fc:7f:22:bf:6a:56:9a:9e:8f:04:c2:af:ac:81:03:88:a4: 86:ad:51:1e:7a:59:b8:08:a3:d6:12:98:46:05:43:01:49:07: 82:93:cb:42 -----BEGIN CERTIFICATE----- MIIFUjCCBDqgAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjYwMTIyMjIxOTA2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjNlNy02Y2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlDUHFcS8oVWBV15YL7QXcdppU99B/yPkejMLPcNJhBdFXCKqzs9aBF7yH7K iTUaXMTkzhU4PjL96i7x4M/sDycaINeLaMDAKZkf701LiGEy0H9iK2x93MYXrp0g mAqhHY201hO92Hqvw0PON8lii83iykxac9+u5CSSJmiWkAiTKj6fzbdlmlPK1ZIo /AByvXF/JWbQw62wB0mirJEuBAmKRGvmb/6CBcHDZa7hYTfNQhLoC2gwpqZBienF fPcPxrYc8xFpksGcOJtVyOmuzIHEuuS6mnl9akGE8xUNWBp9V9EZgR+McDyAXFOn aycb51l/mLL5zkCRkUilf7nRBwIDAQABo4ICdjCCAnIwHQYDVR0OBBYEFKsLZNqD mVTuDIpdKA4c+4no8AtCMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREM0QvQTcwQThGRUVEOEI5MTFFQkFCQzFGNDg1QzRGOUFFMDIvNDAzMTA0NTZE OEQyMTFFQjk3RkY1NTg2QzRGOUFFMDIucm9hMDUGCCsGAQUFBwEHAQH/BCYwJDAi BAIAATAcMAwDBAaMUsADBACMUsQwDAMEAYxSxgMEBIxSwDANBgkqhkiG9w0BAQsF AAOCAQEAp3dxP00SP7VOZuBSnchT4pGM1Ye5Mez5B7WyTy/Wq0ErgNcPf9a0XpKS Jl3f3ylwDMvw4hchM6z3fcdz5XaZoHCbMSw7VqAum1N3QEGaMA5OAzm5tlqIgawR PKNjQq0ApjtAK3EEF4jfRyx/WXSRGCJ5uNvfM2B6fOWsH/4gNH/m6FibJN7H3u6u nibnKhE2diyOHglIKBIOeIUueixDI3IoKckCx4nU9xrCE/8M1Acds2PTRO2GN/cO hNDN/l6dYqkgXdPfBMnVB8IXMO1SKiGnSIUxWmgRCPx/Ir9qVpqejwTCr6yBA4ik hq1RHnpZuAij1hKYRgVDAUkHgpPLQg== -----END CERTIFICATE-----Generated at Mon Mar 2 06:18:54 2026 by rpki-client