$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa File: 06820D08961011ECA540626AC4F9AE02.roa (raw, json) Hash identifier: 3dB0qB5yNmzIvDRiuP2+fGgguKKPz4Cvi65Utf4OECk= Subject key identifier: 42:01:A8:E8:22:09:48:11:B2:E7:64:4C:19:65:16:BC:09:14:6C:EC Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0490 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:30:23 +0000 ROA not before: Fri 01 Aug 2025 02:07:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133199 IP address blocks: 208.87.200.0/24 maxlen: 24 208.87.201.0/24 maxlen: 24 208.87.202.0/24 maxlen: 24 208.87.203.0/24 maxlen: 24 208.87.204.0/24 maxlen: 24 208.87.205.0/24 maxlen: 24 208.87.206.0/24 maxlen: 24 208.87.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 12:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1168 (0x490) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Aug 1 02:07:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a582df-0c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9e:fb:3b:2b:1f:47:64:8a:da:22:1f:dc:05: 32:52:e3:89:e1:e6:11:c6:6d:7e:76:1a:df:e0:5a: 98:47:87:5a:ae:6f:1b:d3:2a:34:56:9f:99:79:3a: c6:26:6a:36:e4:40:fc:e7:82:15:41:47:5e:33:3b: 44:57:4b:35:0d:6f:1f:5e:8b:19:8c:94:0f:9a:b1: 11:c6:57:16:79:d5:23:6f:a3:d7:19:b8:1c:40:bd: 10:58:df:fd:7a:a6:c0:04:f8:bf:77:07:84:cb:5b: 17:5a:38:53:f8:50:55:e4:b0:06:0e:3e:fd:4a:46: cb:5a:55:72:b2:aa:ea:22:13:78:8f:57:31:7f:88: 08:73:8b:2f:18:2a:a1:e2:bb:e1:0e:47:5b:d5:d1: c4:8a:0f:9f:1b:29:e7:ae:9f:41:53:c1:e9:c3:74: 21:01:86:46:57:bd:d2:b7:9e:9d:76:28:fd:4f:72: 5d:80:89:cd:ff:b0:a6:b5:a5:37:8c:3f:2f:b7:3a: a0:2e:84:7e:b0:b7:87:18:c0:f0:ff:53:d7:30:c7: ab:57:96:d7:4f:47:0d:af:fb:a6:22:86:7d:53:da: ce:10:c8:01:8d:1d:d4:b3:02:b7:fd:22:a3:22:92: 44:14:66:aa:df:09:76:a8:64:2f:7b:73:7c:68:9f: 95:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:01:A8:E8:22:09:48:11:B2:E7:64:4C:19:65:16:BC:09:14:6C:EC X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 208.87.200.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:ee:c7:cc:ec:d6:5c:ed:29:0b:78:a8:44:d1:f4:63:5f:f9: 02:3f:0c:d4:31:a8:07:cd:42:83:6c:b5:80:32:46:ac:17:db: 48:d7:92:a7:1c:7f:64:ad:61:0c:a9:ca:44:c4:ee:f1:d5:3e: 25:ab:06:a8:0b:1e:e3:6a:31:f7:0a:9b:3d:a3:c5:1b:e1:08: 64:56:1d:69:2b:db:60:60:4a:86:c1:c6:c9:cc:c0:44:fe:46: 4f:8d:45:c8:bd:e7:fe:bf:da:83:55:5c:5d:69:20:91:2c:b9: 73:62:57:4b:b7:35:d1:ab:c5:5d:a4:7d:0b:29:0b:0e:61:7c: 26:bd:96:21:cc:75:93:a5:db:c7:c7:5a:4f:86:f5:c1:ed:88: 92:f1:88:2e:36:a2:35:22:13:60:18:d2:0a:94:ee:28:32:0e: 5f:09:d4:b9:64:be:8e:c6:97:f4:33:bf:a2:fd:9f:51:22:a4: 9a:dd:b0:ef:b0:07:92:2a:6b:e7:a1:b4:a2:59:da:b3:5c:46: 80:c5:a7:1e:6c:02:cd:01:2b:3b:08:7f:cf:65:eb:3b:4d:1f: 65:c6:d7:1f:2a:b8:d3:87:44:20:96:07:90:7c:e8:4c:f4:c9: 0d:cb:8f:ff:9e:52:15:ce:62:33:39:5f:bc:66:f5:16:31:a5: 65:07:f2:e9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUwODAxMDIwNzM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODJkZi0wYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0J77OysfR2SK2iIf3AUyUuOJ4eYRxm1+dhrf4FqYR4darm8b0yo0Vp+ZeTrG Jmo25ED854IVQUdeMztEV0s1DW8fXosZjJQPmrERxlcWedUjb6PXGbgcQL0QWN/9 eqbABPi/dweEy1sXWjhT+FBV5LAGDj79SkbLWlVysqrqIhN4j1cxf4gIc4svGCqh 4rvhDkdb1dHEig+fGynnrp9BU8Hpw3QhAYZGV73St56ddij9T3JdgInN/7CmtaU3 jD8vtzqgLoR+sLeHGMDw/1PXMMerV5bXT0cNr/umIoZ9U9rOEMgBjR3UswK3/SKj IpJEFGaq3wl2qGQve3N8aJ+VvwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEIBqOgi CUgRsudkTBllFrwJFGzsMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNEUzRTM2N0U5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMDY4MjBEMDg5 NjEwMTFFQ0E1NDA2MjZBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQD0FfIMA0GCSqGSIb3DQEBCwUAA4IBAQCb7sfM7NZc7SkLeKhE0fRj X/kCPwzUMagHzUKDbLWAMkasF9tI15KnHH9krWEMqcpExO7x1T4lqwaoCx7jajH3 Cps9o8Ub4QhkVh1pK9tgYEqGwcbJzMBE/kZPjUXIvef+v9qDVVxdaSCRLLlzYldL tzXRq8VdpH0LKQsOYXwmvZYhzHWTpdvHx1pPhvXB7YiS8YguNqI1IhNgGNIKlO4o Mg5fCdS5ZL6Oxpf0M7+i/Z9RIqSa3bDvsAeSKmvnobSiWdqzXEaAxacebALNASs7 CH/PZes7TR9lxtcfKrjTh0QglgeQfOhM9MkNy4//nlIVzmIzOV+8ZvUWMaVlB/Lp -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:04 2026 by rpki-client