$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa File: 06820D08961011ECA540626AC4F9AE02.roa (raw, json) Hash identifier: poAt1nw8Ly+0vPyE8DBRzGlb7CUQbcdXTNCyMQydzVk= Subject key identifier: CE:F9:89:3E:16:CB:72:79:0A:AD:04:1D:47:DB:79:1D:FF:4A:99:A2 Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 046E Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa Signing time: Mon 02 Mar 2026 04:37:48 +0000 ROA not before: Fri 01 Aug 2025 02:07:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133199 IP address blocks: 208.87.200.0/24 maxlen: 24 208.87.201.0/24 maxlen: 24 208.87.202.0/24 maxlen: 24 208.87.203.0/24 maxlen: 24 208.87.204.0/24 maxlen: 24 208.87.205.0/24 maxlen: 24 208.87.206.0/24 maxlen: 24 208.87.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1134 (0x46e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Aug 1 02:07:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a5141c-a62e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:1b:b2:c8:b1:0e:54:2e:98:57:cf:79:f1: f4:13:3e:90:81:90:eb:12:4a:21:2f:60:d2:79:68: 75:0e:96:4f:aa:53:0e:39:d0:51:bc:5c:6c:34:cc: 88:35:18:88:96:e9:ff:4c:16:75:2f:ad:d2:4a:9e: 9d:2a:e8:de:e7:26:49:dc:80:70:89:1d:55:03:e3: 8d:d1:24:67:70:57:3f:fe:b3:6d:7b:f9:90:4b:88: 8d:a8:f3:d7:6e:44:ac:17:8c:0a:64:d7:5f:1f:20: 48:dc:20:38:db:75:63:2f:48:a9:a5:0e:70:fa:11: 85:37:68:11:d8:e1:ca:ce:48:60:03:68:33:2e:bd: 9a:14:60:af:26:77:9a:fd:92:37:38:7d:90:4c:c5: b8:7b:e2:27:39:18:5a:dd:d8:9f:7a:bf:8e:cd:0f: d6:7c:cf:22:1d:0c:9a:24:c5:a4:06:9b:5f:1a:92: c2:a5:fb:1f:46:cd:ae:72:70:f5:4e:75:73:80:cc: 20:3c:f5:da:f7:b4:63:11:c6:b9:72:09:d6:5b:f0: 3a:20:b4:23:f9:43:6a:dc:b5:a8:6c:98:3b:78:a1: 9b:c1:30:57:60:37:f4:05:43:b2:db:94:64:3f:ec: 71:2f:29:2f:43:0c:3c:3b:45:cc:d0:c9:0b:79:75: ed:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F9:89:3E:16:CB:72:79:0A:AD:04:1D:47:DB:79:1D:FF:4A:99:A2 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/06820D08961011ECA540626AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 208.87.200.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:02:f5:65:b4:bf:c2:a1:99:5b:3c:13:a4:13:4d:df:3e:fa: 32:ee:c0:e7:48:62:07:0d:d2:2e:24:20:dc:e2:9c:56:64:db: 82:88:dc:05:95:a6:4e:43:45:ba:9c:cf:93:32:ca:93:2e:3c: 9c:66:4c:96:b0:d2:51:cc:32:47:c0:dc:85:06:6d:ff:96:d7: 3a:f3:3e:3e:9c:eb:81:e8:4b:34:62:8f:f1:f1:81:d0:d4:92: a9:ee:70:6c:61:61:55:26:f5:7c:7f:16:e8:78:d4:ff:7b:29: 3b:d4:e1:eb:af:b7:04:43:79:96:48:73:d8:bf:be:dc:8c:30: 80:0f:33:26:6d:ce:cd:d6:1e:31:c3:67:0a:f3:7e:f9:90:69: 6a:61:0d:a2:e1:60:2d:05:57:da:67:97:08:7d:ac:9d:27:30: ee:02:53:eb:9a:43:51:b1:2c:98:51:53:b7:e5:31:6a:a3:91: a3:a0:bd:e3:00:8e:d0:6f:fa:8a:d4:e8:a8:be:5f:3f:7c:d8: 37:85:ce:10:66:c5:bc:a8:99:9d:16:f1:3a:a4:24:97:fa:35: e0:a6:8b:b7:e9:ed:7b:b5:76:84:ef:70:1e:18:b5:4e:8a:8e: 1e:00:80:cf:84:f7:2f:51:44:ab:b1:a2:60:8a:da:8b:16:e1: 52:f6:3e:cf -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUwODAxMDIwNzM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTQxYy1hNjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwQbssixDlQumFfPefH0Ez6QgZDrEkohL2DSeWh1DpZPqlMOOdBRvFxsNMyI NRiIlun/TBZ1L63SSp6dKuje5yZJ3IBwiR1VA+ON0SRncFc//rNte/mQS4iNqPPX bkSsF4wKZNdfHyBI3CA423VjL0ippQ5w+hGFN2gR2OHKzkhgA2gzLr2aFGCvJnea /ZI3OH2QTMW4e+InORha3difer+OzQ/WfM8iHQyaJMWkBptfGpLCpfsfRs2ucnD1 TnVzgMwgPPXa97RjEca5cgnWW/A6ILQj+UNq3LWobJg7eKGbwTBXYDf0BUOy25Rk P+xxLykvQww8O0XM0MkLeXXtGQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFM75iT4W y3J5Cq0EHUfbeR3/SpmiMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNEUzRTM2N0U5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMDY4MjBEMDg5 NjEwMTFFQ0E1NDA2MjZBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQD0FfIMA0GCSqGSIb3DQEBCwUAA4IBAQB7AvVltL/CoZlbPBOkE03f Pvoy7sDnSGIHDdIuJCDc4pxWZNuCiNwFlaZOQ0W6nM+TMsqTLjycZkyWsNJRzDJH wNyFBm3/ltc68z4+nOuB6Es0Yo/x8YHQ1JKp7nBsYWFVJvV8fxboeNT/eyk71OHr r7cEQ3mWSHPYv77cjDCADzMmbc7N1h4xw2cK8375kGlqYQ2i4WAtBVfaZ5cIfayd JzDuAlPrmkNRsSyYUVO35TFqo5GjoL3jAI7Qb/qK1Oiovl8/fNg3hc4QZsW8qJmd FvE6pCSX+jXgpou36e17tXaE73AeGLVOio4eAIDPhPcvUUSrsaJgitqLFuFS9j7P -----END CERTIFICATE-----Generated at Mon Mar 2 15:28:16 2026 by rpki-client