$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5F9FA12E0CA411ED96936D79C4F9AE02.roa File: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (raw, json) Hash identifier: PuL+mA1dV7Hh7bENHYnKx3eA2jTd4Smp4c1oR/M4V58= Subject key identifier: A0:FA:B4:FF:FB:7A:72:3C:59:B4:08:AB:7E:68:16:87:C3:C7:AA:E3 Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0491 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5F9FA12E0CA411ED96936D79C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:30:24 +0000 ROA not before: Fri 01 Aug 2025 02:07:38 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133861 IP address blocks: 208.87.200.0/24 maxlen: 24 208.87.201.0/24 maxlen: 24 208.87.202.0/24 maxlen: 24 208.87.203.0/24 maxlen: 24 208.87.204.0/24 maxlen: 24 208.87.205.0/24 maxlen: 24 208.87.206.0/24 maxlen: 24 208.87.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 12:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Aug 1 02:07:38 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a582df-04b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:15:85:03:4a:6c:16:1d:17:69:92:6d:e0:bb: 0f:43:d3:6d:8c:ce:29:c2:c3:a6:e7:ef:4f:51:dd: 2e:2f:2c:8b:f8:9c:b6:03:81:6f:02:7e:76:9b:f3: ef:0e:1b:09:b0:01:9b:8d:5a:4a:be:27:01:e7:36: c9:9a:f6:a4:76:bd:f8:06:24:b1:6a:bb:7b:cf:e0: 7a:49:36:99:6a:0b:32:7e:6c:9c:16:15:45:a7:d2: 24:51:bc:45:a6:7d:8b:14:83:a8:70:5f:2f:f7:2a: 9f:4b:a7:0c:74:9b:54:43:34:04:b3:a2:e4:b6:12: c8:05:86:ad:19:75:64:f5:61:83:87:c4:5a:57:0e: 7f:04:d3:46:4e:a3:13:ed:5c:50:4e:a0:23:ad:40: 02:1b:e5:0f:94:ec:b6:d8:a5:dd:00:2a:0f:58:41: 02:29:0a:df:80:4b:82:1b:17:06:27:7c:71:5f:fd: b1:a3:f6:83:12:d9:8b:c6:bd:be:66:01:37:5b:6e: 33:5e:82:98:cb:70:c7:be:01:a2:53:64:ca:b3:46: c5:cd:1d:da:60:38:b5:de:b5:36:96:38:ca:c3:e8: 2f:44:8e:62:13:2e:6e:35:59:d5:c6:e8:5d:b7:81: eb:6c:ee:52:b4:95:f0:a6:c8:9d:f1:31:03:88:74: 9c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:FA:B4:FF:FB:7A:72:3C:59:B4:08:AB:7E:68:16:87:C3:C7:AA:E3 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5F9FA12E0CA411ED96936D79C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 208.87.200.0/21 Signature Algorithm: sha256WithRSAEncryption aa:7b:e8:4e:cd:f3:96:d4:d8:da:b4:35:a6:a5:a3:f1:2f:e4: 6f:c0:c9:0c:40:ea:7b:88:e7:d6:d5:0f:e1:58:05:54:67:b0: 64:20:30:e7:c5:f3:99:8f:83:3f:3b:5b:6d:01:45:34:bf:15: c8:ae:3f:76:01:91:53:5e:cf:ed:d4:fc:36:35:82:ac:10:ef: 07:14:57:2f:98:86:8b:38:a2:2a:b2:3e:8c:c8:cd:cf:d9:3d: 3a:c1:df:3a:8c:e1:26:9f:7c:9b:c9:63:cd:9b:ab:3f:23:a0: 03:23:4e:16:5c:13:94:0e:73:3f:18:4d:54:e6:66:e2:ea:50: 89:ca:89:33:40:83:ef:34:ee:6d:ab:0a:25:84:3d:72:cb:c8: b4:22:e8:b6:39:30:10:44:49:6c:db:b0:93:2a:15:60:56:c5: f3:e5:06:cf:f9:e9:f5:45:d2:4f:99:32:c4:1a:5b:bb:80:a7: ea:dd:f8:ac:e8:7e:82:b8:84:84:f8:9b:4a:f3:09:74:44:48: dd:52:71:7c:42:cc:8c:2f:56:e3:18:6c:7e:88:6c:a2:95:2a: 82:e7:e3:97:8d:cb:67:36:a1:23:14:34:eb:48:9f:93:d8:95: e3:4d:24:26:b9:7a:7b:95:ef:00:dd:56:05:02:33:ea:a7:6b: 99:f0:ce:56 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUwODAxMDIwNzM4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODJkZi0wNGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlhWFA0psFh0XaZJt4LsPQ9NtjM4pwsOm5+9PUd0uLyyL+Jy2A4FvAn52m/Pv DhsJsAGbjVpKvicB5zbJmvakdr34BiSxart7z+B6STaZagsyfmycFhVFp9IkUbxF pn2LFIOocF8v9yqfS6cMdJtUQzQEs6LkthLIBYatGXVk9WGDh8RaVw5/BNNGTqMT 7VxQTqAjrUACG+UPlOy22KXdACoPWEECKQrfgEuCGxcGJ3xxX/2xo/aDEtmLxr2+ ZgE3W24zXoKYy3DHvgGiU2TKs0bFzR3aYDi13rU2ljjKw+gvRI5iEy5uNVnVxuhd t4HrbO5StJXwpsid8TEDiHSchQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKD6tP/7 enI8WbQIq35oFofDx6rjMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNEUzRTM2N0U5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvNUY5RkExMkUw Q0E0MTFFRDk2OTM2RDc5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQD0FfIMA0GCSqGSIb3DQEBCwUAA4IBAQCqe+hOzfOW1NjatDWmpaPx L+RvwMkMQOp7iOfW1Q/hWAVUZ7BkIDDnxfOZj4M/O1ttAUU0vxXIrj92AZFTXs/t 1Pw2NYKsEO8HFFcvmIaLOKIqsj6MyM3P2T06wd86jOEmn3ybyWPNm6s/I6ADI04W XBOUDnM/GE1U5mbi6lCJyokzQIPvNO5tqwolhD1yy8i0Iui2OTAQREls27CTKhVg VsXz5QbP+en1RdJPmTLEGlu7gKfq3fis6H6CuISE+JtK8wl0REjdUnF8QsyML1bj GGx+iGyilSqC5+OXjctnNqEjFDTrSJ+T2JXjTSQmuXp7le8A3VYFAjPqp2uZ8M5W -----END CERTIFICATE-----Generated at Mon Mar 2 16:45:58 2026 by rpki-client