$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/B969D2D0BA4A11EC90B53115C4F9AE02.roa File: B969D2D0BA4A11EC90B53115C4F9AE02.roa (raw, json) Hash identifier: yi1Y4ZAzUNkEpGZbqmVVGbSuzm1HULg6+CfEtcyOZy0= Subject key identifier: 23:CD:6F:01:35:1D:3F:63:B7:51:F6:15:EE:5F:D0:D7:0E:B2:D9:8B Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 146F Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/B969D2D0BA4A11EC90B53115C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:27:17 +0000 ROA not before: Sat 30 Aug 2025 15:32:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58664 IP address blocks: 130.248.113.0/24 maxlen: 24 130.248.115.0/24 maxlen: 24 130.248.126.0/23 maxlen: 23 130.248.126.0/24 maxlen: 24 130.248.127.0/24 maxlen: 24 192.150.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5231 (0x146f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Aug 30 15:32:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a45ad5-0b8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:76:f7:ea:13:bf:d2:03:00:59:d1:41:ca:8c: 35:96:a7:7c:8e:c2:e7:80:7d:a9:d7:0c:c7:90:32: 95:64:ed:a1:e4:28:d4:c4:7b:4e:4c:03:7f:70:31: 66:50:4a:16:a8:d8:84:ea:eb:8d:ec:42:2e:15:cc: 1e:03:e5:d7:17:bb:bb:7d:34:17:98:bb:75:e1:23: 08:15:1a:ff:6d:ce:93:01:0b:27:d9:9d:6f:2e:74: 91:e2:95:e0:b6:58:75:66:7c:9a:f5:77:db:24:2b: 50:d3:43:d5:de:94:c1:1b:d3:98:24:75:cc:27:70: 7f:e2:7b:32:88:ab:b1:7a:4e:58:be:10:d6:10:ba: db:ea:d0:4e:db:64:45:5e:57:97:55:23:b0:7a:5d: 47:c7:e3:9a:bf:7f:a9:17:a5:3b:c2:8b:66:04:0a: 4b:55:fc:90:f8:40:48:b9:cd:55:a8:e4:6f:c1:04: 5f:a5:98:a3:fe:72:1b:f3:98:de:95:9b:1a:94:75: ea:f9:aa:03:cf:0b:1e:e1:dc:6f:ec:f1:64:d7:b6: eb:48:ae:35:90:67:ea:fe:c5:15:21:bf:cf:83:b5: 2a:65:17:ce:d9:d6:e2:23:aa:cc:6f:c5:50:bb:b3: 1f:fe:54:10:c5:2a:e6:fa:d2:5c:38:fa:48:90:77: 70:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CD:6F:01:35:1D:3F:63:B7:51:F6:15:EE:5F:D0:D7:0E:B2:D9:8B X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/B969D2D0BA4A11EC90B53115C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 130.248.113.0/24 130.248.115.0/24 130.248.126.0/23 192.150.16.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:71:e6:b6:c8:09:08:a7:95:d2:f2:d2:b4:b7:3c:cb:bd:30: 99:08:5d:79:91:70:ab:a0:dc:7a:9e:dc:cb:04:17:47:d6:49: 81:8d:f1:14:25:ad:12:2c:f2:b7:f6:ab:7e:ec:ed:bc:fe:4b: 53:a9:5f:50:c3:79:b9:4b:81:f3:8a:1b:54:a9:4a:a6:d3:a4: 4f:b2:72:ef:31:7e:73:5d:de:65:9e:e7:14:10:42:a7:55:e9: e3:f6:91:54:94:cc:b5:6d:77:61:93:3a:c8:66:34:39:1c:b7: e9:23:0d:c6:24:5d:96:2f:ec:49:92:2c:7d:ac:c5:9b:cc:f5: c0:b6:59:2a:d4:a0:17:32:ef:50:de:63:b4:13:e7:03:81:f9: e8:46:e8:ac:fa:4a:66:17:9b:a8:00:d7:68:1a:88:fb:d1:b5: 47:72:4e:57:c7:6b:62:f3:3f:0a:63:70:89:58:6b:ab:5d:45: 1d:d5:4f:8e:8d:c8:37:e3:92:2c:df:53:a4:9d:97:e5:cd:25: c5:d3:62:d9:a2:79:0e:84:5b:3d:d8:69:8f:98:88:94:7f:b9: 75:7e:10:9d:43:98:e8:34:0e:2d:67:80:51:14:09:fa:45:87: e1:37:a1:c6:e1:1b:6d:42:db:f5:39:86:47:d3:0b:2c:3e:11: ec:33:a9:46 -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICFG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwODMwMTUzMjI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWFkNS0wYjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3b36hO/0gMAWdFByow1lqd8jsLngH2p1wzHkDKVZO2h5CjUxHtOTAN/cDFm UEoWqNiE6uuN7EIuFcweA+XXF7u7fTQXmLt14SMIFRr/bc6TAQsn2Z1vLnSR4pXg tlh1Znya9XfbJCtQ00PV3pTBG9OYJHXMJ3B/4nsyiKuxek5YvhDWELrb6tBO22RF XleXVSOwel1Hx+Oav3+pF6U7wotmBApLVfyQ+EBIuc1VqORvwQRfpZij/nIb85je lZsalHXq+aoDzwse4dxv7PFk17brSK41kGfq/sUVIb/Pg7UqZRfO2dbiI6rMb8VQ u7Mf/lQQxSrm+tJcOPpIkHdwrQIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFCPNbwE1 HT9jt1H2Fe5f0NcOstmLMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDc0OTU4OTA5MTgyMTFFODkxQzRFQzEwQzRGOUFFMDIvQjk2OUQyRDBC QTRBMTFFQzkwQjUzMTE1QzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQAgvhxAwQAgvhzAwQBgvh+AwQAwJYQMA0GCSqGSIb3DQEBCwUAA4IB AQB/cea2yAkIp5XS8tK0tzzLvTCZCF15kXCroNx6ntzLBBdH1kmBjfEUJa0SLPK3 9qt+7O28/ktTqV9Qw3m5S4HzihtUqUqm06RPsnLvMX5zXd5lnucUEEKnVenj9pFU lMy1bXdhkzrIZjQ5HLfpIw3GJF2WL+xJkix9rMWbzPXAtlkq1KAXMu9Q3mO0E+cD gfnoRuis+kpmF5uoANdoGoj70bVHck5Xx2ti8z8KY3CJWGurXUUd1U+Ojcg345Is 31OknZflzSXF02LZonkOhFs92GmPmIiUf7l1fhCdQ5joNA4tZ4BRFAn6RYfhN6HG 4RttQtv1OYZH0wssPhHsM6lG -----END CERTIFICATE-----Generated at Mon Mar 2 19:27:20 2026 by rpki-client