$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/6BDD8DBA4AD811EFAECCDA0FC4F9AE02.roa File: 6BDD8DBA4AD811EFAECCDA0FC4F9AE02.roa (raw, json) Hash identifier: kxl0Ju03xol22MdSZwz8cEZSAcwOMODv9xQLWw9mcDU= Subject key identifier: 65:0A:AE:EB:A2:05:6B:11:12:97:DC:9E:48:0D:51:C4:59:F9:A3:4C Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 19DE Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/6BDD8DBA4AD811EFAECCDA0FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:50:56 +0000 ROA not before: Fri 20 Feb 2026 17:15:04 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 9714 IP address blocks: 49.255.24.0/22 maxlen: 22 49.255.28.0/22 maxlen: 22 116.240.16.0/22 maxlen: 22 116.240.192.0/20 maxlen: 20 202.138.0.0/24 maxlen: 24 202.138.1.0/24 maxlen: 24 202.141.208.0/20 maxlen: 20 210.50.0.0/21 maxlen: 21 210.50.192.0/21 maxlen: 21 210.50.198.0/24 maxlen: 24 211.27.224.0/22 maxlen: 22 211.27.227.0/24 maxlen: 24 2403:4800:1100::/40 maxlen: 40 2403:4800:1100::/48 maxlen: 48 2407:dc00::/40 maxlen: 40 2407:dc00:3::/48 maxlen: 48 2407:dc00:100::/40 maxlen: 40 2407:dc00:103::/48 maxlen: 48 2407:dc00:200::/40 maxlen: 40 2407:dc00:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6622 (0x19de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:15:04 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48a90-9fe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:47:85:fe:62:cd:90:89:2a:b1:46:bb:28:4e: 09:01:48:03:1a:8e:c2:23:8e:78:af:c2:0d:cb:94: c8:8e:24:14:59:e4:0f:e9:04:58:32:02:eb:bb:4c: 5f:e1:21:de:2b:8a:c8:0f:36:36:d6:75:fd:3c:fd: b4:56:48:70:1a:53:13:2e:a5:b7:27:f3:b3:b9:75: 18:5f:f6:4b:db:1f:4f:67:a1:60:cc:13:4b:f9:16: 73:21:95:82:40:56:c7:2a:77:3b:2f:23:fc:3a:e6: d1:f0:99:41:f5:1b:4e:db:ea:8c:25:94:d1:87:fd: dd:27:e8:36:1c:fe:06:c2:ae:1e:ed:c4:ec:f2:6d: 05:fc:e0:60:0c:fd:c9:86:38:aa:3a:68:08:42:4c: 61:76:76:c4:73:70:45:99:27:a9:4d:8a:73:22:5d: 18:1f:7f:13:84:4b:db:db:61:6d:ea:79:58:02:e5: d4:0d:96:ab:62:43:b5:cd:bc:d2:d8:15:09:ba:96: ba:da:35:03:5e:0c:e8:e1:ec:68:24:49:57:22:51: 74:dc:d2:bd:43:05:5a:cd:08:c2:64:e2:3c:5f:a7: 8d:1c:d9:b1:6d:85:1d:d1:cf:c1:0c:c3:85:9e:74: c3:6f:4e:81:42:f3:e4:9b:f3:21:d1:20:bc:77:00: 4b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0A:AE:EB:A2:05:6B:11:12:97:DC:9E:48:0D:51:C4:59:F9:A3:4C X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/6BDD8DBA4AD811EFAECCDA0FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 49.255.24.0/21 116.240.16.0/22 116.240.192.0/20 202.138.0.0/23 202.141.208.0/20 210.50.0.0/21 210.50.192.0/21 211.27.224.0/22 IPv6: 2403:4800:1100::/40 2407:dc00::/38 Signature Algorithm: sha256WithRSAEncryption 33:ba:eb:3e:62:48:92:75:c0:ae:8b:1f:8d:ee:3a:d2:b0:cb: 16:22:66:f9:de:80:eb:aa:98:8c:f5:4c:67:cf:1f:c2:50:86: ff:c5:96:30:bb:ee:46:06:98:98:0f:08:ea:8c:f6:7c:49:c5: c5:db:5a:3c:96:ed:e7:37:6f:8c:3c:03:03:9e:60:2b:3b:b1: 8a:61:16:42:40:28:88:ed:a1:ea:1d:8e:87:02:72:4d:84:84: 69:bf:42:bd:13:f6:f7:95:c4:59:a5:62:12:ba:94:e9:4c:00: 1e:92:33:53:9e:a0:44:9a:97:3a:25:a0:8b:ff:27:f7:93:da: 66:81:75:3f:25:bf:e1:da:52:1d:e4:ce:8c:9d:22:ee:d6:11: eb:b0:8f:8b:9a:be:28:4e:85:24:f7:2c:49:c3:b7:f1:67:d5: 13:c4:c2:6d:0d:8e:16:a9:d8:7d:94:25:8e:50:d4:74:36:6d: 1f:53:18:6e:43:95:02:57:90:0b:9a:7b:49:63:5f:e0:56:4d: b9:5f:85:d3:bb:81:01:aa:da:ae:9d:e4:1e:87:d6:8d:48:48: 14:63:fe:fe:2b:37:7f:18:4d:99:82:56:0b:f9:30:19:80:91: 48:a1:17:10:f2:f8:6f:53:9c:10:db:d6:66:17:13:d6:4e:9f: 0f:bf:f8:b7 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICGd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjYwMjIwMTcxNTA0WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE5MC05ZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6keF/mLNkIkqsUa7KE4JAUgDGo7CI454r8INy5TIjiQUWeQP6QRYMgLru0xf 4SHeK4rIDzY21nX9PP20VkhwGlMTLqW3J/OzuXUYX/ZL2x9PZ6FgzBNL+RZzIZWC QFbHKnc7LyP8OubR8JlB9RtO2+qMJZTRh/3dJ+g2HP4Gwq4e7cTs8m0F/OBgDP3J hjiqOmgIQkxhdnbEc3BFmSepTYpzIl0YH38ThEvb22Ft6nlYAuXUDZarYkO1zbzS 2BUJupa62jUDXgzo4exoJElXIlF03NK9QwVazQjCZOI8X6eNHNmxbYUd0c/BDMOF nnTDb06BQvPkm/Mh0SC8dwBLzwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFGUKruui BWsREpfcnkgNUcRZ+aNMMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvNkJERDhEQkE0 QUQ4MTFFRkFFQ0NEQTBGQzRGOUFFMDIucm9hMGEGCCsGAQUFBwEHAQH/BFIwUDA2 BAIAATAwAwQDMf8YAwQCdPAQAwQEdPDAAwQByooAAwQEyo3QAwQD0jIAAwQD0jLA AwQC0xvgMBYEAgACMBADBgAkA0gAEQMGAiQH3AAAMA0GCSqGSIb3DQEBCwUAA4IB AQAzuus+YkiSdcCuix+N7jrSsMsWImb53oDrqpiM9Uxnzx/CUIb/xZYwu+5GBpiY DwjqjPZ8ScXF21o8lu3nN2+MPAMDnmArO7GKYRZCQCiI7aHqHY6HAnJNhIRpv0K9 E/b3lcRZpWISupTpTAAekjNTnqBEmpc6JaCL/yf3k9pmgXU/Jb/h2lId5M6MnSLu 1hHrsI+Lmr4oToUk9yxJw7fxZ9UTxMJtDY4Wqdh9lCWOUNR0Nm0fUxhuQ5UCV5AL mntJY1/gVk25X4XTu4EBqtquneQeh9aNSEgUY/7+Kzd/GE2ZglYL+TAZgJFIoRcQ 8vhvU5wQ29ZmFxPWTp8Pv/i3 -----END CERTIFICATE-----Generated at Mon Mar 2 21:10:28 2026 by rpki-client