$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/CB9407D62F6F11EF9E2E8C25C4F9AE02.roa File: CB9407D62F6F11EF9E2E8C25C4F9AE02.roa (raw, json) Hash identifier: 2L0qmPJWlSuztHyt83Ndq4Mfp9otdvrdJcHOMZF+P2E= Subject key identifier: C4:C7:BB:6F:59:F0:2B:D2:DD:1C:E5:E0:3F:35:2A:A9:0B:28:94:7B Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 0BB9 Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/CB9407D62F6F11EF9E2E8C25C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:17:43 +0000 ROA not before: Wed 22 Oct 2025 04:09:23 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 270215 IP address blocks: 223.119.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF, serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Oct 22 04:09:23 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a482c7-8389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e2:86:51:7a:50:73:66:27:f9:b0:34:3f:8c: 52:bf:01:e7:f4:b7:32:e2:02:13:80:9c:60:91:ef: 37:03:31:29:2b:c7:e2:d4:3b:e3:98:04:d2:95:b7: e5:3c:62:0d:64:de:d6:84:04:67:db:cc:1f:a7:2e: 89:f9:22:08:2e:cd:a3:ab:06:20:d0:aa:5f:54:f4: c1:95:ea:56:32:a8:7e:3a:c6:84:a6:81:ea:9b:0d: 91:ac:ad:83:4c:ee:84:5b:1f:da:e1:69:2e:7d:74: 97:13:c5:62:ce:bb:2f:5d:90:2b:65:9a:cd:ab:d0: f0:05:1c:12:3b:61:9a:6d:39:55:bc:52:36:21:e1: 15:37:53:0d:1f:1a:4c:17:3b:6b:b8:ce:0d:05:9e: 0c:76:40:fb:90:50:df:2d:fc:ea:58:7e:58:6d:86: 54:a4:48:a7:a6:05:0b:98:9d:c4:85:99:78:ce:4c: 84:43:39:fa:eb:27:d2:81:12:c8:ea:73:91:d4:39: 3b:a8:cc:c6:60:8e:5a:ba:72:ff:5b:29:c0:a8:e4: dd:d5:60:4b:84:60:72:c6:91:30:d0:2e:ef:3b:4a: a9:97:77:8f:70:1c:56:75:a5:ab:84:9e:c1:a5:29: 01:11:9c:c2:ed:db:08:39:87:79:24:35:73:c3:83: 65:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C7:BB:6F:59:F0:2B:D2:DD:1C:E5:E0:3F:35:2A:A9:0B:28:94:7B X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/CB9407D62F6F11EF9E2E8C25C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 223.119.251.0/24 Signature Algorithm: sha256WithRSAEncryption 16:2f:9d:f7:6a:9a:80:61:19:aa:54:f8:f7:46:50:5d:be:cc: 47:8f:44:b7:59:c9:01:26:90:37:2e:5d:59:f1:19:1c:4c:96: a8:21:c3:a2:cb:66:5a:73:6b:7b:54:f7:35:29:3f:2c:57:ad: db:9c:45:3a:34:54:f1:de:1b:2f:43:58:85:a7:2a:8a:c3:a8: 71:2e:55:39:7e:8a:06:74:0e:ba:52:d7:28:bc:1a:f1:09:82: ef:51:34:6f:7e:2d:b9:c9:8b:74:88:84:48:7b:b8:ac:71:ed: 64:a5:f8:97:0f:f4:d3:62:e9:e5:17:49:d1:48:c4:6b:73:14: e0:f4:76:cd:23:7e:23:62:3b:c0:f1:a6:5d:36:68:ff:eb:f7: 69:51:a3:af:9d:be:63:f1:87:a5:39:08:56:e9:1d:35:62:9d: 98:96:cf:8b:82:56:a4:6c:d2:57:ad:21:c1:cc:b1:91:7e:6c: 1a:90:29:ac:34:a2:a8:5d:ff:ca:87:2c:06:1c:b9:50:cb:da: 71:9b:d7:49:a1:a4:81:5f:2e:04:29:83:bc:07:eb:c9:90:f0: 29:81:58:78:95:b5:9a:25:d5:5d:28:09:6b:8e:b9:ed:0c:07: b9:24:d5:62:f6:d7:ea:f6:a0:53:ab:61:b0:20:3a:d3:dd:52: e9:1f:9b:26 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjUxMDIyMDQwOTIzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODJjNy04Mzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOKGUXpQc2Yn+bA0P4xSvwHn9Lcy4gITgJxgke83AzEpK8fi1DvjmATSlbfl PGINZN7WhARn28wfpy6J+SIILs2jqwYg0KpfVPTBlepWMqh+OsaEpoHqmw2RrK2D TO6EWx/a4WkufXSXE8VizrsvXZArZZrNq9DwBRwSO2GabTlVvFI2IeEVN1MNHxpM FztruM4NBZ4MdkD7kFDfLfzqWH5YbYZUpEinpgULmJ3EhZl4zkyEQzn66yfSgRLI 6nOR1Dk7qMzGYI5aunL/WynAqOTd1WBLhGByxpEw0C7vO0qpl3ePcBxWdaWrhJ7B pSkBEZzC7dsIOYd5JDVzw4Nl9QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMTHu29Z 8CvS3Rzl4D81KqkLKJR7MB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvQ0I5NDA3RDYy RjZGMTFFRjlFMkU4QzI1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA33f7MA0GCSqGSIb3DQEBCwUAA4IBAQAWL533apqAYRmqVPj3RlBd vsxHj0S3WckBJpA3Ll1Z8RkcTJaoIcOiy2Zac2t7VPc1KT8sV63bnEU6NFTx3hsv Q1iFpyqKw6hxLlU5fooGdA66UtcovBrxCYLvUTRvfi25yYt0iIRIe7isce1kpfiX D/TTYunlF0nRSMRrcxTg9HbNI34jYjvA8aZdNmj/6/dpUaOvnb5j8YelOQhW6R01 Yp2Yls+LglakbNJXrSHBzLGRfmwakCmsNKKoXf/KhywGHLlQy9pxm9dJoaSBXy4E KYO8B+vJkPApgVh4lbWaJdVdKAlrjrntDAe5JNVi9tfq9qBTq2GwIDrT3VLpH5sm -----END CERTIFICATE-----Generated at Mon Mar 2 14:21:23 2026 by rpki-client