$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7934717A3BA611EC8737B534C4F9AE02.roa File: 7934717A3BA611EC8737B534C4F9AE02.roa (raw, json) Hash identifier: AgzdJ8YeczC0jH58Lt1PJBql93I4ssj/fkdCRiuIJTQ= Subject key identifier: CB:DA:D2:5D:6A:EF:C0:D8:A2:EE:DC:46:98:66:C2:21:57:A8:4B:0A Certificate issuer: /CN=A91F4268/serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Certificate serial: 05EE Authority key identifier: 93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7934717A3BA611EC8737B534C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:36:42 +0000 ROA not before: Mon 02 Feb 2026 23:19:42 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 38622 IP address blocks: 111.119.8.0/22 maxlen: 22 111.119.8.0/24 maxlen: 24 111.119.9.0/24 maxlen: 24 111.119.10.0/24 maxlen: 24 111.119.11.0/24 maxlen: 24 111.119.18.0/24 maxlen: 24 111.119.19.0/24 maxlen: 24 117.121.252.0/22 maxlen: 22 117.121.252.0/23 maxlen: 23 117.121.252.0/24 maxlen: 24 117.121.253.0/24 maxlen: 24 2402:6800:740::/48 maxlen: 48 2402:6800:770::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:37:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1518 (0x5ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4268, serialNumber=93732F3FC31359BBBF8B379624BF91351CCAD857 Validity Not Before: Feb 2 23:19:42 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4792a-24bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d4:fb:1d:f1:96:28:71:65:23:37:dd:7a:f4: 01:1a:1f:ea:87:82:bf:71:5a:12:e4:cd:e1:6c:c4: ce:75:81:91:76:7a:f4:b3:d8:c4:3b:e9:2d:2f:f3: b3:0e:f9:12:10:5b:c1:33:08:62:7d:cc:a6:35:b5: 40:de:e4:a8:73:56:84:17:f3:0a:42:04:56:77:c0: 9f:d9:bf:c2:be:d7:9d:d6:8e:ff:41:e1:ee:4f:44: 5e:09:2e:6f:2a:c4:5b:37:4e:47:bf:48:8a:ec:8c: 27:b2:12:a1:d3:23:88:28:4a:30:8b:8f:c2:b5:bd: 9b:e5:f6:46:33:5d:a3:f7:f0:2c:23:3c:6d:a3:53: 08:64:af:24:78:f1:c3:64:6c:ee:fa:b8:f3:f1:a7: f8:3c:1f:a3:29:83:59:9e:a0:7e:1c:9d:30:38:a9: b2:4f:49:cc:70:e9:e6:e0:02:ad:66:dd:55:9f:30: 4b:84:80:a5:e8:d1:04:bd:3c:96:fd:a2:dc:b0:e4: be:e8:02:3b:e1:d4:c2:b0:5f:d3:c6:7d:72:c6:75: fe:aa:64:b5:b5:b1:52:41:71:65:39:3c:06:93:ac: 5e:d3:bd:89:cf:94:d5:38:67:d3:6e:2d:a3:84:a1: 44:fd:a7:f6:65:97:20:f9:8d:6e:71:41:b2:37:c6: 41:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:DA:D2:5D:6A:EF:C0:D8:A2:EE:DC:46:98:66:C2:21:57:A8:4B:0A X509v3 Authority Key Identifier: keyid:93:73:2F:3F:C3:13:59:BB:BF:8B:37:96:24:BF:91:35:1C:CA:D8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/k3MvP8MTWbu_izeWJL-RNRzK2Fc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3MvP8MTWbu_izeWJL-RNRzK2Fc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4268/C78EBCEA219311EC900C5653C4F9AE02/7934717A3BA611EC8737B534C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 111.119.8.0/22 111.119.18.0/23 117.121.252.0/22 IPv6: 2402:6800:740::/48 2402:6800:770::/48 Signature Algorithm: sha256WithRSAEncryption 37:60:ae:99:c3:53:21:05:0d:27:01:eb:81:d6:ae:37:cf:71: f8:88:af:49:92:c8:c0:8b:54:41:1e:e9:31:7d:3b:be:26:98: 39:97:0e:32:ee:52:7a:98:1b:df:e3:b8:c0:a9:08:6b:12:94: f6:7f:bd:30:9c:79:10:22:b1:a8:9e:97:10:f0:e8:45:57:3e: 57:1b:99:79:91:77:dd:9f:3f:cc:df:35:3a:f8:db:c5:c3:92: 16:7e:f1:20:24:30:e4:30:e7:0e:d6:8c:b3:d6:18:28:ae:fa: 09:92:08:02:cd:4e:e8:1e:b8:80:c6:fe:60:91:ab:dd:0c:62: 20:9b:fb:76:f3:d4:98:39:84:05:f3:24:43:50:35:6f:30:2d: 18:f5:c6:67:a3:9c:6e:f9:e5:0d:e0:3d:eb:0c:3b:7f:25:90: 39:25:54:79:9c:97:b6:23:35:f3:dd:09:ae:bf:e3:55:ee:4c: 73:d2:01:7d:b1:17:5f:7a:3d:45:c0:f2:52:41:7f:58:72:dc: 7b:fd:8b:9d:c0:3e:7d:0f:a6:8c:1d:60:90:7d:d4:ee:ef:4b: 8b:93:7a:e7:1f:37:26:9f:25:41:74:1b:d2:ef:ec:f8:a8:e8: a4:5e:20:ed:12:64:8d:58:37:b7:59:f9:3b:51:0d:9b:00:a5: 37:1b:7b:ec -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICBe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyNjgxMTAvBgNVBAUTKDkzNzMyRjNGQzMxMzU5QkJCRjhCMzc5NjI0QkY5MTM1 MUNDQUQ4NTcwHhcNMjYwMjAyMjMxOTQyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzkyYS0yNGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdT7HfGWKHFlIzfdevQBGh/qh4K/cVoS5M3hbMTOdYGRdnr0s9jEO+ktL/Oz DvkSEFvBMwhifcymNbVA3uSoc1aEF/MKQgRWd8Cf2b/Cvted1o7/QeHuT0ReCS5v KsRbN05Hv0iK7IwnshKh0yOIKEowi4/Ctb2b5fZGM12j9/AsIzxto1MIZK8kePHD ZGzu+rjz8af4PB+jKYNZnqB+HJ0wOKmyT0nMcOnm4AKtZt1VnzBLhICl6NEEvTyW /aLcsOS+6AI74dTCsF/Txn1yxnX+qmS1tbFSQXFlOTwGk6xe072Jz5TVOGfTbi2j hKFE/af2ZZcg+Y1ucUGyN8ZBRwIDAQABo4IChjCCAoIwHQYDVR0OBBYEFMva0l1q 78DYou7cRphmwiFXqEsKMB8GA1UdIwQYMBaAFJNzLz/DE1m7v4s3liS/kTUcythX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI2OC9DNzhFQkNFQTIx OTMxMUVDOTAwQzU2NTNDNEY5QUUwMi9rM012UDhNVFdidV9pemVXSkwtUk5Seksy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szTXZQOE1UV2J1X2l6ZVdKTC1STlJ6SzJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQyNjgvQzc4RUJDRUEyMTkzMTFFQzkwMEM1NjUzQzRGOUFFMDIvNzkzNDcxN0Ez QkE2MTFFQzg3MzdCNTM0QzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAY BAIAATASAwQCb3cIAwQBb3cSAwQCdXn8MBgEAgACMBIDBwAkAmgAB0ADBwAkAmgA B3AwDQYJKoZIhvcNAQELBQADggEBADdgrpnDUyEFDScB64HWrjfPcfiIr0mSyMCL VEEe6TF9O74mmDmXDjLuUnqYG9/juMCpCGsSlPZ/vTCceRAisaielxDw6EVXPlcb mXmRd92fP8zfNTr428XDkhZ+8SAkMOQw5w7WjLPWGCiu+gmSCALNTugeuIDG/mCR q90MYiCb+3bz1Jg5hAXzJENQNW8wLRj1xmejnG755Q3gPesMO38lkDklVHmcl7Yj NfPdCa6/41XuTHPSAX2xF196PUXA8lJBf1hy3Hv9i53APn0PpowdYJB91O7vS4uT eucfNyafJUF0G9Lv7Pio6KReIO0SZI1YN7dZ+TtRDZsApTcbe+w= -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:15 2026 by rpki-client