$ rpki-client -vvf rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa File: 08FDDCFC407111EFB0944C40C4F9AE02.roa (raw, json) Hash identifier: Q2XsaXqT+eyCPXvxi8zIHiMKLLmA95KKZabuPQOI/bQ= Subject key identifier: AC:5F:2F:63:D7:53:E5:3F:25:C9:50:1F:D8:C0:D3:A0:DC:B4:08:79 Certificate issuer: /CN=A91F495C/serialNumber=D6C80C5D38AA3F10D1EB0E139B9E494EBF6C6421 Certificate serial: 0147 Authority key identifier: D6:C8:0C:5D:38:AA:3F:10:D1:EB:0E:13:9B:9E:49:4E:BF:6C:64:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:41:34 +0000 ROA not before: Fri 05 Dec 2025 03:13:14 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 56067 IP address blocks: 116.89.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.crl rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F495C, serialNumber=D6C80C5D38AA3F10D1EB0E139B9E494EBF6C6421 Validity Not Before: Dec 5 03:13:14 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a5a19e-0ce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:89:09:4a:e5:22:fa:d2:4b:19:62:36:cd:e4: e6:f5:9a:b8:54:7b:40:be:7b:2b:38:2f:38:84:90: a8:54:b4:9f:b6:08:8a:f3:77:28:7f:81:d1:f8:fc: 9a:b9:72:07:e5:3e:57:2a:32:d7:fb:71:c0:c7:4a: 8c:1e:a8:4d:f1:00:b1:04:59:1f:77:ae:92:de:de: 16:08:78:a6:58:29:7c:c0:34:8b:d7:96:84:2a:c4: d1:51:dc:11:c5:dc:4c:12:c6:e6:18:bb:6e:27:03: 18:1a:5b:fa:f7:2a:ab:00:8d:0a:c4:03:dc:9a:09: bd:16:a8:2a:01:1e:8e:0e:22:27:79:76:46:c4:7b: ea:1e:ce:4f:52:9d:c6:89:f6:c6:41:26:25:10:f5: 7e:d6:19:c4:e8:cb:d0:ea:d7:c0:ae:9c:6d:0f:fc: 0c:65:56:e7:c5:6d:fc:7b:8d:bb:6a:e8:d1:06:f6: 4c:4c:36:ca:ac:6a:53:02:c8:38:eb:22:66:36:6a: 77:70:62:e5:fb:c9:4f:25:3a:35:d4:1b:45:22:60: 56:18:64:1c:04:f4:39:f1:e3:24:bd:e2:f4:f3:7c: 09:d8:b8:52:74:e0:21:7d:58:ba:c2:07:df:d6:6c: 12:31:67:f5:14:a0:ee:0f:60:3f:2a:e8:22:23:74: 6f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:5F:2F:63:D7:53:E5:3F:25:C9:50:1F:D8:C0:D3:A0:DC:B4:08:79 X509v3 Authority Key Identifier: keyid:D6:C8:0C:5D:38:AA:3F:10:D1:EB:0E:13:9B:9E:49:4E:BF:6C:64:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/1sgMXTiqPxDR6w4Tm55JTr9sZCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sgMXTiqPxDR6w4Tm55JTr9sZCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F495C/5BC63EF4406511EF856C9E29C4F9AE02/08FDDCFC407111EFB0944C40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.89.252.0/22 Signature Algorithm: sha256WithRSAEncryption 04:e6:57:09:4c:e3:e0:09:79:9f:3d:1b:23:e4:78:e1:a1:c6: 58:2e:2d:0c:17:66:a2:d0:f4:72:43:9b:a8:90:1d:7f:ab:00: 47:09:f3:ac:54:0c:f0:75:1c:a9:cd:b2:8d:18:1b:d0:dd:59: 7e:75:f6:0c:20:6e:46:10:2e:14:11:0c:ba:33:51:5e:f8:5e: 76:d1:7e:31:26:ae:2e:ad:6a:1f:c0:4b:eb:a3:6c:23:1f:9b: ad:62:17:62:14:3d:d0:fe:ac:a8:10:9c:4e:a5:d1:42:3c:bb: d0:c2:8a:df:8c:ed:0e:f7:04:74:14:98:95:91:54:9b:cd:15: e5:2c:d0:f2:08:dc:94:a7:d9:38:fb:18:f5:2c:82:9f:2b:44: 66:a2:d3:fa:a2:b8:6c:b2:e4:56:64:d6:60:19:0f:05:82:18: d2:e8:0c:36:54:c6:c2:76:35:df:d8:7a:9f:e1:89:6a:61:62: de:8e:fd:77:ae:a5:d9:65:8a:99:d0:db:4e:59:b7:61:fa:15: 5f:bb:87:1f:6b:8f:de:bb:57:90:19:4d:7a:60:bf:08:89:88: 2a:7c:22:83:fb:fd:ab:ad:8b:d6:09:b1:75:23:1f:29:ab:61: 5c:3d:e1:a0:55:e1:9f:42:cb:3d:33:cb:ea:76:c5:f2:bb:e2: 73:2c:39:67 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ5NUMxMTAvBgNVBAUTKEQ2QzgwQzVEMzhBQTNGMTBEMUVCMEUxMzlCOUU0OTRF QkY2QzY0MjEwHhcNMjUxMjA1MDMxMzE0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTE5ZS0wY2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8okJSuUi+tJLGWI2zeTm9Zq4VHtAvnsrOC84hJCoVLSftgiK83cof4HR+Pya uXIH5T5XKjLX+3HAx0qMHqhN8QCxBFkfd66S3t4WCHimWCl8wDSL15aEKsTRUdwR xdxMEsbmGLtuJwMYGlv69yqrAI0KxAPcmgm9FqgqAR6ODiIneXZGxHvqHs5PUp3G ifbGQSYlEPV+1hnE6MvQ6tfArpxtD/wMZVbnxW38e427aujRBvZMTDbKrGpTAsg4 6yJmNmp3cGLl+8lPJTo11BtFImBWGGQcBPQ58eMkveL083wJ2LhSdOAhfVi6wgff 1mwSMWf1FKDuD2A/KugiI3RvTwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKxfL2PX U+U/JclQH9jA06DctAh5MB8GA1UdIwQYMBaAFNbIDF04qj8Q0esOE5ueSU6/bGQh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDk1Qy81QkM2M0VGNDQw NjUxMUVGODU2QzlFMjlDNEY5QUUwMi8xc2dNWFRpcVB4RFI2dzRUbTU1SlRyOXNa Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzZ01YVGlxUHhEUjZ3NFRtNTVKVHI5c1pDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ5NUMvNUJDNjNFRjQ0MDY1MTFFRjg1NkM5RTI5QzRGOUFFMDIvMDhGRERDRkM0 MDcxMTFFRkIwOTQ0QzQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCdFn8MA0GCSqGSIb3DQEBCwUAA4IBAQAE5lcJTOPgCXmfPRsj5Hjh ocZYLi0MF2ai0PRyQ5uokB1/qwBHCfOsVAzwdRypzbKNGBvQ3Vl+dfYMIG5GEC4U EQy6M1Fe+F520X4xJq4urWofwEvro2wjH5utYhdiFD3Q/qyoEJxOpdFCPLvQworf jO0O9wR0FJiVkVSbzRXlLNDyCNyUp9k4+xj1LIKfK0RmotP6orhssuRWZNZgGQ8F ghjS6Aw2VMbCdjXf2Hqf4YlqYWLejv13rqXZZYqZ0NtOWbdh+hVfu4cfa4/eu1eQ GU16YL8IiYgqfCKD+/2rrYvWCbF1Ix8pq2FcPeGgVeGfQss9M8vqdsXyu+JzLDln -----END CERTIFICATE-----Generated at Mon Mar 2 19:40:59 2026 by rpki-client