$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/19B0BAAE1CE611EBB543881CC4F9AE02.roa File: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (raw, json) Hash identifier: x1jD2hg6E8urDPutIfNWsExPrrmq8yEETqPUKu1cNM8= Subject key identifier: DC:4B:20:EB:41:13:8A:2C:5B:4C:C2:7C:3B:76:88:FD:EC:1E:63:76 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 091A Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/19B0BAAE1CE611EBB543881CC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:43:25 +0000 ROA not before: Thu 22 Jan 2026 18:15:01 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 14630 IP address blocks: 206.209.76.0/24 maxlen: 24 206.209.77.0/24 maxlen: 24 206.209.78.0/24 maxlen: 24 206.209.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2330 (0x91a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Jan 22 18:15:01 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46cad-2bb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a5:89:7c:f7:c9:55:1d:41:46:8f:b6:33:fe: 76:77:cd:9d:ea:b0:e4:4b:81:a4:ce:39:08:90:a8: 8a:b4:88:f7:da:d8:bc:79:99:1b:46:5c:ec:c5:31: b0:6f:2a:17:3b:3b:af:3d:b6:1e:f3:20:9e:4c:32: 56:10:a9:64:06:8f:eb:cb:ce:18:30:09:48:1c:b8: d9:1b:b5:7d:fc:dd:7e:3d:9d:a1:a8:9a:d7:7d:ed: b5:c6:60:ef:60:21:fe:91:4f:05:f5:54:86:a1:7c: 0b:e2:8f:87:ed:e9:e0:e0:83:06:5f:4b:b5:dc:94: 7b:6a:67:97:5a:1c:80:d1:d6:48:43:29:48:be:4d: 24:26:a9:4d:b9:78:a9:19:0f:c1:df:7e:7b:9d:28: f0:97:81:70:94:20:05:87:ec:20:41:36:60:16:33: 19:c7:ee:69:f5:58:68:6a:37:79:5b:83:63:49:e7: a0:03:fe:68:da:7b:1c:d8:28:a3:5c:52:f5:fb:75: c1:42:95:c2:60:2a:53:9b:f9:b8:e0:d6:dd:c6:c1: 11:a1:e6:d1:76:a9:30:6d:a1:ba:22:e9:fb:84:2e: 61:3c:de:fa:6c:f7:d6:3f:fb:55:88:3d:7c:a1:66: c4:83:6f:09:fb:d9:1c:6b:4c:44:51:c7:d9:b2:bc: b2:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:4B:20:EB:41:13:8A:2C:5B:4C:C2:7C:3B:76:88:FD:EC:1E:63:76 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/19B0BAAE1CE611EBB543881CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 206.209.76.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:b2:a6:2f:81:dd:21:9f:5e:ee:8e:52:81:e2:4e:3f:01:b8: 8d:f0:f8:d0:2b:fa:c4:6e:2b:6a:a5:c7:a7:3d:98:da:cb:8e: b0:41:13:7b:79:8c:b0:e2:b5:3b:c6:0f:a7:a1:a2:e8:c8:a6: 7b:3f:da:84:07:6c:24:0b:bf:cf:8b:7e:6a:fa:7a:16:40:ed: a9:1f:a4:97:a9:7e:d0:cf:5b:3c:14:4a:d9:60:7d:9d:1a:98: a7:c5:e0:12:f0:92:f9:ab:d1:8d:02:d6:6a:32:81:ee:8d:3b: 4d:8c:99:c5:78:b5:0c:13:20:c3:6a:b8:e6:f5:68:48:14:6c: d3:f0:07:c4:02:b0:5e:0e:b2:bd:63:de:84:d2:3c:11:79:f1: c6:d6:11:43:27:96:3f:9e:64:76:7f:09:a4:36:58:e2:c0:95: 6f:37:10:95:e2:8e:0d:c0:70:d7:75:a3:6e:21:37:de:57:0f: db:89:d1:10:84:34:8c:24:d2:f4:59:e7:bd:4d:d7:61:04:c8: 10:de:27:5e:ee:f4:c9:99:2c:fa:af:6a:ed:78:d6:84:01:30: 28:c4:40:42:fb:5f:17:5e:f8:51:46:ab:37:3b:f4:d1:c1:4c: ec:61:de:10:d1:d8:7d:d3:97:45:3a:af:85:3b:a6:ec:f7:51: 94:f3:bf:c3 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjYwMTIyMTgxNTAxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmNhZC0yYmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoqWJfPfJVR1BRo+2M/52d82d6rDkS4GkzjkIkKiKtIj32ti8eZkbRlzsxTGw byoXOzuvPbYe8yCeTDJWEKlkBo/ry84YMAlIHLjZG7V9/N1+PZ2hqJrXfe21xmDv YCH+kU8F9VSGoXwL4o+H7eng4IMGX0u13JR7ameXWhyA0dZIQylIvk0kJqlNuXip GQ/B3357nSjwl4FwlCAFh+wgQTZgFjMZx+5p9Vhoajd5W4NjSeegA/5o2nsc2Cij XFL1+3XBQpXCYCpTm/m44NbdxsERoebRdqkwbaG6Iun7hC5hPN76bPfWP/tViD18 oWbEg28J+9kca0xEUcfZsryyDQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNxLIOtB E4osW0zCfDt2iP3sHmN2MB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU5QTYvRTRFREFDMThDQjFBMTFFQTg3Q0Q1NTQ0QzRGOUFFMDIvMTlCMEJBQUUx Q0U2MTFFQkI1NDM4ODFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCztFMMA0GCSqGSIb3DQEBCwUAA4IBAQBtsqYvgd0hn17ujlKB4k4/ AbiN8PjQK/rEbitqpcenPZjay46wQRN7eYyw4rU7xg+noaLoyKZ7P9qEB2wkC7/P i35q+noWQO2pH6SXqX7Qz1s8FErZYH2dGpinxeAS8JL5q9GNAtZqMoHujTtNjJnF eLUMEyDDarjm9WhIFGzT8AfEArBeDrK9Y96E0jwRefHG1hFDJ5Y/nmR2fwmkNlji wJVvNxCV4o4NwHDXdaNuITfeVw/bidEQhDSMJNL0Wee9TddhBMgQ3ide7vTJmSz6 r2rteNaEATAoxEBC+18XXvhRRqs3O/TRwUzsYd4Q0dh905dFOq+FO6bs91GU87/D -----END CERTIFICATE-----Generated at Mon Mar 2 16:29:24 2026 by rpki-client