$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/23A0D39C0F1D11E991F4271EC4F9AE02.roa File: 23A0D39C0F1D11E991F4271EC4F9AE02.roa (raw, json) Hash identifier: tb6d2POyVxQvEjZTCt8zzCzL5T0dHc+hRl47vzKiwro= Subject key identifier: E1:61:58:8B:56:F9:77:4D:2D:C1:34:C0:13:8A:13:91:C0:EA:A7:4A Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 11F2 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/23A0D39C0F1D11E991F4271EC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:00:47 +0000 ROA not before: Tue 18 Nov 2025 17:06:16 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 132132 IP address blocks: 66.96.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4594 (0x11f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 18 17:06:16 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a470be-f94d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:be:f0:cb:53:70:77:39:de:f7:fd:30:ec: f3:ea:53:64:9f:33:aa:3a:e1:4e:62:3d:03:2d:f8: dd:e1:a2:ae:b3:60:57:93:26:b5:6e:74:2c:2a:fb: 37:b2:d9:57:7b:30:7b:74:59:f2:a4:83:9d:a6:c2: 1d:07:bf:2d:eb:b1:64:43:f1:ab:eb:c9:f3:06:28: c2:0e:88:c3:2e:ab:6e:5b:9c:f8:85:5a:d5:a1:ea: 00:c3:82:81:c9:d4:34:6d:be:73:a1:65:52:38:3e: 59:04:bf:87:a6:63:b8:7f:28:2d:e0:d8:79:7a:f5: 47:a5:be:7c:37:bc:5b:f2:8f:84:b5:a5:0f:ce:47: 8f:b6:42:ca:6d:39:a5:8f:d0:59:b7:dc:d4:e0:0c: 38:5b:17:bb:5c:ce:e7:a8:df:cb:b7:4f:fc:8c:0d: 65:70:35:bc:11:4f:a5:fe:97:1a:fc:c6:ed:fc:30: a2:88:bb:2c:31:72:26:48:6f:64:65:d1:4f:75:78: 4e:73:e4:75:f1:65:2d:53:70:0c:6f:bc:c1:a5:f8: 58:d0:fc:b2:71:58:55:02:2f:ed:eb:93:33:12:9b: 84:a4:49:3f:76:91:bd:ba:39:4d:d5:da:dd:a9:fc: 82:52:d3:f8:15:9c:0a:ef:e1:1e:ba:c9:41:4e:84: 33:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:61:58:8B:56:F9:77:4D:2D:C1:34:C0:13:8A:13:91:C0:EA:A7:4A X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/23A0D39C0F1D11E991F4271EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 66.96.222.0/24 Signature Algorithm: sha256WithRSAEncryption 28:7b:02:6c:2f:1c:88:be:c3:d9:80:d1:f9:d2:15:f5:2c:bc: 79:ee:0d:f9:39:fc:f7:bd:ad:87:48:21:a1:1c:75:38:47:36: 73:c6:e5:4a:d7:12:99:c3:a0:b6:29:6f:09:24:26:3f:43:40: f4:a6:44:0c:43:d2:2f:98:67:11:87:c8:04:24:71:e9:c2:c9: ac:85:fc:36:c7:c0:54:71:df:0a:87:59:09:ba:33:6a:ac:0e: c5:7c:0b:94:9d:3d:8d:77:d5:70:b8:c9:28:19:b3:c5:23:90: 72:49:0e:e2:1e:c4:8e:95:51:df:05:6a:75:15:8b:33:f2:52: dc:bc:11:d2:1d:8b:18:b4:11:35:30:9a:5b:50:d6:f5:81:53: 40:ca:ad:5b:6b:b9:29:49:6f:76:54:11:08:6d:ec:6e:f4:da: 13:df:d4:f6:53:a4:df:fb:e4:84:50:15:19:8a:40:3b:31:70: 88:53:35:15:d5:dc:a4:5e:9d:46:1c:37:3e:b6:c8:4f:09:14: 26:e9:60:a3:04:4f:44:14:7d:e1:ef:66:0f:03:f0:9e:f1:9e: 45:43:2a:40:a4:d5:98:f3:c2:db:c6:5a:b4:1f:d4:e5:88:eb: 10:b5:a1:9d:c5:14:38:1d:50:59:6c:16:45:c0:1e:0b:c0:34: 28:b1:35:14 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICEfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUxMTE4MTcwNjE2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBiZS1mOTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2e+8MtTcHc53vf9MOzz6lNknzOqOuFOYj0DLfjd4aKus2BXkya1bnQsKvs3 stlXezB7dFnypIOdpsIdB78t67FkQ/Gr68nzBijCDojDLqtuW5z4hVrVoeoAw4KB ydQ0bb5zoWVSOD5ZBL+HpmO4fygt4Nh5evVHpb58N7xb8o+EtaUPzkePtkLKbTml j9BZt9zU4Aw4Wxe7XM7nqN/Lt0/8jA1lcDW8EU+l/pca/Mbt/DCiiLssMXImSG9k ZdFPdXhOc+R18WUtU3AMb7zBpfhY0PyycVhVAi/t65MzEpuEpEk/dpG9ujlN1drd qfyCUtP4FZwK7+EeuslBToQzJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOFhWItW +XdNLcE0wBOKE5HA6qdKMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvMjNBMEQzOUMw RjFEMTFFOTkxRjQyNzFFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAQmDeMA0GCSqGSIb3DQEBCwUAA4IBAQAoewJsLxyIvsPZgNH50hX1 LLx57g35Ofz3va2HSCGhHHU4RzZzxuVK1xKZw6C2KW8JJCY/Q0D0pkQMQ9IvmGcR h8gEJHHpwsmshfw2x8BUcd8Kh1kJujNqrA7FfAuUnT2Nd9VwuMkoGbPFI5BySQ7i HsSOlVHfBWp1FYsz8lLcvBHSHYsYtBE1MJpbUNb1gVNAyq1ba7kpSW92VBEIbexu 9NoT39T2U6Tf++SEUBUZikA7MXCIUzUV1dykXp1GHDc+tshPCRQm6WCjBE9EFH3h 72YPA/Ce8Z5FQypApNWY88Lbxlq0H9TliOsQtaGdxRQ4HVBZbBZFwB4LwDQosTUU -----END CERTIFICATE-----Generated at Mon Mar 2 10:39:46 2026 by rpki-client