$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa File: 5488F6EA0F1A11E9B3F2A713C4F9AE02.roa (raw, json) Hash identifier: 6R3WrQlkwYdoSKIA9m9L9kSxThcr/NMUZ6ZAaENWcLk= Subject key identifier: 91:1A:AF:6D:56:44:B4:5C:85:35:E2:4F:0B:F9:4C:85:C4:15:51:61 Certificate issuer: /CN=A91F67BB/serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Certificate serial: 11F4 Authority key identifier: CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:00:48 +0000 ROA not before: Tue 18 Nov 2025 17:06:19 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133136 IP address blocks: 66.96.219.0/24 maxlen: 24 66.96.220.0/24 maxlen: 24 66.96.221.0/24 maxlen: 24 66.96.223.0/24 maxlen: 24 158.140.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4596 (0x11f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB, serialNumber=CC592176D88C423F8859B518B6AD334FFF767409 Validity Not Before: Nov 18 17:06:19 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a470c0-7a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d3:ab:d4:3c:71:87:41:ee:31:ed:16:09:6f: b0:9f:50:8c:5d:e5:e1:d4:c6:5a:63:3c:a7:b0:96: 27:c1:6d:e2:eb:55:1f:16:b1:d2:8a:c3:67:c7:20: 0f:91:9a:63:d4:9b:67:d5:a0:04:1c:0d:33:28:17: ba:a5:49:31:07:f5:98:c4:13:fb:34:50:68:6b:5c: 69:ac:c0:34:c7:46:cd:42:35:c6:66:6e:c0:e1:14: 5a:a1:27:ae:27:65:41:20:5a:6b:16:1c:d1:19:62: 2c:77:81:fb:87:8f:87:85:1f:42:01:15:f9:7a:66: 52:d2:d2:44:99:80:65:51:f4:a2:6e:33:e0:79:c5: de:b4:b6:85:bc:39:dc:0c:b6:ca:42:92:49:4b:94: 42:88:e1:77:2c:d2:30:d6:ed:34:a3:ad:74:5d:ad: a0:27:61:f5:34:ab:6f:4c:a7:5b:4c:8a:dc:95:e3: 09:6c:a7:0d:d8:fb:12:2c:74:31:e3:03:b0:ff:ff: d9:45:97:48:9c:bb:20:58:68:74:5d:b1:63:99:56: f9:06:8e:b8:b2:32:2a:74:19:12:a1:67:76:8d:ee: 92:fa:ce:9e:c9:c3:df:28:f4:eb:50:fc:d2:16:17: e8:9e:53:1e:44:11:13:4c:7e:b8:d2:2a:60:0c:cd: d6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1A:AF:6D:56:44:B4:5C:85:35:E2:4F:0B:F9:4C:85:C4:15:51:61 X509v3 Authority Key Identifier: keyid:CC:59:21:76:D8:8C:42:3F:88:59:B5:18:B6:AD:33:4F:FF:76:74:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/zFkhdtiMQj-IWbUYtq0zT_92dAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/zFkhdtiMQj-IWbUYtq0zT_92dAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/BDFBF1860E3E11E9836F4014C4F9AE02/5488F6EA0F1A11E9B3F2A713C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 66.96.219.0-66.96.221.255 66.96.223.0/24 158.140.151.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:09:63:51:e8:7e:27:b1:2b:18:8c:2f:ff:e1:97:11:38:49: 6d:28:6d:84:73:2c:63:3e:95:90:8e:b2:47:2a:93:5f:e5:98: e6:95:95:66:9a:3a:6b:e0:2f:ac:38:4b:70:2c:c8:51:7d:50: 2f:29:5a:24:3a:3f:6c:be:80:d8:3c:17:01:51:96:82:70:cf: 95:8d:09:c5:64:7d:2d:39:a1:df:37:d3:16:a6:93:59:70:9b: 79:0a:fa:70:92:93:f7:3d:7d:6b:18:94:43:a7:82:57:9f:34: 10:0b:a7:a1:df:b0:ca:5b:c3:72:30:c1:cd:5a:04:e5:71:88: e4:99:42:b9:36:dd:81:97:cd:32:ca:7d:59:90:9d:2c:bd:9d: 68:7e:ee:57:d6:51:eb:21:6b:1a:ab:a7:e0:10:b1:b5:4f:cf: c9:16:24:0c:4e:6f:40:53:19:83:7d:6b:4e:15:1e:a3:f6:f3: ec:57:15:59:ac:7d:6b:e9:b9:b3:5d:3d:0a:93:e8:c5:1f:d3: a2:29:82:21:2a:1a:18:fd:1a:28:23:c5:dc:6e:f9:37:9d:00: fe:1e:b3:ba:8d:01:32:41:bf:47:4f:86:01:1f:cb:dc:df:a9: fb:e8:e0:ed:73:e3:3d:d9:92:e0:28:d2:ba:36:6e:86:f0:2d: 36:80:7f:54 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICEfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKENDNTkyMTc2RDg4QzQyM0Y4ODU5QjUxOEI2QUQzMzRG RkY3Njc0MDkwHhcNMjUxMTE4MTcwNjE5WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzBjMC03YTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1dOr1Dxxh0HuMe0WCW+wn1CMXeXh1MZaYzynsJYnwW3i61UfFrHSisNnxyAP kZpj1Jtn1aAEHA0zKBe6pUkxB/WYxBP7NFBoa1xprMA0x0bNQjXGZm7A4RRaoSeu J2VBIFprFhzRGWIsd4H7h4+HhR9CARX5emZS0tJEmYBlUfSibjPgecXetLaFvDnc DLbKQpJJS5RCiOF3LNIw1u00o610Xa2gJ2H1NKtvTKdbTIrcleMJbKcN2PsSLHQx 4wOw///ZRZdInLsgWGh0XbFjmVb5Bo64sjIqdBkSoWd2je6S+s6eycPfKPTrUPzS FhfonlMeRBETTH640ipgDM3WAwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFJEar21W RLRchTXiTwv5TIXEFVFhMB8GA1UdIwQYMBaAFMxZIXbYjEI/iFm1GLatM0//dnQJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9CREZCRjE4NjBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi96RmtoZHRpTVFqLUlXYlVZdHEwelRfOTJk QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3pGa2hkdGlNUWotSVdiVVl0cTB6VF85MmRBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQkRGQkYxODYwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvNTQ4OEY2RUEw RjFBMTFFOUIzRjJBNzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaMAwDBABCYNsDBAFCYNwDBABCYN8DBACejJcwDQYJKoZIhvcNAQELBQAD ggEBAFsJY1HofiexKxiML//hlxE4SW0obYRzLGM+lZCOskcqk1/lmOaVlWaaOmvg L6w4S3AsyFF9UC8pWiQ6P2y+gNg8FwFRloJwz5WNCcVkfS05od830xamk1lwm3kK +nCSk/c9fWsYlEOnglefNBALp6HfsMpbw3Iwwc1aBOVxiOSZQrk23YGXzTLKfVmQ nSy9nWh+7lfWUeshaxqrp+AQsbVPz8kWJAxOb0BTGYN9a04VHqP28+xXFVmsfWvp ubNdPQqT6MUf06IpgiEqGhj9Gigjxdxu+TedAP4es7qNATJBv0dPhgEfy9zfqfvo 4O1z4z3ZkuAo0ro2bobwLTaAf1Q= -----END CERTIFICATE-----Generated at Mon Mar 2 12:16:55 2026 by rpki-client