$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAB3C/991EADFE694A11F0A7741A43C4F9AE02/CF2B394C01EA11F190A04A823B6F56BC.roa File: CF2B394C01EA11F190A04A823B6F56BC.roa (raw, json) Hash identifier: cSWg+EWI+xub+6SxtziQSwS+Xd20OpD9CWt2ej78bB8= Subject key identifier: 3F:F2:BB:54:BA:78:33:AB:0F:26:A4:57:5B:D5:34:E8:9E:C0:6E:01 Certificate issuer: /CN=A91FAB3C/serialNumber=826B4474BC6F4F3BE40B5E7511F105CAE7FE8C0C Certificate serial: 72 Authority key identifier: 82:6B:44:74:BC:6F:4F:3B:E4:0B:5E:75:11:F1:05:CA:E7:FE:8C:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gmtEdLxvTzvkC151EfEFyuf-jAw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAB3C/991EADFE694A11F0A7741A43C4F9AE02/CF2B394C01EA11F190A04A823B6F56BC.roa Signing time: Wed 04 Feb 2026 16:59:03 +0000 ROA not before: Wed 04 Feb 2026 16:59:03 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134489 IP address blocks: 192.188.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAB3C/991EADFE694A11F0A7741A43C4F9AE02/gmtEdLxvTzvkC151EfEFyuf-jAw.crl rsync://rpki.apnic.net/member_repository/A91FAB3C/991EADFE694A11F0A7741A43C4F9AE02/gmtEdLxvTzvkC151EfEFyuf-jAw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gmtEdLxvTzvkC151EfEFyuf-jAw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAB3C, serialNumber=826B4474BC6F4F3BE40B5E7511F105CAE7FE8C0C Validity Not Before: Feb 4 16:59:03 2026 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69837ad7-d11a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:40:0b:1c:29:0c:c8:fa:c7:84:a3:f7:9a:75: 3d:6c:a8:39:c6:06:3e:06:59:51:e5:e5:b8:3b:11: f3:03:e2:d8:df:fa:bc:88:a1:00:07:ad:61:92:68: e3:a8:a6:26:10:8b:05:be:59:6f:9e:e3:58:f3:c4: 27:1c:0d:a0:47:3e:b3:86:7c:8f:73:2e:fd:45:6a: c3:61:97:8d:32:31:64:ad:98:dd:e5:5c:af:ae:5f: 20:36:15:cc:92:40:b7:33:ef:2c:ee:ac:6d:30:52: c0:01:80:55:4d:d5:7a:78:58:c6:c1:a8:81:ae:8b: c1:f4:1d:80:17:75:0e:f7:08:18:bc:33:ea:74:07: 79:a2:59:cb:6b:b1:76:de:d3:0a:93:11:e2:11:36: 3a:34:64:6f:0f:8d:25:b5:f1:6b:17:df:99:4a:eb: 63:32:08:5f:ca:02:bc:c9:42:7c:b3:fd:5e:e8:9f: 55:f2:df:8b:ea:80:45:03:28:d1:44:9a:e3:f5:94: c6:4a:ef:83:e8:2b:61:a4:13:6f:71:b4:b0:2e:37: 34:b7:0e:44:83:9b:0f:d5:9d:10:83:76:6c:3b:38: 5c:e9:6e:b0:a5:72:3c:ca:a9:a8:5b:fe:59:dc:43: 0c:1a:84:44:69:be:b5:2f:18:6b:8a:d5:ff:45:53: 70:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F2:BB:54:BA:78:33:AB:0F:26:A4:57:5B:D5:34:E8:9E:C0:6E:01 X509v3 Authority Key Identifier: keyid:82:6B:44:74:BC:6F:4F:3B:E4:0B:5E:75:11:F1:05:CA:E7:FE:8C:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAB3C/991EADFE694A11F0A7741A43C4F9AE02/gmtEdLxvTzvkC151EfEFyuf-jAw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gmtEdLxvTzvkC151EfEFyuf-jAw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAB3C/991EADFE694A11F0A7741A43C4F9AE02/CF2B394C01EA11F190A04A823B6F56BC.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.188.86.0/24 Signature Algorithm: sha256WithRSAEncryption 17:63:ef:d4:80:71:61:a0:68:01:7d:3b:7e:66:f5:be:6e:0f: 33:99:12:28:12:b7:f9:d4:df:ca:92:55:cc:b0:ae:c9:b8:0c: 52:ac:e5:dd:38:17:b1:c3:bd:4e:e5:d3:18:d8:57:28:33:61: f9:93:c6:3d:00:87:9d:1e:28:dc:d7:06:cc:b9:1d:6a:99:2c: 14:77:ed:bf:5a:43:d7:f0:3a:18:0e:36:9f:72:04:0f:93:24: 46:d7:44:92:0b:f3:60:0c:ea:9a:63:fe:ea:88:6e:0a:a7:51: de:90:bc:29:fe:cd:b4:8e:9c:c3:2f:93:de:f2:73:dd:19:92: ed:98:45:1d:bb:9b:b1:64:67:f1:ca:7d:dd:c6:d3:4a:84:97: 23:8c:ca:a9:c3:d9:0c:00:78:fb:35:ab:6a:c1:ce:23:2e:c8: 99:12:df:ad:08:00:5f:d6:ff:41:a7:1a:db:6d:ff:fd:96:22: 99:fd:79:e8:82:db:73:c4:84:f4:f5:0d:97:22:a4:97:f4:10: 31:e8:27:e9:7a:20:34:e5:c3:02:ff:47:5d:07:22:f6:ef:aa: 9c:d0:7b:ca:81:90:b4:d7:e7:99:80:0c:34:50:b9:e5:0b:d8: 52:36:e6:3c:64:44:29:5e:cf:4a:37:ff:df:e0:25:54:88:97: eb:c9:12:54 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QUIzQzExMC8GA1UEBRMoODI2QjQ0NzRCQzZGNEYzQkU0MEI1RTc1MTFGMTA1Q0FF N0ZFOEMwQzAeFw0yNjAyMDQxNjU5MDNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMMDTY5ODM3YWQ3LWQxMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuQAscKQzI+seEo/eadT1sqDnGBj4GWVHl5bg7EfMD4tjf+ryIoQAHrWGSaOOo piYQiwW+WW+e41jzxCccDaBHPrOGfI9zLv1FasNhl40yMWStmN3lXK+uXyA2FcyS QLcz7yzurG0wUsABgFVN1Xp4WMbBqIGui8H0HYAXdQ73CBi8M+p0B3miWctrsXbe 0wqTEeIRNjo0ZG8PjSW18WsX35lK62MyCF/KArzJQnyz/V7on1Xy34vqgEUDKNFE muP1lMZK74PoK2GkE29xtLAuNzS3DkSDmw/VnRCDdmw7OFzpbrClcjzKqahb/lnc QwwahERpvrUvGGuK1f9FU3CXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUP/K7VLp4 M6sPJqRXW9U06J7AbgEwHwYDVR0jBBgwFoAUgmtEdLxvTzvkC151EfEFyuf+jAww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBQjNDLzk5MUVBREZFNjk0 QTExRjBBNzc0MUE0M0M0RjlBRTAyL2dtdEVkTHh2VHp2a0MxNTFFZkVGeXVmLWpB dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZ210RWRMeHZUenZrQzE1MUVmRUZ5dWYtakF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUIzQy85OTFFQURGRTY5NEExMUYwQTc3NDFBNDNDNEY5QUUwMi9DRjJCMzk0QzAx RUExMUYxOTBBMDRBODIzQjZGNTZCQy5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMC8VjANBgkqhkiG9w0BAQsFAAOCAQEAF2Pv1IBxYaBoAX07 fmb1vm4PM5kSKBK3+dTfypJVzLCuybgMUqzl3TgXscO9TuXTGNhXKDNh+ZPGPQCH nR4o3NcGzLkdapksFHftv1pD1/A6GA42n3IED5MkRtdEkgvzYAzqmmP+6ohuCqdR 3pC8Kf7NtI6cwy+T3vJz3RmS7ZhFHbubsWRn8cp93cbTSoSXI4zKqcPZDAB4+zWr asHOIy7ImRLfrQgAX9b/Qaca223//ZYimf156ILbc8SE9PUNlyKkl/QQMegn6Xog NOXDAv9HXQci9u+qnNB7yoGQtNfnmYAMNFC55QvYUjbmPGREKV7PSjf/3+AlVIiX 68kSVA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:26:55 2026 by rpki-client