$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa File: D91E3ADC498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: dV2yNdOt/46ICqDeuLFj+0Sp1pslxl2GwJkDaUPc31g= Subject key identifier: A3:A7:63:9E:67:5D:6F:7E:65:02:FE:9F:98:D2:17:8F:22:AE:A1:C2 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 0147 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:41:08 +0000 ROA not before: Fri 07 Nov 2025 01:10:32 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 1851 IP address blocks: 130.220.0.0/16 maxlen: 16 130.220.208.0/24 maxlen: 24 130.220.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:37:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Nov 7 01:10:32 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a59373-4a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:13:c3:20:f1:ce:15:17:45:14:22:ce:18:1f: 7a:73:5d:6c:d7:ce:e9:5b:87:8a:77:ce:3f:29:bd: cd:23:fb:76:ce:a7:f6:14:42:a1:3b:d6:99:df:9a: c8:4b:8c:6e:18:fe:b3:9e:eb:da:81:bb:b5:bb:fe: c7:1e:10:c9:a0:da:dd:06:0f:29:9d:e2:e3:8b:0a: 5b:c3:bd:b9:9f:33:33:4e:ef:1f:9c:a2:fc:28:e0: 2f:cb:40:3f:9b:66:26:aa:47:46:d3:a6:d4:1a:ed: 5f:30:da:5e:a9:ef:bb:93:cd:b9:24:5e:a1:f0:46: 28:32:08:e6:b2:a9:59:e7:0f:9e:06:85:21:4a:5e: a6:0e:ec:38:9f:89:2e:e0:9e:8b:98:5b:12:2f:ac: 5e:7a:a6:d7:29:10:73:28:e7:3b:4f:6c:ba:e3:16: 9a:33:1d:22:2b:f3:ce:28:4f:13:72:e3:86:71:fd: ed:b6:29:78:cc:09:9e:1d:3e:36:43:cf:e0:93:07: 7c:7a:69:43:38:79:f1:25:7d:6b:5f:b9:c8:27:61: 63:9d:fa:7a:d9:ea:20:d2:0a:bc:13:7b:aa:62:5c: bc:ae:a6:38:fb:af:20:a3:f6:49:a6:f0:fc:a2:0f: 4d:14:63:65:9f:00:6a:0f:d4:dc:bd:70:0b:fa:f3: 9f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A7:63:9E:67:5D:6F:7E:65:02:FE:9F:98:D2:17:8F:22:AE:A1:C2 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 03:6a:89:88:6e:98:6a:e8:36:2f:17:43:04:b4:f6:99:4d:4c: c1:3a:8f:54:37:52:b3:0f:f9:b6:d6:2c:77:86:1c:7e:55:92: e5:5d:7b:63:d6:e1:10:cf:19:f6:37:5a:92:4b:2e:c4:87:ec: 16:ce:e6:dd:42:d9:58:4d:5b:1b:5e:4b:9e:e6:c6:79:c1:24: 1c:45:8c:3c:18:e0:8f:b6:01:41:30:9c:c6:d1:33:56:55:ef: 3c:20:ac:b5:0c:5e:3c:f5:52:a9:14:88:ee:b9:87:64:61:9b: 2b:08:5e:b3:65:4e:a5:d3:26:2d:2b:1f:96:bd:8b:d1:9f:39: 66:8e:7a:48:f3:ba:ad:22:5d:65:05:a5:fd:3b:7d:bb:ad:a6: 99:c2:a1:60:46:1e:20:2b:53:8c:72:ff:08:2b:95:5f:63:06: 28:57:ee:f2:4d:91:0c:10:77:ff:d0:4f:21:6f:82:3e:62:3a: db:b5:d7:18:2c:df:b8:1f:31:df:96:0a:ca:12:98:9b:b7:b2: 3c:3c:3c:68:68:67:e2:86:43:3e:71:2f:04:7b:44:28:4c:0c: a1:a1:c2:55:6d:63:33:59:19:8f:2f:e0:78:2b:e2:62:74:b7: 17:72:83:50:5a:0d:b5:68:de:71:9b:fd:ff:cf:9b:87:cc:e0: 4b:08:3a:c7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUxMTA3MDExMDMyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTM3My00YTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/BPDIPHOFRdFFCLOGB96c11s187pW4eKd84/Kb3NI/t2zqf2FEKhO9aZ35rI S4xuGP6znuvagbu1u/7HHhDJoNrdBg8pneLjiwpbw725nzMzTu8fnKL8KOAvy0A/ m2YmqkdG06bUGu1fMNpeqe+7k825JF6h8EYoMgjmsqlZ5w+eBoUhSl6mDuw4n4ku 4J6LmFsSL6xeeqbXKRBzKOc7T2y64xaaMx0iK/POKE8TcuOGcf3ttil4zAmeHT42 Q8/gkwd8emlDOHnxJX1rX7nIJ2Fjnfp62eog0gq8E3uqYly8rqY4+68go/ZJpvD8 og9NFGNlnwBqD9TcvXAL+vOfSQIDAQABo4ICXzCCAlswHQYDVR0OBBYEFKOnY55n XW9+ZQL+n5jSF48irqHCMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYzQjYvNTBGMDExQzg0OEJBMTFFRkJENDUxNjNEQzRGOUFFMDIvRDkxRTNBREM0 OThFMTFFRjkwOEZEMjIyQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAgtwwDQYJKoZIhvcNAQELBQADggEBAANqiYhumGroNi8XQwS09plN TME6j1Q3UrMP+bbWLHeGHH5VkuVde2PW4RDPGfY3WpJLLsSH7BbO5t1C2VhNWxte S57mxnnBJBxFjDwY4I+2AUEwnMbRM1ZV7zwgrLUMXjz1UqkUiO65h2RhmysIXrNl TqXTJi0rH5a9i9GfOWaOekjzuq0iXWUFpf07fbutppnCoWBGHiArU4xy/wgrlV9j BihX7vJNkQwQd//QTyFvgj5iOtu11xgs37gfMd+WCsoSmJu3sjw8PGhoZ+KGQz5x LwR7RChMDKGhwlVtYzNZGY8v4Hgr4mJ0txdyg1BaDbVo3nGb/f/Pm4fM4EsIOsc= -----END CERTIFICATE-----Generated at Thu Mar 26 19:58:21 2026 by rpki-client