$ rpki-client -vvf rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/F8A618E05E3511F0ACCE4C26C4F9AE02.roa File: F8A618E05E3511F0ACCE4C26C4F9AE02.roa (raw, json) Hash identifier: YNlGAXVG6Otxz1oTc91JGnEKWMVhDfGSlJsoaRX0wMo= Subject key identifier: AA:B6:29:A2:20:D2:00:0A:60:67:F8:C5:8E:C6:54:D6:0F:BE:54:9E Certificate issuer: /CN=A9191A09/serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80 Certificate serial: 35BE Authority key identifier: AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/F8A618E05E3511F0ACCE4C26C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:52:27 +0000 ROA not before: Tue 30 Dec 2025 15:11:34 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 24492 IP address blocks: 27.111.8.0/22 maxlen: 24 43.245.216.0/22 maxlen: 24 49.156.32.0/20 maxlen: 24 103.17.212.0/22 maxlen: 24 116.206.16.0/22 maxlen: 24 119.15.80.0/20 maxlen: 24 202.79.24.0/21 maxlen: 24 218.100.71.0/24 maxlen: 24 2405:1a00::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 14:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13758 (0x35be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191A09, serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80 Validity Not Before: Dec 30 15:11:34 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a460bb-6ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:d5:54:43:b8:85:a3:f4:23:ea:22:1c:01:95: a7:70:34:db:c9:cd:f6:5b:bd:17:b8:e8:b2:c5:2a: 6b:bc:9f:cf:77:b7:2c:34:a5:3d:4a:83:a7:67:45: 1d:2b:e8:3d:17:d7:b5:25:8d:5e:48:ee:af:65:f4: 01:72:32:ca:0d:a4:1c:59:90:dc:14:c7:19:0b:a5: 22:fb:fd:f5:53:ad:76:83:aa:67:44:60:67:ef:d8: f5:a4:f1:8d:21:fb:bc:4a:98:4f:80:b0:90:8b:e9: c5:f4:b2:67:b7:9a:6d:5b:80:ce:dc:9f:6c:48:9e: 82:90:60:81:15:c4:21:26:8b:d1:c4:4f:18:41:73: 82:e8:1b:54:c8:20:21:d2:64:1a:54:84:40:c3:17: c8:20:04:56:35:a5:7f:a6:95:6e:d5:ad:72:e1:0f: 76:ae:4e:b4:04:12:d1:e4:75:85:c3:f5:de:fb:2f: fe:f7:22:56:24:55:08:5f:d9:72:0f:c6:06:4f:44: 2d:6b:65:3d:79:06:6a:4c:a7:c4:8c:5c:fa:37:20: 65:d2:83:20:7c:f3:0a:95:f0:f7:5f:d1:29:f3:25: da:0e:96:c5:56:8c:11:85:6f:b2:9f:59:0f:94:8d: 8a:7e:10:b6:7b:eb:e9:14:37:4a:e6:5e:c0:a7:53: f4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:B6:29:A2:20:D2:00:0A:60:67:F8:C5:8E:C6:54:D6:0F:BE:54:9E X509v3 Authority Key Identifier: keyid:AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/F8A618E05E3511F0ACCE4C26C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 27.111.8.0/22 43.245.216.0/22 49.156.32.0/20 103.17.212.0/22 116.206.16.0/22 119.15.80.0/20 202.79.24.0/21 218.100.71.0/24 IPv6: 2405:1a00::/32 Signature Algorithm: sha256WithRSAEncryption 7c:25:15:1a:42:1c:9e:9a:a1:4d:38:21:85:d7:3d:5e:cc:0b: a0:e8:ea:34:f7:9a:5b:75:cf:39:76:1c:00:c9:eb:99:8a:f2: ac:7e:82:67:a4:21:51:af:49:68:a0:0f:f2:f9:1b:4a:f2:b5: b9:df:37:a4:8f:d7:4f:6d:34:a0:ab:77:c4:58:8f:87:c5:91: 07:81:7c:1d:09:b5:6d:d4:0f:ac:f1:b0:2f:c5:94:cb:b5:12: 5e:3c:e1:14:bc:70:d2:3a:7a:a7:ac:a1:e2:31:52:14:92:bd: 83:3d:6e:5c:c1:19:b1:7e:6d:82:05:84:ad:82:12:4d:b3:74: 4a:7b:d5:c3:32:47:eb:34:f9:09:0d:62:22:be:bd:42:5c:aa: b7:66:b6:d0:1a:e8:54:a4:60:46:7a:c3:dd:4a:0e:62:a3:4a: 27:8b:fa:13:7c:b9:1d:c9:7c:2a:a3:e8:5f:19:3f:fc:1d:1d: 45:2e:97:3b:65:57:00:dc:ee:e9:94:11:6e:fb:01:78:e8:83: bd:ee:ac:22:62:d4:c9:ef:7f:6b:ab:e7:12:29:9a:05:0c:23: ea:1a:02:f2:cc:63:26:d7:c7:84:33:29:d6:f6:85:1c:35:c8: 3c:8e:35:26:2d:6b:c3:d2:6a:76:d7:43:c7:3f:97:81:8f:99: 49:6e:90:f9 -----BEGIN CERTIFICATE----- MIIFdTCCBF2gAwIBAgICNb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFBMDkxMTAvBgNVBAUTKEFDRjJDOEQwRENGQkE3NDUxNkIzM0NFQkUyNkFFMTRG OEIwNjdDODAwHhcNMjUxMjMwMTUxMTM0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjBiYi02ZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgdVUQ7iFo/Qj6iIcAZWncDTbyc32W70XuOiyxSprvJ/Pd7csNKU9SoOnZ0Ud K+g9F9e1JY1eSO6vZfQBcjLKDaQcWZDcFMcZC6Ui+/31U612g6pnRGBn79j1pPGN Ifu8SphPgLCQi+nF9LJnt5ptW4DO3J9sSJ6CkGCBFcQhJovRxE8YQXOC6BtUyCAh 0mQaVIRAwxfIIARWNaV/ppVu1a1y4Q92rk60BBLR5HWFw/Xe+y/+9yJWJFUIX9ly D8YGT0Qta2U9eQZqTKfEjFz6NyBl0oMgfPMKlfD3X9Ep8yXaDpbFVowRhW+yn1kP lI2KfhC2e+vpFDdK5l7Ap1P0IwIDAQABo4ICmTCCApUwHQYDVR0OBBYEFKq2KaIg 0gAKYGf4xY7GVNYPvlSeMB8GA1UdIwQYMBaAFKzyyNDc+6dFFrM86+Jq4U+LBnyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUEwOS80QUNGRjM2MDFE OTAxMUUyQjg3Q0YyRUYwOEIwMkNEMi9yUExJME56N3AwVVdzenpyNG1yaFQ0c0dm SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JQTEkwTno3cDBVV3N6enI0bXJoVDRzR2ZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFBMDkvNEFDRkYzNjAxRDkwMTFFMkI4N0NGMkVGMDhCMDJDRDIvRjhBNjE4RTA1 RTM1MTFGMEFDQ0U0QzI2QzRGOUFFMDIucm9hMFgGCCsGAQUFBwEHAQH/BEkwRzA2 BAIAATAwAwQCG28IAwQCK/XYAwQEMZwgAwQCZxHUAwQCdM4QAwQEdw9QAwQDyk8Y AwQA2mRHMA0EAgACMAcDBQAkBRoAMA0GCSqGSIb3DQEBCwUAA4IBAQB8JRUaQhye mqFNOCGF1z1ezAug6Oo095pbdc85dhwAyeuZivKsfoJnpCFRr0looA/y+RtK8rW5 3zekj9dPbTSgq3fEWI+HxZEHgXwdCbVt1A+s8bAvxZTLtRJePOEUvHDSOnqnrKHi MVIUkr2DPW5cwRmxfm2CBYStghJNs3RKe9XDMkfrNPkJDWIivr1CXKq3ZrbQGuhU pGBGesPdSg5io0oni/oTfLkdyXwqo+hfGT/8HR1FLpc7ZVcA3O7plBFu+wF46IO9 7qwiYtTJ739rq+cSKZoFDCPqGgLyzGMm18eEMynW9oUcNcg8jjUmLWvD0mp210PH P5eBj5lJbpD5 -----END CERTIFICATE-----Generated at Thu Mar 26 20:59:06 2026 by rpki-client