$ rpki-client -vvf rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/FFF07186C96F11F0A8412D65C4F9AE02.roa File: FFF07186C96F11F0A8412D65C4F9AE02.roa (raw, json) Hash identifier: +/L93GStPmAb4ls8KIV8uFNxmi/bFkm7RiR/RLIFNok= Subject key identifier: C3:24:60:F4:D9:CF:DE:8F:DB:2A:EE:50:E3:9F:08:77:DE:59:20:F2 Certificate issuer: /CN=A91A043A/serialNumber=E63428A21AB1EBEB9841AFCCE77BCD27A8845258 Certificate serial: 40 Authority key identifier: E6:34:28:A2:1A:B1:EB:EB:98:41:AF:CC:E7:7B:CD:27:A8:84:52:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jQoohqx6-uYQa_M53vNJ6iEUlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/FFF07186C96F11F0A8412D65C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:16:55 +0000 ROA not before: Wed 03 Dec 2025 19:38:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151645 IP address blocks: 116.66.240.0/24 maxlen: 24 116.66.241.0/24 maxlen: 24 116.66.242.0/24 maxlen: 24 116.66.243.0/24 maxlen: 24 116.66.244.0/24 maxlen: 24 116.66.245.0/24 maxlen: 24 116.66.246.0/24 maxlen: 24 116.66.247.0/24 maxlen: 24 2407:7180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/5jQoohqx6-uYQa_M53vNJ6iEUlg.crl rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/5jQoohqx6-uYQa_M53vNJ6iEUlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jQoohqx6-uYQa_M53vNJ6iEUlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A043A, serialNumber=E63428A21AB1EBEB9841AFCCE77BCD27A8845258 Validity Not Before: Dec 3 19:38:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a58dc7-ab1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:01:51:54:fe:9a:31:53:00:5b:81:bc:a8:03: da:b7:f7:aa:a5:45:04:e0:57:d0:0a:71:5a:6c:bd: 7f:73:69:3c:b6:bd:0a:25:77:8a:94:ab:96:bd:87: 60:88:f6:f1:2b:0c:cf:3f:0a:34:24:a6:9d:ba:7b: 59:16:b4:ad:9e:68:6d:00:25:b8:c4:af:85:39:ed: 63:5d:64:5f:1c:91:c2:e3:8f:0f:21:c9:e4:b1:c6: b1:54:3b:fc:44:db:d2:db:78:38:c0:18:52:8a:49: ee:99:d2:a0:d8:bc:fc:1f:20:ee:48:96:25:74:b7: 6b:3f:18:cb:08:5e:00:3f:ff:05:af:de:8c:8d:f5: 27:20:42:9d:8b:12:32:0c:18:78:60:1b:3d:1c:88: 30:56:6f:aa:e1:92:f5:94:a8:79:92:a8:8b:c4:3c: 5d:85:e9:fa:bb:7a:61:eb:4c:6e:89:22:47:b1:09: 0f:e2:cb:7b:09:81:3c:33:fd:3e:dc:2b:cf:af:34: f7:82:d5:54:33:30:92:79:6f:11:8c:34:15:23:42: ec:7a:aa:57:0c:f6:05:e4:8c:cc:91:99:ee:22:d3: 1c:4f:20:86:ee:0a:a2:a1:48:c8:6d:ae:9e:09:fa: f7:1a:23:3d:7e:d5:fe:c7:36:3c:05:54:cf:ec:ee: 4c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:24:60:F4:D9:CF:DE:8F:DB:2A:EE:50:E3:9F:08:77:DE:59:20:F2 X509v3 Authority Key Identifier: keyid:E6:34:28:A2:1A:B1:EB:EB:98:41:AF:CC:E7:7B:CD:27:A8:84:52:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/5jQoohqx6-uYQa_M53vNJ6iEUlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jQoohqx6-uYQa_M53vNJ6iEUlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A043A/5C8C4AB6C96E11F0A6689F5FC4F9AE02/FFF07186C96F11F0A8412D65C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.66.240.0/21 IPv6: 2407:7180::/32 Signature Algorithm: sha256WithRSAEncryption 8c:b2:58:25:8a:c3:bf:94:1f:dc:1e:1c:02:f6:d0:52:aa:68: 51:c7:84:37:b5:8b:9a:50:87:e3:d5:a4:95:ef:9c:70:11:9e: 64:31:85:28:43:1f:3a:d1:2d:0a:1d:2d:29:8c:72:8d:64:ab: f6:3f:43:fe:fc:02:bf:c4:7f:bd:49:39:c0:a3:bc:c0:fd:26: dc:e3:1b:66:16:90:d1:76:a0:1d:c4:f4:0a:53:c2:d1:b1:39: 59:28:d9:99:2b:00:3c:e2:10:b4:9b:e3:ba:89:5b:e9:65:54: f7:ee:90:8a:3d:07:c9:9e:b6:a8:89:71:e2:b7:89:91:c6:df: 8c:3b:b1:2b:89:db:33:65:dc:15:70:06:54:1a:fa:34:da:8b: a4:e4:9a:3a:49:6d:87:ec:97:7a:fe:52:2a:2f:e3:b2:01:08: cf:2f:11:e3:e3:f7:e8:77:da:aa:4f:c4:23:2c:bb:18:23:7a: d7:08:5c:ee:c0:7e:0e:a9:f8:f0:70:e6:95:e6:1a:90:38:25: 6c:4e:49:2e:ed:36:37:47:f1:91:ae:2f:02:fb:45:5d:50:ee: d7:93:61:00:f8:8f:c4:64:05:df:97:d1:8a:e0:83:8e:83:7e: bd:f6:14:21:9c:23:d1:d4:4f:a1:fb:d9:a1:3c:23:78:a6:15: dc:22:fc:42 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDQzQTExMC8GA1UEBRMoRTYzNDI4QTIxQUIxRUJFQjk4NDFBRkNDRTc3QkNEMjdB ODg0NTI1ODAeFw0yNTEyMDMxOTM4MjJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4ZGM3LWFiMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuAVFU/poxUwBbgbyoA9q396qlRQTgV9AKcVpsvX9zaTy2vQold4qUq5a9h2CI 9vErDM8/CjQkpp26e1kWtK2eaG0AJbjEr4U57WNdZF8ckcLjjw8hyeSxxrFUO/xE 29LbeDjAGFKKSe6Z0qDYvPwfIO5IliV0t2s/GMsIXgA//wWv3oyN9ScgQp2LEjIM GHhgGz0ciDBWb6rhkvWUqHmSqIvEPF2F6fq7emHrTG6JIkexCQ/iy3sJgTwz/T7c K8+vNPeC1VQzMJJ5bxGMNBUjQux6qlcM9gXkjMyRme4i0xxPIIbuCqKhSMhtrp4J +vcaIz1+1f7HNjwFVM/s7kx9AgMBAAGjggJvMIICazAdBgNVHQ4EFgQUwyRg9NnP 3o/bKu5Q458Id95ZIPIwHwYDVR0jBBgwFoAU5jQoohqx6+uYQa/M53vNJ6iEUlgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwNDNBLzVDOEM0QUI2Qzk2 RTExRjBBNjY4OUY1RkM0RjlBRTAyLzVqUW9vaHF4Ni11WVFhX001M3ZOSjZpRVVs Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWpRb29ocXg2LXVZUWFfTTUzdk5KNmlFVWxnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzQS81QzhDNEFCNkM5NkUxMUYwQTY2ODlGNUZDNEY5QUUwMi9GRkYwNzE4NkM5 NkYxMUYwQTg0MTJENjVDNEY5QUUwMi5yb2EwLgYIKwYBBQUHAQcBAf8EHzAdMAwE AgABMAYDBAN0QvAwDQQCAAIwBwMFACQHcYAwDQYJKoZIhvcNAQELBQADggEBAIyy WCWKw7+UH9weHAL20FKqaFHHhDe1i5pQh+PVpJXvnHARnmQxhShDHzrRLQodLSmM co1kq/Y/Q/78Ar/Ef71JOcCjvMD9JtzjG2YWkNF2oB3E9ApTwtGxOVko2ZkrADzi ELSb47qJW+llVPfukIo9B8metqiJceK3iZHG34w7sSuJ2zNl3BVwBlQa+jTai6Tk mjpJbYfsl3r+Uiov47IBCM8vEePj9+h32qpPxCMsuxgjetcIXO7Afg6p+PBw5pXm GpA4JWxOSS7tNjdH8ZGuLwL7RV1Q7teTYQD4j8RkBd+X0Yrgg46Dfr32FCGcI9HU T6H72aE8I3imFdwi/EI= -----END CERTIFICATE-----Generated at Thu Mar 26 19:03:17 2026 by rpki-client