$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/5740BDF8370111F094BF7862C4F9AE02.roa File: 5740BDF8370111F094BF7862C4F9AE02.roa (raw, json) Hash identifier: TzkPBOuu8iVT94DUClMMw+tXF1MG5WJOQ0I22k+/nfc= Subject key identifier: A1:69:06:9C:B0:27:FD:E2:F0:82:CA:E2:EB:78:73:E1:03:02:14:B3 Certificate issuer: /CN=A91ADD64/serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Certificate serial: 015E Authority key identifier: FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/5740BDF8370111F094BF7862C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:09:12 +0000 ROA not before: Mon 15 Sep 2025 13:55:54 +0000 ROA not after: Thu 30 Dec 2027 00:00:00 +0000 asID: 132384 IP address blocks: 167.219.49.0/24 maxlen: 24 167.219.50.0/23 maxlen: 24 167.219.52.0/23 maxlen: 24 167.219.54.0/24 maxlen: 24 167.219.55.0/24 maxlen: 24 167.219.56.0/23 maxlen: 24 167.219.58.0/23 maxlen: 24 167.219.60.0/23 maxlen: 24 167.219.62.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Validity Not Before: Sep 15 13:55:54 2025 GMT Not After : Dec 30 00:00:00 2027 GMT Subject: CN=69a59a08-dc2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:8e:57:74:1a:d9:38:ad:41:6d:7d:09:2f:84: 13:42:0f:e3:19:cc:a0:bf:7d:f7:02:c5:18:72:57: 27:ed:18:58:be:3d:ba:ac:95:33:ba:65:67:bf:7b: 58:ea:08:53:42:d1:f5:f3:c0:ea:91:d8:fc:b5:9d: 43:1e:55:d7:d6:4f:76:19:b7:57:f8:6d:32:55:43: 46:6c:80:55:1a:67:37:93:21:cb:1a:21:46:95:60: a4:f3:5a:3f:90:22:73:3d:3c:ab:57:e1:9a:fd:66: fe:e9:d6:55:30:f1:ca:dc:c4:48:ef:88:c8:9e:5a: d0:b3:b7:17:2a:4a:5c:c8:b4:7b:8d:8f:8a:11:2c: 5b:c8:1d:6a:2b:d1:70:9c:0f:b0:20:39:26:ce:50: 37:dd:09:a5:ab:8d:a7:a6:c4:70:53:46:5d:ab:24: c4:aa:41:5e:cc:1a:fa:ff:74:a1:e1:0c:20:30:86: d1:2c:d3:f7:ff:f9:28:37:55:9a:1a:51:cf:a0:69: 84:cc:98:21:85:fe:4c:5d:9c:22:e5:db:ee:57:98: a1:ad:5d:a1:80:b1:9d:71:49:0d:c8:6e:76:08:a7: 4e:73:e1:9f:ac:a0:77:13:b7:e0:8f:88:ab:b0:66: 93:58:58:dc:d7:6d:87:c3:1b:90:5c:09:d6:2f:04: 32:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:69:06:9C:B0:27:FD:E2:F0:82:CA:E2:EB:78:73:E1:03:02:14:B3 X509v3 Authority Key Identifier: keyid:FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/5740BDF8370111F094BF7862C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 167.219.49.0-167.219.63.255 Signature Algorithm: sha256WithRSAEncryption 73:fc:f9:54:b7:57:63:ec:7d:e3:b4:bb:95:69:d3:b9:b5:78: cf:16:7c:1c:1c:ad:14:02:fa:2b:e1:25:d4:02:13:70:cf:2d: 16:7f:04:66:20:51:ea:0b:41:9a:11:22:c9:17:75:e3:7c:fd: 2f:f7:7a:f6:c2:a1:b5:7d:73:dc:e0:75:65:da:20:52:c2:1f: 9f:08:38:0d:f7:21:dc:0d:81:bd:1d:4a:34:b5:40:dc:38:c9: d2:07:77:7c:0a:ae:a2:fd:6e:07:25:c7:0f:59:ae:a8:cb:ce: 6a:55:7e:ec:40:77:57:41:3b:27:ed:59:d6:4e:34:be:4a:91: c7:22:e2:2e:dd:1a:4f:90:50:e4:cc:04:05:fa:03:bc:d6:1b: cd:43:74:a1:7b:56:83:13:58:6b:f2:1f:64:71:9d:d5:2b:71: 5d:72:0c:63:4f:f3:44:08:a6:ea:e2:df:60:e3:1c:ad:eb:ed: 8b:eb:6c:7e:91:3d:93:0c:a3:00:14:d0:b2:d3:dd:d7:2a:0e: 42:16:f2:77:ec:23:9f:c1:6a:b7:f3:bb:79:50:68:28:c1:7e: 8c:0d:c5:3d:2a:8d:d5:ff:34:6e:e7:36:ca:f8:87:03:ca:e2: 6a:90:90:37:e6:be:b4:87:af:5b:2a:28:37:fd:bf:44:9d:af: af:fc:22:d0 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKEZDQTkzNTVDMUFCRTQwNEYzRjNDRjUxOTJGRDM0QjEy NUEwMEJGMUIwHhcNMjUwOTE1MTM1NTU0WhcNMjcxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWEwOC1kYzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjY5XdBrZOK1BbX0JL4QTQg/jGcygv333AsUYclcn7RhYvj26rJUzumVnv3tY 6ghTQtH188Dqkdj8tZ1DHlXX1k92GbdX+G0yVUNGbIBVGmc3kyHLGiFGlWCk81o/ kCJzPTyrV+Ga/Wb+6dZVMPHK3MRI74jInlrQs7cXKkpcyLR7jY+KESxbyB1qK9Fw nA+wIDkmzlA33Qmlq42npsRwU0ZdqyTEqkFezBr6/3Sh4QwgMIbRLNP3//koN1Wa GlHPoGmEzJghhf5MXZwi5dvuV5ihrV2hgLGdcUkNyG52CKdOc+GfrKB3E7fgj4ir sGaTWFjc122HwxuQXAnWLwQycwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFKFpBpyw J/3i8ILK4ut4c+EDAhSzMB8GA1UdIwQYMBaAFPypNVwavkBPPzz1GS/TSxJaAL8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC80RUIyQjQyODEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFFOF9QUFVaTDlOTEVsb0F2 eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19LazFYQnEtUUU4X1BQVVpMOU5MRWxvQXZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURENjQvNEVCMkI0MjgxMzRCMTFFRjk0NDI0RDNEQzRGOUFFMDIvNTc0MEJERjgz NzAxMTFGMDk0QkY3ODYyQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBACn2zEDBAan2wAwDQYJKoZIhvcNAQELBQADggEBAHP8+VS3V2Ps feO0u5Vp07m1eM8WfBwcrRQC+ivhJdQCE3DPLRZ/BGYgUeoLQZoRIskXdeN8/S/3 evbCobV9c9zgdWXaIFLCH58IOA33IdwNgb0dSjS1QNw4ydIHd3wKrqL9bgclxw9Z rqjLzmpVfuxAd1dBOyftWdZONL5Kkcci4i7dGk+QUOTMBAX6A7zWG81DdKF7VoMT WGvyH2RxndUrcV1yDGNP80QIpuri32DjHK3r7YvrbH6RPZMMowAU0LLT3dcqDkIW 8nfsI5/Barfzu3lQaCjBfowNxT0qjdX/NG7nNsr4hwPK4mqQkDfmvrSHr1sqKDf9 v0Sdr6/8ItA= -----END CERTIFICATE-----Generated at Thu Mar 26 12:54:19 2026 by rpki-client