$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/0B2052EA6D0D11EEA65D7522C4F9AE02.roa File: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (raw, json) Hash identifier: JE3YkqQWW9mSMDDOp1/CYkJud9Wxp8btHEMRgajpDV0= Subject key identifier: 2D:65:89:7E:7B:AB:57:07:07:45:4A:C4:32:7B:D8:FE:B3:2A:C2:72 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 01C7 Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/0B2052EA6D0D11EEA65D7522C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:54:54 +0000 ROA not before: Thu 27 Nov 2025 01:49:41 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150335 IP address blocks: 223.130.8.0/23 maxlen: 23 223.130.8.0/24 maxlen: 24 223.130.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: Nov 27 01:49:41 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a5889e-f3ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6b:3b:40:e5:07:f6:d1:81:ad:5e:96:e5:8e: 15:9b:02:dc:f7:56:16:03:92:c9:38:6d:29:0a:88: 3b:61:a8:92:cb:53:ab:51:77:bc:6e:05:b5:93:d8: b5:4d:78:18:a9:da:4a:32:3e:77:72:b1:52:fd:00: c0:b0:17:dd:2f:a4:fa:bc:f0:db:7c:67:76:b5:2e: a6:12:47:5e:ef:59:bc:23:77:e8:1a:bb:8d:05:8f: 43:d4:21:fb:f5:00:4c:e6:34:80:26:c7:4e:23:e0: 8a:88:c0:59:b7:b9:eb:31:a1:ac:ba:9a:2d:e3:6e: 49:f7:63:fe:d3:7c:62:b4:b0:6c:6f:87:39:a9:3b: 46:85:2c:81:63:2b:d5:38:f3:82:91:eb:23:a2:f3: 34:d8:69:ff:af:cb:16:86:53:0b:2f:c5:42:37:47: 08:87:8d:fb:a6:63:85:af:e3:bf:74:c6:70:db:dc: 10:97:38:6c:9c:e0:ce:0d:62:48:cd:9b:bd:0e:bb: 92:d0:54:0c:68:82:58:52:e0:c1:61:da:1b:b5:af: 66:db:2d:9d:1c:57:4d:85:84:27:ce:91:5f:0f:a2: a7:ee:b0:96:12:58:93:84:6f:39:e0:63:b9:5a:51: e4:55:36:fb:d3:ac:ae:15:43:22:21:e7:88:3a:f2: 99:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:65:89:7E:7B:AB:57:07:07:45:4A:C4:32:7B:D8:FE:B3:2A:C2:72 X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/0B2052EA6D0D11EEA65D7522C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 223.130.8.0/23 Signature Algorithm: sha256WithRSAEncryption a4:4c:bd:b9:8b:a6:01:eb:b7:e5:a7:f3:6f:46:4a:99:0f:ba: f1:cd:d3:90:6f:2f:7b:02:fa:90:51:df:8c:65:13:8e:8d:00: 8c:52:f6:66:93:b8:ff:e6:3e:1b:22:bf:15:5f:f6:6f:08:ec: b2:b3:a3:15:8f:7e:f5:88:2f:41:3c:b8:44:c0:73:c9:cd:da: 6d:56:89:32:e1:40:c2:9e:2c:99:19:79:0c:26:4a:95:67:c7: 23:85:9c:b0:0b:9c:3c:e7:ee:33:c6:37:60:98:3a:7b:71:3e: c8:d3:cf:13:ac:90:9e:6c:7e:15:4a:14:72:fa:69:85:1e:d4: 6b:7f:29:c0:f3:08:ce:0f:fe:86:73:ff:b3:00:56:43:23:40: b7:49:cd:73:c7:fe:c1:44:f3:6b:12:43:c5:bc:17:58:b7:57: 13:fe:a1:b3:df:7b:00:a8:cb:cf:34:18:3f:58:c4:7f:5c:92: 1e:8a:dd:dc:d9:7e:7d:44:b4:0e:17:21:6a:0a:fb:d0:92:fc: ae:d2:24:14:a2:d5:ea:8f:3a:71:d5:73:fc:38:22:1d:e9:04: b7:72:a5:66:0c:9b:69:99:59:93:7e:37:42:34:ac:12:d1:a8: ea:ca:02:75:d7:45:64:35:88:96:f3:2a:68:96:52:13:6a:19: e7:d9:84:d5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUxMTI3MDE0OTQxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODg5ZS1mM2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGs7QOUH9tGBrV6W5Y4VmwLc91YWA5LJOG0pCog7YaiSy1OrUXe8bgW1k9i1 TXgYqdpKMj53crFS/QDAsBfdL6T6vPDbfGd2tS6mEkde71m8I3foGruNBY9D1CH7 9QBM5jSAJsdOI+CKiMBZt7nrMaGsupot425J92P+03xitLBsb4c5qTtGhSyBYyvV OPOCkesjovM02Gn/r8sWhlMLL8VCN0cIh437pmOFr+O/dMZw29wQlzhsnODODWJI zZu9DruS0FQMaIJYUuDBYdobta9m2y2dHFdNhYQnzpFfD6Kn7rCWEliThG854GO5 WlHkVTb706yuFUMiIeeIOvKZ/wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFC1liX57 q1cHB0VKxDJ72P6zKsJyMB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBDQUUvN0M2NDRFRTY2QTcxMTFFRUE1QjRDQjI2QzRGOUFFMDIvMEIyMDUyRUE2 RDBEMTFFRUE2NUQ3NTIyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQB34IIMA0GCSqGSIb3DQEBCwUAA4IBAQCkTL25i6YB67flp/NvRkqZ D7rxzdOQby97AvqQUd+MZROOjQCMUvZmk7j/5j4bIr8VX/ZvCOyys6MVj371iC9B PLhEwHPJzdptVoky4UDCniyZGXkMJkqVZ8cjhZywC5w85+4zxjdgmDp7cT7I088T rJCebH4VShRy+mmFHtRrfynA8wjOD/6Gc/+zAFZDI0C3Sc1zx/7BRPNrEkPFvBdY t1cT/qGz33sAqMvPNBg/WMR/XJIeit3c2X59RLQOFyFqCvvQkvyu0iQUotXqjzpx 1XP8OCId6QS3cqVmDJtpmVmTfjdCNKwS0ajqygJ110VkNYiW8ypollITahnn2YTV -----END CERTIFICATE-----Generated at Thu Mar 26 05:42:01 2026 by rpki-client