$ rpki-client -vvf rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/7B2649225FE211EB9C1A7864C4F9AE02.roa File: 7B2649225FE211EB9C1A7864C4F9AE02.roa (raw, json) Hash identifier: D61mhla4ZKX7DfgoplRcuCG35MYNou9878EVBT40r2c= Subject key identifier: 55:15:5B:62:A0:23:1A:DC:D3:6B:05:8B:2D:F1:42:51:FF:54:BE:0C Certificate issuer: /CN=A91B872C/serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Certificate serial: 08AA Authority key identifier: 40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/7B2649225FE211EB9C1A7864C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:05:49 +0000 ROA not before: Mon 04 Aug 2025 21:32:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137445 IP address blocks: 123.253.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2218 (0x8aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B872C, serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Validity Not Before: Aug 4 21:32:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a447bd-8ccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b1:98:2f:55:7b:2e:9b:8e:60:1c:1a:7b:ca: 35:25:98:39:08:7b:5f:75:16:20:57:94:86:13:54: 8d:14:05:25:47:75:43:78:1b:07:55:2d:a3:a2:f2: 01:fb:d0:52:68:5a:06:7a:42:09:16:5f:43:c6:55: 52:87:5e:2e:ea:97:bc:f8:52:b4:ff:3e:9a:53:39: 47:09:ee:7f:d3:9d:3a:58:fb:fe:d2:e9:bc:3c:c5: a1:9f:17:55:13:3b:9a:c3:fb:1c:90:a8:ee:00:d9: ec:a2:af:75:04:b2:06:dd:b7:38:51:1a:ca:dc:9d: 4f:62:99:e8:a7:a2:3c:38:ef:bb:71:f7:f4:d1:d5: c1:d1:db:1e:88:7a:a8:c7:40:3f:d1:d5:82:21:5c: c7:72:d4:c3:63:eb:ff:f6:41:64:a5:52:9f:4a:56: 7a:f6:49:d9:f1:e9:1d:60:09:1b:a4:31:67:36:a6: ab:9b:f5:11:1b:eb:ce:0c:f7:99:4b:cc:52:47:02: ee:4a:d6:df:d7:76:a5:66:3e:43:ee:f9:75:a0:57: 14:bb:c1:b7:d3:4d:46:e4:f4:e7:b9:02:ef:de:9f: 40:1a:ac:bd:b6:ce:ba:a3:65:80:05:25:cd:f7:19: e4:99:fc:f9:c7:f4:79:2f:9e:39:96:d2:d6:e2:90: cb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:15:5B:62:A0:23:1A:DC:D3:6B:05:8B:2D:F1:42:51:FF:54:BE:0C X509v3 Authority Key Identifier: keyid:40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/7B2649225FE211EB9C1A7864C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.218.0/24 Signature Algorithm: sha256WithRSAEncryption bc:b8:3e:1b:0e:10:86:c0:d6:a7:ea:07:9c:89:3c:01:84:c6: de:4a:0d:b5:da:14:54:93:39:c5:7e:54:aa:37:55:7f:67:fb: 6b:b0:b7:da:c6:c7:99:a0:f3:b2:9f:4b:5c:4d:7d:a2:f6:11: 9c:ef:7d:f9:41:29:fc:9c:5a:70:f0:7d:b2:71:28:f0:57:af: a6:c4:22:e5:1f:3f:f7:4a:95:5a:2f:cc:25:fb:c5:ed:7d:81: f9:57:6f:69:83:d5:2d:88:c8:42:c5:e0:e9:61:a8:c6:3d:3f: 1f:22:28:2d:ed:1e:7b:5b:90:83:30:74:8e:95:e3:c5:83:40: 45:93:a7:7a:36:5c:2e:b1:63:47:68:8e:f0:49:4c:46:30:71: 5c:7b:90:7d:6f:a6:d9:16:88:c6:2f:22:c2:54:86:e5:c8:ba: e5:82:1a:21:71:61:6b:2a:92:5f:92:a1:96:4c:96:9f:ef:34: 2a:38:34:9a:f9:25:c4:ef:92:05:b6:28:99:79:8d:85:5b:89: 31:09:b1:96:43:68:b6:13:6f:9a:bd:ef:3b:da:67:1f:98:73: e0:75:6c:07:23:5c:58:cf:03:92:32:ce:db:c8:8a:ac:e6:1b: ba:ab:40:d5:d6:7c:77:86:34:bf:04:75:14:65:5d:2d:da:cd: 2f:1d:f6:df -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3MkMxMTAvBgNVBAUTKDQwNjA2QTVCNUQyOUJCRjQyMTY3RkE2OEIzMjY4NjdF RjkwRTgyNkYwHhcNMjUwODA0MjEzMjQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDdiZC04Y2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrGYL1V7LpuOYBwae8o1JZg5CHtfdRYgV5SGE1SNFAUlR3VDeBsHVS2jovIB +9BSaFoGekIJFl9DxlVSh14u6pe8+FK0/z6aUzlHCe5/0506WPv+0um8PMWhnxdV Ezuaw/sckKjuANnsoq91BLIG3bc4URrK3J1PYpnop6I8OO+7cff00dXB0dseiHqo x0A/0dWCIVzHctTDY+v/9kFkpVKfSlZ69knZ8ekdYAkbpDFnNqarm/URG+vODPeZ S8xSRwLuStbf13alZj5D7vl1oFcUu8G3001G5PTnuQLv3p9AGqy9ts66o2WABSXN 9xnkmfz5x/R5L545ltLW4pDLVQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFUVW2Kg Ixrc02sFiy3xQlH/VL4MMB8GA1UdIwQYMBaAFEBgaltdKbv0IWf6aLMmhn75DoJv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODcyQy9GMjBFNTU5NkRC REMxMUVBOTNGRjdENDRDNEY5QUUwMi9RR0JxVzEwcHVfUWhaX3Bvc3lhR2Z2a09n bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHQnFXMTBwdV9RaFpfcG9zeWFHZnZrT2dtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3MkMvRjIwRTU1OTZEQkRDMTFFQTkzRkY3RDQ0QzRGOUFFMDIvN0IyNjQ5MjI1 RkUyMTFFQjlDMUE3ODY0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAe/3aMA0GCSqGSIb3DQEBCwUAA4IBAQC8uD4bDhCGwNan6geciTwB hMbeSg212hRUkznFflSqN1V/Z/trsLfaxseZoPOyn0tcTX2i9hGc7335QSn8nFpw 8H2ycSjwV6+mxCLlHz/3SpVaL8wl+8XtfYH5V29pg9UtiMhCxeDpYajGPT8fIigt 7R57W5CDMHSOlePFg0BFk6d6NlwusWNHaI7wSUxGMHFce5B9b6bZFojGLyLCVIbl yLrlghohcWFrKpJfkqGWTJaf7zQqODSa+SXE75IFtiiZeY2FW4kxCbGWQ2i2E2+a ve872mcfmHPgdWwHI1xYzwOSMs7byIqs5hu6q0DV1nx3hjS/BHUUZV0t2s0vHfbf -----END CERTIFICATE-----Generated at Thu Mar 26 18:47:35 2026 by rpki-client