$ rpki-client -vvf rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa File: C86D4880DBDE11EAB7E6495DC4F9AE02.roa (raw, json) Hash identifier: tUsv3tNoQWMVfE/GiWVi84l0pY9vapkX9vPKn8R6z3E= Subject key identifier: D4:4F:26:34:C8:9A:44:E3:A5:88:A3:D2:35:57:7B:AD:14:47:D9:28 Certificate issuer: /CN=A91B872C/serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Certificate serial: 08A9 Authority key identifier: 40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:05:48 +0000 ROA not before: Mon 04 Aug 2025 21:32:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137386 IP address blocks: 123.253.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2217 (0x8a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B872C, serialNumber=40606A5B5D29BBF42167FA68B326867EF90E826F Validity Not Before: Aug 4 21:32:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a447bc-2b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:76:f1:ad:db:1e:bf:bc:a4:52:ab:91:ec:3c: 05:fb:76:7b:a4:57:5b:01:5b:1c:5d:1c:ce:65:ae: 5c:1e:19:03:7e:db:b8:0f:aa:96:64:b6:1f:90:6d: 59:76:e8:d7:28:29:69:5a:06:f1:96:fe:ee:d8:fa: 1e:e4:e4:3e:0c:b8:78:0f:87:3b:d3:68:7e:4e:14: cc:d5:97:ed:d5:b6:29:1a:03:1a:d1:91:de:ef:6b: f3:1e:10:da:bf:42:a3:2a:39:2f:3a:12:10:97:e2: 3e:b1:49:d8:56:21:f5:d7:2f:e6:78:da:d0:5a:ba: 51:c5:4d:a2:6d:e2:3c:ed:71:16:0e:11:01:71:7b: fb:50:12:26:9b:6d:6e:35:76:6b:68:44:17:48:39: 01:a7:a5:81:0a:f8:9b:b7:72:19:66:07:a3:b1:48: 01:01:d8:b4:6b:af:ec:95:61:56:aa:de:d5:e4:a0: 60:d8:3a:98:b0:3b:c8:90:54:54:74:16:b3:3d:5e: 93:8d:36:ec:23:ab:cb:d9:79:0b:3a:17:56:4c:85: ec:ec:75:0a:74:9e:e4:bf:d8:c7:85:db:62:90:f6: ef:9a:73:f0:88:b6:d1:5f:3c:e5:0b:a9:1a:df:42: 63:a2:1a:27:fa:f9:a8:c7:ef:68:bc:f9:1e:3b:b5: a9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:4F:26:34:C8:9A:44:E3:A5:88:A3:D2:35:57:7B:AD:14:47:D9:28 X509v3 Authority Key Identifier: keyid:40:60:6A:5B:5D:29:BB:F4:21:67:FA:68:B3:26:86:7E:F9:0E:82:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/QGBqW10pu_QhZ_posyaGfvkOgm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGBqW10pu_QhZ_posyaGfvkOgm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B872C/F20E5596DBDC11EA93FF7D44C4F9AE02/C86D4880DBDE11EAB7E6495DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.253.219.0/24 Signature Algorithm: sha256WithRSAEncryption 61:12:09:68:5d:c7:1b:e6:db:df:4b:33:c3:74:0d:6d:50:64: bf:dc:a9:de:2f:19:56:03:d7:9c:c8:11:6c:65:53:c7:1e:a6: 43:1c:5c:2a:0f:6e:2c:d0:d5:51:7e:ad:19:b1:82:3e:d7:80: 09:b4:e1:e5:78:29:31:ed:15:ea:cc:b8:58:89:8c:10:f3:61: d5:7b:14:83:65:ef:5a:bf:56:9e:2e:28:a5:58:5f:99:3e:c9: 8d:97:92:ef:f2:50:50:47:d0:7f:8a:b4:e2:74:f9:c9:12:ff: 24:e5:63:a4:a7:54:2f:98:06:fa:ed:a1:15:d3:be:7a:17:d2: 97:bc:d0:f5:fd:58:ce:07:32:87:af:92:ff:8e:98:3c:92:8a: a2:2d:9d:d8:a1:39:7f:ed:44:98:26:aa:ff:b3:fb:0d:14:51: ec:3e:b1:ac:b0:6e:7d:42:4d:79:3f:3e:02:e6:c6:ba:70:04: 1d:41:35:52:2c:e7:a2:ad:8d:a8:9e:8a:cc:59:6d:c9:29:56: d2:41:89:1b:c6:19:5e:2f:08:83:33:0d:11:99:25:ac:56:82: f2:ad:1f:2a:28:e7:87:5b:56:9e:45:34:a2:ea:c7:65:cb:10: 4d:1c:b3:1d:5c:39:e1:2f:b9:e1:11:00:86:35:35:87:14:f7: 53:24:1c:d0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg3MkMxMTAvBgNVBAUTKDQwNjA2QTVCNUQyOUJCRjQyMTY3RkE2OEIzMjY4NjdF RjkwRTgyNkYwHhcNMjUwODA0MjEzMjQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDdiYy0yYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3bxrdsev7ykUquR7DwF+3Z7pFdbAVscXRzOZa5cHhkDftu4D6qWZLYfkG1Z dujXKClpWgbxlv7u2Poe5OQ+DLh4D4c702h+ThTM1Zft1bYpGgMa0ZHe72vzHhDa v0KjKjkvOhIQl+I+sUnYViH11y/meNrQWrpRxU2ibeI87XEWDhEBcXv7UBImm21u NXZraEQXSDkBp6WBCvibt3IZZgejsUgBAdi0a6/slWFWqt7V5KBg2DqYsDvIkFRU dBazPV6TjTbsI6vL2XkLOhdWTIXs7HUKdJ7kv9jHhdtikPbvmnPwiLbRXzzlC6ka 30Jjohon+vmox+9ovPkeO7WpMQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNRPJjTI mkTjpYij0jVXe60UR9koMB8GA1UdIwQYMBaAFEBgaltdKbv0IWf6aLMmhn75DoJv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODcyQy9GMjBFNTU5NkRC REMxMUVBOTNGRjdENDRDNEY5QUUwMi9RR0JxVzEwcHVfUWhaX3Bvc3lhR2Z2a09n bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHQnFXMTBwdV9RaFpfcG9zeWFHZnZrT2dtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg3MkMvRjIwRTU1OTZEQkRDMTFFQTkzRkY3RDQ0QzRGOUFFMDIvQzg2RDQ4ODBE QkRFMTFFQUI3RTY0OTVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAe/3bMA0GCSqGSIb3DQEBCwUAA4IBAQBhEgloXccb5tvfSzPDdA1t UGS/3KneLxlWA9ecyBFsZVPHHqZDHFwqD24s0NVRfq0ZsYI+14AJtOHleCkx7RXq zLhYiYwQ82HVexSDZe9av1aeLiilWF+ZPsmNl5Lv8lBQR9B/irTidPnJEv8k5WOk p1QvmAb67aEV0756F9KXvND1/VjOBzKHr5L/jpg8koqiLZ3YoTl/7USYJqr/s/sN FFHsPrGssG59Qk15Pz4C5sa6cAQdQTVSLOeirY2onorMWW3JKVbSQYkbxhleLwiD Mw0RmSWsVoLyrR8qKOeHW1aeRTSi6sdlyxBNHLMdXDnhL7nhEQCGNTWHFPdTJBzQ -----END CERTIFICATE-----Generated at Thu Mar 26 20:23:51 2026 by rpki-client