$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/FD114232912711EFBCB4ED6EC4F9AE02.roa File: FD114232912711EFBCB4ED6EC4F9AE02.roa (raw, json) Hash identifier: m31d9LY6Fb+rpx0iPU2nTzyFxPrcr/nSM8utNGuQQUI= Subject key identifier: DA:57:C4:3D:E6:DE:57:57:A4:46:74:5B:C5:2E:DE:BB:9E:78:37:85 Certificate issuer: /CN=A91DF0EC/serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Certificate serial: 0AA1 Authority key identifier: DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/FD114232912711EFBCB4ED6EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:45:06 +0000 ROA not before: Wed 18 Feb 2026 19:17:12 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 139715 IP address blocks: 123.0.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 19:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2721 (0xaa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0EC, serialNumber=DA2B43CC183CA8E0F6A8F6DAA54CDD7306F86228 Validity Not Before: Feb 18 19:17:12 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a46d12-edc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:66:68:94:82:31:51:db:3d:07:7a:9c:61:fb: 88:7f:fc:69:9d:13:f8:ef:44:2e:e1:4b:16:cf:6d: 47:58:ab:fa:97:a3:39:8d:d5:2b:98:b6:13:ed:b1: 42:54:35:d2:4b:68:32:62:eb:40:b9:43:dc:87:41: 6a:23:ba:39:5f:10:2b:ca:0d:2b:10:40:9a:4b:84: 78:9e:57:9e:54:87:e8:ba:01:84:a2:5e:49:0d:00: 1e:be:59:d2:fe:2f:d1:91:a8:d9:97:75:9e:f5:ba: 41:21:64:49:9e:03:60:7f:ff:03:4e:17:8d:c1:eb: 17:63:75:9a:d7:be:5b:dd:41:77:7d:28:b5:68:1e: 8f:20:1e:e7:61:1a:09:49:28:cb:37:a8:28:1e:d7: fd:2e:c0:85:12:9b:3d:3f:ed:a1:4c:0a:dc:72:d6: 57:4d:f2:51:5e:6e:3d:f8:fd:7b:62:67:1b:10:22: 9c:4c:ec:03:72:98:47:7f:10:92:f3:f3:2f:55:44: bb:32:c9:dd:e4:9c:fe:8a:5a:cd:29:36:18:1b:16: a8:17:e2:99:fe:a0:29:43:2b:43:4a:e2:fb:bb:6b: 8c:46:7e:0c:4b:5d:98:c0:6e:fc:75:8f:21:82:10: 29:e9:1c:7f:14:ac:33:49:21:06:0c:b8:19:94:0e: 53:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:57:C4:3D:E6:DE:57:57:A4:46:74:5B:C5:2E:DE:BB:9E:78:37:85 X509v3 Authority Key Identifier: keyid:DA:2B:43:CC:18:3C:A8:E0:F6:A8:F6:DA:A5:4C:DD:73:06:F8:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/2itDzBg8qOD2qPbapUzdcwb4Yig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2itDzBg8qOD2qPbapUzdcwb4Yig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0EC/991CEF7E795811EA93AE9646C4F9AE02/FD114232912711EFBCB4ED6EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.0.29.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:2d:a0:d8:fd:dd:56:b3:13:8f:89:08:99:2c:14:44:0c:2f: 27:7b:b0:d0:23:33:d1:a4:7d:08:eb:fa:81:35:6c:c7:0d:ba: 4f:65:f0:f1:3c:5a:ce:57:49:be:70:ac:41:c7:cd:39:d7:36: c2:07:27:eb:53:34:39:73:16:bf:63:0f:bc:9b:b4:90:00:d3: d9:5d:b6:5d:f3:09:32:58:99:1b:95:a2:e9:a4:b9:cd:cc:be: b5:61:d9:56:80:33:fc:58:fe:b7:45:56:70:29:74:8c:de:d5: 90:66:49:61:0d:da:b7:08:10:d2:b2:55:9c:6c:5c:65:d1:30: 52:60:43:51:2f:db:e1:de:6c:d1:38:3b:17:9f:53:b1:5f:97: 3a:0f:58:1b:57:fd:34:fb:42:01:3a:3f:fc:f6:fe:e1:75:07: 59:d6:9a:bf:7b:24:8b:d6:7f:19:95:fd:cb:f5:fb:0e:ab:d6: 06:bb:e4:06:d4:e3:54:af:39:fe:a9:63:64:76:20:ce:26:5c: 1d:71:e0:d7:6d:ee:26:72:fd:7d:39:da:79:18:e0:cb:72:4c: 89:4a:0b:c2:3e:6b:94:65:49:1c:26:37:d7:53:a9:f6:07:55: d8:7c:58:d0:09:e5:a3:e3:e0:c2:35:02:51:33:01:d2:aa:ec: d0:3e:ba:7d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwRUMxMTAvBgNVBAUTKERBMkI0M0NDMTgzQ0E4RTBGNkE4RjZEQUE1NENERDcz MDZGODYyMjgwHhcNMjYwMjE4MTkxNzEyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmQxMi1lZGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAgWZolIIxUds9B3qcYfuIf/xpnRP470Qu4UsWz21HWKv6l6M5jdUrmLYT7bFC VDXSS2gyYutAuUPch0FqI7o5XxAryg0rEECaS4R4nleeVIfougGEol5JDQAevlnS /i/RkajZl3We9bpBIWRJngNgf/8DTheNwesXY3Wa175b3UF3fSi1aB6PIB7nYRoJ SSjLN6goHtf9LsCFEps9P+2hTArcctZXTfJRXm49+P17YmcbECKcTOwDcphHfxCS 8/MvVUS7Msnd5Jz+ilrNKTYYGxaoF+KZ/qApQytDSuL7u2uMRn4MS12YwG78dY8h ghAp6Rx/FKwzSSEGDLgZlA5TdQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNpXxD3m 3ldXpEZ0W8Uu3rueeDeFMB8GA1UdIwQYMBaAFNorQ8wYPKjg9qj22qVM3XMG+GIo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBFQy85OTFDRUY3RTc5 NTgxMUVBOTNBRTk2NDZDNEY5QUUwMi8yaXREekJnOHFPRDJxUGJhcFV6ZGN3YjRZ aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJpdER6Qmc4cU9EMnFQYmFwVXpkY3diNFlpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYwRUMvOTkxQ0VGN0U3OTU4MTFFQTkzQUU5NjQ2QzRGOUFFMDIvRkQxMTQyMzI5 MTI3MTFFRkJDQjRFRDZFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAewAdMA0GCSqGSIb3DQEBCwUAA4IBAQCOLaDY/d1WsxOPiQiZLBRE DC8ne7DQIzPRpH0I6/qBNWzHDbpPZfDxPFrOV0m+cKxBx8051zbCByfrUzQ5cxa/ Yw+8m7SQANPZXbZd8wkyWJkblaLppLnNzL61YdlWgDP8WP63RVZwKXSM3tWQZklh Ddq3CBDSslWcbFxl0TBSYENRL9vh3mzRODsXn1OxX5c6D1gbV/00+0IBOj/89v7h dQdZ1pq/eySL1n8Zlf3L9fsOq9YGu+QG1ONUrzn+qWNkdiDOJlwdceDXbe4mcv19 Odp5GODLckyJSgvCPmuUZUkcJjfXU6n2B1XYfFjQCeWj4+DCNQJRMwHSquzQPrp9 -----END CERTIFICATE-----Generated at Sat Mar 28 13:40:59 2026 by rpki-client