$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/8D5442E28A4011F093E0F94DC4F9AE02.roa File: 8D5442E28A4011F093E0F94DC4F9AE02.roa (raw, json) Hash identifier: RA/HBE67KtYqNms2jFNMu68ISNV3T86Ae6alog9HrwA= Subject key identifier: 2E:CE:7F:8D:AF:EA:87:1C:F7:42:C8:5E:4F:75:29:12:C8:2E:E9:BF Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Certificate serial: 0952 Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/8D5442E28A4011F093E0F94DC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:41:43 +0000 ROA not before: Fri 05 Sep 2025 10:10:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 21859 IP address blocks: 164.90.73.0/24 maxlen: 24 164.90.97.0/24 maxlen: 24 164.90.104.0/24 maxlen: 24 164.90.123.0/24 maxlen: 24 164.90.124.0/24 maxlen: 24 202.63.36.0/24 maxlen: 24 202.63.39.0/24 maxlen: 24 202.63.40.0/24 maxlen: 24 202.168.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 20:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2386 (0x952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Validity Not Before: Sep 5 10:10:30 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a47a56-44a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:05:23:7a:28:9c:d6:bb:4d:c7:88:90:fa:6d: 46:5d:4f:90:a9:a0:06:8f:50:f8:c3:22:15:cc:f6: 55:01:d4:0c:c8:9e:b6:8b:0e:ee:e0:58:23:0b:26: 9d:0d:a9:63:e3:f9:a6:e9:ae:ed:f0:ea:65:a8:d9: 59:30:ef:c4:31:a3:22:b7:b5:4e:c2:30:0f:e3:98: 4a:ae:6c:2d:ce:98:d8:b7:51:30:cc:83:a0:1e:f9: 56:0c:92:b2:8a:10:f4:ac:c3:2b:c1:c2:3c:64:06: 41:7f:4c:78:bb:61:f0:41:a7:f5:fb:ee:0a:bc:6a: bc:66:b2:83:61:d0:c8:0f:e1:6d:1c:61:b9:a7:2b: 33:5b:13:a3:42:37:4c:78:bf:f4:2b:be:e5:f7:82: 5c:5b:f1:f5:39:25:21:4a:8a:d7:cc:2a:e2:05:dd: 93:ff:94:0b:d1:74:b7:0a:6d:37:29:bb:d7:05:2a: 16:98:6f:43:1d:e7:8c:93:14:2a:63:4e:dc:f4:22: 2c:b7:d6:4e:32:aa:f8:b6:04:e9:57:f4:7a:e0:6e: 4a:70:bf:e6:ee:34:f1:db:f4:c6:b2:39:09:21:70: 19:40:da:da:f5:07:d2:6e:87:1e:23:ba:82:25:ae: 49:64:f5:f3:30:0a:bf:bb:24:c7:ee:44:52:0d:8c: bd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CE:7F:8D:AF:EA:87:1C:F7:42:C8:5E:4F:75:29:12:C8:2E:E9:BF X509v3 Authority Key Identifier: keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/8D5442E28A4011F093E0F94DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 164.90.73.0/24 164.90.97.0/24 164.90.104.0/24 164.90.123.0-164.90.124.255 202.63.36.0/24 202.63.39.0-202.63.40.255 202.168.111.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:fd:96:04:50:39:a0:ee:b8:06:09:80:18:fd:39:04:cd:cc: 81:cb:7a:e8:25:ca:44:b3:12:48:1b:17:92:eb:09:6d:5f:c8: 73:21:da:b5:17:e4:78:c9:ca:c1:c7:53:4e:ef:4c:2b:f9:6f: 45:a0:7e:c3:76:1b:be:a4:ae:d7:e3:41:a8:e4:e0:10:77:a9: 60:73:52:f2:d4:0b:ca:4c:9b:a1:8e:fe:17:f4:7c:83:e3:8a: ac:51:f3:ce:8e:af:7e:24:24:dc:9d:bd:bf:ce:1c:03:7e:90: 64:d1:62:a8:90:f9:87:9c:d0:22:70:3b:33:4c:81:a5:67:e7: d4:8e:b3:2d:6e:95:c5:74:3c:38:b0:6e:2c:d2:f0:51:6b:ad: 64:ce:51:a2:fa:6d:1b:46:ec:8a:c5:4b:37:16:0b:c4:0f:ea: 28:59:ad:e0:15:8a:c4:5d:f7:b7:92:0d:73:48:86:44:12:10: 29:10:cd:3d:79:3a:fb:c0:f8:b1:da:e5:80:27:f1:d1:bc:05: 80:28:8a:c5:74:03:ec:c2:3c:be:19:99:57:4d:08:d3:a0:17: 46:da:9d:42:17:a7:7b:e5:5d:30:43:90:f9:67:9a:0c:bb:cf: 45:19:f1:0d:9b:e6:e9:b2:fb:5d:a0:eb:02:ad:99:40:d0:5a: 6d:60:37:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDA3QTFDMDg1NDVDQUNDNjVFMDg4MkQ0OUU5RjJGOENG RDJCRTgyNjAwHhcNMjUwOTA1MTAxMDMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2E1Ni00NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQUjeiic1rtNx4iQ+m1GXU+QqaAGj1D4wyIVzPZVAdQMyJ62iw7u4FgjCyad Dalj4/mm6a7t8OplqNlZMO/EMaMit7VOwjAP45hKrmwtzpjYt1EwzIOgHvlWDJKy ihD0rMMrwcI8ZAZBf0x4u2HwQaf1++4KvGq8ZrKDYdDID+FtHGG5pyszWxOjQjdM eL/0K77l94JcW/H1OSUhSorXzCriBd2T/5QL0XS3Cm03KbvXBSoWmG9DHeeMkxQq Y07c9CIst9ZOMqr4tgTpV/R64G5KcL/m7jTx2/TGsjkJIXAZQNra9QfSboceI7qC Ja5JZPXzMAq/uyTH7kRSDYy9MwIDAQABo4IClDCCApAwHQYDVR0OBBYEFC7Of42v 6occ90LIXk91KRLILum/MB8GA1UdIwQYMBaAFAehwIVFysxl4IgtSeny+M/SvoJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GRjUxRTU5RUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9CNkhBaFVYS3pHWGdpQzFKNmZMNHo5Sy1n bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I2SEFoVVhLekdYZ2lDMUo2Zkw0ejlLLWdtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRkY1MUU1OUVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvOEQ1NDQyRTI4 QTQwMTFGMDkzRTBGOTREQzRGOUFFMDIucm9hMFMGCCsGAQUFBwEHAQH/BEQwQjBA BAIAATA6AwQApFpJAwQApFphAwQApFpoMAwDBACkWnsDBACkWnwDBADKPyQwDAME AMo/JwMEAMo/KAMEAMqobzANBgkqhkiG9w0BAQsFAAOCAQEAn/2WBFA5oO64BgmA GP05BM3Mgct66CXKRLMSSBsXkusJbV/IcyHatRfkeMnKwcdTTu9MK/lvRaB+w3Yb vqSu1+NBqOTgEHepYHNS8tQLykyboY7+F/R8g+OKrFHzzo6vfiQk3J29v84cA36Q ZNFiqJD5h5zQInA7M0yBpWfn1I6zLW6VxXQ8OLBuLNLwUWutZM5RovptG0bsisVL NxYLxA/qKFmt4BWKxF33t5INc0iGRBIQKRDNPXk6+8D4sdrlgCfx0bwFgCiKxXQD 7MI8vhmZV00I06AXRtqdQhene+VdMEOQ+WeaDLvPRRnxDZvm6bL7XaDrAq2ZQNBa bWA3tQ== -----END CERTIFICATE-----Generated at Thu Mar 26 04:13:55 2026 by rpki-client