$ rpki-client -vvf rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa File: DB5AB9A0195A11F081485C3AC4F9AE02.roa (raw, json) Hash identifier: e3IUt6dl6guwP9nJe6oE5qYPGQovGgWs0chwS/yNfec= Subject key identifier: 85:F8:D0:D4:84:11:96:AF:B1:00:D6:6D:6D:27:20:5A:D8:26:82:07 Certificate issuer: /CN=A91F264C/serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Certificate serial: BB Authority key identifier: EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:49:36 +0000 ROA not before: Tue 04 Nov 2025 17:38:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136396 IP address blocks: 163.223.220.0/23 maxlen: 24 2001:df5:4d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:14:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F264C, serialNumber=EFA423BAF5BFD189316E65031E8CEAF5A3FFA14B Validity Not Before: Nov 4 17:38:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5956f-b724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:29:de:f1:3a:c2:88:f8:bd:b9:0b:15:1d:78: cd:39:97:81:4e:44:b4:25:45:e8:ac:d6:d7:79:65: c6:d0:f4:56:a5:57:fd:a7:be:b1:21:20:aa:0c:85: 1e:cb:4f:70:0c:f1:58:64:75:c4:65:fb:4f:2b:09: 9e:b0:76:ab:44:ba:d6:2e:e6:57:c4:98:f2:3e:6c: 88:52:89:9c:f3:87:1d:83:fa:9d:39:03:99:6b:60: f4:1e:4e:24:f0:58:f0:5d:1e:04:6c:4a:5f:34:5c: 16:af:ef:c6:9e:ed:8a:6c:fa:14:14:6b:b0:ef:65: c3:87:0e:06:ac:35:3a:5d:50:fe:2f:a0:10:ec:fe: d8:53:fd:64:3f:6f:98:a6:72:a1:35:77:8a:bd:73: b8:29:8c:fe:0f:05:68:98:2b:53:8e:eb:48:9c:85: 13:c4:1f:cf:db:33:99:33:ff:4c:a8:33:c0:30:b6: 6d:e2:fd:69:01:44:df:16:93:1f:30:d8:b7:f4:73: ab:f3:72:8f:3a:a6:d9:c8:e2:8a:63:14:48:9d:70: 53:c2:19:5d:b5:07:4b:5b:a1:bd:9d:d0:7e:19:d4: 70:ae:e9:cc:a8:c0:a3:14:e7:3b:79:61:12:93:30: 7a:af:84:6b:bd:50:1d:49:18:c1:68:48:ba:8b:87: a2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F8:D0:D4:84:11:96:AF:B1:00:D6:6D:6D:27:20:5A:D8:26:82:07 X509v3 Authority Key Identifier: keyid:EF:A4:23:BA:F5:BF:D1:89:31:6E:65:03:1E:8C:EA:F5:A3:FF:A1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/76QjuvW_0YkxbmUDHozq9aP_oUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/76QjuvW_0YkxbmUDHozq9aP_oUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F264C/241AC7BE0E1811F0B69B8B38C4F9AE02/DB5AB9A0195A11F081485C3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 163.223.220.0/23 IPv6: 2001:df5:4d40::/48 Signature Algorithm: sha256WithRSAEncryption a9:8f:a8:71:68:f3:84:84:30:d8:f0:ce:92:99:06:b2:f1:94: f9:25:14:42:fb:ca:7f:75:73:bb:ee:35:7e:30:61:e7:ba:c5: c2:02:0a:8d:70:e2:b2:6b:33:7f:49:13:ea:04:c9:7c:41:1c: 93:dd:3f:4a:50:2e:c6:62:8a:a3:b9:b0:bf:18:f3:8d:6e:5d: 51:1a:03:0e:e8:a5:a5:19:50:26:e9:2c:7b:da:09:0b:0f:f5: 04:7a:72:9f:a8:76:46:c1:5f:dd:1f:94:98:b5:00:23:57:80: ab:31:91:c5:bc:68:7b:04:c8:59:fd:d7:0c:ba:65:fb:f4:9b: 96:73:db:fc:a9:58:33:5a:7e:be:fd:82:d1:8b:4d:cd:ef:fe: c0:82:87:4f:34:36:63:7b:e8:7f:82:e1:6d:c5:21:8a:2d:d1: 9c:81:e8:cd:11:dc:35:0f:c1:67:ac:ad:88:a9:db:f5:bc:c2: 60:4b:d2:d1:6d:2d:3e:77:f6:0a:99:0f:bb:8b:a9:52:0d:02: 44:83:45:5c:17:ee:d6:ed:7a:7c:3a:56:64:3a:44:4e:b0:dd: 42:69:3e:61:2f:1b:8f:6b:2c:e0:f6:92:dc:27:e0:85:a8:33: 64:55:41:d0:92:d7:e9:3e:9c:d4:1d:2f:95:27:64:c4:86:08: cc:a6:58:a7 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI2NEMxMTAvBgNVBAUTKEVGQTQyM0JBRjVCRkQxODkzMTZFNjUwMzFFOENFQUY1 QTNGRkExNEIwHhcNMjUxMTA0MTczODA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTU2Zi1iNzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApine8TrCiPi9uQsVHXjNOZeBTkS0JUXorNbXeWXG0PRWpVf9p76xISCqDIUe y09wDPFYZHXEZftPKwmesHarRLrWLuZXxJjyPmyIUomc84cdg/qdOQOZa2D0Hk4k 8FjwXR4EbEpfNFwWr+/Gnu2KbPoUFGuw72XDhw4GrDU6XVD+L6AQ7P7YU/1kP2+Y pnKhNXeKvXO4KYz+DwVomCtTjutInIUTxB/P2zOZM/9MqDPAMLZt4v1pAUTfFpMf MNi39HOr83KPOqbZyOKKYxRInXBTwhldtQdLW6G9ndB+GdRwrunMqMCjFOc7eWES kzB6r4RrvVAdSRjBaEi6i4einQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFIX40NSE EZavsQDWbW0nIFrYJoIHMB8GA1UdIwQYMBaAFO+kI7r1v9GJMW5lAx6M6vWj/6FL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjY0Qy8yNDFBQzdCRTBF MTgxMUYwQjY5QjhCMzhDNEY5QUUwMi83NlFqdXZXXzBZa3hibVVESG96cTlhUF9v VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc2UWp1dldfMFlreGJtVURIb3pxOWFQX29Vcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI2NEMvMjQxQUM3QkUwRTE4MTFGMEI2OUI4QjM4QzRGOUFFMDIvREI1QUI5QTAx OTVBMTFGMDgxNDg1QzNBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBo9/cMA8EAgACMAkDBwAgAQ31TUAwDQYJKoZIhvcNAQELBQADggEB AKmPqHFo84SEMNjwzpKZBrLxlPklFEL7yn91c7vuNX4wYee6xcICCo1w4rJrM39J E+oEyXxBHJPdP0pQLsZiiqO5sL8Y841uXVEaAw7opaUZUCbpLHvaCQsP9QR6cp+o dkbBX90flJi1ACNXgKsxkcW8aHsEyFn91wy6Zfv0m5Zz2/ypWDNafr79gtGLTc3v /sCCh080NmN76H+C4W3FIYot0ZyB6M0R3DUPwWesrYip2/W8wmBL0tFtLT539gqZ D7uLqVINAkSDRVwX7tbtenw6VmQ6RE6w3UJpPmEvG49rLOD2ktwn4IWoM2RVQdCS 1+k+nNQdL5UnZMSGCMymWKc= -----END CERTIFICATE-----Generated at Thu Mar 26 14:51:46 2026 by rpki-client