$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F86A2F7680FA11ED9B35954DC4F9AE02.roa File: F86A2F7680FA11ED9B35954DC4F9AE02.roa (raw, json) Hash identifier: 4SMwt+gACInnRK5OGYg5pUcdCWuk0YqF9HQ/Xt+IzcY= Subject key identifier: 0F:92:37:34:88:80:D7:DE:6F:8E:E3:52:02:66:32:D5:AC:12:94:F6 Certificate issuer: /CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Certificate serial: 02BF Authority key identifier: 3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F86A2F7680FA11ED9B35954DC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:28:48 +0000 ROA not before: Sat 27 Sep 2025 02:30:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58611 IP address blocks: 138.80.0.0/16 maxlen: 16 138.80.0.0/24 maxlen: 24 138.80.11.0/24 maxlen: 24 138.80.144.0/20 maxlen: 20 138.80.208.0/21 maxlen: 21 138.80.216.0/22 maxlen: 22 138.80.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD, serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Validity Not Before: Sep 27 02:30:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44d20-6dc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:2e:8d:f9:24:6b:c9:3e:34:6d:af:94:99: a6:f5:4a:13:c0:32:24:43:7f:57:f7:46:86:e4:9e: 1e:cf:d5:47:75:28:93:0f:8e:52:1e:bb:56:28:c5: ad:28:f6:af:d0:3e:29:5c:7e:18:dc:1d:8f:13:f9: c3:ba:4a:41:c0:70:25:cc:be:a3:87:45:27:61:8f: 03:c3:2b:86:10:cf:7c:7d:c3:e6:c8:3f:b6:cd:cd: de:13:60:6e:bf:dd:07:eb:e9:ca:15:e1:8f:7e:3b: 15:a5:3a:66:b7:13:f7:06:5e:28:07:0e:37:e5:fa: 46:0e:50:25:c6:4d:22:5d:0c:e3:49:18:9f:5b:e8: a6:2f:e5:4a:8d:e4:ab:ac:44:71:5a:9e:00:3b:9e: 04:ba:a4:a5:79:fc:07:18:6a:00:cc:77:f7:9c:7d: cd:2a:eb:02:f6:c2:d7:58:f9:01:20:2f:ed:ec:f5: 62:9f:9f:65:1e:f1:0c:7f:ae:dd:d2:12:3b:b7:85: 23:5a:1d:9d:c6:98:05:f6:50:8a:f2:6e:04:eb:2f: 70:60:e1:74:7b:d7:3f:7f:f2:6d:ad:0d:28:ff:03: 94:ce:00:9d:db:90:b3:df:16:89:5b:4f:01:82:9b: 5e:ef:6f:30:8f:60:26:93:d9:df:a4:02:f8:3e:08: 19:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:92:37:34:88:80:D7:DE:6F:8E:E3:52:02:66:32:D5:AC:12:94:F6 X509v3 Authority Key Identifier: keyid:3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F86A2F7680FA11ED9B35954DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 138.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 56:13:b9:ec:e7:3a:4d:c6:51:de:e7:d5:52:7b:97:cc:77:1e: 6c:5f:65:ff:e8:f6:3e:0d:16:2c:58:50:80:7e:91:5d:73:df: bb:b2:72:60:31:1b:6c:60:7f:89:6e:1d:50:ee:d7:30:8e:8d: 04:9b:56:2d:95:b0:5b:2f:bd:4f:66:fd:8e:3c:47:c3:05:fe: 4e:c8:5e:05:f8:1b:5b:46:6d:e0:24:02:f1:37:e5:f6:40:ce: fc:c0:0c:13:b4:51:80:0f:cf:65:c8:ce:4f:42:8e:24:6d:4d: 58:da:73:74:40:01:0d:67:06:1c:3e:ed:7b:d1:09:9b:90:0f: 0c:18:5a:c8:20:6e:0b:f6:cf:6a:02:14:2e:37:8d:4c:6d:15: ec:2d:43:9e:de:6b:41:5d:ac:19:2f:d7:dd:35:6a:2e:ea:38: b7:df:bd:18:e8:83:7a:39:b5:df:d5:ee:f3:be:7a:05:bd:5b: f8:da:95:98:44:05:95:2b:2a:9e:66:a5:2c:dc:02:95:de:71: 53:77:a7:68:91:1c:35:e2:5a:ff:d1:14:c5:7c:20:57:98:1b: 19:1b:85:6c:0a:4a:ff:db:cb:19:78:c3:c9:30:61:c0:85:bc: 3a:10:fa:71:9f:24:39:be:cd:20:b4:b5:b4:07:5c:72:58:c9: 7f:67:73:ae -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKDNCODc2OTBFRjQwNTU2NzM4M0I2RjcyRkREMzAxMTYw Q0U4MjFGMkIwHhcNMjUwOTI3MDIzMDM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGQyMC02ZGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWoujfkka8k+NG2vlJmm9UoTwDIkQ39X90aG5J4ez9VHdSiTD45SHrtWKMWt KPav0D4pXH4Y3B2PE/nDukpBwHAlzL6jh0UnYY8DwyuGEM98fcPmyD+2zc3eE2Bu v90H6+nKFeGPfjsVpTpmtxP3Bl4oBw435fpGDlAlxk0iXQzjSRifW+imL+VKjeSr rERxWp4AO54EuqSlefwHGGoAzHf3nH3NKusC9sLXWPkBIC/t7PVin59lHvEMf67d 0hI7t4UjWh2dxpgF9lCK8m4E6y9wYOF0e9c/f/JtrQ0o/wOUzgCd25Cz3xaJW08B gpte728wj2Amk9nfpAL4PggZ0QIDAQABo4ICXzCCAlswHQYDVR0OBBYEFA+SNzSI gNfeb47jUgJmMtWsEpT2MB8GA1UdIwQYMBaAFDuHaQ70BVZzg7b3L90wEWDOgh8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80M0E1MTFBRTJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZuT0R0dmN2M1RBUllNNkNI eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL080ZHBEdlFGVm5PRHR2Y3YzVEFSWU02Q0h5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxQUQvNDNBNTExQUUyQ0JFMTFFRDk5ODI0QjRDQzRGOUFFMDIvRjg2QTJGNzY4 MEZBMTFFRDlCMzU5NTREQzRGOUFFMDIucm9hMB4GCCsGAQUFBwEHAQH/BA8wDTAL BAIAATAFAwMAilAwDQYJKoZIhvcNAQELBQADggEBAFYTueznOk3GUd7n1VJ7l8x3 HmxfZf/o9j4NFixYUIB+kV1z37uycmAxG2xgf4luHVDu1zCOjQSbVi2VsFsvvU9m /Y48R8MF/k7IXgX4G1tGbeAkAvE35fZAzvzADBO0UYAPz2XIzk9CjiRtTVjac3RA AQ1nBhw+7XvRCZuQDwwYWsggbgv2z2oCFC43jUxtFewtQ57ea0FdrBkv1901ai7q OLffvRjog3o5td/V7vO+egW9W/jalZhEBZUrKp5mpSzcApXecVN3p2iRHDXiWv/R FMV8IFeYGxkbhWwKSv/byxl4w8kwYcCFvDoQ+nGfJDm+zSC0tbQHXHJYyX9nc64= -----END CERTIFICATE-----Generated at Thu Mar 26 18:45:32 2026 by rpki-client