$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa File: 1229795E652C11EB9B039023C4F9AE02.roa (raw, json) Hash identifier: rMEPct0/XVC8TEo39bfA4k3rkfghG8GcbNnIjivqw1A= Subject key identifier: 68:6A:CE:16:75:8B:24:03:FF:A9:D4:DD:86:97:72:C3:C5:06:2E:3D Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 0878 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa Signing time: Thu 12 Feb 2026 20:17:43 +0000 ROA not before: Thu 12 Feb 2026 20:17:43 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138423 IP address blocks: 209.150.144.0/23 maxlen: 24 209.150.146.0/23 maxlen: 24 209.150.148.0/22 maxlen: 24 209.150.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 20:11:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Feb 12 20:17:43 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=698e3567-6339 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ab:b0:1a:8a:66:b7:60:9f:de:81:6c:75:7d: ed:1c:67:f3:23:b6:07:61:13:f3:29:47:2c:f2:84: 00:95:5c:98:85:3f:b3:17:31:c8:f8:43:39:50:15: 66:d8:b2:a3:b2:b9:d9:7d:98:1c:ac:b2:83:a0:a2: e2:81:c6:5e:fd:5f:13:6b:96:21:ca:72:6e:88:f5: 83:27:6b:f3:85:a2:34:24:d4:3b:bd:ae:03:5b:43: c1:6c:91:70:00:3e:95:86:cc:9e:63:9f:29:da:58: f5:12:c0:22:4e:38:f4:92:18:8e:c4:e2:13:c0:85: 64:ce:65:ac:d5:c0:5b:6c:f4:56:63:e5:24:bd:5f: ad:16:6e:88:b3:f6:40:24:e6:f2:52:37:a0:c5:96: 85:ac:1b:da:fb:9e:fa:57:8e:a9:30:33:79:d6:ac: 43:7b:9d:ed:c4:0a:9e:80:c8:35:ee:3d:c1:a2:3d: aa:11:e8:3a:2f:b8:97:6b:f3:cb:56:39:31:97:4d: b0:fe:dd:34:da:4e:20:15:54:00:8d:9a:3e:53:67: 00:7a:d3:0a:cc:d3:13:ae:45:26:ff:b6:c2:c2:cd: 97:d3:3f:05:98:96:b8:bc:9d:19:dc:55:82:d7:e9: 28:bc:c6:8f:ad:52:f9:19:d6:e9:60:f1:ad:62:f5: 94:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6A:CE:16:75:8B:24:03:FF:A9:D4:DD:86:97:72:C3:C5:06:2E:3D X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/1229795E652C11EB9B039023C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 209.150.144.0/21 209.150.159.0/24 Signature Algorithm: sha256WithRSAEncryption 41:b2:60:55:99:b1:3b:bd:aa:df:a0:70:1e:07:38:bd:7f:26: 8f:10:30:37:b7:1b:bf:10:08:a2:5d:7c:23:5c:65:51:76:1c: 34:93:ec:0f:fb:4a:c9:44:87:03:05:8d:ab:6b:03:64:2c:77: 23:a2:85:c0:69:28:34:a8:61:ba:09:6d:c8:60:a3:2c:5d:23: 39:f8:fd:0b:b3:ce:70:09:8a:49:e2:5c:8a:09:01:d2:b9:77: 9b:d7:08:4f:bc:50:64:1e:57:13:41:ea:56:4e:97:e3:5d:57: a8:e5:54:38:9c:83:b2:e9:61:fc:88:f2:14:0f:41:fa:77:f3: 7a:0b:a5:f2:42:11:92:aa:df:e7:e7:cb:4b:ab:59:41:bd:a4: 6c:0e:44:bd:23:ac:7b:76:4b:8c:72:87:da:65:82:eb:41:dd: 95:3c:3f:b9:2e:8a:a8:ef:3d:94:0b:9c:bf:09:d1:ec:64:ab: c6:3d:7c:1d:28:43:88:20:03:82:3c:44:13:f5:63:9a:5c:22: 14:c9:b8:6f:7f:d8:a3:47:59:06:1c:c0:9b:9a:34:d4:97:7c: 3b:9e:fb:7a:57:11:60:9c:91:f5:e4:6e:cb:03:64:c8:3c:0c: c5:43:3b:4f:07:ea:a5:54:aa:75:87:75:23:ec:70:23:47:90: db:65:61:4d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjYwMjEyMjAxNzQzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OThlMzU2Ny02MzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoquwGopmt2Cf3oFsdX3tHGfzI7YHYRPzKUcs8oQAlVyYhT+zFzHI+EM5UBVm 2LKjsrnZfZgcrLKDoKLigcZe/V8Ta5YhynJuiPWDJ2vzhaI0JNQ7va4DW0PBbJFw AD6VhsyeY58p2lj1EsAiTjj0khiOxOITwIVkzmWs1cBbbPRWY+UkvV+tFm6Is/ZA JObyUjegxZaFrBva+576V46pMDN51qxDe53txAqegMg17j3Boj2qEeg6L7iXa/PL Vjkxl02w/t002k4gFVQAjZo+U2cAetMKzNMTrkUm/7bCws2X0z8FmJa4vJ0Z3FWC 1+kovMaPrVL5GdbpYPGtYvWUfwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGhqzhZ1 iyQD/6nU3YaXcsPFBi49MB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI5OEQvMkNCMTFGQ0VGMUE2MTFFQUI5NUMwRTJGQzRGOUFFMDIvMTIyOTc5NUU2 NTJDMTFFQjlCMDM5MDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPRlpADBADRlp8wDQYJKoZIhvcNAQELBQADggEBAEGyYFWZ sTu9qt+gcB4HOL1/Jo8QMDe3G78QCKJdfCNcZVF2HDST7A/7SslEhwMFjatrA2Qs dyOihcBpKDSoYboJbchgoyxdIzn4/QuzznAJikniXIoJAdK5d5vXCE+8UGQeVxNB 6lZOl+NdV6jlVDicg7LpYfyI8hQPQfp383oLpfJCEZKq3+fny0urWUG9pGwORL0j rHt2S4xyh9plgutB3ZU8P7kuiqjvPZQLnL8J0exkq8Y9fB0oQ4ggA4I8RBP1Y5pc IhTJuG9/2KNHWQYcwJuaNNSXfDue+3pXEWCckfXkbssDZMg8DMVDO08H6qVUqnWH dSPscCNHkNtlYU0= -----END CERTIFICATE-----Generated at Fri Feb 20 01:39:37 2026 by rpki-client