$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/A08AFBB284F211EE89828225C4F9AE02.roa File: A08AFBB284F211EE89828225C4F9AE02.roa (raw, json) Hash identifier: vbG5EXXlgYlGq5jnBwc913dKTc7sUfrG2TC/jANpYLY= Subject key identifier: 80:46:F5:94:90:ED:F0:4B:53:36:CB:A1:21:D5:2F:CC:8B:69:B8:A3 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0753 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/A08AFBB284F211EE89828225C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:09:27 +0000 ROA not before: Wed 08 Oct 2025 22:24:24 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9790 IP address blocks: 131.203.0.0/16 maxlen: 20 131.203.29.0/24 maxlen: 24 131.203.48.0/24 maxlen: 24 131.203.49.0/24 maxlen: 24 131.203.78.0/24 maxlen: 24 131.203.79.0/24 maxlen: 24 151.210.224.0/20 maxlen: 24 158.140.224.0/20 maxlen: 24 158.140.240.0/21 maxlen: 24 158.140.248.0/22 maxlen: 24 161.29.0.0/16 maxlen: 20 161.65.0.0/19 maxlen: 20 161.65.64.0/18 maxlen: 22 161.65.128.0/19 maxlen: 19 161.65.192.0/18 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 17:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 8 22:24:24 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a480d7-0780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2d:e1:1e:1b:70:4d:ef:8b:f5:2f:cc:5c:82: 16:6e:8f:e9:a2:73:2e:6e:5f:77:6f:ff:bb:a3:d6: 1d:19:5b:cd:5c:89:fc:af:ce:cd:d9:45:c3:88:37: af:8d:6d:c4:2e:3d:05:e6:c5:9a:af:12:f2:b7:24: 8e:bd:a1:74:b2:91:70:2d:ad:19:96:29:a3:2c:e5: 6f:c2:11:b4:5a:62:e2:be:11:2d:9c:96:b4:60:ed: 2b:b0:db:df:15:00:86:90:14:53:91:5e:92:89:f8: f5:cc:1e:7a:6a:46:87:a9:10:09:49:80:b0:35:02: ca:a5:30:ac:8c:61:59:6b:85:b8:d6:7c:bb:33:30: 67:77:d2:2f:67:16:a5:b8:2a:ae:fe:f3:eb:31:83: bd:54:69:f5:61:bd:d4:7e:dd:4b:36:fc:00:c0:59: 25:7a:e5:ca:ad:2c:4d:2f:a3:78:18:8a:00:d2:58: 26:cb:28:71:d8:1b:9e:4d:d4:d1:7e:15:8d:68:21: c4:91:5d:82:36:5a:23:ff:cb:9b:38:b9:00:16:5b: 57:81:63:52:73:8d:a0:bb:da:b0:24:db:60:65:4f: 05:07:2e:ab:d1:73:ae:f0:f4:da:d0:76:d0:7a:ab: d5:12:88:4a:64:3f:43:fc:b8:a5:f0:9c:90:25:55: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:46:F5:94:90:ED:F0:4B:53:36:CB:A1:21:D5:2F:CC:8B:69:B8:A3 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/A08AFBB284F211EE89828225C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 131.203.0.0/16 151.210.224.0/20 158.140.224.0-158.140.251.255 161.29.0.0/16 161.65.0.0/19 161.65.64.0-161.65.159.255 161.65.192.0/18 Signature Algorithm: sha256WithRSAEncryption b7:3b:a7:bb:03:76:f4:4c:3f:7c:13:f9:de:d7:fe:6a:63:49: 57:d3:57:91:49:13:2b:7e:74:35:56:ba:65:03:eb:4e:6d:df: 92:21:6e:33:90:f4:18:ef:2e:16:7f:6c:02:f8:0b:e5:5a:e1: 07:81:10:40:a4:be:94:09:61:53:c1:56:36:bb:6d:72:76:76: 3d:88:66:db:c7:e2:6a:9c:e5:83:66:18:e5:e5:bf:49:ff:45: f4:3e:db:37:f2:17:f3:c7:eb:99:e0:e0:ed:70:13:4b:01:ff: 59:ed:a0:d5:e1:e1:ac:f8:8f:93:e4:79:77:90:22:42:e6:d0: fb:b1:4d:2c:83:e5:a6:20:36:13:5e:78:10:64:96:9e:11:9d: 5a:9e:37:02:f4:5d:b7:93:b7:77:a3:9e:0c:50:a6:6f:95:40: 24:b2:26:0d:12:79:4e:ae:06:80:9b:74:eb:82:b2:a6:2b:06: a8:c4:49:41:24:3f:22:ad:3a:ee:3c:cb:ce:9f:cc:6a:ca:61: 81:be:03:bf:bb:d6:5a:8e:a3:30:2c:a7:96:5c:aa:86:55:ce: cd:16:0c:d3:aa:87:e7:75:ca:36:a3:ff:20:72:a1:2f:40:02: 0e:5e:d0:7b:41:39:94:d3:bf:bb:06:4b:7e:76:6c:e5:29:7d: 7d:74:fd:33 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUxMDA4MjIyNDI0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODBkNy0wNzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqS3hHhtwTe+L9S/MXIIWbo/ponMubl93b/+7o9YdGVvNXIn8r87N2UXDiDev jW3ELj0F5sWarxLytySOvaF0spFwLa0ZlimjLOVvwhG0WmLivhEtnJa0YO0rsNvf FQCGkBRTkV6Sifj1zB56akaHqRAJSYCwNQLKpTCsjGFZa4W41ny7MzBnd9IvZxal uCqu/vPrMYO9VGn1Yb3Uft1LNvwAwFkleuXKrSxNL6N4GIoA0lgmyyhx2BueTdTR fhWNaCHEkV2CNloj/8ubOLkAFltXgWNSc42gu9qwJNtgZU8FBy6r0XOu8PTa0HbQ eqvVEohKZD9D/Lil8JyQJVUywwIDAQABo4ICkjCCAo4wHQYDVR0OBBYEFIBG9ZSQ 7fBLUzbLoSHVL8yLabijMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvQTA4QUZCQjI4 NEYyMTFFRTg5ODI4MjI1QzRGOUFFMDIucm9hMFEGCCsGAQUFBwEHAQH/BEIwQDA+ BAIAATA4AwMAg8sDBASX0uAwDAMEBZ6M4AMEAp6M+AMDAKEdAwQFoUEAMAwDBAah QUADBAWhQYADBAahQcAwDQYJKoZIhvcNAQELBQADggEBALc7p7sDdvRMP3wT+d7X /mpjSVfTV5FJEyt+dDVWumUD605t35IhbjOQ9BjvLhZ/bAL4C+Va4QeBEECkvpQJ YVPBVja7bXJ2dj2IZtvH4mqc5YNmGOXlv0n/RfQ+2zfyF/PH65ng4O1wE0sB/1nt oNXh4az4j5PkeXeQIkLm0PuxTSyD5aYgNhNeeBBklp4RnVqeNwL0XbeTt3ejngxQ pm+VQCSyJg0SeU6uBoCbdOuCsqYrBqjESUEkPyKtOu48y86fzGrKYYG+A7+71lqO ozAsp5ZcqoZVzs0WDNOqh+d1yjaj/yByoS9AAg5e0HtBOZTTv7sGS352bOUpfX10 /TM= -----END CERTIFICATE-----Generated at Fri Mar 13 04:18:17 2026 by rpki-client