$ rpki-client -vvf rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa File: DFB66DA85E9211ED83D40E65C4F9AE02.roa (raw, json) Hash identifier: ivTW0Fo1wkmwXRc6syZMFMsxEz+/+R5DvemCPq4YiTQ= Subject key identifier: 8B:A8:C0:4A:4A:E8:33:17:08:EE:87:03:23:86:4C:42:F5:22:74:88 Certificate issuer: /CN=A91684D0/serialNumber=A5E6F5C74BBCEB4009C55EEA68970349971FF63A Certificate serial: 0273 Authority key identifier: A5:E6:F5:C7:4B:BC:EB:40:09:C5:5E:EA:68:97:03:49:97:1F:F6:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:54:30 +0000 ROA not before: Wed 17 Sep 2025 02:39:32 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138162 IP address blocks: 149.234.186.0/24 maxlen: 24 149.234.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.crl rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 01:45:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91684D0, serialNumber=A5E6F5C74BBCEB4009C55EEA68970349971FF63A Validity Not Before: Sep 17 02:39:32 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a43706-9022 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b7:53:1f:dc:23:d8:02:2a:cf:3f:21:b2:c1: 84:bf:c2:da:04:65:6f:db:6d:43:66:8b:43:0a:85: 06:14:8c:9c:81:4f:c4:b6:2c:54:20:f7:5f:4f:f8: 23:0e:80:9e:b6:b5:36:3d:3c:80:c6:d9:61:3a:be: ee:d8:3d:18:fb:bb:6d:3b:39:78:64:f0:81:ab:92: a4:cf:30:62:c7:1f:7d:c5:31:d5:ef:29:8f:96:24: c6:be:10:35:dc:b3:62:72:54:82:80:89:4b:03:93: 2e:0d:6e:9d:25:45:06:b7:9e:68:43:85:c6:6c:b8: ef:c3:fd:2d:39:ed:c6:3c:25:00:4c:b0:41:49:1a: 38:29:21:8a:e6:40:ac:05:53:47:19:b0:54:e0:91: df:ee:37:4c:e6:f3:c9:a0:4e:92:f5:6d:87:a4:0a: 51:9d:88:94:d5:62:69:d3:79:e0:9b:71:1a:df:71: 3d:a3:f9:23:48:d8:0e:6e:0d:9b:fa:03:04:03:0a: 43:31:ea:1c:bb:db:1d:ee:5f:63:e1:47:23:3d:c4: 47:d0:46:8e:b4:cc:31:72:8d:39:4d:82:c5:25:5a: ac:11:f8:fc:b5:98:26:5b:b2:8f:70:b2:80:a4:83: 4b:5b:0e:94:da:53:59:95:11:bf:b4:7d:27:f9:e2: f5:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A8:C0:4A:4A:E8:33:17:08:EE:87:03:23:86:4C:42:F5:22:74:88 X509v3 Authority Key Identifier: keyid:A5:E6:F5:C7:4B:BC:EB:40:09:C5:5E:EA:68:97:03:49:97:1F:F6:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/peb1x0u860AJxV7qaJcDSZcf9jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/peb1x0u860AJxV7qaJcDSZcf9jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91684D0/D3142DB85E8F11ED8C996963C4F9AE02/DFB66DA85E9211ED83D40E65C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 149.234.186.0/24 149.234.191.0/24 Signature Algorithm: sha256WithRSAEncryption 60:c9:85:82:3f:e0:d3:c3:c1:9a:9e:9b:a0:70:69:c8:56:1e: f3:9b:8b:9c:51:37:f5:91:44:67:39:67:72:c1:62:be:2c:28: a5:a2:a3:3e:41:1a:11:e5:15:f4:4e:6b:c6:e3:ad:a4:8d:94: ac:ff:90:0d:f4:7a:b6:d3:5e:3d:c0:8f:16:c8:6c:b8:8d:aa: 00:6a:35:c1:60:ab:d7:97:6d:24:e3:6c:b9:98:5f:e6:df:c2: ed:42:b4:65:ca:e2:30:f3:e8:82:87:77:3a:ee:4d:f6:d0:74: 5f:48:4e:47:fe:aa:2b:b3:1d:e8:da:64:dd:18:61:f0:8f:cd: 87:ad:25:a1:8b:99:df:e4:35:e5:6d:81:0b:f1:ec:59:e2:cf: 44:81:a0:14:b6:c7:0c:63:f8:8a:5c:21:76:23:6f:40:dd:13: e8:c1:53:ae:2d:dd:9b:76:04:32:a2:07:9d:7a:86:5b:d7:a3: 57:83:46:cc:31:21:f2:87:a5:6e:69:88:2d:b4:1a:d1:06:b6: 51:43:73:a7:ba:4f:35:de:70:05:85:a2:90:fa:cc:3a:a7:e9: e6:82:bf:a1:f8:14:ee:eb:9a:6e:d1:92:db:01:73:bc:0b:95: 24:e4:a2:a9:eb:d1:f2:32:7b:df:50:f0:69:ec:42:aa:bb:30: 68:2d:15:25 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg0RDAxMTAvBgNVBAUTKEE1RTZGNUM3NEJCQ0VCNDAwOUM1NUVFQTY4OTcwMzQ5 OTcxRkY2M0EwHhcNMjUwOTE3MDIzOTMyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzcwNi05MDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLdTH9wj2AIqzz8hssGEv8LaBGVv221DZotDCoUGFIycgU/EtixUIPdfT/gj DoCetrU2PTyAxtlhOr7u2D0Y+7ttOzl4ZPCBq5KkzzBixx99xTHV7ymPliTGvhA1 3LNiclSCgIlLA5MuDW6dJUUGt55oQ4XGbLjvw/0tOe3GPCUATLBBSRo4KSGK5kCs BVNHGbBU4JHf7jdM5vPJoE6S9W2HpApRnYiU1WJp03ngm3Ea33E9o/kjSNgObg2b +gMEAwpDMeocu9sd7l9j4UcjPcRH0EaOtMwxco05TYLFJVqsEfj8tZgmW7KPcLKA pINLWw6U2lNZlRG/tH0n+eL1kwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIuowEpK 6DMXCO6HAyOGTEL1InSIMB8GA1UdIwQYMBaAFKXm9cdLvOtACcVe6miXA0mXH/Y6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODREMC9EMzE0MkRCODVF OEYxMUVEOEM5OTY5NjNDNEY5QUUwMi9wZWIxeDB1ODYwQUp4VjdxYUpjRFNaY2Y5 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BlYjF4MHU4NjBBSnhWN3FhSmNEU1pjZjlqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg0RDAvRDMxNDJEQjg1RThGMTFFRDhDOTk2OTYzQzRGOUFFMDIvREZCNjZEQTg1 RTkyMTFFRDgzRDQwRTY1QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAleq6AwQAleq/MA0GCSqGSIb3DQEBCwUAA4IBAQBgyYWCP+DTw8Ga npugcGnIVh7zm4ucUTf1kURnOWdywWK+LCiloqM+QRoR5RX0TmvG462kjZSs/5AN 9Hq20149wI8WyGy4jaoAajXBYKvXl20k42y5mF/m38LtQrRlyuIw8+iCh3c67k32 0HRfSE5H/qorsx3o2mTdGGHwj82HrSWhi5nf5DXlbYEL8exZ4s9EgaAUtscMY/iK XCF2I29A3RPowVOuLd2bdgQyogedeoZb16NXg0bMMSHyh6VuaYgttBrRBrZRQ3On uk813nAFhaKQ+sw6p+nmgr+h+BTu65pu0ZLbAXO8C5Uk5KKp69HyMnvfUPBp7EKq uzBoLRUl -----END CERTIFICATE-----Generated at Wed Mar 4 09:47:22 2026 by rpki-client