$ rpki-client -vvf rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa File: AF08CB4CC77511EC81DCA645C4F9AE02.roa (raw, json) Hash identifier: Le3omTq6AVf81/vxDrqQySp0WQ9psZvV5ImOZQ8qwfY= Subject key identifier: 69:40:E1:34:D1:AC:45:10:DC:4E:B4:C2:7D:1F:C8:C2:55:E4:A7:79 Certificate issuer: /CN=A91975CC/serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Certificate serial: 03E8 Authority key identifier: B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa Signing time: Thu 29 Jan 2026 00:20:23 +0000 ROA not before: Thu 29 Jan 2026 00:20:23 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134697 IP address blocks: 87.121.72.0/23 maxlen: 24 87.121.74.0/23 maxlen: 24 87.121.92.0/23 maxlen: 24 87.121.94.0/23 maxlen: 24 87.121.248.0/23 maxlen: 24 87.121.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 23:44:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1000 (0x3e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975CC, serialNumber=B8A22277ECC6B10A3D202AA390CCA7FBB92A46E0 Validity Not Before: Jan 29 00:20:23 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697aa7c7-2cd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:4b:70:62:b3:45:c7:51:39:94:51:18:7e:40: 76:41:b7:1a:be:64:e0:db:18:7f:f3:ce:5c:69:88: 0f:92:22:0b:ef:83:4b:14:dc:d7:33:ff:56:65:f1: 9b:9b:c0:77:4e:32:30:f3:9a:fc:21:b2:93:0d:07: cf:6b:b9:8d:ac:29:48:4d:f1:a2:43:ed:6a:90:39: 80:dd:8c:62:4e:dc:8b:82:cb:d0:e0:38:bf:2d:cd: c7:50:66:31:9f:b1:3d:7e:4d:7d:9d:ac:72:8d:e6: c1:64:07:7b:50:d6:5b:3f:40:74:a6:88:1b:1c:85: f4:45:12:c8:8f:52:91:6a:cf:10:77:13:3b:ef:10: 2b:33:70:24:81:36:6b:4e:d1:1d:85:67:22:35:9b: 87:15:24:a7:db:cc:af:94:e6:48:0f:2e:cd:2b:be: ad:85:d8:35:5e:17:2a:b1:38:31:4d:b4:10:7e:05: 61:b6:3a:73:f1:6e:8e:39:3f:57:d4:40:cd:26:d3: d2:4a:da:c6:3f:71:be:72:20:34:00:f2:4c:63:12: 99:37:9f:37:1a:8a:f3:13:74:e9:75:9c:ee:ce:aa: be:4b:73:e0:a8:bb:7c:ab:31:0a:e3:f7:45:e4:72: 7a:0a:46:f0:1a:5e:b9:25:01:18:cd:7c:7d:3c:66: ca:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:40:E1:34:D1:AC:45:10:DC:4E:B4:C2:7D:1F:C8:C2:55:E4:A7:79 X509v3 Authority Key Identifier: keyid:B8:A2:22:77:EC:C6:B1:0A:3D:20:2A:A3:90:CC:A7:FB:B9:2A:46:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/uKIid-zGsQo9ICqjkMyn-7kqRuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uKIid-zGsQo9ICqjkMyn-7kqRuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975CC/13E7D72EAFE311ECA2CB066DC4F9AE02/AF08CB4CC77511EC81DCA645C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 87.121.72.0/22 87.121.92.0/22 87.121.248.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:7f:75:4f:52:b8:3d:b4:c5:99:c4:41:91:36:8e:39:6e:50: 40:62:b9:d5:da:9d:7a:a7:2e:09:cd:06:1a:35:88:d6:a7:bc: 8f:13:62:69:8c:e0:29:1d:3f:37:80:0f:5b:29:42:5d:19:e5: c3:46:48:7e:89:e6:a5:dd:ed:87:ac:fe:5e:5a:53:f4:7e:6e: bf:35:96:1c:46:db:fe:ed:e6:00:f1:4d:3f:5f:4f:0c:0b:c0: 9f:63:d8:af:c2:f5:c5:10:d9:a6:b8:08:30:0d:4c:27:79:db: d0:80:43:2b:c2:df:9e:fd:1f:e0:ef:6f:01:08:7a:40:07:12: e4:8d:66:fe:31:cc:b6:29:57:39:c6:20:e2:01:6b:ee:fd:13: 5a:8a:90:45:b8:e7:5a:54:3c:b3:24:1f:24:a9:70:18:6f:ca: 50:7c:11:e2:b2:84:55:af:86:fd:95:59:30:a0:6e:1f:21:2b: 4a:bb:cf:81:1a:c8:e6:5b:b4:8f:23:fd:d4:ed:e9:54:aa:83: a8:14:7f:86:9d:4b:39:af:5e:e7:a0:35:e4:06:a6:e9:cf:54: e5:74:59:05:50:26:a1:d9:76:aa:fd:4d:34:9b:3a:40:b1:25: 49:27:f9:85:2c:f6:a7:45:72:7e:53:0e:e4:a2:2a:3a:b9:f3: 67:3a:ce:63 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx OTc1Q0MxMTAvBgNVBAUTKEI4QTIyMjc3RUNDNkIxMEEzRDIwMkFBMzkwQ0NBN0ZC QjkyQTQ2RTAwHhcNMjYwMTI5MDAyMDIzWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhYTdjNy0yY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEtwYrNFx1E5lFEYfkB2QbcavmTg2xh/885caYgPkiIL74NLFNzXM/9WZfGb m8B3TjIw85r8IbKTDQfPa7mNrClITfGiQ+1qkDmA3YxiTtyLgsvQ4Di/Lc3HUGYx n7E9fk19naxyjebBZAd7UNZbP0B0pogbHIX0RRLIj1KRas8QdxM77xArM3AkgTZr TtEdhWciNZuHFSSn28yvlOZIDy7NK76thdg1XhcqsTgxTbQQfgVhtjpz8W6OOT9X 1EDNJtPSStrGP3G+ciA0APJMYxKZN583GorzE3TpdZzuzqq+S3PgqLt8qzEK4/dF 5HJ6CkbwGl65JQEYzXx9PGbKLQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGlA4TTR rEUQ3E60wn0fyMJV5Kd5MB8GA1UdIwQYMBaAFLiiInfsxrEKPSAqo5DMp/u5Kkbg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzVDQy8xM0U3RDcyRUFG RTMxMUVDQTJDQjA2NkRDNEY5QUUwMi91S0lpZC16R3NRbzlJQ3Fqa015bi03a3FS dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3VLSWlkLXpHc1FvOUlDcWprTXluLTdrcVJ1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTc1Q0MvMTNFN0Q3MkVBRkUzMTFFQ0EyQ0IwNjZEQzRGOUFFMDIvQUYwOENCNEND Nzc1MTFFQzgxRENBNjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJXeUgDBAJXeVwDBAJXefgwDQYJKoZIhvcNAQELBQADggEB AA1/dU9SuD20xZnEQZE2jjluUEBiudXanXqnLgnNBho1iNanvI8TYmmM4CkdPzeA D1spQl0Z5cNGSH6J5qXd7Yes/l5aU/R+br81lhxG2/7t5gDxTT9fTwwLwJ9j2K/C 9cUQ2aa4CDANTCd529CAQyvC3579H+DvbwEIekAHEuSNZv4xzLYpVznGIOIBa+79 E1qKkEW451pUPLMkHySpcBhvylB8EeKyhFWvhv2VWTCgbh8hK0q7z4EayOZbtI8j /dTt6VSqg6gUf4adSzmvXuegNeQGpunPVOV0WQVQJqHZdqr9TTSbOkCxJUkn+YUs 9qdFcn5TDuSiKjq582c6zmM= -----END CERTIFICATE-----Generated at Fri Feb 20 03:49:55 2026 by rpki-client