$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/268ECB3ED5BD11E894FFC250C4F9AE02.roa File: 268ECB3ED5BD11E894FFC250C4F9AE02.roa (raw, json) Hash identifier: Z38B7rPVhqG6tcWO8r6+i/l0vZbjlq448NkG06qknRg= Subject key identifier: DB:90:52:16:DA:0C:22:79:9F:91:C1:E0:95:66:A8:87:3C:00:C4:0D Certificate issuer: /CN=A91ACD4D/serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Certificate serial: 16C7 Authority key identifier: 3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/268ECB3ED5BD11E894FFC250C4F9AE02.roa Signing time: Sun 01 Mar 2026 13:44:41 +0000 ROA not before: Tue 02 Sep 2025 17:05:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45509 IP address blocks: 115.187.88.0/22 maxlen: 22 115.187.88.0/24 maxlen: 24 115.187.89.0/24 maxlen: 24 115.187.90.0/24 maxlen: 24 115.187.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 16:31:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5831 (0x16c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACD4D, serialNumber=3A46FB0F40F69D5E1DB75D2851F040C19F66F22C Validity Not Before: Sep 2 17:05:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a442c9-dffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c4:e4:0a:2c:77:ce:b3:05:6b:8e:0f:68:6c: f9:91:51:c2:75:a0:a5:10:3a:86:7e:e8:e9:a5:8c: 2e:9b:54:e7:6f:63:90:a8:96:22:2e:1d:98:47:9b: 09:0d:de:8f:4b:66:8f:8a:4f:04:a4:7a:8d:ee:61: 2e:db:17:5b:5d:c4:0b:82:72:2d:9e:bd:76:7f:74: 77:04:5c:a2:76:2e:7f:d0:7b:59:18:af:18:ec:37: e3:5c:6a:9d:d7:86:aa:14:ae:05:41:79:23:b8:17: fd:00:d5:8f:85:2c:c4:49:72:9f:59:4c:d6:a7:5a: 36:25:9b:88:70:c8:e1:dd:c1:49:4c:0e:8b:b3:44: c3:88:80:3e:c2:20:d4:32:50:45:e5:92:c9:42:c4: d4:b1:67:ce:08:bc:53:95:2d:22:8b:ce:42:3e:61: 0a:28:2e:d7:a3:9d:5c:d5:e4:c4:98:68:3f:b1:46: 9b:f0:f7:cf:51:52:9d:a1:f5:d0:0a:40:5d:62:25: 55:f0:fc:29:26:48:7f:de:78:76:db:a8:a1:41:25: 27:d6:a1:df:91:d9:cf:66:ae:2a:aa:17:2d:80:6b: 9d:c1:92:81:d9:84:c1:38:4a:f7:db:7b:74:f8:e3: 4a:47:bb:89:15:44:d3:b9:9f:d5:65:39:fc:51:18: 53:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:90:52:16:DA:0C:22:79:9F:91:C1:E0:95:66:A8:87:3C:00:C4:0D X509v3 Authority Key Identifier: keyid:3A:46:FB:0F:40:F6:9D:5E:1D:B7:5D:28:51:F0:40:C1:9F:66:F2:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/Okb7D0D2nV4dt10oUfBAwZ9m8iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Okb7D0D2nV4dt10oUfBAwZ9m8iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACD4D/137D00D4160E11E8852C437EC4F9AE02/268ECB3ED5BD11E894FFC250C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 115.187.88.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:bc:cc:0f:cc:68:fd:39:84:cb:d5:d9:6f:07:16:7e:fd:62: 2c:8f:25:7f:2a:0a:4d:68:03:6d:34:02:9e:f3:aa:6d:fb:98: ed:04:c4:76:0a:43:d4:01:2c:bc:9e:f2:8d:96:07:b2:4e:fc: 82:c8:a2:d7:90:c8:c9:cc:89:46:27:c4:09:f3:66:1f:c8:0b: 5e:00:0b:a4:a7:b8:57:59:33:03:a6:b8:8a:99:62:a0:a0:76: 39:36:68:27:34:2c:2d:05:e6:28:ed:34:39:25:cf:4b:e8:d7: 9f:ed:d2:93:56:b0:04:7a:ff:b6:98:f5:c3:bf:f9:d2:d9:01: 65:20:55:d0:6c:fb:34:62:7a:6a:3a:60:83:02:0a:f4:14:d1: 71:3c:ea:3f:d9:ab:40:29:b0:8c:71:14:16:79:0f:ed:69:db: 2a:08:8a:ab:bd:19:2c:7b:b9:af:e5:b0:53:6a:98:f8:b7:22: 8e:25:3d:8b:cb:5f:74:fb:09:f0:02:13:34:54:01:5d:71:4e: e9:80:20:b8:8a:8d:9c:46:37:fe:e7:24:ed:0f:a2:f7:cc:a8: cb:d9:3d:c6:9b:8a:ec:80:75:eb:9f:f5:11:ed:ec:ed:cf:c7: b4:b1:46:5b:66:d7:f4:a4:b5:7a:9a:4b:65:4f:62:cf:2f:55: d1:bf:4b:48 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICFscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNENEQxMTAvBgNVBAUTKDNBNDZGQjBGNDBGNjlENUUxREI3NUQyODUxRjA0MEMx OUY2NkYyMkMwHhcNMjUwOTAyMTcwNTUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDJjOS1kZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcTkCix3zrMFa44PaGz5kVHCdaClEDqGfujppYwum1Tnb2OQqJYiLh2YR5sJ Dd6PS2aPik8EpHqN7mEu2xdbXcQLgnItnr12f3R3BFyidi5/0HtZGK8Y7DfjXGqd 14aqFK4FQXkjuBf9ANWPhSzESXKfWUzWp1o2JZuIcMjh3cFJTA6Ls0TDiIA+wiDU MlBF5ZLJQsTUsWfOCLxTlS0ii85CPmEKKC7Xo51c1eTEmGg/sUab8PfPUVKdofXQ CkBdYiVV8PwpJkh/3nh226ihQSUn1qHfkdnPZq4qqhctgGudwZKB2YTBOEr323t0 +ONKR7uJFUTTuZ/VZTn8URhT8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNuQUhba DCJ5n5HB4JVmqIc8AMQNMB8GA1UdIwQYMBaAFDpG+w9A9p1eHbddKFHwQMGfZvIs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0Q0RC8xMzdEMDBENDE2 MEUxMUU4ODUyQzQzN0VDNEY5QUUwMi9Pa2I3RDBEMm5WNGR0MTBvVWZCQXdaOW04 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rYjdEMEQyblY0ZHQxMG9VZkJBd1o5bThpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNENEQvMTM3RDAwRDQxNjBFMTFFODg1MkM0MzdFQzRGOUFFMDIvMjY4RUNCM0VE NUJEMTFFODk0RkZDMjUwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCc7tYMA0GCSqGSIb3DQEBCwUAA4IBAQALvMwPzGj9OYTL1dlvBxZ+ /WIsjyV/KgpNaANtNAKe86pt+5jtBMR2CkPUASy8nvKNlgeyTvyCyKLXkMjJzIlG J8QJ82YfyAteAAukp7hXWTMDpriKmWKgoHY5NmgnNCwtBeYo7TQ5Jc9L6Nef7dKT VrAEev+2mPXDv/nS2QFlIFXQbPs0YnpqOmCDAgr0FNFxPOo/2atAKbCMcRQWeQ/t adsqCIqrvRkse7mv5bBTapj4tyKOJT2Ly190+wnwAhM0VAFdcU7pgCC4io2cRjf+ 5yTtD6L3zKjL2T3Gm4rsgHXrn/UR7eztz8e0sUZbZtf0pLV6mktlT2LPL1XRv0tI -----END CERTIFICATE-----Generated at Sat Mar 7 14:15:21 2026 by rpki-client