$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/D21111C2190011F187AE9EA5203D8C67.roa File: D21111C2190011F187AE9EA5203D8C67.roa (raw, json) Hash identifier: uasely3IYLJpFPZrjUlU1e7imRXTWBwwzQQrrOVlt1g= Subject key identifier: D2:B1:E0:6F:EE:7F:7B:0A:35:66:60:3C:17:08:72:CD:C2:13:A3:18 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 033C Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/D21111C2190011F187AE9EA5203D8C67.roa Signing time: Fri 13 Mar 2026 01:52:10 +0000 ROA not before: Fri 13 Mar 2026 01:52:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45867 IP address blocks: 140.168.64.0/18 maxlen: 21 140.168.66.0/24 maxlen: 24 140.168.67.0/24 maxlen: 24 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.80.0/24 maxlen: 24 140.168.81.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.128.0/18 maxlen: 21 140.168.135.0/24 maxlen: 24 140.168.138.0/24 maxlen: 24 140.168.139.0/24 maxlen: 24 140.168.166.0/24 maxlen: 24 140.168.234.0/23 maxlen: 24 140.168.236.0/22 maxlen: 24 140.168.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 01:04:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Mar 13 01:52:10 2026 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69b36dca-6ae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7e:63:e1:fd:96:9c:1c:46:72:01:26:98:db: 3a:1f:44:39:1a:cf:8a:d1:f6:18:b6:d4:98:82:5a: 1c:88:fc:18:45:94:74:26:2b:1d:00:bd:e6:5b:b5: ec:c9:9e:dc:7a:e5:83:e5:f3:5b:14:3d:38:d0:62: 74:1a:1f:32:01:cc:cd:31:19:bb:33:f6:30:72:31: a5:f7:f8:50:50:5f:9e:fb:a8:4f:0a:2f:59:c9:9c: bf:5a:c5:3c:63:39:a1:21:c2:74:04:65:fb:51:96: e9:b9:3e:a0:70:43:cd:cb:2b:64:30:d3:c6:be:66: a1:45:89:9d:a3:e7:56:e3:77:d6:71:2c:19:c8:82: 4a:f1:76:40:83:9a:51:8f:45:b5:5a:41:59:a7:8a: d2:b6:fd:66:eb:a8:05:5f:2f:14:75:90:85:c7:ae: 51:e8:2b:d9:c7:37:21:71:d9:35:f9:c9:6a:ec:23: 66:1b:15:ff:35:e6:e0:35:44:0f:e1:f1:b5:f1:14: b9:b2:40:5f:b1:3a:ab:ef:ad:35:55:f2:f8:57:1c: b4:1a:b2:5a:a2:10:0f:99:5d:3f:29:15:19:7b:23: 86:88:54:37:a3:87:5d:d1:bb:d0:62:eb:d7:6c:46: ef:3a:4c:20:63:58:b7:38:ba:86:c4:15:7a:33:59: 6d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B1:E0:6F:EE:7F:7B:0A:35:66:60:3C:17:08:72:CD:C2:13:A3:18 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/D21111C2190011F187AE9EA5203D8C67.roa sbgp-ipAddrBlock: critical IPv4: 140.168.64.0-140.168.191.255 140.168.234.0-140.168.239.255 140.168.250.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:62:7c:9b:a2:1d:51:9b:e0:a7:68:26:ab:bb:e3:8c:c5:68: 4f:3c:31:ca:e9:86:22:2b:fd:f4:a2:e7:ea:1a:9c:12:2f:b4: 46:a8:b4:b1:fe:ec:ac:ce:7a:c8:c4:bf:e1:2e:dd:eb:78:81: 21:10:c8:eb:15:d4:33:80:2d:14:3a:f1:c2:1b:db:ef:02:c5: 11:df:18:99:35:31:ae:7b:56:39:5b:36:45:77:e6:50:d4:1e: 89:96:30:10:b1:59:cf:ea:de:98:6d:c2:1c:75:bb:7b:c6:24: d7:0f:04:1e:6a:fc:82:9a:a4:0c:85:f2:df:8a:1c:33:04:61: 9a:84:87:13:4e:b1:0c:ee:ab:9c:c7:f8:91:4c:65:29:53:3f: bd:c7:0f:d8:88:71:96:61:6e:e4:86:b5:c6:d2:88:e4:65:7a: c3:65:b4:77:f1:77:a5:44:70:b6:d1:84:f1:97:0c:d3:ad:94: ba:48:49:84:60:b8:0a:30:de:e1:6d:27:9a:8b:c3:ac:69:58: e6:3d:74:c4:15:90:3f:31:6c:8b:69:af:2c:4e:3e:64:dd:1d: 1a:1d:90:ff:03:45:c6:6e:4e:5a:19:21:66:26:7d:29:1e:68: 4a:b6:d9:b2:db:1b:89:80:74:0b:98:e5:a8:ef:94:d1:1b:a4: 62:66:ef:10 -----BEGIN CERTIFICATE----- MIIFWDCCBECgAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjYwMzEzMDE1MjEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWIzNmRjYS02YWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0H5j4f2WnBxGcgEmmNs6H0Q5Gs+K0fYYttSYglociPwYRZR0JisdAL3mW7Xs yZ7ceuWD5fNbFD040GJ0Gh8yAczNMRm7M/YwcjGl9/hQUF+e+6hPCi9ZyZy/WsU8 YzmhIcJ0BGX7UZbpuT6gcEPNyytkMNPGvmahRYmdo+dW43fWcSwZyIJK8XZAg5pR j0W1WkFZp4rStv1m66gFXy8UdZCFx65R6CvZxzchcdk1+clq7CNmGxX/NebgNUQP 4fG18RS5skBfsTqr7601VfL4Vxy0GrJaohAPmV0/KRUZeyOGiFQ3o4dd0bvQYuvX bEbvOkwgY1i3OLqGxBV6M1lt2wIDAQABo4ICfDCCAngwHQYDVR0OBBYEFNKx4G/u f3sKNWZgPBcIcs3CE6MYMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvRDIxMTExQzIx OTAwMTFGMTg3QUU5RUE1MjAzRDhDNjcucm9hMDsGCCsGAQUFBwEHAQH/BCwwKjAo BAIAATAiMAwDBAaMqEADBAaMqIAwDAMEAYyo6gMEBIyo4AMEAYyo+jANBgkqhkiG 9w0BAQsFAAOCAQEAamJ8m6IdUZvgp2gmq7vjjMVoTzwxyumGIiv99KLn6hqcEi+0 Rqi0sf7srM56yMS/4S7d63iBIRDI6xXUM4AtFDrxwhvb7wLFEd8YmTUxrntWOVs2 RXfmUNQeiZYwELFZz+remG3CHHW7e8Yk1w8EHmr8gpqkDIXy34ocMwRhmoSHE06x DO6rnMf4kUxlKVM/vccP2IhxlmFu5Ia1xtKI5GV6w2W0d/F3pURwttGE8ZcM062U ukhJhGC4CjDe4W0nmovDrGlY5j10xBWQPzFsi2mvLE4+ZN0dGh2Q/wNFxm5OWhkh ZiZ9KR5oSrbZstsbiYB0C5jlqO+U0RukYmbvEA== -----END CERTIFICATE-----Generated at Thu Mar 19 23:51:25 2026 by rpki-client