$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DFF14DE71F211F08D45AC42C4F9AE02.roa File: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (raw, json) Hash identifier: RV3R+8uCKWnB9ll+ltJkxV+x3kpjR9QPpPUyngdFPaM= Subject key identifier: 89:2B:6C:C2:AE:38:BB:C1:68:0A:F2:11:7F:5B:53:05:34:AE:F6:98 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 36EE Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DFF14DE71F211F08D45AC42C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:43:54 +0000 ROA not before: Fri 12 Dec 2025 14:30:42 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 205220 IP address blocks: 116.90.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 14:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14062 (0x36ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Dec 12 14:30:42 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a488ea-66c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f3:ac:2b:15:b7:f8:fc:ab:f3:7a:ce:ad:5f: bc:87:df:b7:10:4b:45:32:6e:2d:a5:e8:80:89:37: 16:75:8b:de:6a:1a:1f:4a:89:32:53:7e:6e:f8:92: b8:43:b9:93:bb:7a:84:0f:01:f1:ca:5d:40:c1:0a: d0:ab:0a:f9:5e:c1:4a:6f:9a:f7:17:0d:e7:95:96: ed:f1:99:04:29:c6:f1:91:3a:36:e3:93:da:4b:5e: 6f:22:bc:68:0c:91:7b:36:dd:25:1b:dc:db:45:44: 1c:9c:8a:46:79:90:25:a1:1f:8b:7c:73:41:87:fc: 86:1a:e8:ed:7e:db:43:da:cd:f2:2e:79:06:3e:ad: 47:84:3f:5d:81:f3:13:27:c3:3f:71:c6:2c:76:d7: d1:04:8f:7d:e5:5a:2c:30:fc:5b:9b:cb:04:f7:e4: 5f:e8:1b:d6:91:c8:a9:d9:bd:e6:68:74:29:0a:5e: 03:16:ce:5d:42:7c:8a:fd:d0:3f:85:0a:12:47:90: ae:87:f2:d6:1d:54:f8:16:a8:0b:85:9b:b6:d0:11: 85:0e:5d:a9:58:21:0c:71:43:20:a6:df:e6:ec:b4: 8d:7e:4e:19:91:46:c7:be:b5:ea:90:5a:d5:bf:92: 58:95:d4:d3:e0:db:60:43:c8:a4:2c:81:dd:34:df: d1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2B:6C:C2:AE:38:BB:C1:68:0A:F2:11:7F:5B:53:05:34:AE:F6:98 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DFF14DE71F211F08D45AC42C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.90.115.0/24 Signature Algorithm: sha256WithRSAEncryption 39:24:59:e0:1b:bb:95:a9:41:46:6b:ed:2c:49:53:f4:15:c3: 8d:75:b0:1e:11:66:01:a4:07:e5:98:b4:00:1a:cc:db:11:46: 02:08:36:5a:6d:da:52:e3:6e:86:08:7f:53:d7:a4:91:db:33: da:4f:38:b8:1c:58:ff:e4:1f:da:1e:4b:60:b9:c5:3d:47:59: 5b:b4:50:f9:89:2f:69:d6:e9:ee:10:8d:e8:5c:08:c0:38:53: 94:92:c8:df:64:68:65:85:43:c3:6e:fe:08:de:4c:01:70:4f: 24:27:85:56:2f:03:12:64:7c:ab:b7:84:f3:0c:21:2a:52:18: 01:8c:bb:2b:3c:73:c9:a7:90:bb:e8:a6:ac:2c:ab:11:db:0b: 93:99:de:b3:12:92:f3:03:97:4f:a8:c2:34:22:87:ef:eb:ef: dd:17:9f:5d:d7:0f:25:35:3f:09:a2:4f:14:e8:1e:f2:16:12: bf:93:51:e8:bd:4d:d4:f0:03:46:3f:49:2a:4e:25:5f:22:cb: fe:c9:78:fc:70:64:34:da:25:11:c1:89:db:40:0e:52:ea:b6: f3:41:97:f0:79:03:5f:77:56:4f:78:ea:ea:1f:22:36:24:c6: e1:b7:c5:4f:16:16:57:e4:34:20:e8:d1:60:6d:42:69:81:16: 53:74:7e:28 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUxMjEyMTQzMDQyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODhlYS02NmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5/OsKxW3+Pyr83rOrV+8h9+3EEtFMm4tpeiAiTcWdYveahofSokyU35u+JK4 Q7mTu3qEDwHxyl1AwQrQqwr5XsFKb5r3Fw3nlZbt8ZkEKcbxkTo245PaS15vIrxo DJF7Nt0lG9zbRUQcnIpGeZAloR+LfHNBh/yGGujtfttD2s3yLnkGPq1HhD9dgfMT J8M/ccYsdtfRBI995VosMPxbm8sE9+Rf6BvWkcip2b3maHQpCl4DFs5dQnyK/dA/ hQoSR5Cuh/LWHVT4FqgLhZu20BGFDl2pWCEMcUMgpt/m7LSNfk4ZkUbHvrXqkFrV v5JYldTT4NtgQ8ikLIHdNN/R4wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFIkrbMKu OLvBaAryEX9bUwU0rvaYMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvNERGRjE0REU3 MUYyMTFGMDhENDVBQzQyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAdFpzMA0GCSqGSIb3DQEBCwUAA4IBAQA5JFngG7uVqUFGa+0sSVP0 FcONdbAeEWYBpAflmLQAGszbEUYCCDZabdpS426GCH9T16SR2zPaTzi4HFj/5B/a HktgucU9R1lbtFD5iS9p1unuEI3oXAjAOFOUksjfZGhlhUPDbv4I3kwBcE8kJ4VW LwMSZHyrt4TzDCEqUhgBjLsrPHPJp5C76KasLKsR2wuTmd6zEpLzA5dPqMI0Iofv 6+/dF59d1w8lNT8Jok8U6B7yFhK/k1HovU3U8ANGP0kqTiVfIsv+yXj8cGQ02iUR wYnbQA5S6rbzQZfweQNfd1ZPeOrqHyI2JMbht8VPFhZX5DQg6NFgbUJpgRZTdH4o -----END CERTIFICATE-----Generated at Fri Mar 13 22:14:40 2026 by rpki-client