$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/F9A864386AAB11EF8FEBE576C4F9AE02.roa File: F9A864386AAB11EF8FEBE576C4F9AE02.roa (raw, json) Hash identifier: f9Y4KKT04YRtMxokRyth+pMF9Ggb9NhSd3oXqBDwHfI= Subject key identifier: 8B:5C:F9:63:0F:5A:C6:AE:A7:A8:4F:5A:AC:D0:FC:93:4C:55:51:B1 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 03B6 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/F9A864386AAB11EF8FEBE576C4F9AE02.roa Signing time: Sun 08 Feb 2026 11:37:58 +0000 ROA not before: Sun 08 Feb 2026 11:37:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133499 IP address blocks: 43.225.188.0/24 maxlen: 24 43.225.190.0/24 maxlen: 24 43.228.236.0/24 maxlen: 24 43.228.238.0/23 maxlen: 23 43.228.238.0/24 maxlen: 24 43.228.239.0/24 maxlen: 24 103.84.120.0/22 maxlen: 24 103.194.113.0/24 maxlen: 24 103.240.164.0/22 maxlen: 24 103.241.52.0/22 maxlen: 22 103.241.52.0/24 maxlen: 24 103.241.53.0/24 maxlen: 24 103.241.54.0/24 maxlen: 24 103.241.55.0/24 maxlen: 24 103.252.110.0/24 maxlen: 24 150.107.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 01:13:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587, serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Feb 8 11:37:58 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69887595-f850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:01:d8:72:c4:0c:61:80:9f:f2:f8:c2:6e:dc: c5:04:d1:2e:dc:14:11:4a:e9:90:e6:3c:fb:a0:b0: 3a:f8:83:e2:1e:1c:e0:92:02:2b:2a:2d:2c:0b:5b: f5:54:d5:7d:8e:19:86:e2:ec:95:6a:cb:14:94:74: fd:36:d8:e4:bc:9a:7c:58:28:ea:28:3a:c5:f4:49: 5c:5c:4e:cc:d8:90:45:98:14:52:5a:83:f6:1a:4c: 67:5c:3e:2a:2d:50:5c:87:de:c0:68:83:b5:d4:ae: 6f:76:28:99:67:75:e0:30:be:73:f0:f0:64:8d:48: db:0a:8b:da:55:fa:33:11:20:df:b8:7c:e9:79:a6: 9e:6e:a1:84:53:e3:ff:5f:1e:ef:90:e0:e1:44:9e: a9:a7:f7:da:c7:55:3f:13:fe:88:49:41:db:fc:bb: 88:fc:fb:a2:07:2b:35:02:73:d0:ee:51:6d:42:99: 96:aa:eb:64:55:17:f0:e8:06:31:9e:db:84:db:52: 50:9f:e4:11:bc:42:f6:de:1e:19:08:87:bb:86:69: df:ae:b8:e0:05:83:26:7f:60:fa:b2:11:78:a0:78: 33:8a:8f:14:64:ae:a8:44:c5:24:ea:55:0f:86:f1: 7f:f6:fe:d8:bb:cd:a0:ed:bf:0a:ce:62:a0:33:02: 6c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5C:F9:63:0F:5A:C6:AE:A7:A8:4F:5A:AC:D0:FC:93:4C:55:51:B1 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/F9A864386AAB11EF8FEBE576C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.188.0/24 43.225.190.0/24 43.228.236.0/24 43.228.238.0/23 103.84.120.0/22 103.194.113.0/24 103.240.164.0/22 103.241.52.0/22 103.252.110.0/24 150.107.226.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:e9:5e:8d:d8:8f:bb:9d:ce:c6:9e:6e:0b:23:78:d5:9f:96: 82:6c:bd:a8:d4:97:33:3b:e7:22:49:92:38:bb:13:a3:70:58: da:e1:fa:d4:ce:d2:b1:bb:9a:23:29:dc:36:8c:1b:ea:2b:82: c2:c2:a1:e0:3c:68:51:b0:1e:f1:7f:9a:6e:4b:c8:81:3c:04: 77:ea:5b:2d:61:8e:0e:12:37:32:d4:c3:3a:28:f5:fa:a0:8b: f7:66:33:7e:4a:b0:75:62:52:49:d4:92:c8:52:e5:6d:61:0e: 16:b3:62:9f:44:2c:5d:f9:95:5a:6e:c8:00:f9:50:0e:0a:e5: 40:68:60:3f:cc:11:cd:b7:aa:25:9f:aa:21:83:ee:e3:c2:80: 42:5f:91:39:d9:ea:fb:d1:c5:a7:8f:7e:df:15:58:e2:24:31: 0d:ca:a9:b1:0f:5d:bd:6b:04:fc:05:27:07:fb:ca:a1:47:1c: de:ea:3f:f4:29:d1:93:9c:2a:c1:d0:71:a7:a5:c9:34:c3:b1: 27:6d:ad:4d:5f:3c:2c:08:13:b8:0e:60:eb:76:15:50:1a:4b: 67:2d:6b:80:61:de:5f:ce:95:b4:99:b4:b2:91:51:5b:90:83: 1e:80:0f:e1:6a:1b:e7:64:61:f6:41:30:02:5f:76:0f:d1:58: 46:8d:84:c7 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjYwMjA4MTEzNzU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTg4NzU5NS1mODUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wHYcsQMYYCf8vjCbtzFBNEu3BQRSumQ5jz7oLA6+IPiHhzgkgIrKi0sC1v1 VNV9jhmG4uyVassUlHT9NtjkvJp8WCjqKDrF9ElcXE7M2JBFmBRSWoP2GkxnXD4q LVBch97AaIO11K5vdiiZZ3XgML5z8PBkjUjbCovaVfozESDfuHzpeaaebqGEU+P/ Xx7vkODhRJ6pp/fax1U/E/6ISUHb/LuI/PuiBys1AnPQ7lFtQpmWqutkVRfw6AYx ntuE21JQn+QRvEL23h4ZCIe7hmnfrrjgBYMmf2D6shF4oHgzio8UZK6oRMUk6lUP hvF/9v7Yu82g7b8KzmKgMwJsfwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFItc+WMP Wsaup6hPWqzQ/JNMVVGxMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvRjlBODY0Mzg2 QUFCMTFFRjhGRUJFNTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMEIEAgABMDwDBAAr4bwDBAAr4b4DBAAr5OwDBAEr5O4DBAJnVHgDBABnwnED BAJn8KQDBAJn8TQDBABn/G4DBACWa+IwDQYJKoZIhvcNAQELBQADggEBAGrpXo3Y j7udzsaebgsjeNWfloJsvajUlzM75yJJkji7E6NwWNrh+tTO0rG7miMp3DaMG+or gsLCoeA8aFGwHvF/mm5LyIE8BHfqWy1hjg4SNzLUwzoo9fqgi/dmM35KsHViUknU kshS5W1hDhazYp9ELF35lVpuyAD5UA4K5UBoYD/MEc23qiWfqiGD7uPCgEJfkTnZ 6vvRxaePft8VWOIkMQ3KqbEPXb1rBPwFJwf7yqFHHN7qP/Qp0ZOcKsHQcaelyTTD sSdtrU1fPCwIE7gOYOt2FVAaS2cta4Bh3l/OlbSZtLKRUVuQgx6AD+FqG+dkYfZB MAJfdg/RWEaNhMc= -----END CERTIFICATE-----Generated at Thu Feb 19 19:56:24 2026 by rpki-client