$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa File: F6FAB490BB5811EF8C37CB81C4F9AE02.roa (raw, json) Hash identifier: 6nZ4JvdEqawdRMU4DMQ0s0luXIXk7iBOFgicrumlEU8= Subject key identifier: 22:D5:47:DD:84:A8:4F:A8:12:C8:65:6A:83:32:ED:72:FE:5D:A3:62 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 35F7 Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:45:06 +0000 ROA not before: Tue 09 Dec 2025 07:25:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23974 IP address blocks: 1.0.197.0/24 maxlen: 24 1.10.135.0/24 maxlen: 24 101.51.0.0/20 maxlen: 20 101.51.16.0/21 maxlen: 21 101.51.64.0/22 maxlen: 22 101.51.152.0/21 maxlen: 21 101.51.176.0/21 maxlen: 21 101.108.48.0/21 maxlen: 21 113.53.1.0/24 maxlen: 24 113.53.64.0/20 maxlen: 20 118.172.153.0/24 maxlen: 24 125.27.24.0/21 maxlen: 21 125.27.192.0/21 maxlen: 21 125.27.208.0/20 maxlen: 20 125.27.240.0/22 maxlen: 22 182.52.160.0/20 maxlen: 20 182.52.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 14:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13815 (0x35f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE, serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Dec 9 07:25:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48932-b317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:47:6b:f0:92:88:5b:1b:87:f3:e9:eb:24:23: 6b:43:0d:05:1e:d0:ba:33:5a:0a:ef:2b:84:a4:30: ea:c4:a0:19:d4:ec:a7:77:d8:2a:d3:5b:51:a0:5b: ed:45:cb:1b:da:82:03:0c:4a:b0:bf:74:c7:7b:49: 17:1c:19:4c:41:11:53:b8:51:4c:26:1f:37:bc:35: 7d:70:ec:ba:e3:4a:bc:17:55:52:a0:96:3c:ef:fb: e9:c6:eb:cc:8a:eb:fa:dc:87:f2:38:a8:db:dd:63: d0:b0:2f:8a:72:aa:7e:dd:2d:13:26:32:53:22:1b: 57:2d:b3:88:6c:4c:11:0c:02:71:41:54:13:8b:c5: 62:4d:9c:2d:4f:cd:ef:15:2b:11:76:30:58:d2:6c: eb:24:7a:7c:02:1c:6a:b4:72:c5:16:3d:83:5b:a7: 79:7f:9b:8b:0e:ce:10:76:86:29:85:cf:d0:96:1f: 71:b2:04:d4:a1:b9:76:9a:80:c5:d1:39:bb:98:16: 03:ac:71:2b:88:0a:6f:2f:cc:9a:8c:17:5a:6e:1e: 2b:dd:27:4c:fe:9e:3e:8d:23:44:48:44:b4:a1:60: 00:14:29:21:62:73:5f:1b:f6:47:5c:fe:ad:59:db: 17:b3:43:cc:91:bf:e7:23:9b:48:46:39:a6:d4:34: 06:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:D5:47:DD:84:A8:4F:A8:12:C8:65:6A:83:32:ED:72:FE:5D:A3:62 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 1.0.197.0/24 1.10.135.0/24 101.51.0.0-101.51.23.255 101.51.64.0/22 101.51.152.0/21 101.51.176.0/21 101.108.48.0/21 113.53.1.0/24 113.53.64.0/20 118.172.153.0/24 125.27.24.0/21 125.27.192.0/21 125.27.208.0/20 125.27.240.0/22 182.52.160.0/20 182.52.230.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:dd:39:eb:1c:d9:ce:d5:ed:3f:71:32:60:6d:3c:cd:6a:ea: fe:59:cb:a2:85:bd:5f:85:a6:91:b4:28:af:b0:9f:f2:dd:51: fa:ea:33:53:89:de:9e:4a:ce:e2:93:ac:4d:dd:36:78:5a:9e: 91:99:8c:d5:8e:17:48:42:15:6f:b2:0f:b6:35:c6:85:74:9d: e3:db:76:a5:de:cc:b7:20:0f:3a:80:7f:9b:0a:45:c2:0f:2b: 9f:ee:6e:4a:94:16:b1:31:73:97:26:a3:36:b6:df:a0:4c:5a: 2c:cf:53:22:f0:ee:a9:b0:ca:64:26:70:cd:ae:81:b1:70:6f: cd:4d:3d:b3:92:b7:c6:f7:ff:a1:8c:1d:90:b4:34:8a:b6:d0: 71:03:d3:09:71:33:d5:bf:f0:b1:1e:34:ae:0a:17:02:ec:0c: 5b:b4:67:5f:36:21:56:e5:ea:0e:d6:f9:1f:71:7e:25:80:3a: 62:06:5a:c8:aa:ba:99:1f:05:95:66:ca:d0:f7:60:1f:2e:19: 5a:cd:4e:08:ae:88:5b:8a:37:26:81:b1:03:5a:06:a1:9b:40: 6c:ee:e6:9d:4e:f7:96:9c:e8:af:1c:c8:b5:8a:bc:38:40:e7: 01:f4:24:e1:d9:d9:a4:8a:57:77:e4:f1:a8:a3:6e:41:b9:ea: 31:7a:6d:45 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjUxMjA5MDcyNTQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODkzMi1iMzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0dr8JKIWxuH8+nrJCNrQw0FHtC6M1oK7yuEpDDqxKAZ1Oynd9gq01tRoFvt Rcsb2oIDDEqwv3THe0kXHBlMQRFTuFFMJh83vDV9cOy640q8F1VSoJY87/vpxuvM iuv63IfyOKjb3WPQsC+Kcqp+3S0TJjJTIhtXLbOIbEwRDAJxQVQTi8ViTZwtT83v FSsRdjBY0mzrJHp8AhxqtHLFFj2DW6d5f5uLDs4QdoYphc/Qlh9xsgTUobl2moDF 0Tm7mBYDrHEriApvL8yajBdabh4r3SdM/p4+jSNESES0oWAAFCkhYnNfG/ZHXP6t WdsXs0PMkb/nI5tIRjmm1DQGQQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFCLVR92E qE+oEshlaoMy7XL+XaNiMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvRjZGQUI0OTBC QjU4MTFFRjhDMzdDQjgxQzRGOUFFMDIucm9hMIGABggrBgEFBQcBBwEB/wRxMG8w bQQCAAEwZwMEAAEAxQMEAAEKhzALAwMAZTMDBANlMxADBAJlM0ADBANlM5gDBANl M7ADBANlbDADBABxNQEDBARxNUADBAB2rJkDBAN9GxgDBAN9G8ADBAR9G9ADBAJ9 G/ADBAS2NKADBAC2NOYwDQYJKoZIhvcNAQELBQADggEBAIvdOesc2c7V7T9xMmBt PM1q6v5Zy6KFvV+FppG0KK+wn/LdUfrqM1OJ3p5KzuKTrE3dNnhanpGZjNWOF0hC FW+yD7Y1xoV0nePbdqXezLcgDzqAf5sKRcIPK5/ubkqUFrExc5cmoza236BMWizP UyLw7qmwymQmcM2ugbFwb81NPbOSt8b3/6GMHZC0NIq20HED0wlxM9W/8LEeNK4K FwLsDFu0Z182IVbl6g7W+R9xfiWAOmIGWsiqupkfBZVmytD3YB8uGVrNTgiuiFuK NyaBsQNaBqGbQGzu5p1O95ac6K8cyLWKvDhA5wH0JOHZ2aSKV3fk8aijbkG56jF6 bUU= -----END CERTIFICATE-----Generated at Sun Mar 15 10:23:24 2026 by rpki-client