$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/2FAD450250E411F0A6B4892AC4F9AE02.roa File: 2FAD450250E411F0A6B4892AC4F9AE02.roa (raw, json) Hash identifier: 5FVZeeMmHHgD5LWgKUCAHIiyRLhCr4xloYA6n+HE21g= Subject key identifier: 40:5F:E3:C7:08:01:60:B1:DE:78:4C:55:C4:95:35:79:FD:6F:DB:9A Certificate issuer: /CN=A91CF9F5/serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Certificate serial: 0130 Authority key identifier: 87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/2FAD450250E411F0A6B4892AC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:08:50 +0000 ROA not before: Sun 01 Mar 2026 07:24:58 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 36352 IP address blocks: 121.46.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 04:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF9F5, serialNumber=87B1EE3E9EE2AD1A113F27A2A54E2C0B8D5AFB34 Validity Not Before: Mar 1 07:24:58 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a41e42-fd0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:52:cd:f3:37:a6:8f:be:7a:37:61:c8:8d:f5: 10:66:ef:7f:63:50:06:06:a7:33:e3:89:39:08:82: 78:1b:32:60:e1:fc:94:c1:cf:17:95:39:26:82:4e: 25:39:c9:89:d0:b5:98:86:e5:10:0c:b8:f2:5a:d8: 10:30:91:e0:73:92:70:51:85:8b:c0:46:a8:87:b1: 12:38:21:31:01:5e:14:a4:24:48:6e:fc:51:66:19: 69:c5:4c:a1:00:fa:0b:76:77:b0:80:27:e9:3a:42: 3d:9d:ad:c6:d4:ba:9d:3e:91:1d:53:80:ab:08:e3: fe:38:93:82:c1:4c:3a:96:9b:b3:64:a6:40:e1:f2: 90:f3:ef:f6:7c:22:c7:a9:35:4c:f6:7e:96:9e:e0: 1a:7a:d2:0c:52:df:cb:48:cf:1d:b9:7d:a2:25:51: 5a:6b:df:95:02:62:9c:33:b9:8b:22:76:b5:4d:c7: 80:59:07:ee:88:0e:56:7c:52:4c:08:42:68:15:04: c8:07:91:cc:a8:00:8a:89:51:58:1b:37:97:17:d8: 84:d3:4c:a5:32:17:ac:f1:3f:d5:e7:0d:73:63:f9: 4d:26:b0:c4:e5:af:fa:8b:71:31:40:22:c5:07:99: 33:1b:13:02:9c:1a:cc:09:32:29:b3:cb:36:ee:e7: aa:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5F:E3:C7:08:01:60:B1:DE:78:4C:55:C4:95:35:79:FD:6F:DB:9A X509v3 Authority Key Identifier: keyid:87:B1:EE:3E:9E:E2:AD:1A:11:3F:27:A2:A5:4E:2C:0B:8D:5A:FB:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/h7HuPp7irRoRPyeipU4sC41a-zQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7HuPp7irRoRPyeipU4sC41a-zQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF9F5/8B926D2A5B9E11EF8BF9175BC4F9AE02/2FAD450250E411F0A6B4892AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.46.80.0/22 Signature Algorithm: sha256WithRSAEncryption 15:b8:6b:28:fe:bd:3a:8c:77:fd:88:6c:e3:fa:a9:fe:0e:a3: 37:4f:68:08:e5:2a:ff:ac:65:f5:2d:d0:ba:06:30:03:c9:92: 7c:31:0c:83:69:ca:92:e4:9a:6b:29:e6:66:5b:f5:50:be:dd: 39:9d:2f:52:fd:05:00:77:97:1a:43:75:ff:ad:a3:c9:76:2d: 19:75:1b:54:00:a2:ea:2e:e4:77:c1:57:e9:08:f4:93:f7:b7: 44:84:89:6e:08:7a:00:ab:c9:3b:d5:9e:45:1c:ab:62:57:c9: 1e:01:e5:17:84:83:46:fb:51:e3:b7:35:b7:19:a1:40:68:0f: a5:0f:f5:bf:05:47:ec:39:ba:b2:46:6c:dd:d8:96:3f:33:46: aa:3b:a4:7a:48:f4:df:48:7b:3c:96:76:3b:78:7c:19:62:ca: 92:6a:99:94:5a:4b:f6:d1:7a:87:14:ea:3d:36:65:c8:2e:5e: 97:c4:bc:70:9f:bd:8d:d8:98:e7:a1:2c:0f:21:cd:00:18:b1: 93:af:2e:4d:de:8b:76:dd:7c:b7:68:1b:84:fb:a1:86:1b:29: 5e:d5:ad:ab:9c:82:a2:78:d7:62:60:3c:a9:bb:e1:4c:48:04: 0a:ce:90:4a:b2:15:6d:bf:ec:53:ec:44:11:45:1d:68:39:b5: c7:82:9b:3d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y5RjUxMTAvBgNVBAUTKDg3QjFFRTNFOUVFMkFEMUExMTNGMjdBMkE1NEUyQzBC OEQ1QUZCMzQwHhcNMjYwMzAxMDcyNDU4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWU0Mi1mZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylLN8zemj756N2HIjfUQZu9/Y1AGBqcz44k5CIJ4GzJg4fyUwc8XlTkmgk4l OcmJ0LWYhuUQDLjyWtgQMJHgc5JwUYWLwEaoh7ESOCExAV4UpCRIbvxRZhlpxUyh APoLdnewgCfpOkI9na3G1LqdPpEdU4CrCOP+OJOCwUw6lpuzZKZA4fKQ8+/2fCLH qTVM9n6WnuAaetIMUt/LSM8duX2iJVFaa9+VAmKcM7mLIna1TceAWQfuiA5WfFJM CEJoFQTIB5HMqACKiVFYGzeXF9iE00ylMhes8T/V5w1zY/lNJrDE5a/6i3ExQCLF B5kzGxMCnBrMCTIps8s27ueqUwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEBf48cI AWCx3nhMVcSVNXn9b9uaMB8GA1UdIwQYMBaAFIex7j6e4q0aET8noqVOLAuNWvs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjlGNS84QjkyNkQyQTVC OUUxMUVGOEJGOTE3NUJDNEY5QUUwMi9oN0h1UHA3aXJSb1JQeWVpcFU0c0M0MWEt elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3SHVQcDdpclJvUlB5ZWlwVTRzQzQxYS16US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y5RjUvOEI5MjZEMkE1QjlFMTFFRjhCRjkxNzVCQzRGOUFFMDIvMkZBRDQ1MDI1 MEU0MTFGMEE2QjQ4OTJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCeS5QMA0GCSqGSIb3DQEBCwUAA4IBAQAVuGso/r06jHf9iGzj+qn+ DqM3T2gI5Sr/rGX1LdC6BjADyZJ8MQyDacqS5JprKeZmW/VQvt05nS9S/QUAd5ca Q3X/raPJdi0ZdRtUAKLqLuR3wVfpCPST97dEhIluCHoAq8k71Z5FHKtiV8keAeUX hING+1HjtzW3GaFAaA+lD/W/BUfsObqyRmzd2JY/M0aqO6R6SPTfSHs8lnY7eHwZ YsqSapmUWkv20XqHFOo9NmXILl6XxLxwn72N2JjnoSwPIc0AGLGTry5N3ot23Xy3 aBuE+6GGGyle1a2rnIKieNdiYDypu+FMSAQKzpBKshVtv+xT7EQRRR1oObXHgps9 -----END CERTIFICATE-----Generated at Sat Mar 21 17:19:43 2026 by rpki-client