$ rpki-client -vvf rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/F86E9DE46B9811ED9330AC4CC4F9AE02.roa File: F86E9DE46B9811ED9330AC4CC4F9AE02.roa (raw, json) Hash identifier: Ki4rE7tG5sP1+2ge9CqFC/jGsUXKgQFxAgQ/woyWDpA= Subject key identifier: 2D:B8:47:3F:93:C0:7B:A1:0A:97:2A:57:FD:74:FD:B7:A2:F1:38:6D Certificate issuer: /CN=A91D92FB/serialNumber=4C36F812E76D827ECE6E59BD1560585C51ECD992 Certificate serial: 354A Authority key identifier: 4C:36:F8:12:E7:6D:82:7E:CE:6E:59:BD:15:60:58:5C:51:EC:D9:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/F86E9DE46B9811ED9330AC4CC4F9AE02.roa Signing time: Wed 28 Jan 2026 15:10:51 +0000 ROA not before: Wed 28 Jan 2026 15:10:51 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 17408 IP address blocks: 43.243.252.0/22 maxlen: 24 202.133.224.0/19 maxlen: 24 2405:7e00:17::/48 maxlen: 48 2405:7e00:1000::/36 maxlen: 36 2405:7e00:1000::/48 maxlen: 48 2405:7e00:1002::/64 maxlen: 64 2405:7e00:1003::/48 maxlen: 48 2405:7e00:100a::/48 maxlen: 48 2405:7e00:100b::/48 maxlen: 48 2405:7e00:100c::/48 maxlen: 48 2405:7e00:100d::/48 maxlen: 48 2405:7e00:100e::/48 maxlen: 48 2405:7e00:100f::/48 maxlen: 48 2405:7e00:1011::/48 maxlen: 48 2405:7e00:1012::/48 maxlen: 48 2405:7e00:1013::/48 maxlen: 48 2405:7e00:1014::/48 maxlen: 48 2405:7e00:1015::/48 maxlen: 48 2405:7e00:1016::/48 maxlen: 48 2405:7e00:101a::/48 maxlen: 48 2405:7e00:101b::/48 maxlen: 48 2405:7e00:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.crl rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 14:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13642 (0x354a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D92FB, serialNumber=4C36F812E76D827ECE6E59BD1560585C51ECD992 Validity Not Before: Jan 28 15:10:51 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=697a26fb-a833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e3:1f:af:17:30:20:e5:98:84:f2:ac:ce:29: 96:02:f3:14:62:29:45:44:94:82:c3:db:c0:08:51: 76:1e:2e:4d:21:da:44:ee:70:51:d0:a9:0b:41:f5: 80:d2:2b:e1:c9:b2:3b:8e:39:83:33:d1:3d:3b:3e: fc:82:10:70:67:0a:34:13:50:9f:26:21:a5:ae:a6: 20:ef:ab:7f:0e:0a:bb:ed:5a:b7:f5:48:4b:c9:02: 41:76:8d:f0:c7:91:ea:49:d9:73:50:80:4d:3a:aa: bc:35:bb:21:de:63:bc:52:d0:60:6c:6c:f8:fd:97: d2:93:bc:db:e4:5b:4a:98:59:7e:f9:18:b0:a7:53: c2:97:74:a5:2f:4b:70:6b:5d:91:ec:f4:30:4e:18: eb:63:0e:84:9b:7d:20:c8:e2:06:70:7b:23:a1:7d: a0:14:d3:a3:e5:be:9d:a8:6c:48:b3:7e:b3:aa:86: 7f:79:a2:88:d5:19:d6:91:d0:0c:7a:56:00:12:8b: da:15:10:8b:71:7f:5b:b9:89:7a:14:f2:92:1d:ba: 2b:91:00:16:71:58:ae:53:29:2a:62:16:dc:52:f0: 99:41:c8:9e:00:80:74:72:1e:46:a9:44:cb:a4:57: e2:e6:c7:55:63:cd:91:2b:03:86:df:63:71:04:e7: 8e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B8:47:3F:93:C0:7B:A1:0A:97:2A:57:FD:74:FD:B7:A2:F1:38:6D X509v3 Authority Key Identifier: keyid:4C:36:F8:12:E7:6D:82:7E:CE:6E:59:BD:15:60:58:5C:51:EC:D9:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/F86E9DE46B9811ED9330AC4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.252.0/22 202.133.224.0/19 IPv6: 2405:7e00:17::/48 2405:7e00:1000::/36 2405:7e00:4000::/36 Signature Algorithm: sha256WithRSAEncryption 6d:cf:00:a1:c5:41:22:ef:1c:90:0f:64:ca:51:61:f5:77:5b: a9:4a:f6:da:05:51:ef:aa:91:d2:d0:ee:03:f2:20:b1:7b:0a: ce:d2:36:70:74:a0:47:3e:bb:96:e0:41:81:41:51:ef:72:1e: 7f:98:cc:9d:21:46:8a:48:f6:25:b2:c8:e5:11:e5:46:3f:88: db:73:c2:af:0d:6b:1a:29:4b:39:e0:35:1a:ad:ed:03:02:f0: d0:ef:34:fa:53:51:39:c6:64:4d:d4:27:eb:d6:9a:18:61:1d: b4:1d:05:ca:7e:d4:05:d3:b2:9f:6b:9b:44:77:5e:fa:ac:a2: e9:97:09:ad:ec:58:97:ae:6f:2c:d5:33:51:36:57:38:24:a9: ab:cf:b1:13:ae:07:aa:c4:29:b9:62:0d:71:bb:8f:81:f3:b8: 94:e2:6c:01:57:87:2b:34:55:5f:04:c8:24:df:e8:21:97:79: 4a:0b:fb:88:a9:ca:00:53:36:34:cd:eb:5f:54:97:64:b6:7d: 8a:5d:43:7d:34:14:8e:56:c8:a7:a9:37:51:72:54:63:99:59: 93:f3:00:e9:43:52:fc:66:75:54:1d:39:40:e6:19:13:c8:52: da:15:94:21:6b:18:8b:c4:43:1d:eb:1d:a9:b3:d2:28:f3:a1: a9:ae:1a:ad -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICNUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RDkyRkIxMTAvBgNVBAUTKDRDMzZGODEyRTc2RDgyN0VDRTZFNTlCRDE1NjA1ODVD NTFFQ0Q5OTIwHhcNMjYwMTI4MTUxMDUxWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTdhMjZmYi1hODMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseMfrxcwIOWYhPKszimWAvMUYilFRJSCw9vACFF2Hi5NIdpE7nBR0KkLQfWA 0ivhybI7jjmDM9E9Oz78ghBwZwo0E1CfJiGlrqYg76t/Dgq77Vq39UhLyQJBdo3w x5HqSdlzUIBNOqq8Nbsh3mO8UtBgbGz4/ZfSk7zb5FtKmFl++Riwp1PCl3SlL0tw a12R7PQwThjrYw6Em30gyOIGcHsjoX2gFNOj5b6dqGxIs36zqoZ/eaKI1RnWkdAM elYAEovaFRCLcX9buYl6FPKSHborkQAWcViuUykqYhbcUvCZQcieAIB0ch5GqUTL pFfi5sdVY82RKwOG32NxBOeOOwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFC24Rz+T wHuhCpcqV/10/bei8ThtMB8GA1UdIwQYMBaAFEw2+BLnbYJ+zm5ZvRVgWFxR7NmS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTJGQi8zMjdGQzZCMjFE ODgxMUUyOThGM0EzRTAwOEIwMkNEMi9URGI0RXVkdGduN09ibG05RldCWVhGSHMy WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REYjRFdWR0Z243T2JsbTlGV0JZWEZIczJaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDkyRkIvMzI3RkM2QjIxRDg4MTFFMjk4RjNBM0UwMDhCMDJDRDIvRjg2RTlERTQ2 Qjk4MTFFRDkzMzBBQzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MBIEAgABMAwDBAIr8/wDBAXKheAwHwQCAAIwGQMHACQFfgAAFwMGBCQFfgAQ AwYEJAV+AEAwDQYJKoZIhvcNAQELBQADggEBAG3PAKHFQSLvHJAPZMpRYfV3W6lK 9toFUe+qkdLQ7gPyILF7Cs7SNnB0oEc+u5bgQYFBUe9yHn+YzJ0hRopI9iWyyOUR 5UY/iNtzwq8NaxopSzngNRqt7QMC8NDvNPpTUTnGZE3UJ+vWmhhhHbQdBcp+1AXT sp9rm0R3XvqsoumXCa3sWJeubyzVM1E2VzgkqavPsROuB6rEKbliDXG7j4HzuJTi bAFXhys0VV8EyCTf6CGXeUoL+4ipygBTNjTN619Ul2S2fYpdQ300FI5WyKepN1Fy VGOZWZPzAOlDUvxmdVQdOUDmGRPIUtoVlCFrGIvEQx3rHamz0ijzoamuGq0= -----END CERTIFICATE-----Generated at Thu Feb 19 18:18:05 2026 by rpki-client