$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/4235F184DACE11EE8E67437CC4F9AE02.roa File: 4235F184DACE11EE8E67437CC4F9AE02.roa (raw, json) Hash identifier: h0H6nTvx1Xpv/diXdiCYwVNaEDqOkg9JcLdgvgz05zQ= Subject key identifier: 68:5E:5C:9D:0A:5B:62:10:AB:25:73:0E:24:82:86:2D:22:1B:14:B1 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 07F0 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/4235F184DACE11EE8E67437CC4F9AE02.roa Signing time: Sun 01 Mar 2026 21:25:20 +0000 ROA not before: Wed 27 Aug 2025 00:04:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45629 IP address blocks: 14.207.0.0/16 maxlen: 17 27.130.0.0/16 maxlen: 17 43.245.144.0/22 maxlen: 23 49.48.0.0/15 maxlen: 17 103.16.204.0/22 maxlen: 23 110.164.0.0/16 maxlen: 17 110.164.11.0/24 maxlen: 24 110.164.14.0/24 maxlen: 24 110.164.17.0/24 maxlen: 24 110.164.21.0/24 maxlen: 24 110.164.28.0/24 maxlen: 24 171.4.0.0/14 maxlen: 17 180.183.0.0/16 maxlen: 17 183.88.0.0/15 maxlen: 17 223.204.0.0/14 maxlen: 17 2403:6200::/33 maxlen: 33 2403:6200:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 22:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2032 (0x7f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Aug 27 00:04:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4aebf-a2b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c1:d9:43:3b:83:5e:fe:a2:06:47:33:48:e8: 7f:d8:cc:a2:bd:1b:57:ff:ad:96:6e:92:56:ce:b8: eb:4d:3c:e0:19:79:17:81:cb:c0:8c:9e:d3:ee:2d: 3e:1e:77:13:c7:79:ee:2d:b7:85:2a:22:f9:ad:3c: e4:8b:07:96:13:d3:d0:7b:49:49:1d:81:8f:8a:17: 98:5b:40:83:8e:e6:ed:48:2a:40:58:7a:8f:cd:32: 82:95:84:5e:45:ca:d6:1d:07:29:1c:51:ba:8d:c7: c1:5f:81:2f:ef:51:67:e7:0c:51:47:a2:e1:27:02: f2:ff:cc:63:c1:71:68:0e:f8:af:1c:09:11:c0:c9: c9:d7:23:90:2c:73:3b:84:f7:b8:f1:77:ab:06:9b: 70:64:ec:db:6b:4f:86:8a:58:30:c0:66:be:5e:19: f1:8a:38:40:8e:f5:98:a7:9b:c8:b5:da:db:a9:d9: 63:00:bb:ba:da:03:0f:91:0f:e5:e0:62:ab:ed:00: 0f:2c:01:16:cc:84:49:22:12:29:80:ad:2f:4a:bc: 1a:cd:1a:45:70:b0:fb:fc:ce:07:ee:a4:19:97:84: e8:db:29:70:a1:f1:3b:d0:83:fb:06:52:eb:c2:f6: 1f:2a:9e:5a:d7:37:c3:70:4c:80:1c:4e:94:6e:3b: 0a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:5E:5C:9D:0A:5B:62:10:AB:25:73:0E:24:82:86:2D:22:1B:14:B1 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/4235F184DACE11EE8E67437CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 14.207.0.0/16 27.130.0.0/16 43.245.144.0/22 49.48.0.0/15 103.16.204.0/22 110.164.0.0/16 171.4.0.0/14 180.183.0.0/16 183.88.0.0/15 223.204.0.0/14 IPv6: 2403:6200::/32 Signature Algorithm: sha256WithRSAEncryption 68:fb:a1:fe:08:8f:a8:46:0b:f6:09:c9:03:10:0f:25:58:3c: 4e:da:a3:ef:d5:59:d8:64:e1:0c:be:df:d5:f8:83:c0:cb:10: 09:2a:e2:cc:d5:c0:f0:93:b2:d5:0a:86:30:24:d2:08:a2:b1: 13:e5:f3:e4:8a:2b:15:5a:fa:7e:2c:b2:4e:c3:c4:b2:c2:3e: cb:2d:f0:9e:3a:c3:2b:03:70:38:9f:27:ea:b1:40:e7:4d:ca: f0:86:c1:5f:33:f2:a0:7d:12:5a:52:01:54:a7:68:38:4d:63: 37:8a:48:3c:c7:b6:aa:ad:a8:62:e0:09:1f:15:89:d2:63:1c: 7e:36:45:5e:bb:aa:8e:23:19:ba:24:84:86:5d:8b:28:46:b0: 55:9d:5e:f7:b4:d4:1a:0b:45:a2:fb:d4:1b:3b:e6:19:29:f3: 0c:1b:67:41:1a:5d:3c:af:ab:fd:70:31:8a:07:f8:67:bb:4d: 83:0f:dd:a9:13:42:40:ee:38:68:49:88:c2:d2:ef:6a:dd:43: 4e:f2:24:0c:5f:73:b4:cd:6a:10:26:f2:1f:e0:b4:7e:9c:4e: 07:bb:13:bf:de:0f:f7:7f:84:b6:8b:4f:12:4e:b8:68:61:f7: 78:1c:f3:eb:25:af:ac:b5:ea:23:88:10:19:b8:a9:56:ae:28: 86:0a:59:fe -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICB/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUwODI3MDAwNDUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0YWViZi1hMmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMHZQzuDXv6iBkczSOh/2MyivRtX/62WbpJWzrjrTTzgGXkXgcvAjJ7T7i0+ HncTx3nuLbeFKiL5rTzkiweWE9PQe0lJHYGPiheYW0CDjubtSCpAWHqPzTKClYRe RcrWHQcpHFG6jcfBX4Ev71Fn5wxRR6LhJwLy/8xjwXFoDvivHAkRwMnJ1yOQLHM7 hPe48XerBptwZOzba0+GilgwwGa+XhnxijhAjvWYp5vItdrbqdljALu62gMPkQ/l 4GKr7QAPLAEWzIRJIhIpgK0vSrwazRpFcLD7/M4H7qQZl4To2ylwofE70IP7BlLr wvYfKp5a1zfDcEyAHE6UbjsKYQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFGheXJ0K W2IQqyVzDiSChi0iGxSxMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvNDIzNUYxODRE QUNFMTFFRThFNjc0MzdDQzRGOUFFMDIucm9hMFwGCCsGAQUFBwEHAQH/BE0wSzA6 BAIAATA0AwMADs8DAwAbggMEAiv1kAMDATEwAwQCZxDMAwMAbqQDAwKrBAMDALS3 AwMBt1gDAwLfzDANBAIAAjAHAwUAJANiADANBgkqhkiG9w0BAQsFAAOCAQEAaPuh /giPqEYL9gnJAxAPJVg8Ttqj79VZ2GThDL7f1fiDwMsQCSrizNXA8JOy1QqGMCTS CKKxE+Xz5IorFVr6fiyyTsPEssI+yy3wnjrDKwNwOJ8n6rFA503K8IbBXzPyoH0S WlIBVKdoOE1jN4pIPMe2qq2oYuAJHxWJ0mMcfjZFXruqjiMZuiSEhl2LKEawVZ1e 97TUGgtFovvUGzvmGSnzDBtnQRpdPK+r/XAxigf4Z7tNgw/dqRNCQO44aEmIwtLv at1DTvIkDF9ztM1qECbyH+C0fpxOB7sTv94P93+EtotPEk64aGH3eBzz6yWvrLXq I4gQGbipVq4ohgpZ/g== -----END CERTIFICATE-----Generated at Fri Mar 13 17:24:45 2026 by rpki-client