$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/699CD772C2B911EBBB4C8928C4F9AE02.roa File: 699CD772C2B911EBBB4C8928C4F9AE02.roa (raw, json) Hash identifier: 8+KPASZ/M50Dm6KRLst04BpGO2ukj2WfRt4KxgVGboU= Subject key identifier: CB:19:6F:E8:C9:46:01:1E:03:FA:ED:E9:1F:F3:98:87:0F:9F:EF:5B Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 0A7F Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/699CD772C2B911EBBB4C8928C4F9AE02.roa Signing time: Wed 04 Feb 2026 19:16:49 +0000 ROA not before: Wed 04 Feb 2026 19:16:49 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 46015 IP address blocks: 42.1.60.0/22 maxlen: 22 43.252.212.0/22 maxlen: 24 103.6.196.0/22 maxlen: 24 110.4.40.0/21 maxlen: 21 110.4.40.0/24 maxlen: 24 110.4.41.0/24 maxlen: 24 110.4.42.0/24 maxlen: 24 110.4.43.0/24 maxlen: 24 110.4.44.0/24 maxlen: 24 110.4.45.0/24 maxlen: 24 110.4.46.0/24 maxlen: 24 110.4.47.0/24 maxlen: 24 117.53.152.0/22 maxlen: 22 123.100.224.0/24 maxlen: 24 203.142.4.0/24 maxlen: 24 2402:6c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 19:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580, serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: Feb 4 19:16:49 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69839b21-471c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2b:ea:2b:f4:84:bc:a8:ca:81:ce:3a:5e:8a: 0e:81:0e:0a:cb:15:de:32:dc:72:ed:00:7f:08:c7: 8c:fa:9d:06:16:80:27:1b:b0:30:1a:02:36:8e:f6: 91:0c:6c:23:01:89:88:c3:5b:a5:2e:e0:22:79:7a: e8:45:cc:d1:e0:f7:f9:f3:76:34:75:6c:78:c7:54: 04:2e:ac:5c:23:00:1e:e9:f1:8d:b3:83:31:0e:aa: b8:75:cf:a5:9e:3f:97:19:5f:3c:d7:94:cc:87:b4: 52:fa:0d:48:27:4a:d6:7d:2f:cb:7f:09:50:ad:ba: 72:84:a6:0e:fc:7a:e5:39:7f:bd:9b:7e:95:87:16: 7e:56:3d:f6:f9:e7:5c:ea:13:11:49:54:de:4b:5f: ea:67:9d:17:88:45:22:b2:e4:85:52:91:5a:99:bf: 2d:93:dd:34:da:81:a0:eb:51:96:96:85:48:92:11: 6f:01:f7:a6:ab:a1:54:da:11:6f:34:81:04:84:3b: 38:e9:ff:9f:04:bc:90:1b:ee:40:0a:d8:9b:98:31: ff:07:e8:71:4d:37:b3:0a:2a:ef:19:03:63:90:16: ae:92:f4:9a:1e:a0:53:79:66:89:60:1d:6b:b4:bc: 13:f1:66:ea:2b:01:b8:ab:9e:5a:26:be:1c:6b:6a: c0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:19:6F:E8:C9:46:01:1E:03:FA:ED:E9:1F:F3:98:87:0F:9F:EF:5B X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/699CD772C2B911EBBB4C8928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.1.60.0/22 43.252.212.0/22 103.6.196.0/22 110.4.40.0/21 117.53.152.0/22 123.100.224.0/24 203.142.4.0/24 IPv6: 2402:6c00::/32 Signature Algorithm: sha256WithRSAEncryption 69:96:ae:c0:dd:0b:88:9d:05:5c:cf:d6:4b:9f:55:8c:ee:39: 4d:e8:61:a5:ae:f0:b8:21:80:4e:67:17:c4:c7:7d:0e:b7:63: be:23:ce:ca:9b:9b:17:fa:de:12:73:f0:7e:a7:9a:a6:36:c9: 04:c0:e4:d4:b0:d3:ef:76:8b:b2:d9:72:9a:4f:44:55:2e:b3: 38:2c:cb:9b:a8:b6:3b:9c:67:54:fe:98:80:ba:dc:b5:93:7e: 1a:16:dd:82:79:e8:ff:ca:c4:19:42:d8:99:ac:58:c7:a0:87: f9:2b:95:b1:99:58:ff:e6:cc:b2:1e:71:f7:8a:af:ae:fe:d6: 9d:0a:fa:a8:b5:b3:5d:b3:ba:ad:c8:41:d0:cc:1d:e0:1d:c8: 4e:a8:05:64:1c:af:f2:8a:a1:95:b6:75:23:49:7c:1b:83:c7: 40:46:56:4e:b6:64:85:a7:12:40:14:5b:3e:64:39:d6:43:c5: e3:17:8f:2d:a1:86:46:34:f8:3b:e7:3a:21:e3:8c:96:98:24: 60:c2:5e:33:51:3e:22:cd:b7:15:6f:7b:64:24:96:45:06:b5: 21:00:7d:ae:12:eb:61:13:f6:7d:a2:b4:1d:79:72:0b:e6:17: e0:cb:88:b9:94:35:1e:7b:42:a1:10:d4:fa:0e:37:40:10:e2: d8:33:0a:3a -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjYwMjA0MTkxNjQ5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTgzOWIyMS00NzFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqivqK/SEvKjKgc46XooOgQ4KyxXeMtxy7QB/CMeM+p0GFoAnG7AwGgI2jvaR DGwjAYmIw1ulLuAieXroRczR4Pf583Y0dWx4x1QELqxcIwAe6fGNs4MxDqq4dc+l nj+XGV8815TMh7RS+g1IJ0rWfS/LfwlQrbpyhKYO/HrlOX+9m36VhxZ+Vj32+edc 6hMRSVTeS1/qZ50XiEUisuSFUpFamb8tk9002oGg61GWloVIkhFvAfemq6FU2hFv NIEEhDs46f+fBLyQG+5ACtibmDH/B+hxTTezCirvGQNjkBaukvSaHqBTeWaJYB1r tLwT8WbqKwG4q55aJr4ca2rAzwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFMsZb+jJ RgEeA/rt6R/zmIcPn+9bMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk1ODAvQzdDRTJFMTA3RjhEMTFFQUFEOENENTFFQzRGOUFFMDIvNjk5Q0Q3NzJD MkI5MTFFQkJCNEM4OTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIqATwDBAIr/NQDBAJnBsQDBANuBCgDBAJ1NZgDBAB7ZOAD BADLjgQwDQQCAAIwBwMFACQCbAAwDQYJKoZIhvcNAQELBQADggEBAGmWrsDdC4id BVzP1kufVYzuOU3oYaWu8LghgE5nF8THfQ63Y74jzsqbmxf63hJz8H6nmqY2yQTA 5NSw0+92i7LZcppPRFUuszgsy5uotjucZ1T+mIC63LWTfhoW3YJ56P/KxBlC2Jms WMegh/krlbGZWP/mzLIecfeKr67+1p0K+qi1s12zuq3IQdDMHeAdyE6oBWQcr/KK oZW2dSNJfBuDx0BGVk62ZIWnEkAUWz5kOdZDxeMXjy2hhkY0+DvnOiHjjJaYJGDC XjNRPiLNtxVve2QklkUGtSEAfa4S62ET9n2itB15cgvmF+DLiLmUNR57QqEQ1PoO N0AQ4tgzCjo= -----END CERTIFICATE-----Generated at Thu Feb 19 21:31:23 2026 by rpki-client