$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/4A06FF10FF2711EAB7D5F235C4F9AE02.roa File: 4A06FF10FF2711EAB7D5F235C4F9AE02.roa (raw, json) Hash identifier: mg17sUTdYtMBrbbm2kbt75lKpJ892MbQTYVPcd6BdmU= Subject key identifier: 37:70:BF:58:7A:FE:2A:4B:5B:4A:BC:EC:73:00:48:6E:28:C5:22:6B Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 090E Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/4A06FF10FF2711EAB7D5F235C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:09:02 +0000 ROA not before: Wed 22 Oct 2025 21:39:53 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55340 IP address blocks: 116.0.33.0/24 maxlen: 24 116.0.34.0/24 maxlen: 24 116.0.40.0/24 maxlen: 24 116.0.41.0/24 maxlen: 24 116.0.43.0/24 maxlen: 24 116.0.44.0/24 maxlen: 24 116.0.46.0/24 maxlen: 24 116.0.55.0/24 maxlen: 24 116.0.56.0/24 maxlen: 24 116.0.57.0/24 maxlen: 24 116.0.58.0/24 maxlen: 24 116.0.59.0/24 maxlen: 24 116.0.61.0/24 maxlen: 24 116.0.62.0/24 maxlen: 24 116.0.63.0/24 maxlen: 24 2400:a960:6::/48 maxlen: 48 2400:a960:8::/48 maxlen: 48 2400:a960:9::/48 maxlen: 48 2400:a960:a::/48 maxlen: 48 2400:a960:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 20:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2318 (0x90e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Oct 22 21:39:53 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a480be-3a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:82:22:d3:21:85:25:25:f9:cc:b9:33:5d:0c: 36:7d:db:b0:92:05:5a:c5:58:1e:64:a9:be:98:fe: 5c:4a:3b:9b:cf:0c:ff:2f:83:a8:cc:3c:cf:e9:1b: 10:d2:1e:0a:85:0e:1f:3b:9c:5d:f2:43:37:a6:32: d0:d0:aa:44:2f:9e:86:cc:c3:6f:63:8c:2d:40:0b: 91:15:b7:a7:e7:7a:61:95:fd:4e:16:5c:50:ca:c3: 3b:d0:db:d9:98:9c:54:82:31:43:0a:42:f9:fb:af: 6c:97:76:2e:96:5f:fd:9e:96:9e:1e:05:e7:bf:5d: 26:b9:91:14:7f:5a:08:30:56:b5:11:9f:f3:91:60: aa:04:de:fa:17:3d:89:74:2c:7a:d5:0a:35:b5:f6: 08:10:da:3e:12:d1:75:aa:44:e4:4b:8b:fb:74:22: 8d:69:d4:17:ca:8f:86:e5:8e:f4:48:b5:a5:fd:ef: ab:d2:5c:4d:86:38:96:ee:85:d0:24:89:6d:23:6e: 5f:c7:3a:f8:76:01:12:d6:26:0b:1f:c7:72:f6:e6: a4:18:7a:b5:2a:b4:40:01:0f:2d:bf:c5:e9:49:2f: dc:4c:50:52:5f:7d:e8:74:00:91:e0:ef:95:52:03: 2a:81:fe:e6:1d:6a:95:49:06:9e:83:fd:e9:25:2c: d1:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:70:BF:58:7A:FE:2A:4B:5B:4A:BC:EC:73:00:48:6E:28:C5:22:6B X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/4A06FF10FF2711EAB7D5F235C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.0.33.0-116.0.34.255 116.0.40.0/23 116.0.43.0-116.0.44.255 116.0.46.0/24 116.0.55.0-116.0.59.255 116.0.61.0-116.0.63.255 IPv6: 2400:a960:6::/48 2400:a960:8::/46 Signature Algorithm: sha256WithRSAEncryption 8d:60:24:c6:30:4e:16:bb:36:c8:14:1f:50:8c:6a:39:44:b7: ab:1f:29:7f:de:6d:32:51:fd:b9:66:a2:a0:6a:c3:67:0c:d7: 04:a4:ac:1b:3b:11:d4:71:16:43:ba:ef:03:c2:03:96:9b:94: 11:c9:2f:f1:70:20:14:01:c4:e9:59:d1:f7:76:bd:45:95:5c: 70:b2:75:92:56:08:bf:d0:aa:60:25:c1:3b:ea:eb:5c:f7:cc: 18:3f:ce:ae:a2:13:de:7d:ec:c5:d5:ec:d1:ba:09:e7:79:e4: cc:0c:8d:1e:78:a6:c1:3c:5b:0f:09:fb:7c:74:63:fb:d4:b9: 61:56:14:cd:cb:77:b6:15:81:7f:86:97:3d:62:04:4f:18:7f: 46:77:1c:d4:12:1f:87:e9:b0:92:67:87:6b:00:0b:a1:dc:70: 72:f8:54:ea:0f:2d:12:dc:5e:54:df:44:97:1c:6c:86:0e:80: 5e:5f:e3:d4:5e:f4:47:53:de:cd:17:ea:57:a3:bc:e2:28:83: 09:56:c0:e9:03:8c:7f:92:8c:7f:54:32:8a:5f:4f:c6:6b:30: c5:5d:d1:5f:05:f2:af:b0:1e:95:9b:1e:cc:22:33:7d:f1:6a: 9f:c7:d7:c3:d8:8f:33:93:09:19:01:d3:87:54:0d:4e:35:0b: 88:db:db:30 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICCQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjUxMDIyMjEzOTUzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODBiZS0zYTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4Ii0yGFJSX5zLkzXQw2fduwkgVaxVgeZKm+mP5cSjubzwz/L4OozDzP6RsQ 0h4KhQ4fO5xd8kM3pjLQ0KpEL56GzMNvY4wtQAuRFben53phlf1OFlxQysM70NvZ mJxUgjFDCkL5+69sl3Yull/9npaeHgXnv10muZEUf1oIMFa1EZ/zkWCqBN76Fz2J dCx61Qo1tfYIENo+EtF1qkTkS4v7dCKNadQXyo+G5Y70SLWl/e+r0lxNhjiW7oXQ JIltI25fxzr4dgES1iYLH8dy9uakGHq1KrRAAQ8tv8XpSS/cTFBSX33odACR4O+V UgMqgf7mHWqVSQaeg/3pJSzR8wIDAQABo4ICuDCCArQwHQYDVR0OBBYEFDdwv1h6 /ipLW0q87HMASG4oxSJrMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk2RDkvODBERkRFQzBFNUREMTFFQUIyNDY4RDY1QzRGOUFFMDIvNEEwNkZGMTBG RjI3MTFFQUI3RDVGMjM1QzRGOUFFMDIucm9hMHcGCCsGAQUFBwEHAQH/BGgwZjBK BAIAATBEMAwDBAB0ACEDBAB0ACIDBAF0ACgwDAMEAHQAKwMEAHQALAMEAHQALjAM AwQAdAA3AwQCdAA4MAwDBAB0AD0DBAZ0AAAwGAQCAAIwEgMHACQAqWAABgMHAiQA qWAACDANBgkqhkiG9w0BAQsFAAOCAQEAjWAkxjBOFrs2yBQfUIxqOUS3qx8pf95t MlH9uWaioGrDZwzXBKSsGzsR1HEWQ7rvA8IDlpuUEckv8XAgFAHE6VnR93a9RZVc cLJ1klYIv9CqYCXBO+rrXPfMGD/OrqIT3n3sxdXs0boJ53nkzAyNHnimwTxbDwn7 fHRj+9S5YVYUzct3thWBf4aXPWIETxh/Rncc1BIfh+mwkmeHawALodxwcvhU6g8t EtxeVN9Elxxshg6AXl/j1F70R1PezRfqV6O84iiDCVbA6QOMf5KMf1Qyil9Pxmsw xV3RXwXyr7AelZsezCIzffFqn8fXw9iPM5MJGQHTh1QNTjULiNvbMA== -----END CERTIFICATE-----Generated at Fri Mar 13 13:51:28 2026 by rpki-client