$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: Rbl2KzlFG4HRgcL2yyd8dnS5ncuLP5I8W/FqPOTuByw= Subject key identifier: CB:37:85:2B:56:85:89:EA:8F:C7:3F:5C:4A:D4:26:AF:DB:9E:80:74 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 082B Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:54:34 +0000 ROA not before: Tue 11 Nov 2025 05:55:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62610 IP address blocks: 129.227.143.0/24 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.88.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 162.128.94.0/24 maxlen: 24 162.128.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Nov 11 05:55:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a48b69-b18a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:55:cd:4b:2f:84:ea:23:b5:a2:6d:7f:c9:b5: 62:ca:0d:2b:ae:d5:34:a8:f5:c1:d2:22:2d:ba:d2: b6:29:a8:27:ac:e7:8f:d0:1c:6b:66:f7:7b:dc:f1: 4e:11:96:d0:20:38:4c:91:1c:62:5b:5e:9f:47:71: da:ef:df:97:af:40:ca:cf:72:b5:6c:42:6e:77:51: 1f:39:5d:d1:0d:65:b8:4e:a4:3a:6f:2c:7a:68:30: a1:a1:fc:15:9c:18:d3:65:b6:99:06:64:1f:24:c4: 91:52:14:41:97:65:ec:72:36:9a:9c:34:de:e2:f7: 2d:f5:fb:e5:d1:7a:cc:a6:ae:7d:48:69:a2:79:8e: 6a:33:d5:5b:fe:1f:bb:53:eb:6a:e9:c3:41:46:62: 4e:a6:8e:04:a2:9a:f4:15:e7:2d:62:61:6e:68:11: 3c:c6:68:68:3c:ec:62:f0:54:04:ba:5d:80:b2:e1: 9d:c3:3f:99:d8:da:d3:f0:d5:01:39:1c:9f:89:7a: 77:11:9c:43:40:48:1b:97:51:4c:cf:36:3e:56:04: 9d:e0:69:13:7d:54:af:86:30:8b:f3:0f:4e:67:a5: b7:54:ea:63:e4:ce:9f:ad:a7:d7:89:34:a9:ee:96: b9:5c:a9:83:fb:f6:75:b5:b7:cd:5d:cd:b3:41:83: 15:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:37:85:2B:56:85:89:EA:8F:C7:3F:5C:4A:D4:26:AF:DB:9E:80:74 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 129.227.143.0/24 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.88.255 162.128.90.0-162.128.95.255 Signature Algorithm: sha256WithRSAEncryption 10:e5:8b:2e:e6:49:6f:33:d4:21:58:07:2d:e7:22:61:f2:21: cb:d4:21:18:3e:11:69:e6:09:29:25:b1:a1:87:4e:3a:6d:41: fd:37:64:c6:42:3d:de:67:ec:36:b2:2e:01:4c:35:4d:61:62: 6a:bb:d2:76:fb:a2:21:e8:80:5d:84:7c:08:98:99:21:28:92: c2:02:06:57:23:d9:a2:2e:c5:ce:bd:f2:fe:61:d8:34:a3:49: 79:e6:21:1a:44:59:8b:93:a9:83:d9:2b:2c:31:0f:5e:ae:c7: a3:d6:d8:12:74:c6:e6:67:af:1e:4e:4f:bf:93:f2:cf:ef:0b: 32:46:c4:c2:3c:6e:77:36:35:05:f0:a9:f0:e5:51:26:80:2b: 93:78:3a:b3:e4:6b:f7:0d:bf:31:a7:01:dd:aa:d6:e4:35:0c: 23:cb:ba:82:73:8e:75:c4:06:0d:f3:6c:ea:35:3b:2f:69:e4: d5:1a:c1:a7:57:54:f4:0e:2e:a6:b7:20:b5:68:14:f3:ea:f5: cd:76:34:e0:2b:fa:37:89:14:1a:dd:64:ca:f0:e5:fb:5a:c0: 18:ff:1e:24:ed:b5:12:4b:58:de:6f:68:b6:d5:54:80:5d:12: 55:ed:5f:0b:1a:27:1f:97:43:0e:55:ca:da:f7:a3:41:3e:e8: 7e:c4:3a:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUxMTExMDU1NTIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGI2OS1iMThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFXNSy+E6iO1om1/ybViyg0rrtU0qPXB0iItutK2KagnrOeP0BxrZvd73PFO EZbQIDhMkRxiW16fR3Ha79+Xr0DKz3K1bEJud1EfOV3RDWW4TqQ6byx6aDChofwV nBjTZbaZBmQfJMSRUhRBl2XscjaanDTe4vct9fvl0XrMpq59SGmieY5qM9Vb/h+7 U+tq6cNBRmJOpo4Eopr0FectYmFuaBE8xmhoPOxi8FQEul2AsuGdwz+Z2NrT8NUB ORyfiXp3EZxDQEgbl1FMzzY+VgSd4GkTfVSvhjCL8w9OZ6W3VOpj5M6frafXiTSp 7pa5XKmD+/Z1tbfNXc2zQYMVyQIDAQABo4IClDCCApAwHQYDVR0OBBYEFMs3hStW hYnqj8c/XErUJq/bnoB0MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMFMGCCsGAQUFBwEHAQH/BEQwQjBA BAIAATA6AwQAgeOPAwQAnDtJAwQAnDt7AwQAnDuSAwQAnDu4MAwDBAGigFIDBACi gFgwDAMEAaKAWgMEBaKAQDANBgkqhkiG9w0BAQsFAAOCAQEAEOWLLuZJbzPUIVgH LeciYfIhy9QhGD4RaeYJKSWxoYdOOm1B/TdkxkI93mfsNrIuAUw1TWFiarvSdvui IeiAXYR8CJiZISiSwgIGVyPZoi7Fzr3y/mHYNKNJeeYhGkRZi5Opg9krLDEPXq7H o9bYEnTG5mevHk5Pv5Pyz+8LMkbEwjxudzY1BfCp8OVRJoArk3g6s+Rr9w2/MacB 3arW5DUMI8u6gnOOdcQGDfNs6jU7L2nk1RrBp1dU9A4uprcgtWgU8+r1zXY04Cv6 N4kUGt1kyvDl+1rAGP8eJO21EktY3m9ottVUgF0SVe1fCxonH5dDDlXK2vejQT7o fsQ6tQ== -----END CERTIFICATE-----Generated at Sat Mar 7 04:33:46 2026 by rpki-client