$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa File: D35D0A48129B11EB97265731C4F9AE02.roa (raw, json) Hash identifier: Vkn9tqdKe6RIQ/wWp63PeetlBy9ZEcFeql+U4eTv/v0= Subject key identifier: 7A:2F:0E:4D:42:74:79:3E:6C:FE:FB:94:5B:2C:E2:E6:0C:69:DA:6B Certificate issuer: /CN=A91F2573/serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Certificate serial: 0808 Authority key identifier: E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa Signing time: Wed 04 Feb 2026 21:18:07 +0000 ROA not before: Wed 04 Feb 2026 21:18:07 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 56035 IP address blocks: 110.173.228.0/24 maxlen: 24 110.173.229.0/24 maxlen: 24 110.173.230.0/24 maxlen: 24 110.173.231.0/24 maxlen: 24 120.88.0.0/24 maxlen: 24 120.88.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Feb 2026 20:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2573, serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Validity Not Before: Feb 4 21:18:07 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=6983b78f-3208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d3:2a:d9:7b:c0:f4:e3:a4:c0:60:a0:b0:20: 66:ea:35:e5:41:ec:4e:e9:a9:66:96:9c:7c:4d:2e: 5f:a6:44:ac:07:9a:3f:8e:09:bc:17:42:95:28:c0: 7f:bd:aa:b1:38:64:ec:cf:ea:8b:4a:79:b7:41:51: 66:7c:16:de:7a:30:40:11:9b:0a:86:89:86:c4:e4: b0:f8:37:f8:02:a5:83:f0:70:37:ed:67:af:05:3a: cb:ad:40:a4:2e:65:02:9c:a9:17:f8:38:87:c6:e5: 9c:8b:4d:ce:53:af:27:ed:84:22:42:76:c5:e7:02: f0:85:78:3e:82:de:71:b1:8c:0b:98:43:45:a2:20: 36:1b:bd:c1:c5:8c:34:47:4e:a8:88:03:41:1d:41: de:b7:61:47:c5:d2:04:85:83:4f:37:40:31:3b:5a: 5c:d4:cb:da:46:dd:bd:d8:e9:a9:b5:cd:00:ba:da: a6:42:36:cc:2e:3b:53:2a:45:e3:38:0d:3f:69:ac: 3f:ac:b8:a0:87:eb:0c:15:a9:01:13:ca:f2:c5:f3: 73:7f:5f:3f:3a:eb:5f:5e:bc:c2:05:b8:4a:e6:bc: bd:85:51:83:e7:c5:ce:42:76:78:28:53:68:d2:74: 71:43:6d:84:4f:51:f8:d4:87:d0:45:71:b6:43:04: 0c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2F:0E:4D:42:74:79:3E:6C:FE:FB:94:5B:2C:E2:E6:0C:69:DA:6B X509v3 Authority Key Identifier: keyid:E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.173.228.0/22 120.88.0.0/23 Signature Algorithm: sha256WithRSAEncryption 10:7c:2d:0f:40:ae:8d:d7:34:5b:ff:6c:ed:09:05:94:51:6e: 9e:f0:57:db:bb:ce:5d:21:99:06:8e:26:b6:13:fb:2a:a3:ff: ca:7a:a9:80:b8:f3:1d:5a:6e:be:5a:62:e0:99:80:6d:ad:38: 8b:7c:f3:e1:63:7e:87:76:43:e9:85:38:e9:fc:a0:ab:60:66: 55:51:9e:d6:36:ec:17:5c:5c:2c:1a:70:bf:80:6b:8f:b6:5b: aa:56:6b:fe:85:d5:0f:8c:88:5c:e8:61:bc:81:e8:39:64:5c: a8:96:18:9a:11:8f:1b:80:c9:de:96:98:da:c7:ec:e5:7b:5a: 38:9a:83:f0:a4:e6:c0:05:08:0b:c5:1a:15:f5:37:72:58:92: 6a:45:a1:b5:67:9e:e9:bb:19:cb:c7:1b:b4:d7:c3:be:0d:8f: 33:77:0c:5c:0e:bd:44:33:0e:e3:b7:4b:c3:27:c3:a3:25:6d: fe:ae:2d:8a:85:98:b0:fe:a0:a9:f7:02:ad:8c:b9:1f:6b:ed: f6:4d:cf:51:56:da:14:8d:6e:1d:15:77:36:e8:d6:0e:37:fd: 7f:6c:de:77:4e:cc:7b:df:ec:11:57:27:7e:1f:67:be:01:1c: 74:93:1a:97:96:90:da:1d:f5:68:11:d8:db:ef:29:a2:18:da: ea:e4:c2:39 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RjI1NzMxMTAvBgNVBAUTKEU4NDdERUFENUMwRkVENDlFMzNBM0I2MjI0RUZGM0U0 RUNEQTQxOTYwHhcNMjYwMjA0MjExODA3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTgzYjc4Zi0zMjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69Mq2XvA9OOkwGCgsCBm6jXlQexO6almlpx8TS5fpkSsB5o/jgm8F0KVKMB/ vaqxOGTsz+qLSnm3QVFmfBbeejBAEZsKhomGxOSw+Df4AqWD8HA37WevBTrLrUCk LmUCnKkX+DiHxuWci03OU68n7YQiQnbF5wLwhXg+gt5xsYwLmENFoiA2G73BxYw0 R06oiANBHUHet2FHxdIEhYNPN0AxO1pc1MvaRt292Omptc0AutqmQjbMLjtTKkXj OA0/aaw/rLigh+sMFakBE8ryxfNzf18/OutfXrzCBbhK5ry9hVGD58XOQnZ4KFNo 0nRxQ22ET1H41IfQRXG2QwQMCQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHovDk1C dHk+bP77lFss4uYMadprMB8GA1UdIwQYMBaAFOhH3q1cD+1J4zo7YiTv8+Ts2kGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjU3My9BOTBFRDMyNjEy OUExMUVCOTU5MzlGMzBDNEY5QUUwMi82RWZlclZ3UDdVbmpPanRpSk9fejVPemFR WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZFZmVyVndQN1Vuak9qdGlKT196NU96YVFaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI1NzMvQTkwRUQzMjYxMjlBMTFFQjk1OTM5RjMwQzRGOUFFMDIvRDM1RDBBNDgx MjlCMTFFQjk3MjY1NzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJureQDBAF4WAAwDQYJKoZIhvcNAQELBQADggEBABB8LQ9A ro3XNFv/bO0JBZRRbp7wV9u7zl0hmQaOJrYT+yqj/8p6qYC48x1abr5aYuCZgG2t OIt88+Fjfod2Q+mFOOn8oKtgZlVRntY27BdcXCwacL+Aa4+2W6pWa/6F1Q+MiFzo YbyB6DlkXKiWGJoRjxuAyd6WmNrH7OV7Wjiag/Ck5sAFCAvFGhX1N3JYkmpFobVn num7GcvHG7TXw74NjzN3DFwOvUQzDuO3S8Mnw6Mlbf6uLYqFmLD+oKn3Aq2MuR9r 7fZNz1FW2hSNbh0Vdzbo1g43/X9s3ndOzHvf7BFXJ34fZ74BHHSTGpeWkNod9WgR 2NvvKaIY2urkwjk= -----END CERTIFICATE-----Generated at Fri Feb 20 01:34:53 2026 by rpki-client