$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/07FBA006084E11EF89D29620C4F9AE02.roa File: 07FBA006084E11EF89D29620C4F9AE02.roa (raw, json) Hash identifier: WCC6UXi4R+1X1dVKcTmUaZE1whe9HYXD5VTHWuUKKDc= Subject key identifier: 44:68:07:2A:4B:02:12:1D:30:65:CD:B6:93:FE:E2:5D:5F:6D:84:A9 Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 0620 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/07FBA006084E11EF89D29620C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:05:28 +0000 ROA not before: Wed 04 Feb 2026 22:19:34 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 10207 IP address blocks: 223.25.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 22:29:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Feb 4 22:19:34 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a471d8-55a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:24:6b:90:ba:2f:6f:d1:e4:25:18:75:7e:f2: a8:1d:a0:ea:cb:fd:5c:2b:38:df:45:fa:92:e5:67: 57:56:4c:c0:ca:d5:25:57:b0:5b:52:18:bb:bc:a9: 31:e5:80:e5:c5:2a:7c:5d:88:0c:46:79:b8:40:54: 3e:6c:bb:c9:ad:0d:d5:04:eb:48:f1:e8:44:3f:58: 64:be:97:b9:a5:e4:f8:8c:d6:3d:76:47:20:43:9d: 5a:27:3b:8f:02:ab:82:a7:e1:d0:3c:4c:da:d8:b4: da:27:12:98:b9:b4:bb:de:52:ee:1d:1a:93:c4:80: f4:d8:e4:ed:ca:ae:c4:4e:b9:c8:1e:b4:9a:c0:58: 9d:09:36:e3:f5:89:87:b3:57:59:68:20:f4:a6:23: 74:51:22:51:77:00:2e:c8:a6:77:0d:be:0d:7c:3e: 59:4e:6b:27:ac:8a:2b:a9:21:af:20:d8:f7:70:d6: 0d:7a:4b:6e:d6:20:0f:b8:19:cc:9e:ea:7a:43:f5: 4d:b1:60:dd:a6:e3:61:ee:16:db:96:d9:a6:53:54: 0d:62:e0:ca:a4:0d:15:fb:37:69:b5:3d:47:2e:95: 08:29:ae:7e:2c:23:e0:a7:a7:3d:19:23:36:c7:8b: 02:dc:c0:3c:42:3d:02:58:e1:e8:f1:76:45:d0:84: fe:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:68:07:2A:4B:02:12:1D:30:65:CD:B6:93:FE:E2:5D:5F:6D:84:A9 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/07FBA006084E11EF89D29620C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 223.25.224.0/22 Signature Algorithm: sha256WithRSAEncryption c0:a5:a1:81:ba:aa:fa:b2:ad:3a:9b:70:3f:e8:60:42:66:73: 5e:36:42:4e:a1:dd:0a:b0:a5:d1:97:f5:74:c9:dc:93:d0:d3: 25:6b:63:72:7f:a4:ba:e0:4b:d6:d1:9a:bb:88:c9:cc:32:33: 6d:0e:e6:b7:ac:34:63:81:df:c3:42:9e:22:8e:30:50:48:0b: e5:1f:dd:80:d5:0a:ab:d2:fd:18:fa:dc:68:24:ac:62:59:59: b7:18:cb:f1:1f:96:f2:05:5f:67:05:69:6c:6a:b0:92:82:ee: 4c:38:63:76:84:22:21:95:7a:f8:b9:6e:7c:15:b1:cb:70:19: c9:42:6b:af:29:f9:45:25:1a:3d:b1:c8:13:3a:63:fe:ad:e6: c6:3a:c4:72:66:7e:11:9d:57:04:ce:3e:ff:ca:29:d1:62:23: ba:ec:14:f8:6f:a2:44:68:3c:5b:dc:b0:70:10:57:de:1f:b6: af:40:d0:c6:9f:6a:49:6c:37:86:70:a9:62:ae:d9:66:78:f6: 8f:74:52:f5:37:86:b7:f7:f3:24:c1:cd:20:67:85:1e:e0:7e: b3:62:c0:49:70:75:67:bb:fd:94:39:61:18:ea:17:f5:f0:7f: 90:dc:b0:fd:15:3c:c2:3c:c3:df:4b:1e:e1:5a:9e:dd:cd:1e: e9:14:66:4f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjYwMjA0MjIxOTM0WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzFkOC01NWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCRrkLovb9HkJRh1fvKoHaDqy/1cKzjfRfqS5WdXVkzAytUlV7BbUhi7vKkx 5YDlxSp8XYgMRnm4QFQ+bLvJrQ3VBOtI8ehEP1hkvpe5peT4jNY9dkcgQ51aJzuP AquCp+HQPEza2LTaJxKYubS73lLuHRqTxID02OTtyq7ETrnIHrSawFidCTbj9YmH s1dZaCD0piN0USJRdwAuyKZ3Db4NfD5ZTmsnrIorqSGvINj3cNYNektu1iAPuBnM nup6Q/VNsWDdpuNh7hbbltmmU1QNYuDKpA0V+zdptT1HLpUIKa5+LCPgp6c9GSM2 x4sC3MA8Qj0CWOHo8XZF0IT+GwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFERoBypL AhIdMGXNtpP+4l1fbYSpMB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvMDdGQkEwMDYw ODRFMTFFRjg5RDI5NjIwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQC3xngMA0GCSqGSIb3DQEBCwUAA4IBAQDApaGBuqr6sq06m3A/6GBC ZnNeNkJOod0KsKXRl/V0ydyT0NMla2Nyf6S64EvW0Zq7iMnMMjNtDua3rDRjgd/D Qp4ijjBQSAvlH92A1Qqr0v0Y+txoJKxiWVm3GMvxH5byBV9nBWlsarCSgu5MOGN2 hCIhlXr4uW58FbHLcBnJQmuvKflFJRo9scgTOmP+rebGOsRyZn4RnVcEzj7/yinR YiO67BT4b6JEaDxb3LBwEFfeH7avQNDGn2pJbDeGcKlirtlmePaPdFL1N4a39/Mk wc0gZ4Ue4H6zYsBJcHVnu/2UOWEY6hf18H+Q3LD9FTzCPMPfSx7hWp7dzR7pFGZP -----END CERTIFICATE-----Generated at Mon Mar 23 01:56:34 2026 by rpki-client