$ rpki-client -vvf rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/720ED6F487CB11F0B605C67DC4F9AE02.roa File: 720ED6F487CB11F0B605C67DC4F9AE02.roa (raw, json) Hash identifier: DkL8mKFGzHdVRylK1rD4tLxN/q/oxjuNdQSmCvoiiL8= Subject key identifier: FF:EF:38:26:D5:34:4A:C7:A9:1D:D1:26:B1:47:76:A9:DE:8E:BF:E2 Certificate issuer: /CN=A91523FF/serialNumber=606B4F42EE97F7488EC20B63D8B1AAF6D42D9CA7 Certificate serial: 5E Authority key identifier: 60:6B:4F:42:EE:97:F7:48:8E:C2:0B:63:D8:B1:AA:F6:D4:2D:9C:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/720ED6F487CB11F0B605C67DC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:54:48 +0000 ROA not before: Tue 02 Sep 2025 07:07:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139043 IP address blocks: 202.66.180.0/24 maxlen: 24 202.66.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.crl rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 07:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523FF, serialNumber=606B4F42EE97F7488EC20B63D8B1AAF6D42D9CA7 Validity Not Before: Sep 2 07:07:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58898-295b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:52:32:de:02:63:28:9b:f6:a6:37:8c:07:8b: 49:90:2c:cf:f1:5f:18:b0:71:05:a0:4e:04:ef:04: c0:5c:8f:7a:c3:3c:da:bc:3c:77:8d:e8:68:87:f3: 06:78:44:24:94:74:64:a8:da:c2:db:6b:e7:93:b4: af:22:48:8e:7a:99:72:5b:f8:d1:10:9a:40:08:7e: 44:ce:67:06:2b:dd:ed:b7:85:ea:39:e4:cf:42:ea: 31:0e:5c:86:5b:44:9d:63:d5:52:81:d5:35:be:3c: d8:48:be:04:b4:19:46:da:13:2f:06:6a:10:0d:09: 37:41:66:03:02:01:c4:da:04:49:bd:ca:fd:4d:bc: 32:f4:c3:bc:7c:c9:47:f4:63:1b:54:27:1a:c7:b6: b9:e0:3e:80:ca:6a:8c:24:81:e5:ba:9c:d0:d4:d3: 91:e4:13:f5:6d:fb:80:e7:bd:bb:63:c5:5c:a5:e6: f4:32:33:5d:86:df:4b:a9:5e:eb:f3:5d:fe:dc:8b: 94:25:a0:49:cc:11:0d:9a:b4:94:03:ba:8d:71:41: 13:b7:33:ce:fd:52:e2:9a:1e:1f:d2:55:09:b0:6e: 3d:bd:7b:56:8d:4c:16:01:47:72:34:b4:92:65:df: 00:3c:ad:a2:ca:43:95:41:fb:6e:92:49:25:28:e7: 2b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:EF:38:26:D5:34:4A:C7:A9:1D:D1:26:B1:47:76:A9:DE:8E:BF:E2 X509v3 Authority Key Identifier: keyid:60:6B:4F:42:EE:97:F7:48:8E:C2:0B:63:D8:B1:AA:F6:D4:2D:9C:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/720ED6F487CB11F0B605C67DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.66.180.0/23 Signature Algorithm: sha256WithRSAEncryption 63:58:d6:18:93:54:36:ee:e4:29:74:28:20:f6:03:13:8a:f8: 1e:44:53:bd:60:c8:71:a5:44:7a:db:4d:29:65:33:b6:8c:53: 3a:90:d7:e3:07:d2:d3:39:d0:e3:eb:2e:9d:7d:d0:5d:81:d8: 3f:9f:99:05:90:67:1e:9c:24:ac:15:4a:93:d8:26:94:44:a6: 50:1b:2e:39:e0:00:6c:67:57:9f:b7:16:8d:58:9c:45:81:78: 70:f3:32:f8:cc:70:d8:71:54:6c:c2:55:d0:ef:cc:f4:38:c2: 81:6f:d3:f8:d1:1f:b3:82:fc:b6:b2:cd:3f:2a:74:cc:cd:e4: 19:40:06:7f:04:49:22:5b:bd:21:84:66:c6:f9:df:2c:6b:99: 35:91:00:6f:b4:cc:0b:fa:7d:df:dc:8a:7b:10:bc:2a:fa:ba: 94:48:1d:99:0f:c4:bb:5d:30:5f:85:c4:a3:a2:28:c3:89:ad: 41:08:30:1f:a6:84:86:3a:cf:58:82:ac:e1:ee:85:e5:cf:b1: a2:4d:8a:be:ca:28:1d:a9:b6:a5:42:e0:59:71:49:35:be:b9: 40:98:41:74:ff:1a:d3:a5:13:55:74:e9:04:3f:19:4b:ae:5d: a6:9b:9c:82:ec:1f:d8:ec:6c:5c:33:c4:e6:94:90:cf:9e:f9: 44:9e:bd:90 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjNGRjExMC8GA1UEBRMoNjA2QjRGNDJFRTk3Rjc0ODhFQzIwQjYzRDhCMUFBRjZE NDJEOUNBNzAeFw0yNTA5MDIwNzA3MTFaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU4ODk4LTI5NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2UjLeAmMom/amN4wHi0mQLM/xXxiwcQWgTgTvBMBcj3rDPNq8PHeN6GiH8wZ4 RCSUdGSo2sLba+eTtK8iSI56mXJb+NEQmkAIfkTOZwYr3e23heo55M9C6jEOXIZb RJ1j1VKB1TW+PNhIvgS0GUbaEy8GahANCTdBZgMCAcTaBEm9yv1NvDL0w7x8yUf0 YxtUJxrHtrngPoDKaowkgeW6nNDU05HkE/Vt+4DnvbtjxVyl5vQyM12G30upXuvz Xf7ci5QloEnMEQ2atJQDuo1xQRO3M879UuKaHh/SVQmwbj29e1aNTBYBR3I0tJJl 3wA8raLKQ5VB+26SSSUo5ytlAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU/+84JtU0 SsepHdEmsUd2qd6Ov+IwHwYDVR0jBBgwFoAUYGtPQu6X90iOwgtj2LGq9tQtnKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyM0ZGLzIwMEMzNzdBODdD QjExRjA4MDJCMjI3REM0RjlBRTAyL1lHdFBRdTZYOTBpT3dndGoyTEdxOXRRdG5L Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUd0UFF1Nlg5MGlPd2d0ajJMR3E5dFF0bktjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjNGRi8yMDBDMzc3QTg3Q0IxMUYwODAyQjIyN0RDNEY5QUUwMi83MjBFRDZGNDg3 Q0IxMUYwQjYwNUM2N0RDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAHKQrQwDQYJKoZIhvcNAQELBQADggEBAGNY1hiTVDbu5Cl0KCD2AxOK +B5EU71gyHGlRHrbTSllM7aMUzqQ1+MH0tM50OPrLp190F2B2D+fmQWQZx6cJKwV SpPYJpREplAbLjngAGxnV5+3Fo1YnEWBeHDzMvjMcNhxVGzCVdDvzPQ4woFv0/jR H7OC/LayzT8qdMzN5BlABn8ESSJbvSGEZsb53yxrmTWRAG+0zAv6fd/cinsQvCr6 upRIHZkPxLtdMF+FxKOiKMOJrUEIMB+mhIY6z1iCrOHuheXPsaJNir7KKB2ptqVC 4FlxSTW+uUCYQXT/GtOlE1V06QQ/GUuuXaabnILsH9jsbFwzxOaUkM+e+USevZA= -----END CERTIFICATE-----Generated at Thu Mar 26 18:47:50 2026 by rpki-client