$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa File: D6871FC40C5711EFBD14BD5AC4F9AE02.roa (raw, json) Hash identifier: Cp3VNnBm8dMMJ5lrpjvVQ4fCjATppQ1Lsk1qeefPPwY= Subject key identifier: 31:D4:B7:95:4A:94:7E:58:EF:E4:DD:5B:E6:97:08:FC:22:89:09:15 Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 019C Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:51:50 +0000 ROA not before: Wed 01 Oct 2025 06:01:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 10103 IP address blocks: 202.70.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0, serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Oct 1 06:01:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a5a406-c127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:62:9d:0c:83:5d:9f:22:bd:27:77:07:47:06: a0:72:94:a1:e7:ec:9d:24:75:1d:32:38:b1:df:c6: e3:47:9c:d1:0b:e0:6a:d6:b8:f2:51:c3:88:6f:bb: 8e:ed:c6:30:a1:a9:d7:72:d1:69:d5:07:ef:ac:17: ea:5d:6d:c1:26:51:bc:92:b6:b3:24:e0:4c:8a:af: 8a:57:b9:80:8c:b2:00:74:99:eb:86:5b:c1:49:41: 2c:1b:38:9b:c5:c5:b0:d1:54:0e:71:16:bd:93:56: 95:df:ee:b1:d7:10:c2:84:6d:89:54:0f:e5:3d:18: 71:eb:38:87:b5:b2:e3:75:d6:38:f8:e1:8f:2e:c3: 4a:f3:00:e4:cd:3f:30:7a:2b:15:f7:04:64:5c:02: 95:ac:82:2c:35:c5:a5:d5:72:a2:4a:4f:a8:cd:b6: ce:3f:d5:b5:af:8d:a0:ca:bc:41:e6:d6:0b:c6:fb: bd:0c:88:b3:5e:36:75:d0:ca:e6:22:6c:f3:5f:c1: 9d:64:93:91:1d:f2:db:a8:56:89:91:7a:ce:5a:83: 03:29:32:0f:5e:04:31:2c:6e:95:7a:d2:3d:82:a1: df:78:a6:ab:4f:01:e9:e9:01:af:53:37:33:33:ac: 68:46:d1:0f:d7:82:da:21:58:6e:0e:5d:e5:21:1b: 89:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:D4:B7:95:4A:94:7E:58:EF:E4:DD:5B:E6:97:08:FC:22:89:09:15 X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.70.160.0/20 Signature Algorithm: sha256WithRSAEncryption 64:20:df:ee:2c:27:9f:6c:df:6a:5f:d3:2e:a4:e5:12:9a:f4: e3:f2:ad:b8:c2:11:80:dc:d3:58:44:ac:3c:e3:3f:30:85:38: 15:37:78:6c:a8:a3:ab:c7:66:90:97:05:ee:b5:2b:be:27:ee: 13:07:61:ce:0e:34:72:30:2e:95:20:55:89:2d:b3:da:93:40: b7:ee:7c:1e:b5:a1:d7:9e:db:66:e5:52:ec:61:a6:e5:d0:71: 2f:a4:1d:6e:70:4c:14:db:9a:28:7a:5d:90:d5:60:07:78:8d: e8:bf:d1:4a:19:db:90:22:4d:ed:5b:bb:5d:8d:9d:7e:fc:d5: ac:8f:3b:19:59:e7:a1:b4:3d:21:f0:d2:cd:f7:3b:02:fe:4f: bf:a3:d3:52:aa:f5:4e:19:d2:60:ea:ab:70:07:52:aa:5a:bd: 7b:59:34:e7:aa:1d:60:36:e8:d7:7e:50:cc:a5:d5:ae:f1:a9: 41:5e:dd:58:f8:c4:46:9c:08:a0:ef:21:10:8d:ba:aa:22:fe: 8d:ff:a4:10:24:a4:b4:e0:6f:4a:7d:2c:38:76:0a:c7:fc:58: a7:67:5e:44:40:fd:ef:37:20:ab:af:12:75:3b:55:ad:b7:d4: a4:b6:ff:17:55:e6:c4:26:85:3b:c5:15:eb:32:86:17:ee:80: 94:72:29:2a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkzQTAxMTAvBgNVBAUTKEJDQjdDRjQ0MzBCQjk4RUEwNDg1MUMzNDA3MjZFNTg4 MTUwRTEzOUQwHhcNMjUxMDAxMDYwMTExWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTQwNi1jMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGKdDINdnyK9J3cHRwagcpSh5+ydJHUdMjix38bjR5zRC+Bq1rjyUcOIb7uO 7cYwoanXctFp1QfvrBfqXW3BJlG8krazJOBMiq+KV7mAjLIAdJnrhlvBSUEsGzib xcWw0VQOcRa9k1aV3+6x1xDChG2JVA/lPRhx6ziHtbLjddY4+OGPLsNK8wDkzT8w eisV9wRkXAKVrIIsNcWl1XKiSk+ozbbOP9W1r42gyrxB5tYLxvu9DIizXjZ10Mrm ImzzX8GdZJORHfLbqFaJkXrOWoMDKTIPXgQxLG6VetI9gqHfeKarTwHp6QGvUzcz M6xoRtEP14LaIVhuDl3lIRuJOQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDHUt5VK lH5Y7+TdW+aXCPwiiQkVMB8GA1UdIwQYMBaAFLy3z0Qwu5jqBIUcNAcm5YgVDhOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTNBMC9BNTk1NUU1NjBD NDUxMUVGOUU3RTA1MURDNEY5QUUwMi92TGZQUkRDN21Pb0VoUncwQnlibGlCVU9F NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkzQTAvQTU5NTVFNTYwQzQ1MTFFRjlFN0UwNTFEQzRGOUFFMDIvRDY4NzFGQzQw QzU3MTFFRkJEMTRCRDVBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEykagMA0GCSqGSIb3DQEBCwUAA4IBAQBkIN/uLCefbN9qX9MupOUS mvTj8q24whGA3NNYRKw84z8whTgVN3hsqKOrx2aQlwXutSu+J+4TB2HODjRyMC6V IFWJLbPak0C37nwetaHXnttm5VLsYabl0HEvpB1ucEwU25ooel2Q1WAHeI3ov9FK GduQIk3tW7tdjZ1+/NWsjzsZWeehtD0h8NLN9zsC/k+/o9NSqvVOGdJg6qtwB1Kq Wr17WTTnqh1gNujXflDMpdWu8alBXt1Y+MRGnAig7yEQjbqqIv6N/6QQJKS04G9K fSw4dgrH/FinZ15EQP3vNyCrrxJ1O1Wtt9Sktv8XVebEJoU7xRXrMoYX7oCUcikq -----END CERTIFICATE-----Generated at Thu Mar 26 04:45:57 2026 by rpki-client