$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/A210E7309CAB11EBAB87D43AC4F9AE02.roa File: A210E7309CAB11EBAB87D43AC4F9AE02.roa (raw, json) Hash identifier: oPai/6JGqqBsiLWvrKLeP/3ai1A03sc+JH8DwYOimx0= Subject key identifier: 6B:DD:F1:79:34:8A:F9:FD:4E:C6:5A:20:B1:32:61:CC:5B:28:D0:40 Certificate issuer: /CN=A91A6CD6/serialNumber=CC56157C72DCC69733636743DB500875932DA41F Certificate serial: 06B7 Authority key identifier: CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/A210E7309CAB11EBAB87D43AC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:22:00 +0000 ROA not before: Wed 20 Aug 2025 23:04:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45937 IP address blocks: 202.4.175.0/24 maxlen: 24 2001:df6:5d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 Apr 2026 22:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1719 (0x6b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6CD6, serialNumber=CC56157C72DCC69733636743DB500875932DA41F Validity Not Before: Aug 20 23:04:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58ef8-cfab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:19:f7:4d:c4:84:38:31:24:26:6d:ff:92:29: 71:3e:78:0e:f0:93:52:15:19:b2:82:80:14:fb:b1: 7a:bb:ed:a8:36:53:61:3b:a6:b7:fe:5e:f5:42:b0: 52:a3:c8:40:d6:f7:96:63:de:2f:29:24:9a:8f:10: f6:9a:59:26:77:08:18:61:87:c9:e3:bf:e5:09:d1: 3e:62:01:90:79:b1:81:4e:77:af:6c:9b:85:12:b4: 49:87:f9:b5:28:c1:e3:3d:69:35:d6:7c:62:2d:dd: ca:9d:65:9d:60:59:18:e2:c9:99:f4:01:6a:91:25: 72:c6:65:0b:0e:c9:71:a3:ab:4d:19:bb:ce:7c:c8: 93:8a:f5:c2:53:b2:9b:4f:ab:ed:bf:b7:e8:9c:14: 4a:08:e1:98:9a:2a:14:4f:88:50:a9:b4:05:3d:50: 70:b7:f7:79:98:5e:4c:8a:87:4b:d0:c5:fe:9d:c7: 37:0b:5e:7a:bc:08:d2:db:fc:25:6e:79:1c:0a:53: 7c:f7:8b:5d:9d:49:36:8b:1c:e1:71:6c:64:f3:76: 1c:58:3b:3c:0a:de:6c:53:e3:f7:73:86:15:84:34: e6:65:08:83:fc:6e:1a:64:a2:69:65:cc:3c:dd:0b: 70:e6:a6:26:a5:22:01:3c:34:7c:bc:af:3a:13:41: b2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:DD:F1:79:34:8A:F9:FD:4E:C6:5A:20:B1:32:61:CC:5B:28:D0:40 X509v3 Authority Key Identifier: keyid:CC:56:15:7C:72:DC:C6:97:33:63:67:43:DB:50:08:75:93:2D:A4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/zFYVfHLcxpczY2dD21AIdZMtpB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFYVfHLcxpczY2dD21AIdZMtpB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6CD6/65E6DBD69CA911EB8AFF0F37C4F9AE02/A210E7309CAB11EBAB87D43AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.4.175.0/24 IPv6: 2001:df6:5d80::/48 Signature Algorithm: sha256WithRSAEncryption 66:48:d5:7a:94:d5:22:97:bb:9d:a9:c1:b0:6a:de:6d:2c:d3: 8e:60:c5:61:69:fb:f9:4d:0a:0d:7f:33:94:8d:e9:18:86:b1: 9b:a5:30:79:98:6d:a9:9b:1d:33:76:3c:8a:4d:83:68:ac:86: 80:2a:56:e5:0c:e7:b9:63:53:d8:52:e9:c7:02:95:94:45:ac: af:92:43:91:38:6a:11:86:31:92:0e:21:6a:06:62:fd:44:56: 1b:64:e4:fa:cc:1b:8e:30:34:38:fb:b9:34:e4:d9:7a:cb:95: 05:71:d0:19:96:57:85:50:7d:b5:c5:61:84:d6:8d:a7:83:66: 02:99:28:cc:cc:20:39:9b:45:eb:67:57:b2:0d:e6:d5:95:73: 7c:58:35:88:64:ba:81:3c:29:60:35:08:90:a2:96:11:7b:eb: f1:f3:97:37:4f:18:41:ac:5f:ac:25:8a:7c:b1:53:74:c5:1e: 32:77:42:09:0c:e5:71:40:c8:b0:97:17:1c:ff:00:2d:64:8e: 63:86:f8:3f:e2:59:36:f3:95:a8:62:23:c3:89:36:31:60:2c: fb:b0:06:d0:e0:dd:86:87:24:a3:d5:15:9b:ad:ec:18:ee:bd: cc:07:b2:30:6f:24:23:3a:55:48:a9:ec:a7:eb:06:14:b1:a0: cc:ea:f3:e5 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBrcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZDRDYxMTAvBgNVBAUTKENDNTYxNTdDNzJEQ0M2OTczMzYzNjc0M0RCNTAwODc1 OTMyREE0MUYwHhcNMjUwODIwMjMwNDA3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGVmOC1jZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Rn3TcSEODEkJm3/kilxPngO8JNSFRmygoAU+7F6u+2oNlNhO6a3/l71QrBS o8hA1veWY94vKSSajxD2mlkmdwgYYYfJ47/lCdE+YgGQebGBTnevbJuFErRJh/m1 KMHjPWk11nxiLd3KnWWdYFkY4smZ9AFqkSVyxmULDslxo6tNGbvOfMiTivXCU7Kb T6vtv7fonBRKCOGYmioUT4hQqbQFPVBwt/d5mF5MiodL0MX+ncc3C156vAjS2/wl bnkcClN894tdnUk2ixzhcWxk83YcWDs8Ct5sU+P3c4YVhDTmZQiD/G4aZKJpZcw8 3Qtw5qYmpSIBPDR8vK86E0GyywIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGvd8Xk0 ivn9TsZaILEyYcxbKNBAMB8GA1UdIwQYMBaAFMxWFXxy3MaXM2NnQ9tQCHWTLaQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkNENi82NUU2REJENjlD QTkxMUVCOEFGRjBGMzdDNEY5QUUwMi96RllWZkhMY3hwY3pZMmREMjFBSWRaTXRw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGWVZmSExjeHBjelkyZEQyMUFJZFpNdHBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZDRDYvNjVFNkRCRDY5Q0E5MTFFQjhBRkYwRjM3QzRGOUFFMDIvQTIxMEU3MzA5 Q0FCMTFFQkFCODdENDNBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAygSvMA8EAgACMAkDBwAgAQ32XYAwDQYJKoZIhvcNAQELBQADggEB AGZI1XqU1SKXu52pwbBq3m0s045gxWFp+/lNCg1/M5SN6RiGsZulMHmYbambHTN2 PIpNg2ishoAqVuUM57ljU9hS6ccClZRFrK+SQ5E4ahGGMZIOIWoGYv1EVhtk5PrM G44wNDj7uTTk2XrLlQVx0BmWV4VQfbXFYYTWjaeDZgKZKMzMIDmbRetnV7IN5tWV c3xYNYhkuoE8KWA1CJCilhF76/HzlzdPGEGsX6wlinyxU3TFHjJ3QgkM5XFAyLCX Fxz/AC1kjmOG+D/iWTbzlahiI8OJNjFgLPuwBtDg3YaHJKPVFZut7BjuvcwHsjBv JCM6VUip7KfrBhSxoMzq8+U= -----END CERTIFICATE-----Generated at Sat Mar 28 12:08:52 2026 by rpki-client