$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/2B622E1282F511EF9090F681C4F9AE02.roa File: 2B622E1282F511EF9090F681C4F9AE02.roa (raw, json) Hash identifier: JS+c9sL3L+WCOEhTvnP+XpOyBuJ/6R/u9Qm2AM/cHpk= Subject key identifier: 9E:74:9A:FE:E8:CF:A3:8C:A4:F9:FA:E5:31:D4:A7:F2:AD:97:72:7E Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 35D9 Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/2B622E1282F511EF9090F681C4F9AE02.roa Signing time: Thu 30 Apr 2026 15:13:02 +0000 ROA not before: Thu 30 Apr 2026 15:13:02 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 24391 IP address blocks: 202.91.136.0/22 maxlen: 24 202.91.140.0/23 maxlen: 24 202.91.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 May 2026 14:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13785 (0x35d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Apr 30 15:13:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69f3717e-8347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:21:90:75:5a:0f:63:78:a9:94:d8:70:68:97: 93:2c:c3:41:3b:b2:fc:d1:05:c0:d4:1c:ef:ef:c0: 70:3d:df:45:4f:47:95:bb:4d:fe:cc:de:b7:7c:d1: 53:ac:9d:50:94:ee:e5:06:f6:fd:4b:cf:6c:22:01: 4a:b0:ea:a1:5c:dd:33:da:91:b7:0a:d2:10:df:53: 0a:8b:9f:11:28:dd:70:fc:5c:84:23:6c:e8:fe:b1: 3b:f7:fd:28:a3:8b:56:e2:dc:85:ce:11:ed:9b:33: 70:dc:37:b1:7e:61:3f:52:49:19:a0:8c:d3:53:89: 95:84:58:42:f0:29:2b:b8:0b:e2:5e:26:e2:8e:cf: de:cd:50:bb:47:f9:2a:f6:16:a8:57:d8:a5:b3:83: 2d:10:dc:9b:19:49:b2:ae:2d:75:e7:f4:0e:e1:78: b8:2f:3c:da:5c:08:9c:c7:0e:86:38:ea:84:6d:dc: 39:24:74:37:2f:b3:33:44:40:ec:cd:8e:0c:2b:3b: 2e:5a:78:7a:4b:85:a8:10:e8:2d:db:a0:29:b1:ed: 71:19:6e:5c:57:41:66:e4:7f:eb:d5:7e:60:cb:07: 4f:b1:84:5d:5f:3a:0d:df:4d:3c:e7:46:02:7e:db: 4b:6e:cc:d8:fa:67:46:9b:02:74:d8:37:93:48:6e: 0f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:74:9A:FE:E8:CF:A3:8C:A4:F9:FA:E5:31:D4:A7:F2:AD:97:72:7E X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/2B622E1282F511EF9090F681C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.91.136.0/21 Signature Algorithm: sha256WithRSAEncryption 70:f0:1b:9c:08:2b:19:fa:0c:d0:1c:04:cb:00:09:4f:f9:6a: 49:2b:c7:bd:7d:97:a5:a2:80:fc:e4:93:23:a3:fb:74:c6:ca: 9d:20:fa:2b:22:b3:05:31:b8:87:85:bc:d4:46:40:d0:5b:db: cf:69:d7:36:6b:83:cf:50:d3:ed:5b:6f:bd:43:2f:b7:1b:9b: 12:db:b3:f7:86:06:94:78:e4:5d:00:5d:26:b8:03:8b:f1:3d: 0a:01:14:ca:fc:cc:ec:b0:98:6d:a2:f4:e2:f8:db:50:24:fb: 56:3f:07:cc:80:9c:8a:1a:3b:b7:fd:9a:1b:e0:74:29:b1:7a: db:b0:11:e0:96:34:26:2f:9d:e9:fa:a2:99:7c:60:c9:a7:c1: 88:eb:fa:27:50:22:97:1b:dc:d8:81:2d:4b:67:f8:3a:bd:04: df:67:86:2a:2e:69:f2:db:93:c1:45:66:58:0d:59:fb:cb:33: 91:95:04:4d:6a:aa:64:32:7b:37:2c:f6:d2:06:72:b7:9f:1c: 9a:c6:bb:eb:ce:c3:00:5a:a7:1b:bf:b0:99:36:08:45:b9:c9: 83:37:3e:27:30:9f:59:6b:eb:a6:c9:0a:7f:33:99:4c:ce:ab: 24:00:ba:9a:15:4a:9c:24:fe:c1:d9:36:b9:ad:c4:38:1f:ab: fe:ca:bb:f2 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjYwNDMwMTUxMzAyWhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWYzNzE3ZS04MzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsiGQdVoPY3iplNhwaJeTLMNBO7L80QXA1Bzv78BwPd9FT0eVu03+zN63fNFT rJ1QlO7lBvb9S89sIgFKsOqhXN0z2pG3CtIQ31MKi58RKN1w/FyEI2zo/rE79/0o o4tW4tyFzhHtmzNw3DexfmE/UkkZoIzTU4mVhFhC8CkruAviXibijs/ezVC7R/kq 9haoV9ils4MtENybGUmyri115/QO4Xi4LzzaXAicxw6GOOqEbdw5JHQ3L7MzREDs zY4MKzsuWnh6S4WoEOgt26Apse1xGW5cV0Fm5H/r1X5gywdPsYRdXzoN300850YC fttLbszY+mdGmwJ02DeTSG4PzwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ50mv7o z6OMpPn65THUp/Ktl3J+MB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3NzAvQzMzNjgzQjYxRDhFMTFFMjhBOUI1N0VEMDhCMDJDRDIvMkI2MjJFMTI4 MkY1MTFFRjkwOTBGNjgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyluIMA0GCSqGSIb3DQEBCwUAA4IBAQBw8BucCCsZ+gzQHATLAAlP +WpJK8e9fZelooD85JMjo/t0xsqdIPorIrMFMbiHhbzURkDQW9vPadc2a4PPUNPt W2+9Qy+3G5sS27P3hgaUeORdAF0muAOL8T0KARTK/MzssJhtovTi+NtQJPtWPwfM gJyKGju3/Zob4HQpsXrbsBHgljQmL53p+qKZfGDJp8GI6/onUCKXG9zYgS1LZ/g6 vQTfZ4YqLmny25PBRWZYDVn7yzORlQRNaqpkMns3LPbSBnK3nxyaxrvrzsMAWqcb v7CZNghFucmDNz4nMJ9Za+umyQp/M5lMzqskALqaFUqcJP7B2Ta5rcQ4H6v+yrvy -----END CERTIFICATE-----Generated at Wed May 13 10:49:40 2026 by rpki-client