$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/F5A311DAE21611EEB7B0D361C4F9AE02.roa File: F5A311DAE21611EEB7B0D361C4F9AE02.roa (raw, json) Hash identifier: EZoQFirW5esN1VtBDXZEiHNnC8g7jkK9EPytiN1M6xw= Subject key identifier: 01:54:61:17:6A:C3:A3:D2:C3:F0:C6:CE:57:4F:66:F9:45:0B:8F:EB Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: 0179 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/F5A311DAE21611EEB7B0D361C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:04:51 +0000 ROA not before: Tue 20 Jan 2026 06:40:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152642 IP address blocks: 202.37.217.0/24 maxlen: 24 2001:df3:8b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD, serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: Jan 20 06:40:36 2026 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a41d53-50e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2a:cd:45:1d:9d:8b:57:12:18:7b:4c:d1:f4: d4:5c:bf:68:97:ec:74:43:e4:97:f0:f8:85:ff:12: 83:9b:5e:b0:d6:fc:b2:67:3d:95:66:a8:20:6d:20: b4:18:e6:7e:26:f4:c3:b6:ca:98:8c:cf:9b:b5:7f: bc:ae:7b:f0:26:eb:2f:09:a5:d3:6b:d9:a5:34:26: 5b:2d:1d:fc:08:fa:99:f9:e3:6a:db:3e:df:ce:61: 82:87:a7:4c:bd:8d:d1:a6:48:a9:01:f2:b2:c7:10: e3:f3:09:63:9b:6f:3f:d9:19:0e:e0:84:35:27:67: e3:78:f5:12:ca:7e:bb:24:37:33:3a:d6:b1:b6:4f: 31:9f:8a:fe:b7:ec:ee:e8:b7:a2:14:e0:76:51:c9: 48:14:fd:ab:05:4e:53:31:03:91:b8:9b:e6:87:06: b3:37:3a:84:fa:21:e4:df:37:28:41:67:0b:03:b6: 80:d3:23:fe:16:e8:7a:6e:72:33:fa:87:b6:bc:7f: f0:3b:09:f6:ef:2d:e7:ca:de:76:7e:b3:10:30:bf: 77:24:18:af:11:57:be:54:56:fe:09:61:23:e4:5b: 46:c3:28:de:db:9c:1f:bb:37:ba:49:d0:a6:a0:69: 4e:40:59:65:4f:90:87:e2:75:da:73:90:38:ba:83: c1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:54:61:17:6A:C3:A3:D2:C3:F0:C6:CE:57:4F:66:F9:45:0B:8F:EB X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/F5A311DAE21611EEB7B0D361C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.217.0/24 IPv6: 2001:df3:8b40::/48 Signature Algorithm: sha256WithRSAEncryption b5:52:fb:17:b0:32:3a:e6:fe:13:d0:54:a2:6f:51:24:87:27: da:95:b6:17:8c:b0:01:d8:d3:be:03:5b:6c:a1:ce:8f:31:59: 65:0b:bf:c3:66:18:59:06:54:e4:26:9c:0b:08:ae:14:0a:e4: 0c:ac:18:6e:6d:fc:bb:2c:00:6a:63:f5:d1:4b:7e:b3:73:1d: 4e:12:9d:ac:e2:28:eb:bc:43:3b:50:da:95:99:c4:3e:f6:7e: f4:92:61:9c:8f:1b:7a:17:9f:2a:00:63:26:64:c7:40:e5:ac: b7:63:62:3f:27:c5:8c:1c:83:16:7e:a1:f6:39:9b:49:d6:c6: 1c:2f:68:22:81:04:b7:b5:31:4d:1a:da:85:87:ba:a1:0a:f8: 66:e0:bf:6b:1d:a6:b1:d6:18:51:1c:bf:3e:a8:7b:10:f3:8e: 6a:4b:9c:34:f0:26:c6:60:88:0a:e4:5f:a6:4c:ad:8a:29:0c: bd:83:fe:0a:ea:28:4c:fa:f6:51:12:40:9a:f9:3e:c1:39:81: a8:d2:c5:9b:ee:88:cb:ae:54:ba:44:6f:c3:ee:f3:ae:32:1b: 33:08:36:0a:bf:b2:86:de:8c:69:fd:f8:16:26:78:93:d0:b0: 71:7d:87:51:c1:67:42:4d:b7:a0:aa:6a:80:f4:72:97:6b:20: f6:f8:4e:2d -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyRkQxMTAvBgNVBAUTKDVGMkI1ODIxREQ0M0MyOTQzOUQyQkFFRTVCREMwNDMy OTFDNDdCQUYwHhcNMjYwMTIwMDY0MDM2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWQ1My01MGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yrNRR2di1cSGHtM0fTUXL9ol+x0Q+SX8PiF/xKDm16w1vyyZz2VZqggbSC0 GOZ+JvTDtsqYjM+btX+8rnvwJusvCaXTa9mlNCZbLR38CPqZ+eNq2z7fzmGCh6dM vY3RpkipAfKyxxDj8wljm28/2RkO4IQ1J2fjePUSyn67JDczOtaxtk8xn4r+t+zu 6LeiFOB2UclIFP2rBU5TMQORuJvmhwazNzqE+iHk3zcoQWcLA7aA0yP+Fuh6bnIz +oe2vH/wOwn27y3nyt52frMQML93JBivEVe+VFb+CWEj5FtGwyje25wfuze6SdCm oGlOQFllT5CH4nXac5A4uoPBjQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAFUYRdq w6PSw/DGzldPZvlFC4/rMB8GA1UdIwQYMBaAFF8rWCHdQ8KUOdK67lvcBDKRxHuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjJGRC82MzhENjJBMEUx MTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdwUTUwcnJ1Vzl3RU1wSEVl NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyRkQvNjM4RDYyQTBFMTEyMTFFRUFDNzg2MTM4QzRGOUFFMDIvRjVBMzExREFF MjE2MTFFRUI3QjBEMzYxQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyiXZMA8EAgACMAkDBwAgAQ3zi0AwDQYJKoZIhvcNAQELBQADggEB ALVS+xewMjrm/hPQVKJvUSSHJ9qVtheMsAHY074DW2yhzo8xWWULv8NmGFkGVOQm nAsIrhQK5AysGG5t/LssAGpj9dFLfrNzHU4SnaziKOu8QztQ2pWZxD72fvSSYZyP G3oXnyoAYyZkx0DlrLdjYj8nxYwcgxZ+ofY5m0nWxhwvaCKBBLe1MU0a2oWHuqEK +Gbgv2sdprHWGFEcvz6oexDzjmpLnDTwJsZgiArkX6ZMrYopDL2D/grqKEz69lES QJr5PsE5gajSxZvuiMuuVLpEb8Pu864yGzMINgq/sobejGn9+BYmeJPQsHF9h1HB Z0JNt6CqaoD0cpdrIPb4Ti0= -----END CERTIFICATE-----Generated at Thu Mar 26 10:06:39 2026 by rpki-client