$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD1/25DD59F8E1C911EEBE1F5068C4F9AE02/81D7045C0F5511EFA55FC44EC4F9AE02.roa File: 81D7045C0F5511EFA55FC44EC4F9AE02.roa (raw, json) Hash identifier: egVmZ2H94hu8vcvSceGyMVkrFhLT7V50En5me3B7hr0= Subject key identifier: 35:DD:5C:7E:38:92:1F:E5:A9:B2:2B:97:66:53:50:48:DD:9E:A1:A9 Certificate issuer: /CN=A91C8DD1/serialNumber=06D62C7A84076E1C64940406258919D67D15ABE1 Certificate serial: 0190 Authority key identifier: 06:D6:2C:7A:84:07:6E:1C:64:94:04:06:25:89:19:D6:7D:15:AB:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtYseoQHbhxklAQGJYkZ1n0Vq-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD1/25DD59F8E1C911EEBE1F5068C4F9AE02/81D7045C0F5511EFA55FC44EC4F9AE02.roa Signing time: Mon 02 Mar 2026 04:42:39 +0000 ROA not before: Wed 05 Mar 2025 06:23:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152644 IP address blocks: 202.47.134.0/24 maxlen: 24 202.47.135.0/24 maxlen: 24 2401:89a0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD1/25DD59F8E1C911EEBE1F5068C4F9AE02/BtYseoQHbhxklAQGJYkZ1n0Vq-E.crl rsync://rpki.apnic.net/member_repository/A91C8DD1/25DD59F8E1C911EEBE1F5068C4F9AE02/BtYseoQHbhxklAQGJYkZ1n0Vq-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtYseoQHbhxklAQGJYkZ1n0Vq-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD1, serialNumber=06D62C7A84076E1C64940406258919D67D15ABE1 Validity Not Before: Mar 5 06:23:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5153f-1032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:89:3c:ef:8c:20:a5:1c:0e:2b:e4:21:48:e8: 78:b2:06:51:70:1f:d7:da:13:0f:70:8b:59:d0:a1: 6d:e1:10:26:c1:9e:f5:11:d9:e0:65:81:1f:ed:c6: 08:cc:14:03:7b:ae:48:af:64:74:7f:c4:dc:93:19: 9d:c1:e1:d5:a4:96:43:83:9b:f7:07:34:d0:9d:68: 2c:a0:90:6b:74:07:3a:41:8d:1a:5b:f9:be:43:29: d9:e2:e4:67:ac:95:75:ef:c6:d4:bc:b8:3d:d1:a5: 78:e0:5f:51:65:5b:ec:6b:bb:21:dc:cd:4e:16:e2: 3d:78:fa:94:81:1f:b0:6f:73:fe:d4:3d:c2:17:bc: e1:6e:99:61:0b:7a:cc:f6:7d:bf:ab:ea:75:79:67: db:8d:95:81:d4:6a:89:5d:5e:a7:f5:78:65:a8:d8: da:53:80:88:47:fa:26:0d:ef:84:63:07:d0:bd:ff: a0:79:7b:e3:2d:3b:53:ce:15:c9:89:06:ee:cb:72: d4:80:02:b1:97:eb:93:06:90:2e:f8:8f:4b:a2:5b: 61:e4:2e:f6:7a:08:b4:6a:9c:e2:47:80:65:71:35: 0e:6c:a1:17:aa:25:5a:b5:90:cc:a1:c6:20:c2:05: 53:e3:a9:e6:a7:8d:e1:58:70:f3:96:a7:6e:59:49: 44:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DD:5C:7E:38:92:1F:E5:A9:B2:2B:97:66:53:50:48:DD:9E:A1:A9 X509v3 Authority Key Identifier: keyid:06:D6:2C:7A:84:07:6E:1C:64:94:04:06:25:89:19:D6:7D:15:AB:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD1/25DD59F8E1C911EEBE1F5068C4F9AE02/BtYseoQHbhxklAQGJYkZ1n0Vq-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BtYseoQHbhxklAQGJYkZ1n0Vq-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD1/25DD59F8E1C911EEBE1F5068C4F9AE02/81D7045C0F5511EFA55FC44EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.47.134.0/23 IPv6: 2401:89a0::/32 Signature Algorithm: sha256WithRSAEncryption 0c:33:a7:99:ce:92:9f:2e:c0:0f:7c:1e:87:f5:6d:58:7e:ec: 01:85:86:29:89:74:34:e9:3c:e3:26:71:4a:d0:d7:90:d7:73: d9:23:07:3f:f3:f1:06:46:a6:23:b0:77:82:f0:94:f7:36:fb: 92:9e:cf:9b:97:0b:ca:bb:0c:47:fd:d6:eb:3b:43:05:fd:cf: 2a:c1:2a:28:90:91:c3:90:ab:82:d9:8a:cb:1d:6a:69:f5:ea: d4:1e:cf:a3:de:6e:85:48:53:36:4e:d0:ce:10:d6:df:ce:99: d9:99:c5:fb:4c:70:d1:f3:a9:df:c5:10:83:79:f7:6a:6e:a6: e0:67:5a:90:64:26:c9:a4:96:7d:4d:e0:86:0a:b8:ee:96:d0: 94:fa:df:12:41:f0:20:bf:5b:82:19:74:51:8e:4e:d9:80:4f: 69:35:a4:10:5d:7b:57:11:a2:5c:16:bf:2b:79:b1:43:9f:62: fe:cb:2d:74:a1:8d:31:83:cc:64:c8:82:23:7a:75:02:f9:70: 29:fa:67:78:df:2f:17:68:42:f6:8f:dd:fd:51:78:2b:d9:ea: 49:4c:fd:72:e4:f8:32:2a:1e:03:91:29:6f:d0:e1:bc:73:0f: f3:b7:b4:7c:93:9f:36:56:1e:26:b2:40:74:6f:b3:44:89:da: 83:32:93:f7 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDExMTAvBgNVBAUTKDA2RDYyQzdBODQwNzZFMUM2NDk0MDQwNjI1ODkxOUQ2 N0QxNUFCRTEwHhcNMjUwMzA1MDYyMzAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1MTUzZi0xMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ik874wgpRwOK+QhSOh4sgZRcB/X2hMPcItZ0KFt4RAmwZ71EdngZYEf7cYI zBQDe65Ir2R0f8TckxmdweHVpJZDg5v3BzTQnWgsoJBrdAc6QY0aW/m+QynZ4uRn rJV178bUvLg90aV44F9RZVvsa7sh3M1OFuI9ePqUgR+wb3P+1D3CF7zhbplhC3rM 9n2/q+p1eWfbjZWB1GqJXV6n9XhlqNjaU4CIR/omDe+EYwfQvf+geXvjLTtTzhXJ iQbuy3LUgAKxl+uTBpAu+I9Lolth5C72egi0apziR4BlcTUObKEXqiVatZDMocYg wgVT46nmp43hWHDzlqduWUlELwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFDXdXH44 kh/lqbIrl2ZTUEjdnqGpMB8GA1UdIwQYMBaAFAbWLHqEB24cZJQEBiWJGdZ9Favh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEREMS8yNURENTlGOEUx QzkxMUVFQkUxRjUwNjhDNEY5QUUwMi9CdFlzZW9RSGJoeGtsQVFHSllrWjFuMFZx LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J0WXNlb1FIYmh4a2xBUUdKWWtaMW4wVnEtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhERDEvMjVERDU5RjhFMUM5MTFFRUJFMUY1MDY4QzRGOUFFMDIvODFENzA0NUMw RjU1MTFFRkE1NUZDNDRFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQByi+GMA0EAgACMAcDBQAkAYmgMA0GCSqGSIb3DQEBCwUAA4IBAQAM M6eZzpKfLsAPfB6H9W1YfuwBhYYpiXQ06TzjJnFK0NeQ13PZIwc/8/EGRqYjsHeC 8JT3NvuSns+blwvKuwxH/dbrO0MF/c8qwSookJHDkKuC2YrLHWpp9erUHs+j3m6F SFM2TtDOENbfzpnZmcX7THDR86nfxRCDefdqbqbgZ1qQZCbJpJZ9TeCGCrjultCU +t8SQfAgv1uCGXRRjk7ZgE9pNaQQXXtXEaJcFr8rebFDn2L+yy10oY0xg8xkyIIj enUC+XAp+md43y8XaEL2j939UXgr2epJTP1y5PgyKh4DkSlv0OG8cw/zt7R8k582 Vh4mskB0b7NEidqDMpP3 -----END CERTIFICATE-----Generated at Thu Mar 26 12:17:12 2026 by rpki-client