$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa File: 4E8DA224547711EF9EDD014DC4F9AE02.roa (raw, json) Hash identifier: r5gelgjZp5B3j7+l6m368Vdh062KkVezcOMS+HcP7j0= Subject key identifier: 6A:39:83:04:47:C8:A3:88:E1:32:46:B3:CC:C5:C2:DD:6F:78:E3:C4 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 03AF Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa Signing time: Thu 07 May 2026 01:30:35 +0000 ROA not before: Thu 07 May 2026 01:30:35 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 18390 IP address blocks: 202.87.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 00:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 943 (0x3af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43, serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: May 7 01:30:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69fbeb3b-20e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a6:8e:8b:49:6b:7d:04:a9:ca:14:5f:7b:56: 4c:e0:1e:47:c0:b7:04:bb:21:85:30:fd:d4:74:f3: 13:33:6c:16:59:1d:1b:8f:ea:eb:21:ec:5d:78:92: fe:53:e8:79:0d:10:62:0d:0a:ef:ca:7e:d4:b3:16: e4:64:b5:e3:6c:f6:ec:6f:ac:20:f3:7a:f8:c8:a5: 48:c1:19:39:90:17:ac:fc:6e:9f:65:d3:94:3b:2c: 23:07:b3:cb:1b:1e:da:01:95:69:f2:67:70:74:24: f6:1a:81:26:4b:2b:e5:de:0c:f0:d4:d6:4a:94:a6: bd:58:1d:6a:a6:d6:14:ca:14:40:78:c5:1f:9a:2d: 6e:33:10:dd:2b:ec:ca:fc:eb:d2:bf:c6:34:77:c8: 44:61:4a:4a:aa:30:45:46:a1:d8:76:5b:07:77:43: eb:29:99:05:c6:27:b6:43:c0:d2:c0:4c:99:09:53: 09:18:27:4a:80:d0:4e:8c:e1:b5:97:2d:8e:70:49: 6f:b6:89:bd:9e:ba:a9:91:c2:87:4b:67:2f:4e:90: 52:92:37:9c:fb:4c:e9:a2:44:17:84:3f:a2:6a:81: dd:8f:56:6b:0e:23:82:21:34:f5:ba:39:03:c5:7d: 5a:76:85:2c:51:2a:35:32:5b:6c:63:b4:bb:e1:17: 60:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:39:83:04:47:C8:A3:88:E1:32:46:B3:CC:C5:C2:DD:6F:78:E3:C4 X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.87.160.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:67:0e:48:b7:77:57:17:39:ad:77:72:90:84:09:cc:cb:98: f3:a8:fd:c1:0f:b5:23:0e:03:27:8e:40:f3:a0:62:5a:be:74: 91:f9:cd:99:9a:ed:84:60:b0:c5:a0:60:1a:03:0e:c5:18:15: 8a:23:d2:45:38:3a:5c:83:d2:d7:c4:03:86:45:6e:ec:af:80: c9:81:fd:b0:55:f5:6f:1f:0f:94:e3:59:bd:12:1c:4e:96:d0: de:0c:ed:8b:cd:38:e2:a3:b2:a5:9e:f5:5c:9f:fa:b4:82:4e: d8:33:a2:ed:78:d1:09:88:39:04:d3:52:14:f3:29:94:9a:7d: cc:b8:38:0b:8a:1b:46:49:1a:f9:25:cb:32:4f:64:1e:f0:e5: 63:13:eb:1e:d5:d0:b2:fe:4c:e2:b6:de:ba:ac:06:2c:5e:1a: 00:af:9c:05:22:cc:bb:6e:79:53:ed:98:dd:e0:72:77:63:94: 5c:55:22:bb:f9:c3:3f:42:ae:07:d3:0c:88:fc:82:73:3a:55: 3e:94:63:2e:0d:60:32:4b:12:ad:c1:5a:7c:f2:c1:6e:79:7a: b2:cd:fc:6c:f6:41:3f:87:81:d9:e0:74:09:d4:56:c4:0b:82: b1:da:d6:64:62:e7:f5:73:4d:a8:e5:25:fd:b7:fb:74:34:73: fc:f2:96:ae -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjYwNTA3MDEzMDM1WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWZiZWIzYi0yMGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6aOi0lrfQSpyhRfe1ZM4B5HwLcEuyGFMP3UdPMTM2wWWR0bj+rrIexdeJL+ U+h5DRBiDQrvyn7UsxbkZLXjbPbsb6wg83r4yKVIwRk5kBes/G6fZdOUOywjB7PL Gx7aAZVp8mdwdCT2GoEmSyvl3gzw1NZKlKa9WB1qptYUyhRAeMUfmi1uMxDdK+zK /OvSv8Y0d8hEYUpKqjBFRqHYdlsHd0PrKZkFxie2Q8DSwEyZCVMJGCdKgNBOjOG1 ly2OcElvtom9nrqpkcKHS2cvTpBSkjec+0zpokQXhD+iaoHdj1ZrDiOCITT1ujkD xX1adoUsUSo1MltsY7S74Rdg8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGo5gwRH yKOI4TJGs8zFwt1veOPEMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZENDMvN0Q5OTgwNzZEQ0QxMTFFQ0EzQUI5RDM2QzRGOUFFMDIvNEU4REEyMjQ1 NDc3MTFFRjlFREQwMTREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEylegMA0GCSqGSIb3DQEBCwUAA4IBAQCKZw5It3dXFzmtd3KQhAnM y5jzqP3BD7UjDgMnjkDzoGJavnSR+c2Zmu2EYLDFoGAaAw7FGBWKI9JFODpcg9LX xAOGRW7sr4DJgf2wVfVvHw+U41m9EhxOltDeDO2LzTjio7KlnvVcn/q0gk7YM6Lt eNEJiDkE01IU8ymUmn3MuDgLihtGSRr5JcsyT2Qe8OVjE+se1dCy/kzitt66rAYs XhoAr5wFIsy7bnlT7Zjd4HJ3Y5RcVSK7+cM/Qq4H0wyI/IJzOlU+lGMuDWAySxKt wVp88sFueXqyzfxs9kE/h4HZ4HQJ1FbEC4Kx2tZkYuf1c02o5SX9t/t0NHP88pau -----END CERTIFICATE-----Generated at Wed May 13 08:45:36 2026 by rpki-client