$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8432/FB685B1E6C5011F08998074BC4F9AE02/6CAAA4586C5111F08D82894CC4F9AE02.roa File: 6CAAA4586C5111F08D82894CC4F9AE02.roa (raw, json) Hash identifier: JklpsFyowHEwcOoj+ZilnkU1z0N39Fb72KxzXQYDJI0= Subject key identifier: 66:96:9D:C7:89:73:2E:E2:BC:C8:6E:27:4F:4F:A8:FF:D6:67:DB:27 Certificate issuer: /CN=A91E8432/serialNumber=96FC3D1F8795BEE9EAA1EB95D29A59C8A40273D3 Certificate serial: 71 Authority key identifier: 96:FC:3D:1F:87:95:BE:E9:EA:A1:EB:95:D2:9A:59:C8:A4:02:73:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvw9H4eVvunqoeuV0ppZyKQCc9M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8432/FB685B1E6C5011F08998074BC4F9AE02/6CAAA4586C5111F08D82894CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:45:09 +0000 ROA not before: Tue 29 Jul 2025 07:55:42 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153952 IP address blocks: 202.1.20.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8432/FB685B1E6C5011F08998074BC4F9AE02/lvw9H4eVvunqoeuV0ppZyKQCc9M.crl rsync://rpki.apnic.net/member_repository/A91E8432/FB685B1E6C5011F08998074BC4F9AE02/lvw9H4eVvunqoeuV0ppZyKQCc9M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvw9H4eVvunqoeuV0ppZyKQCc9M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8432, serialNumber=96FC3D1F8795BEE9EAA1EB95D29A59C8A40273D3 Validity Not Before: Jul 29 07:55:42 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a59465-e5b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a1:25:08:07:12:17:16:85:7a:af:13:a8:ae: c5:e6:eb:91:52:1a:e9:a7:31:84:65:54:94:1d:5c: f2:07:7e:16:2a:eb:05:fc:f6:6c:a0:fa:3e:1d:0a: ae:e2:74:79:da:f4:4b:a2:90:1d:6d:d2:27:be:13: 02:89:62:cc:f5:e7:9b:5d:a0:b3:af:d0:7b:ea:8c: be:25:57:34:4e:0a:64:c6:5a:77:aa:56:18:bf:a7: 9f:44:63:4f:05:f1:ec:9b:96:76:b8:eb:c5:ff:5e: 09:62:6a:20:f9:6e:8b:ef:34:2b:53:61:38:c0:e7: 2b:19:62:d6:20:43:59:98:6f:f8:2c:ea:ea:c5:55: 4e:1b:6d:98:45:20:9c:79:ae:55:cb:44:a7:64:16: 1b:cb:89:52:8c:97:6c:20:bb:d9:01:c7:36:ac:cf: a2:84:fb:62:17:c9:f8:c3:b6:db:92:65:da:5e:17: 25:8c:1e:60:cf:be:e1:ce:49:d0:eb:92:33:24:fc: 44:cb:f7:96:be:37:7a:91:e1:ac:89:b6:3b:35:b2: 95:c3:a0:3b:d5:ff:cb:df:ac:33:45:35:03:ec:d5: c9:13:b2:39:07:68:fa:ce:46:92:0a:1b:f6:f7:38: 3c:d6:35:d5:00:3d:57:47:94:ba:99:45:93:9e:48: 23:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:96:9D:C7:89:73:2E:E2:BC:C8:6E:27:4F:4F:A8:FF:D6:67:DB:27 X509v3 Authority Key Identifier: keyid:96:FC:3D:1F:87:95:BE:E9:EA:A1:EB:95:D2:9A:59:C8:A4:02:73:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8432/FB685B1E6C5011F08998074BC4F9AE02/lvw9H4eVvunqoeuV0ppZyKQCc9M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvw9H4eVvunqoeuV0ppZyKQCc9M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8432/FB685B1E6C5011F08998074BC4F9AE02/6CAAA4586C5111F08D82894CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.1.20.0/23 Signature Algorithm: sha256WithRSAEncryption 48:8f:43:72:96:1c:f0:d9:f8:5f:39:1c:a2:3a:ce:61:ca:95: 2b:82:c3:25:64:98:e7:a9:f3:f0:ce:9d:76:2a:2a:dd:4e:8d: f7:1f:78:72:c3:95:71:ac:b1:93:34:73:fc:35:f6:b3:04:ce: d4:4d:51:ff:fe:e5:63:29:ad:b3:04:ed:10:9c:e1:90:20:a3: 36:91:c7:85:9f:f2:3c:4d:5b:9b:21:ba:c6:11:46:95:70:59: 63:d4:3d:32:74:c8:f5:07:9e:6a:d0:02:b2:f6:d0:71:f2:19: a1:c4:1b:0e:6c:7e:94:31:4f:43:b5:f2:de:6c:82:b3:ef:d7: 1c:ea:bf:ae:ce:fb:42:ef:38:43:51:91:12:47:59:51:e9:43: 60:2f:f0:09:29:38:39:20:c0:a5:17:01:d6:1e:6d:53:47:92: ff:02:28:f0:58:3a:13:7a:e8:28:f0:20:1b:9b:3b:63:88:d1: 63:5c:b6:f9:05:5d:5c:86:a9:cc:ee:66:68:df:ed:70:90:20: 0f:1d:db:23:24:42:41:b2:30:ce:4d:10:a0:de:b7:49:47:bc: c4:31:fb:a5:09:f4:b5:6e:09:98:9d:bc:f1:d5:bd:dc:f7:98: aa:d9:db:ae:c0:f1:32:fe:92:f4:9f:ee:81:1a:90:5a:92:8b: 13:f2:60:04 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODQzMjExMC8GA1UEBRMoOTZGQzNEMUY4Nzk1QkVFOUVBQTFFQjk1RDI5QTU5QzhB NDAyNzNEMzAeFw0yNTA3MjkwNzU1NDJaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTU5NDY1LWU1YjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcoSUIBxIXFoV6rxOorsXm65FSGumnMYRlVJQdXPIHfhYq6wX89myg+j4dCq7i dHna9EuikB1t0ie+EwKJYsz155tdoLOv0HvqjL4lVzROCmTGWneqVhi/p59EY08F 8eyblna468X/XgliaiD5bovvNCtTYTjA5ysZYtYgQ1mYb/gs6urFVU4bbZhFIJx5 rlXLRKdkFhvLiVKMl2wgu9kBxzasz6KE+2IXyfjDttuSZdpeFyWMHmDPvuHOSdDr kjMk/ETL95a+N3qR4ayJtjs1spXDoDvV/8vfrDNFNQPs1ckTsjkHaPrORpIKG/b3 ODzWNdUAPVdHlLqZRZOeSCPrAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUZpadx4lz LuK8yG4nT0+o/9Zn2ycwHwYDVR0jBBgwFoAUlvw9H4eVvunqoeuV0ppZyKQCc9Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NDMyL0ZCNjg1QjFFNkM1 MDExRjA4OTk4MDc0QkM0RjlBRTAyL2x2dzlINGVWdnVucW9ldVYwcHBaeUtRQ2M5 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbHZ3OUg0ZVZ2dW5xb2V1VjBwcFp5S1FDYzlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQzMi9GQjY4NUIxRTZDNTAxMUYwODk5ODA3NEJDNEY5QUUwMi82Q0FBQTQ1ODZD NTExMUYwOEQ4Mjg5NENDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAHKARQwDQYJKoZIhvcNAQELBQADggEBAEiPQ3KWHPDZ+F85HKI6zmHK lSuCwyVkmOep8/DOnXYqKt1OjfcfeHLDlXGssZM0c/w19rMEztRNUf/+5WMprbME 7RCc4ZAgozaRx4Wf8jxNW5shusYRRpVwWWPUPTJ0yPUHnmrQArL20HHyGaHEGw5s fpQxT0O18t5sgrPv1xzqv67O+0LvOENRkRJHWVHpQ2Av8AkpODkgwKUXAdYebVNH kv8CKPBYOhN66CjwIBubO2OI0WNctvkFXVyGqczuZmjf7XCQIA8d2yMkQkGyMM5N EKDet0lHvMQx+6UJ9LVuCZidvPHVvdz3mKrZ267A8TL+kvSf7oEakFqSixPyYAQ= -----END CERTIFICATE-----Generated at Thu Mar 26 10:04:52 2026 by rpki-client