$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/AEFB1B262FB111EB89A04D37C4F9AE02.roa File: AEFB1B262FB111EB89A04D37C4F9AE02.roa (raw, json) Hash identifier: CTWOd8KheR3keIlbrNxRArJRmdo8CaaRry2+oBpk3yU= Subject key identifier: 9F:1B:E3:AC:BF:A0:12:9D:A8:CC:AE:21:E3:39:B3:89:19:74:D6:D9 Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 07D8 Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/AEFB1B262FB111EB89A04D37C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:56:59 +0000 ROA not before: Mon 26 May 2025 22:10:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55489 IP address blocks: 202.128.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: May 26 22:10:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a4298b-1147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:75:f2:a4:12:0a:5f:39:87:e4:00:67:a9:f5: f7:46:9a:57:e4:be:a4:3c:b4:9e:ac:7e:60:09:1b: f9:d0:2c:bc:6c:d6:83:7f:7f:38:88:b9:80:48:be: 62:41:9e:80:bb:29:86:f3:b2:6d:f3:d9:ff:a9:54: 1c:48:04:d4:d6:74:61:37:52:18:f8:85:95:6e:90: 95:d2:fc:63:cf:81:c2:01:33:f5:d8:fd:9c:75:a2: 78:b2:4e:a4:b4:c8:d4:1f:0d:43:18:8e:69:00:0e: 5f:98:94:b1:2c:0c:13:05:b0:5c:b9:2b:af:ce:2d: 19:0d:23:82:58:9a:cb:83:fa:7b:01:fa:da:cc:e8: 03:75:1a:f6:3c:3d:20:67:c1:9d:60:cf:e7:b9:7d: df:c6:c7:1d:b9:27:76:06:75:0e:0f:76:ff:ae:4b: 1a:86:69:1a:67:36:43:3c:4b:f2:e9:8b:73:2b:67: 0c:74:a3:24:e5:e8:d8:d3:19:45:58:88:d8:54:d8: b5:ac:dc:73:88:12:33:63:af:87:a1:50:37:e1:b5: db:41:5a:1d:71:b6:09:ac:25:65:59:9d:42:d9:2c: 77:e6:91:e9:ee:be:34:5e:1d:e2:cb:47:4a:31:fb: be:13:18:13:81:1b:48:17:f5:9c:ae:17:4b:44:a0: ec:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:1B:E3:AC:BF:A0:12:9D:A8:CC:AE:21:E3:39:B3:89:19:74:D6:D9 X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/AEFB1B262FB111EB89A04D37C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.128.99.0/24 Signature Algorithm: sha256WithRSAEncryption a1:f0:85:b9:e4:b6:a5:fd:5f:8a:65:e2:a1:66:fe:4c:b7:8f: 0b:d1:62:60:8b:98:e0:cd:c9:b5:d5:38:f2:f1:01:77:ac:5b: e3:67:b5:b2:35:3b:49:bc:9b:e6:67:3d:60:39:3f:1c:26:ca: c5:1e:a4:d5:1b:41:3d:4a:86:ef:21:9e:f9:0a:21:67:50:57: ed:e5:ae:40:0a:95:e4:6d:d2:02:ce:8f:9b:2c:e0:89:fa:38: 45:84:33:a7:6d:75:29:cc:a9:79:f7:d9:de:f6:8e:34:ed:d8: 2f:5b:2f:20:63:60:6f:54:7e:fb:9d:ef:b3:13:26:db:1b:40: 64:8d:97:66:5d:d1:21:5d:7c:70:dc:8c:1a:20:2e:6c:a2:3c: d1:20:cf:b7:14:59:8f:98:d7:fa:68:00:35:10:95:fa:7d:ea: c0:55:93:03:37:09:c6:28:2b:04:aa:6a:01:25:bf:16:cf:7d: d8:f3:1d:1e:82:02:d6:ce:c8:5f:4a:63:19:61:c7:63:3e:14: 5a:af:75:e8:a6:20:1a:6f:97:2f:3c:ec:f2:83:d4:0c:a2:ee: 4d:e9:74:49:41:99:0e:05:23:36:db:af:8a:86:ab:18:71:58: 6c:92:d7:38:b5:65:f5:94:c1:e3:6d:ac:ef:29:73:a6:a5:2d: 13:71:e7:95 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjUwNTI2MjIxMDUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjk4Yi0xMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAknXypBIKXzmH5ABnqfX3RppX5L6kPLSerH5gCRv50Cy8bNaDf384iLmASL5i QZ6AuymG87Jt89n/qVQcSATU1nRhN1IY+IWVbpCV0vxjz4HCATP12P2cdaJ4sk6k tMjUHw1DGI5pAA5fmJSxLAwTBbBcuSuvzi0ZDSOCWJrLg/p7AfrazOgDdRr2PD0g Z8GdYM/nuX3fxscduSd2BnUOD3b/rksahmkaZzZDPEvy6YtzK2cMdKMk5ejY0xlF WIjYVNi1rNxziBIzY6+HoVA34bXbQVodcbYJrCVlWZ1C2Sx35pHp7r40Xh3iy0dK Mfu+ExgTgRtIF/WcrhdLRKDsawIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJ8b46y/ oBKdqMyuIeM5s4kZdNbZMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxQzQvRkM2NzJCNzIyRkFGMTFFQjk0MTU1RjMzQzRGOUFFMDIvQUVGQjFCMjYy RkIxMTFFQjg5QTA0RDM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyoBjMA0GCSqGSIb3DQEBCwUAA4IBAQCh8IW55Lal/V+KZeKhZv5M t48L0WJgi5jgzcm11Tjy8QF3rFvjZ7WyNTtJvJvmZz1gOT8cJsrFHqTVG0E9Sobv IZ75CiFnUFft5a5ACpXkbdICzo+bLOCJ+jhFhDOnbXUpzKl599ne9o407dgvWy8g Y2BvVH77ne+zEybbG0BkjZdmXdEhXXxw3IwaIC5sojzRIM+3FFmPmNf6aAA1EJX6 ferAVZMDNwnGKCsEqmoBJb8Wz33Y8x0eggLWzshfSmMZYcdjPhRar3XopiAab5cv POzyg9QMou5N6XRJQZkOBSM226+KhqsYcVhsktc4tWX1lMHjbazvKXOmpS0TceeV -----END CERTIFICATE-----Generated at Thu Mar 26 09:53:46 2026 by rpki-client