$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa File: D8EA255C2FBC11EB8E017F5CC4F9AE02.roa (raw, json) Hash identifier: f5hhJw4iBxxWOy12bw08irJ3HIRgdS2JYxiH6LKMToo= Subject key identifier: B7:34:D2:D8:49:F0:DC:A1:23:41:15:D3:2F:F5:DF:9C:8A:BE:45:5F Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 07D6 Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:56:57 +0000 ROA not before: Mon 26 May 2025 22:10:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 202.128.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 21:05:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2006 (0x7d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: May 26 22:10:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42989-be6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fb:98:98:ca:2c:29:90:0b:56:39:90:cb:02: b3:e6:22:52:c4:78:80:2d:dc:70:bf:69:48:d1:6a: 86:b3:17:9a:94:10:59:9d:67:f0:81:8a:ba:cc:fc: 13:e1:5c:bd:48:08:9b:44:6d:5e:d8:ba:35:29:a2: 81:2b:f1:81:35:4e:2d:57:04:e5:b8:39:78:b0:0e: f5:ca:b9:72:c3:fd:87:79:6e:09:11:0f:17:1e:15: 56:c4:82:d2:fb:55:d5:38:7d:67:60:da:4d:55:2a: 68:7b:09:89:99:7f:83:4a:8c:ac:11:6a:75:86:17: 32:d1:b8:35:d7:82:75:e3:bf:d1:28:ae:cb:9b:9e: 6a:50:6e:75:96:43:f2:c2:05:9f:b1:fa:5c:f0:8c: ea:aa:69:78:9a:56:a8:4e:4b:d4:2c:dd:43:9a:46: 1d:77:c3:d8:f7:e9:f0:27:30:2b:bb:e3:6f:29:8a: 38:87:64:96:5f:12:6b:2b:5d:69:38:90:5b:dd:43: fb:d6:0a:fc:ba:9e:26:db:d8:b1:6b:ce:20:14:56: 66:04:7f:0e:1e:d3:55:3f:7b:ed:b6:6c:5c:28:90: 50:59:29:4b:e4:11:f6:7b:6d:cd:da:f5:f8:2d:42: 16:72:94:68:70:fc:09:9e:19:15:dc:70:ed:a2:e0: 69:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:34:D2:D8:49:F0:DC:A1:23:41:15:D3:2F:F5:DF:9C:8A:BE:45:5F X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.128.99.0/24 Signature Algorithm: sha256WithRSAEncryption 99:03:c2:6a:67:fd:11:88:33:8d:e0:74:dd:f9:14:5f:9f:54: 85:98:98:93:e0:fd:33:80:1b:53:56:02:75:08:37:46:50:69: 21:32:f0:08:85:c6:25:30:01:82:ec:67:ef:07:75:0f:8d:fe: d6:ab:75:8e:ab:25:6a:1c:78:82:40:bc:ad:20:ff:40:5e:17: 32:6b:7e:2c:63:47:a9:03:08:ea:60:7e:2a:18:de:b5:ed:13: 0e:97:35:5d:19:3c:4c:60:ff:d5:61:1e:9d:fb:04:ea:d8:65: 17:25:2b:2f:f8:f1:a1:af:80:db:8f:0d:fd:fe:39:30:54:d7: 33:14:ae:3b:b2:b1:0d:6a:86:4f:bc:d6:0b:83:f1:ae:6d:b0: a5:ef:0d:53:36:64:68:e6:c5:0e:ed:8d:59:f7:d5:dd:d8:fc: 87:4a:e7:9c:a2:f9:76:dc:38:00:16:e5:5d:7b:66:fe:90:c7: 63:c5:86:36:7b:be:63:f3:49:2c:de:d4:97:b2:8f:83:99:99: f5:fb:71:8a:6c:44:e1:b3:6a:5a:6a:3b:15:3f:e0:bf:03:53: 0f:f6:39:86:68:5b:bf:02:7d:49:f1:53:9e:4b:0c:f4:68:62: 46:a2:f4:86:70:0e:ff:27:77:48:26:f5:12:68:24:3f:61:29: 8c:df:28:90 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjUwNTI2MjIxMDUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjk4OS1iZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfuYmMosKZALVjmQywKz5iJSxHiALdxwv2lI0WqGsxealBBZnWfwgYq6zPwT 4Vy9SAibRG1e2Lo1KaKBK/GBNU4tVwTluDl4sA71yrlyw/2HeW4JEQ8XHhVWxILS +1XVOH1nYNpNVSpoewmJmX+DSoysEWp1hhcy0bg114J147/RKK7Lm55qUG51lkPy wgWfsfpc8Izqqml4mlaoTkvULN1DmkYdd8PY9+nwJzAru+NvKYo4h2SWXxJrK11p OJBb3UP71gr8up4m29ixa84gFFZmBH8OHtNVP3vttmxcKJBQWSlL5BH2e23N2vX4 LUIWcpRocPwJnhkV3HDtouBpMwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLc00thJ 8NyhI0EV0y/135yKvkVfMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxQzQvRkM2NzJCNzIyRkFGMTFFQjk0MTU1RjMzQzRGOUFFMDIvRDhFQTI1NUMy RkJDMTFFQjhFMDE3RjVDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyoBjMA0GCSqGSIb3DQEBCwUAA4IBAQCZA8JqZ/0RiDON4HTd+RRf n1SFmJiT4P0zgBtTVgJ1CDdGUGkhMvAIhcYlMAGC7GfvB3UPjf7Wq3WOqyVqHHiC QLytIP9AXhcya34sY0epAwjqYH4qGN617RMOlzVdGTxMYP/VYR6d+wTq2GUXJSsv +PGhr4Dbjw39/jkwVNczFK47srENaoZPvNYLg/GubbCl7w1TNmRo5sUO7Y1Z99Xd 2PyHSuecovl23DgAFuVde2b+kMdjxYY2e75j80ks3tSXso+DmZn1+3GKbEThs2pa ajsVP+C/A1MP9jmGaFu/An1J8VOeSwz0aGJGovSGcA7/J3dIJvUSaCQ/YSmM3yiQ -----END CERTIFICATE-----Generated at Thu Mar 26 08:24:03 2026 by rpki-client