$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa File: D8EA255C2FBC11EB8E017F5CC4F9AE02.roa (raw, json) Hash identifier: Rlc9tIFJ76w9w+Q182kiW0dYBgbYcuIIgNLuRF6VH4A= Subject key identifier: 3C:74:68:C0:23:8A:C1:35:17:7E:2B:65:F6:8C:F7:FA:68:CF:2C:94 Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 07FC Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa Signing time: Sat 02 May 2026 21:27:36 +0000 ROA not before: Sat 02 May 2026 21:27:36 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 14618 IP address blocks: 202.128.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 21:19:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2044 (0x7fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: May 2 21:27:36 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=69f66c48-cd19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:06:02:ad:29:c4:d0:0b:06:e8:55:9a:63:22: 02:76:5b:aa:f0:0c:1d:65:dc:47:56:c3:e9:dc:48: 0c:fb:73:8b:3b:d0:6f:14:61:a4:30:e3:32:1d:6c: 64:74:38:ca:10:f7:d0:4b:bf:b7:14:ed:b1:12:01: 33:21:5b:b7:e9:0f:04:4b:26:df:27:95:a1:3a:7e: b5:e3:e0:6f:f6:b1:5f:c2:fc:0a:6d:d2:a7:5c:a9: 47:4d:59:83:b0:01:cd:37:69:f8:15:b3:b9:e4:ed: 57:2f:ae:e5:9f:67:16:4f:1a:49:b9:66:65:c3:8f: f9:31:c5:9b:ef:64:f4:06:9c:98:8d:c9:fe:37:e8: 09:f6:c9:74:48:b5:a5:25:53:c3:e2:b1:70:21:8b: 69:fd:db:ea:09:1f:54:98:fd:a5:d9:e0:ab:55:2f: 62:6d:12:e8:6f:ab:d1:0c:28:b8:94:b5:a7:ef:15: 7a:57:9c:d2:d5:2e:dc:df:0d:95:83:99:35:b2:d0: c2:fc:d3:12:a7:b5:d9:b1:c6:7b:e8:d8:a6:5e:93: 03:7e:f6:9d:f6:0d:84:6f:17:32:f1:46:cb:b7:71: 70:de:c0:d2:dd:43:ea:b4:6a:d3:b5:cb:a3:f6:fe: ce:70:63:a8:b8:9a:e6:a8:cd:6e:58:7f:7d:21:0b: f4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:74:68:C0:23:8A:C1:35:17:7E:2B:65:F6:8C:F7:FA:68:CF:2C:94 X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.128.99.0/24 Signature Algorithm: sha256WithRSAEncryption 67:84:36:a6:e2:64:65:cf:a1:8d:f1:3d:d5:52:20:bb:0a:66: c3:4d:ac:86:0c:1c:a1:37:22:e0:29:4a:ea:3a:8f:79:49:2c: 8d:f5:b0:5d:eb:fc:c9:8a:99:fd:38:12:9a:d0:46:0b:b6:10: 14:8b:6a:f4:18:af:5b:8c:e0:72:a7:42:6e:42:9a:1d:11:0e: e8:e8:92:28:41:94:41:d8:21:f8:30:12:2c:55:8b:e3:12:3b: 6d:58:c7:58:43:80:f0:75:4c:52:4f:19:b9:67:fb:67:ec:99: 88:8f:76:13:c9:d4:b4:10:e8:c8:e6:6f:7a:ec:c0:e5:6c:40: ae:1d:c2:48:e8:76:32:fd:28:b7:97:24:83:30:59:2b:6e:a7: 1f:d2:a1:0a:a1:dc:1e:f3:28:55:b3:f5:53:71:7f:69:a2:70: 39:49:87:f8:38:19:a8:46:69:ba:1e:3d:1b:7f:76:3a:9d:24: ba:ba:2b:6d:ff:98:3b:15:62:5a:b6:e4:ee:d4:4e:d9:c9:b8: d4:54:90:b4:76:a3:ee:b3:0d:9c:2c:1f:c3:89:cf:11:5a:8f: 3e:c2:8e:86:af:6b:0f:43:07:b2:87:4b:03:4f:0f:82:af:bd: 04:e7:a2:50:5b:26:82:08:34:0a:07:e7:1c:0b:2f:67:8f:ab: cd:1a:b9:4d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjYwNTAyMjEyNzM2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWY2NmM0OC1jZDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlQYCrSnE0AsG6FWaYyICdluq8AwdZdxHVsPp3EgM+3OLO9BvFGGkMOMyHWxk dDjKEPfQS7+3FO2xEgEzIVu36Q8ESybfJ5WhOn614+Bv9rFfwvwKbdKnXKlHTVmD sAHNN2n4FbO55O1XL67ln2cWTxpJuWZlw4/5McWb72T0BpyYjcn+N+gJ9sl0SLWl JVPD4rFwIYtp/dvqCR9UmP2l2eCrVS9ibRLob6vRDCi4lLWn7xV6V5zS1S7c3w2V g5k1stDC/NMSp7XZscZ76NimXpMDfvad9g2Ebxcy8UbLt3Fw3sDS3UPqtGrTtcuj 9v7OcGOouJrmqM1uWH99IQv0EQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDx0aMAj isE1F34rZfaM9/pozyyUMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxQzQvRkM2NzJCNzIyRkFGMTFFQjk0MTU1RjMzQzRGOUFFMDIvRDhFQTI1NUMy RkJDMTFFQjhFMDE3RjVDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyoBjMA0GCSqGSIb3DQEBCwUAA4IBAQBnhDam4mRlz6GN8T3VUiC7 CmbDTayGDByhNyLgKUrqOo95SSyN9bBd6/zJipn9OBKa0EYLthAUi2r0GK9bjOBy p0JuQpodEQ7o6JIoQZRB2CH4MBIsVYvjEjttWMdYQ4DwdUxSTxm5Z/tn7JmIj3YT ydS0EOjI5m967MDlbECuHcJI6HYy/Si3lySDMFkrbqcf0qEKodwe8yhVs/VTcX9p onA5SYf4OBmoRmm6Hj0bf3Y6nSS6uitt/5g7FWJatuTu1E7ZybjUVJC0dqPusw2c LB/Dic8RWo8+wo6Gr2sPQweyh0sDTw+Cr70E56JQWyaCCDQKB+ccCy9nj6vNGrlN -----END CERTIFICATE-----Generated at Wed May 13 00:06:39 2026 by rpki-client