$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/96AD16C6B5FA11F0A1583C84C4F9AE02.roa File: 96AD16C6B5FA11F0A1583C84C4F9AE02.roa (raw, json) Hash identifier: Q09tnn7i/dSqeOhVAMbx5rf+tFGI0/yOAyyPbMxzxTY= Subject key identifier: 20:27:C9:57:B0:2F:DC:1B:93:B8:00:47:27:E4:53:8C:92:72:3C:E5 Certificate issuer: /CN=A91139AB/serialNumber=C1424C4CCC59C9A031BE1ACDF7982D87AB57D068 Certificate serial: 4B Authority key identifier: C1:42:4C:4C:CC:59:C9:A0:31:BE:1A:CD:F7:98:2D:87:AB:57:D0:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUJMTMxZyaAxvhrN95gth6tX0Gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/96AD16C6B5FA11F0A1583C84C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:21:12 +0000 ROA not before: Tue 02 Dec 2025 20:53:30 +0000 ROA not after: Mon 30 Mar 2026 00:00:00 +0000 asID: 4857 IP address blocks: 202.147.96.0/20 maxlen: 20 202.147.112.0/20 maxlen: 24 203.82.160.0/20 maxlen: 24 203.82.176.0/20 maxlen: 24 203.201.64.0/20 maxlen: 24 203.201.80.0/20 maxlen: 24 203.201.96.0/20 maxlen: 20 203.201.112.0/20 maxlen: 24 221.120.128.0/20 maxlen: 24 221.120.144.0/24 maxlen: 24 221.120.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/wUJMTMxZyaAxvhrN95gth6tX0Gg.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/wUJMTMxZyaAxvhrN95gth6tX0Gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUJMTMxZyaAxvhrN95gth6tX0Gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:51:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB, serialNumber=C1424C4CCC59C9A031BE1ACDF7982D87AB57D068 Validity Not Before: Dec 2 20:53:30 2025 GMT Not After : Mar 30 00:00:00 2026 GMT Subject: CN=69a491a8-b046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:79:dd:35:bb:92:89:53:9c:ce:ed:67:72:d7: 7b:c7:86:e2:76:37:f7:f9:a8:47:11:58:b4:b3:ac: 60:ae:4c:93:b2:98:75:23:27:e7:40:98:bf:08:7d: d0:b2:19:e1:c0:be:e7:62:73:79:0a:8a:95:56:c7: fc:be:a8:b7:93:6e:b5:a9:b0:ee:85:e1:e2:c7:6e: 03:61:26:0e:94:e4:38:23:73:65:2d:d2:4c:6f:40: 2b:85:aa:5e:32:7a:be:27:19:b7:ea:d5:ee:73:bd: ff:33:ca:28:21:59:ac:bb:0d:9b:75:52:a5:87:fa: b7:f8:6c:4a:22:d2:d9:83:e3:2d:0c:88:86:94:82: 2f:cf:51:7e:61:cd:60:5f:e8:0f:2a:c9:26:2b:df: ac:e3:8f:ad:87:65:a2:a1:58:29:c9:f3:79:60:51: 36:e6:a4:50:ac:9d:42:32:4e:99:6e:4b:2c:80:b0: 56:86:c2:19:ac:c7:72:2d:35:10:2d:42:7d:d5:65: 36:9b:ff:23:ea:3f:e9:e8:b9:73:e0:91:a9:ad:34: 77:ad:51:69:32:a7:b9:b1:77:56:a9:9b:84:80:f3: 1c:a9:7a:b8:73:8d:0f:86:89:ed:e9:58:4c:48:f3: 4d:18:a5:48:88:27:fd:cd:f3:08:64:71:9e:63:08: 78:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:27:C9:57:B0:2F:DC:1B:93:B8:00:47:27:E4:53:8C:92:72:3C:E5 X509v3 Authority Key Identifier: keyid:C1:42:4C:4C:CC:59:C9:A0:31:BE:1A:CD:F7:98:2D:87:AB:57:D0:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/wUJMTMxZyaAxvhrN95gth6tX0Gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUJMTMxZyaAxvhrN95gth6tX0Gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/96AD16C6B5FA11F0A1583C84C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.147.96.0/19 203.82.160.0/19 203.201.64.0/18 221.120.128.0-221.120.145.255 Signature Algorithm: sha256WithRSAEncryption 26:08:9d:03:2c:8f:3b:41:19:10:e8:e6:b3:d1:ce:8e:c2:d8: c9:cc:0d:05:e1:29:10:37:a8:a0:2f:d9:50:ed:d0:0a:47:86: d7:70:6b:c5:d9:b8:9f:5d:cf:51:67:87:fc:e3:b4:a6:68:40: 36:cc:66:c9:c1:44:a1:d5:e2:f3:a6:e2:dd:a6:ac:45:70:c5: cf:af:a2:bc:d5:73:81:d0:66:39:ff:71:d0:da:63:50:e6:ba: a0:2c:57:a3:dc:0d:51:41:5f:6a:18:59:e7:b6:9e:07:e7:4d: 7d:95:75:d8:ab:53:d7:9d:72:22:c7:2a:1f:3d:b8:2b:4c:c7: 68:a3:b6:92:d2:8c:46:d5:4b:84:1e:0e:e8:7c:44:27:f1:de: 47:bd:8a:a0:f9:3d:40:92:26:e9:f8:b5:b4:4a:6e:15:83:c3: aa:e0:00:f3:67:f9:7a:f8:64:24:4c:a9:5a:d3:2b:81:f7:7a: f5:cc:fc:db:96:4d:da:e3:7a:f2:61:bc:83:b0:24:1e:02:38: 71:5b:8a:28:d9:ef:b2:81:80:b0:de:a6:ea:a7:26:00:53:27: 42:cb:f1:d1:be:a8:46:fe:9b:b1:87:c5:5f:b2:3d:a5:f9:3e: 25:09:5f:7b:f4:06:9b:aa:e6:f3:52:26:32:66:36:3d:c7:ed: 1e:e0:f5:b6 -----BEGIN CERTIFICATE----- MIIFVTCCBD2gAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzlBQjExMC8GA1UEBRMoQzE0MjRDNENDQzU5QzlBMDMxQkUxQUNERjc5ODJEODdB QjU3RDA2ODAeFw0yNTEyMDIyMDUzMzBaFw0yNjAzMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTQ5MWE4LWIwNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/ed01u5KJU5zO7Wdy13vHhuJ2N/f5qEcRWLSzrGCuTJOymHUjJ+dAmL8IfdCy GeHAvudic3kKipVWx/y+qLeTbrWpsO6F4eLHbgNhJg6U5Dgjc2Ut0kxvQCuFql4y er4nGbfq1e5zvf8zyighWay7DZt1UqWH+rf4bEoi0tmD4y0MiIaUgi/PUX5hzWBf 6A8qySYr36zjj62HZaKhWCnJ83lgUTbmpFCsnUIyTpluSyyAsFaGwhmsx3ItNRAt Qn3VZTab/yPqP+nouXPgkamtNHetUWkyp7mxd1apm4SA8xyperhzjQ+Gie3pWExI 800YpUiIJ/3N8whkcZ5jCHihAgMBAAGjggJ6MIICdjAdBgNVHQ4EFgQUICfJV7Av 3BuTuABHJ+RTjJJyPOUwHwYDVR0jBBgwFoAUwUJMTMxZyaAxvhrN95gth6tX0Ggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzOUFCLzE1OEQ0OTA2MjU1 QjExRUJBOUY1NjAxQUM0RjlBRTAyL3dVSk1UTXhaeWFBeHZock45NWd0aDZ0WDBH Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd1VKTVRNeFp5YUF4dmhyTjk1Z3RoNnRYMEdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85NkFEMTZDNkI1 RkExMUYwQTE1ODNDODRDNEY5QUUwMi5yb2EwOQYIKwYBBQUHAQcBAf8EKjAoMCYE AgABMCADBAXKk2ADBAXLUqADBAbLyUAwDAMEB914gAMEAd14kDANBgkqhkiG9w0B AQsFAAOCAQEAJgidAyyPO0EZEOjms9HOjsLYycwNBeEpEDeooC/ZUO3QCkeG13Br xdm4n13PUWeH/OO0pmhANsxmycFEodXi86bi3aasRXDFz6+ivNVzgdBmOf9x0Npj UOa6oCxXo9wNUUFfahhZ57aeB+dNfZV12KtT151yIscqHz24K0zHaKO2ktKMRtVL hB4O6HxEJ/HeR72KoPk9QJIm6fi1tEpuFYPDquAA82f5evhkJEypWtMrgfd69cz8 25ZN2uN68mG8g7AkHgI4cVuKKNnvsoGAsN6m6qcmAFMnQsvx0b6oRv6bsYfFX7I9 pfk+JQlfe/QGm6rm81ImMmY2PcftHuD1tg== -----END CERTIFICATE-----Generated at Mon Mar 2 20:36:47 2026 by rpki-client