$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa File: 66EE9D94152511ECAD055780C4F9AE02.roa (raw, json) Hash identifier: n2hlAVM9PTTT2Scjp8/RzlDa+bb55gqeGOADAsXpei0= Subject key identifier: 67:43:97:BF:70:59:0C:BF:3F:C0:3B:C0:01:53:39:DC:4E:49:8A:92 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0873 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:22:49 +0000 ROA not before: Mon 14 Jul 2025 21:30:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17888 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.192.0/24 maxlen: 24 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2163 (0x873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jul 14 21:30:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a42f99-ca20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c0:7d:ed:42:56:3f:d7:4d:24:a1:9a:5b:01: 3f:1e:d8:5b:ec:49:72:42:ea:ff:e7:9c:29:9c:b8: cb:32:8b:15:4b:66:32:2e:8a:83:7f:f8:67:6b:f2: 97:98:a4:11:5d:5f:31:7b:c6:da:af:ac:cb:9f:e0: 18:bd:7c:5a:2f:02:46:38:12:8f:ee:1a:ee:cd:89: 02:e6:73:b9:e0:94:e3:00:92:60:a2:25:92:91:fa: 65:dd:78:76:4b:c4:88:6a:ef:5c:4d:4b:16:f5:51: af:a2:5c:0f:a8:2e:c3:03:ec:bf:c4:ec:c1:3c:59: 7b:80:b2:10:db:64:cb:6d:1b:fa:a7:ee:5b:83:92: b2:ab:9b:a4:03:c2:8a:81:d8:c1:ee:e1:6d:d7:33: 93:7b:55:95:72:91:72:29:96:5f:9c:c9:25:16:e3: 10:64:b9:2c:b7:11:d2:4a:ce:d1:99:8e:96:06:30: 04:36:b5:85:89:32:90:06:2d:64:92:be:fe:d3:eb: e7:c9:56:90:4d:7b:27:60:25:47:55:ed:de:97:7a: f0:c6:8b:f8:6c:48:dc:37:f0:28:a2:ab:d2:b9:21: 8d:c2:25:8e:ff:3e:7e:b5:f1:09:2d:5c:ee:b7:da: 03:c7:fa:c7:66:d3:07:aa:fd:a2:fb:5e:54:4f:c9: 75:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:43:97:BF:70:59:0C:BF:3F:C0:3B:C0:01:53:39:DC:4E:49:8A:92 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 68:4e:8a:b3:46:10:cd:b3:3f:b5:04:8b:93:7e:82:43:75:d8: 9e:33:10:df:45:f4:7a:c1:73:bc:f2:b7:4d:98:dc:74:67:4a: 7c:bc:a7:d5:61:dd:dd:f0:5a:a4:4f:8b:83:fc:79:16:d5:bf: d3:7b:a1:53:7f:d2:9a:b1:af:68:b4:65:ac:d9:45:09:b8:7b: 62:9e:58:21:97:bc:a7:1a:c9:fd:18:63:db:f7:a6:58:3a:1f: 61:8d:c1:0f:fa:84:8e:51:bb:16:80:a8:26:5d:1a:56:90:ce: dc:dc:5f:bf:30:8e:c5:95:5e:59:9f:eb:11:de:ce:af:0e:f4: 80:68:2f:56:69:8d:ef:05:94:fe:c2:c5:7a:2a:a5:94:45:63: d1:eb:89:4e:83:64:13:f4:63:b6:8a:7d:9d:d7:8f:a1:d2:a5: 47:29:02:77:8e:b4:73:02:65:57:e3:a8:97:bc:6f:67:f9:dd: 97:57:2d:56:3a:cb:8d:e0:87:58:15:81:20:6e:ef:15:b5:62: 04:b0:82:ea:89:6c:11:cf:4c:76:a8:8e:51:d3:64:fa:1b:23: 4e:52:e9:94:25:7c:21:9f:da:03:c8:c5:a3:49:eb:31:7d:ad: 99:9a:73:4f:e5:5d:e2:c4:d7:56:84:14:4d:f4:6e:e7:fe:a7: 2e:b2:f7:39 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwNzE0MjEzMDU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY5OS1jYTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MB97UJWP9dNJKGaWwE/Hthb7ElyQur/55wpnLjLMosVS2YyLoqDf/hna/KX mKQRXV8xe8bar6zLn+AYvXxaLwJGOBKP7hruzYkC5nO54JTjAJJgoiWSkfpl3Xh2 S8SIau9cTUsW9VGvolwPqC7DA+y/xOzBPFl7gLIQ22TLbRv6p+5bg5Kyq5ukA8KK gdjB7uFt1zOTe1WVcpFyKZZfnMklFuMQZLkstxHSSs7RmY6WBjAENrWFiTKQBi1k kr7+0+vnyVaQTXsnYCVHVe3el3rwxov4bEjcN/AooqvSuSGNwiWO/z5+tfEJLVzu t9oDx/rHZtMHqv2i+15UT8l1QQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFGdDl79w WQy/P8A7wAFTOdxOSYqSMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvNjZFRTlEOTQx NTI1MTFFQ0FEMDU1NzgwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQFylPAMA0EAgACMAcDBQAkAPAAMA0GCSqGSIb3DQEBCwUAA4IBAQBo ToqzRhDNsz+1BIuTfoJDddieMxDfRfR6wXO88rdNmNx0Z0p8vKfVYd3d8FqkT4uD /HkW1b/Te6FTf9Kasa9otGWs2UUJuHtinlghl7ynGsn9GGPb96ZYOh9hjcEP+oSO UbsWgKgmXRpWkM7c3F+/MI7FlV5Zn+sR3s6vDvSAaC9WaY3vBZT+wsV6KqWURWPR 64lOg2QT9GO2in2d14+h0qVHKQJ3jrRzAmVX46iXvG9n+d2XVy1WOsuN4IdYFYEg bu8VtWIEsILqiWwRz0x2qI5R02T6GyNOUumUJXwhn9oDyMWjSesxfa2ZmnNP5V3i xNdWhBRN9G7n/qcusvc5 -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:41 2026 by rpki-client