$ rpki-client -vvf rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/F0520A385DD611EAA4AD4767C4F9AE02.roa File: F0520A385DD611EAA4AD4767C4F9AE02.roa (raw, json) Hash identifier: ZSUliO9qJv031QAjo5943Gy68HDck3wn/ZJAgTJ6gko= Subject key identifier: FB:97:E4:FB:E6:9A:90:6A:5C:95:5F:C4:EB:E0:40:DD:76:39:6C:BA Certificate issuer: /CN=A91468A1/serialNumber=152A3B43225CFA2C5F8DE27A9A6893D3B23F5DE3 Certificate serial: 0B6E Authority key identifier: 15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/F0520A385DD611EAA4AD4767C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:17:28 +0000 ROA not before: Tue 24 Feb 2026 03:07:28 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 3605 IP address blocks: 101.99.128.0/17 maxlen: 17 101.99.128.0/18 maxlen: 18 101.99.145.0/24 maxlen: 24 101.99.192.0/18 maxlen: 18 121.55.192.0/18 maxlen: 20 182.173.192.0/18 maxlen: 19 202.128.0.0/19 maxlen: 19 202.128.0.0/20 maxlen: 20 202.128.16.0/20 maxlen: 20 202.131.160.0/19 maxlen: 19 202.131.160.0/20 maxlen: 20 202.131.176.0/20 maxlen: 20 2404:8c00::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2926 (0xb6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91468A1, serialNumber=152A3B43225CFA2C5F8DE27A9A6893D3B23F5DE3 Validity Not Before: Feb 24 03:07:28 2026 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a482b7-3ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9c:db:2b:c1:71:f5:28:7a:82:9a:81:c0:e1: ec:c2:b0:b4:c5:26:ec:8f:5f:be:45:81:b4:6e:04: 81:fc:01:49:ab:67:79:ca:b7:5c:9e:b6:45:6b:05: 2e:4b:d5:cf:01:20:81:80:13:41:5c:90:3d:3f:74: ae:96:64:b8:e8:9c:82:c0:a9:21:86:77:8c:4a:7b: 0a:15:b3:9d:3a:93:4a:67:df:5d:de:1c:cc:8d:07: ae:35:70:d1:28:31:50:79:39:75:90:08:1b:1c:78: 52:38:85:cf:7d:96:86:62:73:d3:0e:35:ee:a1:46: 3b:30:8a:f1:aa:ed:20:b2:58:67:26:2e:3e:97:9f: e5:4d:89:11:e3:bd:41:32:c3:94:f9:c3:66:62:73: 9b:2a:7e:a2:a7:58:92:6e:e6:8b:cc:d2:99:fa:99: 17:ac:6f:91:e7:3a:40:6d:18:24:ee:23:e0:b7:aa: 37:55:63:f9:83:f4:a3:01:0e:d8:94:14:85:fb:3d: 31:4a:f5:4c:a7:6b:00:01:72:06:4f:08:22:b1:fb: 8e:29:07:d7:af:7b:d7:95:b3:76:90:f1:83:a0:08: 05:f0:65:6d:b5:9c:a4:8c:b2:ce:91:25:a7:aa:15: ce:f6:19:5c:c0:10:69:63:6f:5d:d5:c1:09:c4:23: 6e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:97:E4:FB:E6:9A:90:6A:5C:95:5F:C4:EB:E0:40:DD:76:39:6C:BA X509v3 Authority Key Identifier: keyid:15:2A:3B:43:22:5C:FA:2C:5F:8D:E2:7A:9A:68:93:D3:B2:3F:5D:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/FSo7QyJc-ixfjeJ6mmiT07I_XeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSo7QyJc-ixfjeJ6mmiT07I_XeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91468A1/2E1CC644511811EA9387C66BC4F9AE02/F0520A385DD611EAA4AD4767C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 101.99.128.0/17 121.55.192.0/18 182.173.192.0/18 202.128.0.0/19 202.131.160.0/19 IPv6: 2404:8c00::/32 Signature Algorithm: sha256WithRSAEncryption 1f:bf:82:a0:47:a5:46:dc:0e:e0:0f:f4:6f:d1:1e:cc:c5:cd: ee:57:73:22:50:ea:ef:13:68:97:0f:b0:a0:27:e4:64:7a:39: 9b:9b:03:0a:e2:c4:4a:68:1f:07:65:2d:1e:b3:9b:b8:9e:9b: 0a:48:22:97:1b:79:cc:ae:d7:35:27:d3:02:88:25:46:4c:c8: 73:00:2a:bc:50:c5:cb:ad:9b:e3:23:17:bd:a0:10:53:c4:38: 99:4e:6a:f4:9d:ed:1f:d4:17:b7:3c:6d:69:e0:c1:91:df:ce: a5:6a:9b:64:be:f8:d6:60:6e:be:63:f1:e8:05:0f:14:8f:72: 0b:27:46:e7:9e:61:6f:6f:3c:d6:e3:a1:16:00:03:8f:dc:63: af:40:1b:e3:db:7c:a2:dc:c7:22:c3:a7:3e:08:79:e3:d5:50: a2:51:80:30:db:22:10:29:be:32:05:5f:55:cd:de:70:4a:b8: d1:1a:93:fa:84:91:f9:d2:2f:5c:9d:2b:39:48:51:a2:c0:60: 58:99:a1:e1:96:1f:e2:9c:7a:df:fa:09:cf:9c:62:75:33:2d: 9c:23:2c:85:b1:62:ab:78:8b:06:f4:07:a3:a3:5c:02:42:7d: a6:4f:c4:5c:31:08:04:37:28:e6:55:f8:c4:81:96:f5:fc:31: e7:23:e8:9f -----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgICC24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY4QTExMTAvBgNVBAUTKDE1MkEzQjQzMjI1Q0ZBMkM1RjhERTI3QTlBNjg5M0Qz QjIzRjVERTMwHhcNMjYwMjI0MDMwNzI4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODJiNy0zZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmpzbK8Fx9Sh6gpqBwOHswrC0xSbsj1++RYG0bgSB/AFJq2d5yrdcnrZFawUu S9XPASCBgBNBXJA9P3SulmS46JyCwKkhhneMSnsKFbOdOpNKZ99d3hzMjQeuNXDR KDFQeTl1kAgbHHhSOIXPfZaGYnPTDjXuoUY7MIrxqu0gslhnJi4+l5/lTYkR471B MsOU+cNmYnObKn6ip1iSbuaLzNKZ+pkXrG+R5zpAbRgk7iPgt6o3VWP5g/SjAQ7Y lBSF+z0xSvVMp2sAAXIGTwgisfuOKQfXr3vXlbN2kPGDoAgF8GVttZykjLLOkSWn qhXO9hlcwBBpY29d1cEJxCNuJwIDAQABo4IChzCCAoMwHQYDVR0OBBYEFPuX5Pvm mpBqXJVfxOvgQN12OWy6MB8GA1UdIwQYMBaAFBUqO0MiXPosX43ieppok9OyP13j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjhBMS8yRTFDQzY0NDUx MTgxMUVBOTM4N0M2NkJDNEY5QUUwMi9GU283UXlKYy1peGZqZUo2bW1pVDA3SV9Y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTbzdReUpjLWl4ZmplSjZtbWlUMDdJX1hlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY4QTEvMkUxQ0M2NDQ1MTE4MTFFQTkzODdDNjZCQzRGOUFFMDIvRjA1MjBBMzg1 REQ2MTFFQUE0QUQ0NzY3QzRGOUFFMDIucm9hMEYGCCsGAQUFBwEHAQH/BDcwNTAk BAIAATAeAwQHZWOAAwQGeTfAAwQGtq3AAwQFyoAAAwQFyoOgMA0EAgACMAcDBQAk BIwAMA0GCSqGSIb3DQEBCwUAA4IBAQAfv4KgR6VG3A7gD/Rv0R7Mxc3uV3MiUOrv E2iXD7CgJ+RkejmbmwMK4sRKaB8HZS0es5u4npsKSCKXG3nMrtc1J9MCiCVGTMhz ACq8UMXLrZvjIxe9oBBTxDiZTmr0ne0f1Be3PG1p4MGR386laptkvvjWYG6+Y/Ho BQ8Uj3ILJ0bnnmFvbzzW46EWAAOP3GOvQBvj23yi3Mciw6c+CHnj1VCiUYAw2yIQ Kb4yBV9Vzd5wSrjRGpP6hJH50i9cnSs5SFGiwGBYmaHhlh/inHrf+gnPnGJ1My2c IyyFsWKreIsG9Aejo1wCQn2mT8RcMQgENyjmVfjEgZb1/DHnI+if -----END CERTIFICATE-----Generated at Mon Mar 2 21:55:35 2026 by rpki-client