$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/572A655C6E8E11F0BC00AD68C4F9AE02.roa File: 572A655C6E8E11F0BC00AD68C4F9AE02.roa (raw, json) Hash identifier: FmJuf298hS3Cq5FkDNYaTuFTUFK1cdgTe8R72xFRVHQ= Subject key identifier: FB:F0:FC:98:F5:EA:79:C3:A4:57:98:35:FC:43:F6:17:6A:AA:4C:38 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: CF Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/572A655C6E8E11F0BC00AD68C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:16:57 +0000 ROA not before: Mon 27 Oct 2025 09:50:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153315 IP address blocks: 202.40.164.0/24 maxlen: 24 202.40.165.0/24 maxlen: 24 202.40.166.0/24 maxlen: 24 202.40.167.0/24 maxlen: 24 2401:c0e0::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 15:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Oct 27 09:50:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a5a9e9-5cab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:54:c4:5a:da:b6:f9:b6:1d:b5:7e:52:d7:75: 68:29:c4:1a:2a:51:bc:06:af:eb:aa:7d:2c:21:d8: 99:6c:af:b8:b5:22:73:38:04:3e:a9:1c:bc:3e:6d: 3c:e8:2e:ae:14:32:12:e0:b7:f5:8e:fd:af:48:0a: ff:9f:26:c5:d8:71:84:ed:13:32:af:6d:84:c0:08: 1d:18:d0:5b:47:c2:5d:33:dd:31:35:b4:1e:99:36: 2b:f6:c4:49:fb:4f:16:15:b6:91:a7:3f:79:07:a7: aa:3f:8c:00:c2:26:09:ea:37:e6:6b:81:09:95:64: 0c:a6:c2:2d:f4:af:60:a1:e9:ca:12:7a:6b:6f:5e: 4b:a1:05:ab:99:66:49:ed:ca:c0:10:51:dc:9d:36: 9a:46:8f:ad:8f:40:29:de:ae:df:33:6f:89:cc:f2: 9b:59:cc:5b:f4:49:33:bb:f1:97:0d:eb:cf:e5:9b: f6:35:5c:91:af:39:a2:b4:33:45:ac:c6:a6:98:cf: b8:9f:a9:b2:81:aa:26:dd:e0:6d:c4:fb:bd:b0:46: f5:9c:4e:9e:6d:d0:75:4a:7c:86:1b:39:14:82:50: a9:49:86:23:10:62:74:4e:af:8d:cd:5d:ff:55:4b: 48:c0:82:ae:e5:e2:0f:df:2a:ee:24:87:e2:da:19: 5e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F0:FC:98:F5:EA:79:C3:A4:57:98:35:FC:43:F6:17:6A:AA:4C:38 X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/572A655C6E8E11F0BC00AD68C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.40.164.0/22 IPv6: 2401:c0e0::/40 Signature Algorithm: sha256WithRSAEncryption c0:c3:90:dc:ee:b8:b5:22:5d:3e:2e:42:4d:03:fa:31:46:e7: d9:11:89:d5:d2:ec:ed:c6:65:fd:fc:4e:67:28:ed:cc:8d:04: 63:f3:da:92:3d:f0:1d:bb:6f:e7:fe:2b:66:09:4f:aa:f1:69: 40:40:01:fb:a5:ed:e0:b2:2f:03:dc:48:fe:8d:dc:bd:16:98: 88:3f:ce:c0:de:6a:f4:9e:2f:16:90:3e:06:53:39:88:35:8d: 3f:f6:45:cf:73:b7:44:25:15:23:47:3a:07:83:ef:26:dd:eb: 8b:de:4c:7c:20:18:b8:91:8a:58:47:c4:b9:9b:3b:e6:2f:a1: 6c:7b:96:cf:eb:fd:9e:34:34:a2:20:06:8a:7e:0c:d9:14:d2: 25:98:6e:65:b0:65:c3:c6:bf:ce:87:9f:ec:4f:d9:3f:6f:50: 9e:9c:5e:14:95:a8:25:a9:a4:92:96:7b:98:10:db:0f:bb:b8: 49:5e:d4:59:66:6b:d8:c3:6f:48:12:07:d1:b0:e3:fe:8d:86: 93:11:2c:cd:a5:45:50:dd:dd:12:b6:46:a1:4e:ec:f2:6c:18: fc:77:47:d7:0b:69:71:f8:8a:af:73:c4:c4:ad:fc:b4:2b:8a: 8d:c1:89:6a:35:48:d5:1e:71:8e:15:2a:6d:14:40:c9:eb:36: cf:ce:86:c2 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE2RkYxMTAvBgNVBAUTKERGQ0E4RkRBQTVGRUY5NDhFMEVDRjZGOUM3MDM2MzlC NTY1MzlEOTkwHhcNMjUxMDI3MDk1MDU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTllOS01Y2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVTEWtq2+bYdtX5S13VoKcQaKlG8Bq/rqn0sIdiZbK+4tSJzOAQ+qRy8Pm08 6C6uFDIS4Lf1jv2vSAr/nybF2HGE7RMyr22EwAgdGNBbR8JdM90xNbQemTYr9sRJ +08WFbaRpz95B6eqP4wAwiYJ6jfma4EJlWQMpsIt9K9goenKEnprb15LoQWrmWZJ 7crAEFHcnTaaRo+tj0Ap3q7fM2+JzPKbWcxb9Ekzu/GXDevP5Zv2NVyRrzmitDNF rMammM+4n6mygaom3eBtxPu9sEb1nE6ebdB1SnyGGzkUglCpSYYjEGJ0Tq+NzV3/ VUtIwIKu5eIP3yruJIfi2hletwIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFPvw/Jj1 6nnDpFeYNfxD9hdqqkw4MB8GA1UdIwQYMBaAFN/Kj9ql/vlI4Oz2+ccDY5tWU52Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTZGRi8yREE1NTkxMjE0 MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi8zOHFQMnFYLS1Vamc3UGI1eHdOam0xWlRu WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5aay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE2RkYvMkRBNTU5MTIxNDE2MTFGMEE4NTIzMjE5QzRGOUFFMDIvNTcyQTY1NUM2 RThFMTFGMEJDMDBBRDY4QzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQCyiikMA4EAgACMAgDBgAkAcDgADANBgkqhkiG9w0BAQsFAAOCAQEA wMOQ3O64tSJdPi5CTQP6MUbn2RGJ1dLs7cZl/fxOZyjtzI0EY/Pakj3wHbtv5/4r ZglPqvFpQEAB+6Xt4LIvA9xI/o3cvRaYiD/OwN5q9J4vFpA+BlM5iDWNP/ZFz3O3 RCUVI0c6B4PvJt3ri95MfCAYuJGKWEfEuZs75i+hbHuWz+v9njQ0oiAGin4M2RTS JZhuZbBlw8a/zoef7E/ZP29QnpxeFJWoJamkkpZ7mBDbD7u4SV7UWWZr2MNvSBIH 0bDj/o2GkxEszaVFUN3dErZGoU7s8mwY/HdH1wtpcfiKr3PExK38tCuKjcGJajVI 1R5xjhUqbRRAyes2z86Gwg== -----END CERTIFICATE-----Generated at Tue Mar 3 00:41:16 2026 by rpki-client