$ rpki-client -vvf rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/1D5A2DB2CAD711F0A64CBB56C4F9AE02.roa File: 1D5A2DB2CAD711F0A64CBB56C4F9AE02.roa (raw, json) Hash identifier: UYmzmNOhHVux9yZEz47QdQpPwQPcVltUv0OFhaHMSfI= Subject key identifier: AD:FE:81:85:91:14:EE:5A:E2:39:D2:E8:44:41:7B:7D:A6:03:24:44 Certificate issuer: /CN=A91599B5/serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Certificate serial: 89 Authority key identifier: B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/1D5A2DB2CAD711F0A64CBB56C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:28:04 +0000 ROA not before: Wed 26 Nov 2025 14:50:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 154103 IP address blocks: 202.1.28.0/24 maxlen: 24 2402:1e20::/32 maxlen: 36 2402:1e20:1000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 12:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91599B5, serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Validity Not Before: Nov 26 14:50:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a58254-7f4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cd:a5:81:ad:a6:81:d3:9d:75:b9:c5:22:ab: 14:2d:9a:7c:3f:d7:7f:c0:34:5e:5b:0c:b2:70:1a: 88:3e:16:f5:9b:2f:a2:54:08:52:d6:b8:4b:32:5d: 43:5c:f2:40:7b:6e:c1:3c:97:b9:f9:5b:9f:0c:05: 15:f2:c0:de:e6:1d:a4:9b:fa:97:21:7a:49:bb:30: f4:97:37:82:25:be:d5:75:19:4f:f5:b2:d5:4d:cb: 3d:2e:84:58:8c:d5:4a:3b:ce:6a:81:72:c3:6e:63: e9:a6:5d:e5:52:ef:cc:95:85:8b:06:5e:d9:9d:dd: 43:5d:c8:a2:25:ed:c6:76:44:d6:99:a4:51:f6:05: 0d:2d:58:20:42:0a:d6:13:6f:c8:1a:ff:cc:46:38: 58:67:d7:9e:66:c8:da:e2:36:13:18:c3:6b:ce:74: 2c:5f:49:12:ac:1f:da:52:7a:06:02:a2:45:fa:98: 08:a5:b4:8d:98:c3:29:ea:c3:c4:2d:8d:e6:09:e5: 38:58:2f:71:b1:a5:41:3f:44:c4:28:68:9a:b0:54: 6b:d2:80:18:05:49:a0:bb:f9:ce:8b:c9:a2:85:9b: da:bb:8c:1f:4d:3a:c3:49:60:04:c6:07:8a:fe:5b: d2:26:79:32:3f:60:2d:ec:a9:7a:ff:0e:d4:95:e0: 77:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:FE:81:85:91:14:EE:5A:E2:39:D2:E8:44:41:7B:7D:A6:03:24:44 X509v3 Authority Key Identifier: keyid:B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/1D5A2DB2CAD711F0A64CBB56C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.1.28.0/24 IPv6: 2402:1e20::/32 Signature Algorithm: sha256WithRSAEncryption 57:c1:2f:a7:d0:0c:3b:7d:75:0d:c8:e0:48:d9:9e:54:eb:a7: d3:6c:29:7b:01:aa:a2:36:b6:e5:dc:85:74:01:2c:2c:37:6e: c4:e7:46:9f:47:6f:c3:a7:63:d3:ce:1d:d4:ee:d6:a7:6d:8d: 99:26:5c:2e:30:48:13:83:67:fc:47:95:e9:2a:aa:13:9c:d4: 24:76:11:ca:a8:cd:21:3b:b8:12:59:9e:4f:20:6d:31:ad:da: e3:23:c5:67:2f:8a:8b:57:1a:ac:32:76:76:44:0b:65:22:b7: 6a:41:48:d8:81:e1:78:91:ab:d8:ff:88:45:3d:10:11:4f:0f: 40:13:9e:34:0c:fc:f5:27:21:a4:90:a9:fa:3a:f8:72:57:5e: e1:62:59:9b:5d:7f:22:ec:ca:cf:6d:20:75:f2:b5:7f:22:eb: cc:05:cc:18:52:1f:cd:4c:ee:66:e0:ad:88:b7:a7:42:e6:3e: 23:45:95:2e:15:99:ec:ae:d6:c5:cb:55:1a:7b:e4:0e:1e:90: f8:94:68:71:db:90:97:63:90:c7:04:78:ff:fa:86:19:b4:4f: 1b:b6:b9:d2:fc:5c:00:2f:fe:36:ce:32:f9:78:22:fa:79:1a: 95:e3:1c:cb:ca:0e:47:f8:2f:17:c6:73:da:ff:69:b7:ac:42: da:8c:78:7a -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk5QjUxMTAvBgNVBAUTKEI1MkFFMTgzNkM2MTE5M0RFQThCQTVCRTlENzFCOENC QjM0MzAzOTgwHhcNMjUxMTI2MTQ1MDEwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODI1NC03ZjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM2lga2mgdOddbnFIqsULZp8P9d/wDReWwyycBqIPhb1my+iVAhS1rhLMl1D XPJAe27BPJe5+VufDAUV8sDe5h2km/qXIXpJuzD0lzeCJb7VdRlP9bLVTcs9LoRY jNVKO85qgXLDbmPppl3lUu/MlYWLBl7Znd1DXciiJe3GdkTWmaRR9gUNLVggQgrW E2/IGv/MRjhYZ9eeZsja4jYTGMNrznQsX0kSrB/aUnoGAqJF+pgIpbSNmMMp6sPE LY3mCeU4WC9xsaVBP0TEKGiasFRr0oAYBUmgu/nOi8mihZvau4wfTTrDSWAExgeK /lvSJnkyP2At7Kl6/w7UleB3IQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFK3+gYWR FO5a4jnS6ERBe32mAyREMB8GA1UdIwQYMBaAFLUq4YNsYRk96oulvp1xuMuzQwOY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTlCNS9CMjI2NkZEMjZE RTQxMUYwQkUwMkY5NjFDNEY5QUUwMi90U3JoZzJ4aEdUM3FpNlctblhHNHk3TkRB NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RTcmhnMnhoR1QzcWk2Vy1uWEc0eTdOREE1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTk5QjUvQjIyNjZGRDI2REU0MTFGMEJFMDJGOTYxQzRGOUFFMDIvMUQ1QTJEQjJD QUQ3MTFGMEE2NENCQjU2QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAygEcMA0EAgACMAcDBQAkAh4gMA0GCSqGSIb3DQEBCwUAA4IBAQBX wS+n0Aw7fXUNyOBI2Z5U66fTbCl7AaqiNrbl3IV0ASwsN27E50afR2/Dp2PTzh3U 7tanbY2ZJlwuMEgTg2f8R5XpKqoTnNQkdhHKqM0hO7gSWZ5PIG0xrdrjI8VnL4qL VxqsMnZ2RAtlIrdqQUjYgeF4kavY/4hFPRARTw9AE540DPz1JyGkkKn6OvhyV17h YlmbXX8i7MrPbSB18rV/IuvMBcwYUh/NTO5m4K2It6dC5j4jRZUuFZnsrtbFy1Ua e+QOHpD4lGhx25CXY5DHBHj/+oYZtE8btrnS/FwAL/42zjL5eCL6eRqV4xzLyg5H +C8XxnPa/2m3rELajHh6 -----END CERTIFICATE-----Generated at Mon Mar 2 23:53:50 2026 by rpki-client