$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/951A6E226D2E11F09539AE2BC4F9AE02.roa File: 951A6E226D2E11F09539AE2BC4F9AE02.roa (raw, json) Hash identifier: s7tXiYi5ptQxn0vdm+4nmLlWJa9YOADDTGYzCkSoTLc= Subject key identifier: 51:28:B7:C8:2B:E9:36:7E:4C:0C:58:CB:9C:F9:3B:2C:99:9F:96:CC Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 02F2 Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/951A6E226D2E11F09539AE2BC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:25:21 +0000 ROA not before: Fri 09 Jan 2026 01:20:40 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134428 IP address blocks: 125.62.68.0/24 maxlen: 24 125.62.69.0/24 maxlen: 24 125.62.70.0/24 maxlen: 24 125.62.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:32:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7, serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Validity Not Before: Jan 9 01:20:40 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a47681-d18e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a5:87:29:a1:f8:bd:3b:86:bf:de:6f:11:39: 21:9e:f7:d3:af:cc:79:3d:d4:4e:93:95:72:84:94: 9b:7d:e0:29:14:42:50:dd:be:16:f5:3b:e4:b5:d7: ff:9a:93:93:a9:2c:82:f4:e6:cc:6d:66:f9:c8:14: 3a:39:c1:35:0c:c7:a5:89:2e:00:18:5c:78:4d:a4: 32:13:ee:1e:17:44:69:df:5c:4b:8a:79:0c:59:3f: 87:2f:5b:b4:77:a7:94:f8:26:13:9b:3e:cf:e8:70: 41:fe:78:c4:e6:28:a8:d0:86:f3:1f:27:31:01:9f: af:57:cb:bd:76:46:49:fb:3b:b1:9c:c3:8f:13:2a: c3:f7:21:bf:fc:be:a3:70:e0:bd:f0:e4:d8:a0:d2: d9:cb:e4:1a:bb:58:c5:cb:0d:04:f9:6a:ff:ec:e2: c5:ae:75:c2:f7:b5:21:4f:ca:26:87:15:9e:62:c5: ae:b5:a2:f8:3d:97:e1:b8:8d:0b:0a:9e:ed:a9:28: 30:73:fa:54:9e:7e:a6:b5:18:71:ea:98:b7:1e:9b: 8e:49:8f:05:f7:2b:7b:d8:c3:56:9d:36:d2:33:9f: 91:18:0f:90:1b:d4:1b:8f:69:1a:31:a6:1e:33:45: c9:0a:aa:70:f9:b8:cf:3d:1f:3d:be:f4:18:a5:6a: 40:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:28:B7:C8:2B:E9:36:7E:4C:0C:58:CB:9C:F9:3B:2C:99:9F:96:CC X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/951A6E226D2E11F09539AE2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 125.62.68.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:ec:7e:40:e7:7f:4f:d3:07:78:cf:31:f8:30:f0:22:7d:61: 43:64:a2:62:7b:d0:d0:53:08:0f:3b:b8:39:df:51:d8:61:06: db:dc:9f:3f:5f:5e:ce:e5:2f:9c:da:d0:75:79:fa:f5:d3:0e: a1:e7:c9:99:f9:f9:8e:68:b1:15:c4:66:8d:ed:76:e7:9a:7e: 42:b4:83:8c:87:5d:08:a5:7d:cf:80:22:5a:1f:df:b2:75:3b: f1:7f:b0:53:e7:37:1a:b8:49:85:c4:b3:43:c8:2c:8f:ef:56: 8b:f9:4f:ad:e6:d3:1e:44:31:af:a8:94:92:88:30:7a:45:64: 3a:36:46:91:e2:9a:d2:af:b0:c5:ba:65:25:ac:c0:01:25:33: 28:84:c4:8c:d1:88:f4:e3:df:e6:06:d7:bb:01:8c:b4:7d:98: ab:97:7d:0a:d5:96:b9:04:05:77:a4:2d:bb:4b:fe:4c:25:30: cf:be:c6:b6:7a:17:5f:e9:7b:04:b4:59:54:c5:0f:da:3d:72: 88:21:96:8f:cb:68:95:92:4c:be:4b:d6:49:e5:98:19:aa:25: 2d:0a:93:6e:59:c6:9c:9b:a4:b7:72:d4:c4:ca:b9:6a:f7:9e: 94:6f:4d:26:c0:51:2e:c7:6e:f7:90:10:d9:37:c2:40:c1:02: c2:30:8f:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjYwMTA5MDEyMDQwWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzY4MS1kMThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6WHKaH4vTuGv95vETkhnvfTr8x5PdROk5VyhJSbfeApFEJQ3b4W9Tvktdf/ mpOTqSyC9ObMbWb5yBQ6OcE1DMeliS4AGFx4TaQyE+4eF0Rp31xLinkMWT+HL1u0 d6eU+CYTmz7P6HBB/njE5iio0IbzHycxAZ+vV8u9dkZJ+zuxnMOPEyrD9yG//L6j cOC98OTYoNLZy+Qau1jFyw0E+Wr/7OLFrnXC97UhT8omhxWeYsWutaL4PZfhuI0L Cp7tqSgwc/pUnn6mtRhx6pi3HpuOSY8F9yt72MNWnTbSM5+RGA+QG9Qbj2kaMaYe M0XJCqpw+bjPPR89vvQYpWpAqwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFEot8gr 6TZ+TAxYy5z5OyyZn5bMMB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjMyRDcvRjk3OTU5QzIyNDE3MTFFRDlDMEM3MDBEQzRGOUFFMDIvOTUxQTZFMjI2 RDJFMTFGMDk1MzlBRTJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCfT5EMA0GCSqGSIb3DQEBCwUAA4IBAQBK7H5A539P0wd4zzH4MPAi fWFDZKJie9DQUwgPO7g531HYYQbb3J8/X17O5S+c2tB1efr10w6h58mZ+fmOaLEV xGaN7Xbnmn5CtIOMh10IpX3PgCJaH9+ydTvxf7BT5zcauEmFxLNDyCyP71aL+U+t 5tMeRDGvqJSSiDB6RWQ6NkaR4prSr7DFumUlrMABJTMohMSM0Yj049/mBte7AYy0 fZirl30K1Za5BAV3pC27S/5MJTDPvsa2ehdf6XsEtFlUxQ/aPXKIIZaPy2iVkky+ S9ZJ5ZgZqiUtCpNuWcacm6S3ctTEyrlq956Ub00mwFEux273kBDZN8JAwQLCMI9S -----END CERTIFICATE-----Generated at Mon Mar 2 13:20:10 2026 by rpki-client