$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa File: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (raw, json) Hash identifier: dXlGJvljbOTRyiUKcUkx49BNHkG/wuJwIqZ/bk6onnk= Subject key identifier: 0E:D2:6E:2F:0D:57:80:D9:8A:57:12:34:F8:1A:CC:1B:5F:B9:51:B2 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 0746 Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa Signing time: Wed 10 Jun 2026 22:26:27 +0000 ROA not before: Wed 10 Jun 2026 22:26:26 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 9790 IP address blocks: 202.3.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 21:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1862 (0x746) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: Jun 10 22:26:26 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a29e492-223b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:67:d6:04:17:b1:91:da:d4:f2:5f:d0:ba:a5: e1:9e:35:65:f9:5e:9b:6e:98:6e:4f:e5:2e:d2:49: c2:ef:44:96:61:ab:ac:ed:02:01:f7:4b:4b:63:89: 98:88:f4:56:18:09:f4:e9:f8:c7:f8:ab:4c:58:72: ab:8c:96:c2:a0:87:b4:c2:38:84:c3:b7:c3:2d:25: ab:9f:85:b5:bc:99:01:cb:3c:b6:b9:55:e4:7a:a6: 4b:73:24:5b:aa:44:ad:0f:ac:1d:85:f1:7f:26:fe: 2e:70:3e:7e:89:e9:53:94:e4:bf:75:aa:e0:6b:9a: c0:7a:50:31:f6:dd:b3:b6:8b:ce:37:23:2a:33:27: 0f:1f:a1:f4:18:28:e0:8e:31:7f:de:98:e1:e3:2e: 58:cf:25:44:21:82:41:75:e0:da:9a:e8:7e:06:70: 02:f5:28:43:b1:e4:13:ec:2a:a7:6d:65:88:7a:28: 7b:fd:38:84:24:c7:80:7e:7c:f3:cb:03:5b:f0:f3: d0:7b:fa:20:5b:61:6d:dc:f7:a1:6d:7a:3a:56:a7: 05:b5:1e:7b:ab:71:39:7b:57:8e:8c:48:d1:f0:e9: 93:12:a6:2b:1e:bd:83:d5:a8:ec:c7:b8:53:a5:8c: 3d:1f:ee:f1:c0:38:d6:90:52:90:d9:4e:7d:8a:0b: 94:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D2:6E:2F:0D:57:80:D9:8A:57:12:34:F8:1A:CC:1B:5F:B9:51:B2 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.3.88.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:de:64:7b:64:39:bc:98:52:47:38:e4:ce:3c:17:da:32:9d: 6d:cc:a6:d9:ae:57:fa:3b:32:c7:86:59:96:8e:e8:7c:f4:57: 96:bc:ee:9e:09:93:77:1f:ef:03:0c:2f:27:c6:7b:f6:b1:87: 1b:a7:09:fd:71:71:9a:4c:0c:92:12:ca:87:46:9b:52:49:24: aa:90:de:f0:20:e8:cd:a4:7f:27:48:7e:5c:93:ac:3b:24:47: 70:62:18:61:6f:f3:e4:95:9d:64:40:97:58:60:26:ef:4e:75: b1:5b:a6:7e:33:52:fa:c1:8c:da:e6:81:9b:da:b6:e8:c1:fa: 97:0b:b5:13:b1:cb:22:7a:7a:e0:d3:a5:1f:00:a9:ff:aa:96: a3:ce:b5:78:4f:e6:39:24:7a:74:e9:5c:94:77:84:b7:0b:37: 44:f0:b9:85:1c:eb:da:04:8e:c7:8e:ea:9d:e6:c8:59:ea:f9: d7:b0:e6:57:a1:24:7f:01:7b:7f:ad:95:a7:22:d8:18:3d:c8: 71:65:95:69:84:70:93:ed:39:be:bc:44:90:3f:90:0f:22:ce: 5e:58:7d:e7:c1:e2:ee:64:e4:29:7e:35:9e:1f:25:74:85:7e: 2e:c5:8e:d0:bc:40:5b:de:3d:f4:90:ae:c1:2b:36:12:7e:0d: b3:61:5d:55 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjYwNjEwMjIyNjI2WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI5ZTQ5Mi0yMjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGfWBBexkdrU8l/QuqXhnjVl+V6bbphuT+Uu0knC70SWYaus7QIB90tLY4mY iPRWGAn06fjH+KtMWHKrjJbCoIe0wjiEw7fDLSWrn4W1vJkByzy2uVXkeqZLcyRb qkStD6wdhfF/Jv4ucD5+ielTlOS/darga5rAelAx9t2ztovONyMqMycPH6H0GCjg jjF/3pjh4y5YzyVEIYJBdeDamuh+BnAC9ShDseQT7CqnbWWIeih7/TiEJMeAfnzz ywNb8PPQe/ogW2Ft3PehbXo6VqcFtR57q3E5e1eOjEjR8OmTEqYrHr2D1ajsx7hT pYw9H+7xwDjWkFKQ2U59iguUdwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA7Sbi8N V4DZilcSNPgazBtfuVGyMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjczRUQvNEQ4RkEyMEU3RDQ5MTFFQkExNjU3MzdCQzRGOUFFMDIvQkRCRkZCODY3 RDU0MTFFQjhDQkU1QjU3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDygNYMA0GCSqGSIb3DQEBCwUAA4IBAQAe3mR7ZDm8mFJHOOTOPBfa Mp1tzKbZrlf6OzLHhlmWjuh89FeWvO6eCZN3H+8DDC8nxnv2sYcbpwn9cXGaTAyS EsqHRptSSSSqkN7wIOjNpH8nSH5ck6w7JEdwYhhhb/PklZ1kQJdYYCbvTnWxW6Z+ M1L6wYza5oGb2rbowfqXC7UTscsienrg06UfAKn/qpajzrV4T+Y5JHp06VyUd4S3 CzdE8LmFHOvaBI7Hjuqd5shZ6vnXsOZXoSR/AXt/rZWnItgYPchxZZVphHCT7Tm+ vESQP5APIs5eWH3nweLuZOQpfjWeHyV0hX4uxY7QvEBb3j30kK7BKzYSfg2zYV1V -----END CERTIFICATE-----Generated at Sat Jun 13 10:00:08 2026 by rpki-client