$ rpki-client -vvf rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa File: 90798692AA0A11EA89D5161EC4F9AE02.roa (raw, json) Hash identifier: jtzq5eisB6ryCzplX5VTVb6xmbWFyVERv+PCJn++EdA= Subject key identifier: 01:C3:B1:DD:6F:25:3E:4D:4C:63:01:BB:B2:45:A7:9B:56:E4:E5:C4 Certificate issuer: /CN=A916B4B7/serialNumber=CAA969FF3774BCD9ED602773D29D878BC4E2656B Certificate serial: 0988 Authority key identifier: CA:A9:69:FF:37:74:BC:D9:ED:60:27:73:D2:9D:87:8B:C4:E2:65:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:32:48 +0000 ROA not before: Wed 30 Apr 2025 20:29:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38567 IP address blocks: 202.45.149.0/24 maxlen: 24 203.14.176.0/24 maxlen: 24 2001:df0:65::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.crl rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B4B7, serialNumber=CAA969FF3774BCD9ED602773D29D878BC4E2656B Validity Not Before: Apr 30 20:29:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a407bf-2399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:19:dd:bb:e0:57:50:f0:3a:ee:97:5d:a0:2d: 70:4b:4c:60:3f:ea:00:35:20:38:23:53:d4:f2:42: ca:45:bc:bc:3a:94:2a:d3:0b:70:f7:61:47:de:52: f7:eb:cf:48:e4:3c:a8:8a:ca:6f:04:0f:41:68:b1: 20:af:a9:62:13:28:ab:c1:e1:84:93:aa:9e:da:3e: 68:06:9d:3e:10:61:e7:da:0e:d2:8a:62:60:3a:20: 0c:77:00:8e:69:0d:5b:60:0d:5c:03:3e:56:d2:02: d8:97:27:53:9c:f1:c9:12:a9:87:7f:7d:ca:8a:bb: eb:8a:60:db:0c:df:9b:11:b3:6f:ca:fe:40:c4:70: d7:a2:91:61:bc:e7:96:06:da:3e:ad:da:2d:5c:a5: 24:24:bf:ff:df:20:0f:b1:61:b8:d2:66:a5:c2:53: 2f:a8:cb:36:4c:83:2e:c5:c3:1e:df:b0:d6:95:d9: 79:26:1f:4b:ea:05:7b:9c:d6:b8:bf:e6:a5:e2:cf: e3:9d:ad:ce:17:ca:a3:29:1d:77:40:26:84:b3:89: 89:17:97:80:96:8f:bc:d6:e6:6f:36:b7:a7:49:0b: 38:4c:8a:5c:e3:39:e3:78:b5:ce:ce:c0:51:d7:6f: 35:ad:a0:67:be:22:9b:4c:ed:84:c3:01:44:51:3d: fa:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C3:B1:DD:6F:25:3E:4D:4C:63:01:BB:B2:45:A7:9B:56:E4:E5:C4 X509v3 Authority Key Identifier: keyid:CA:A9:69:FF:37:74:BC:D9:ED:60:27:73:D2:9D:87:8B:C4:E2:65:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.45.149.0/24 203.14.176.0/24 IPv6: 2001:df0:65::/48 Signature Algorithm: sha256WithRSAEncryption 36:02:cd:a0:c2:58:69:9c:37:b4:8c:b3:fb:7b:da:7c:97:98: 08:95:cb:3b:37:12:c8:1b:98:47:8f:4f:86:da:c5:bf:12:4f: 17:2a:f4:b0:d1:e6:4b:ba:03:35:40:b5:c8:f4:4d:b3:01:25: 0d:ae:56:eb:f8:6c:29:54:f8:7b:c8:fa:70:5f:1a:7b:23:e6: ff:55:19:1c:06:d5:f2:a3:56:a0:c5:94:b5:37:81:16:5c:ad: d8:39:2b:bc:31:d7:c4:a7:be:c8:3a:c6:ef:f8:d1:2e:fb:a2: ba:56:1c:af:14:ce:bf:a3:cd:52:54:6f:5a:02:8d:0f:2f:f9: 28:bf:a2:8a:5b:c5:48:b1:ed:bb:8b:b3:cb:e3:27:78:e0:98: 6e:ab:5c:60:d1:d1:f7:bd:df:7f:23:5a:d4:16:59:f4:51:4e: 98:af:e9:3c:9f:68:6e:56:2c:d2:07:30:ba:f0:ba:bd:f0:db: 8d:b8:31:57:14:f7:db:af:7f:22:41:77:6c:89:f4:16:8a:ce: 27:73:22:29:d7:e2:a1:9b:6f:c6:bb:8b:61:f9:be:83:3c:d4: 70:13:3a:c5:63:e1:4f:77:f7:a2:d1:39:bb:2d:3a:8b:b3:ad: a9:a8:3c:cc:c9:91:2d:a4:d5:91:1a:5f:a4:8b:c1:ed:78:96: da:a9:7d:db -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI0QjcxMTAvBgNVBAUTKENBQTk2OUZGMzc3NEJDRDlFRDYwMjc3M0QyOUQ4NzhC QzRFMjY1NkIwHhcNMjUwNDMwMjAyOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDdiZi0yMzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hndu+BXUPA67pddoC1wS0xgP+oANSA4I1PU8kLKRby8OpQq0wtw92FH3lL3 689I5DyoispvBA9BaLEgr6liEyirweGEk6qe2j5oBp0+EGHn2g7SimJgOiAMdwCO aQ1bYA1cAz5W0gLYlydTnPHJEqmHf33KirvrimDbDN+bEbNvyv5AxHDXopFhvOeW Bto+rdotXKUkJL//3yAPsWG40malwlMvqMs2TIMuxcMe37DWldl5Jh9L6gV7nNa4 v+al4s/jna3OF8qjKR13QCaEs4mJF5eAlo+81uZvNrenSQs4TIpc4znjeLXOzsBR 1281raBnviKbTO2EwwFEUT36lQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFAHDsd1v JT5NTGMBu7JFp5tW5OXEMB8GA1UdIwQYMBaAFMqpaf83dLzZ7WAnc9Kdh4vE4mVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjRCNy8wOTcyQzc0MEFB MDkxMUVBOEZFM0I2MUJDNEY5QUUwMi95cWxwX3pkMHZObnRZQ2R6MHAySGk4VGla V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxbHBfemQwdk5udFlDZHowcDJIaThUaVpXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI0QjcvMDk3MkM3NDBBQTA5MTFFQThGRTNCNjFCQzRGOUFFMDIvOTA3OTg2OTJB QTBBMTFFQTg5RDUxNjFFQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAyi2VAwQAyw6wMA8EAgACMAkDBwAgAQ3wAGUwDQYJKoZIhvcNAQEL BQADggEBADYCzaDCWGmcN7SMs/t72nyXmAiVyzs3EsgbmEePT4baxb8STxcq9LDR 5ku6AzVAtcj0TbMBJQ2uVuv4bClU+HvI+nBfGnsj5v9VGRwG1fKjVqDFlLU3gRZc rdg5K7wx18Snvsg6xu/40S77orpWHK8Uzr+jzVJUb1oCjQ8v+Si/oopbxUix7buL s8vjJ3jgmG6rXGDR0fe9338jWtQWWfRRTpiv6TyfaG5WLNIHMLrwur3w2424MVcU 99uvfyJBd2yJ9BaKzidzIinX4qGbb8a7i2H5voM81HATOsVj4U9396LRObstOouz ramoPMzJkS2k1ZEaX6SLwe14ltqpfds= -----END CERTIFICATE-----Generated at Mon Mar 2 11:25:17 2026 by rpki-client