$ rpki-client -vvf rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/94BF06A8F31D11EA8D62F57EC4F9AE02.roa File: 94BF06A8F31D11EA8D62F57EC4F9AE02.roa (raw, json) Hash identifier: K4cizBn+CQ9PjEoACDhqt8hP7a6szoU7I7m+9WE6F2U= Subject key identifier: 36:05:4F:7F:10:B1:1A:21:9C:D2:C1:D3:D8:C5:6C:6A:49:7A:37:28 Certificate issuer: /CN=A91717C0/serialNumber=F75143AB5BE830BE93BCD776D332B0FD5B787E3B Certificate serial: 0866 Authority key identifier: F7:51:43:AB:5B:E8:30:BE:93:BC:D7:76:D3:32:B0:FD:5B:78:7E:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91FDq1voML6TvNd20zKw_Vt4fjs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/94BF06A8F31D11EA8D62F57EC4F9AE02.roa Signing time: Sun 01 Mar 2026 11:56:08 +0000 ROA not before: Thu 26 Jun 2025 21:28:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9241 IP address blocks: 202.170.32.0/20 maxlen: 20 202.170.33.0/24 maxlen: 24 202.170.36.0/24 maxlen: 24 202.170.38.0/24 maxlen: 24 202.170.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/91FDq1voML6TvNd20zKw_Vt4fjs.crl rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/91FDq1voML6TvNd20zKw_Vt4fjs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91FDq1voML6TvNd20zKw_Vt4fjs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717C0, serialNumber=F75143AB5BE830BE93BCD776D332B0FD5B787E3B Validity Not Before: Jun 26 21:28:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a42958-5e39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:93:b9:54:ed:76:e0:5f:e7:b6:03:63:9f:a3: 08:c5:4e:77:21:ca:3d:e8:1e:55:27:5a:17:c8:75: 60:60:97:71:4b:1e:3f:71:bc:e9:ac:90:24:24:5c: 43:68:59:ba:42:09:7c:f2:24:37:06:e5:6e:04:96: ae:99:2a:ba:a4:ae:fa:f4:4b:b7:d0:e0:4b:d6:8e: 4d:b7:15:bd:f4:76:5b:f7:4f:5b:14:df:3e:28:61: cd:0f:d4:c6:38:bb:05:75:2b:1c:9a:36:e2:d6:4f: 6e:9c:9c:fa:63:59:af:5c:61:f5:48:c5:e3:5e:2e: f8:47:4f:cb:80:c0:79:01:6a:fb:f4:60:c5:36:35: 68:18:f4:fa:f3:1d:b4:f5:3d:36:b5:12:93:e8:f3: e4:9a:7f:90:e0:36:a1:de:40:3e:4e:2e:54:86:46: 89:4f:c3:7d:b3:96:bc:e3:4e:e0:28:7a:9e:50:74: ea:d4:90:bf:4f:95:da:7a:13:31:a3:b7:43:38:99: 24:6e:b3:90:70:cc:35:3a:0b:ec:fd:4a:b9:a3:bf: 67:ce:5e:9d:d7:02:b5:ff:46:33:97:20:c3:f6:e2: 12:61:cf:03:5d:8a:56:6e:d5:f5:5f:fa:ff:71:f9: 10:8e:26:91:05:2a:91:a0:42:72:7e:55:3a:23:ce: 36:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:05:4F:7F:10:B1:1A:21:9C:D2:C1:D3:D8:C5:6C:6A:49:7A:37:28 X509v3 Authority Key Identifier: keyid:F7:51:43:AB:5B:E8:30:BE:93:BC:D7:76:D3:32:B0:FD:5B:78:7E:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/91FDq1voML6TvNd20zKw_Vt4fjs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91FDq1voML6TvNd20zKw_Vt4fjs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717C0/018EBE58F31A11EABC00CC5CC4F9AE02/94BF06A8F31D11EA8D62F57EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.170.32.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:77:7f:ab:c5:54:b7:1a:1e:a6:48:d7:a1:7e:41:8e:cc:7f: 54:58:5f:37:5c:28:90:cf:ac:4a:78:06:79:77:e5:e6:e0:37: 10:58:35:2b:ff:ff:23:c7:02:15:f6:c2:6c:2c:96:b0:b9:77: 95:43:09:81:6b:b6:44:fa:5c:eb:c1:65:ab:77:96:66:56:c0: 2b:69:a6:94:dc:fb:f8:cb:b3:60:b2:5f:8f:ff:21:5a:2d:59: 1a:e5:48:b0:3b:45:f2:3b:f5:a3:fa:20:e4:a1:4a:11:c5:91: 99:d2:1a:02:a2:f7:7e:66:3b:e1:dc:00:24:fb:7c:50:09:07: 8e:c6:f5:25:9d:79:44:0b:04:af:2f:ab:00:af:4a:48:c4:fc: 21:28:dc:7e:d1:c7:1c:50:c2:4a:de:43:f8:0e:3d:bd:17:cc: a0:2c:91:b7:44:75:80:18:fa:82:0a:13:04:85:df:87:05:3a: 2b:82:03:eb:94:59:5c:a7:62:f5:09:46:4d:5b:45:8f:9c:8a: c8:5b:82:06:1b:8f:48:78:9a:13:c6:54:93:a1:ea:a8:dc:67: 2a:51:85:cb:79:06:32:ee:dd:6f:ee:4d:a4:4f:96:6d:09:66: 29:36:6f:23:03:91:cc:45:0e:84:74:2f:e9:e4:84:97:7c:00: 25:bb:72:73 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3QzAxMTAvBgNVBAUTKEY3NTE0M0FCNUJFODMwQkU5M0JDRDc3NkQzMzJCMEZE NUI3ODdFM0IwHhcNMjUwNjI2MjEyODM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0Mjk1OC01ZTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZO5VO124F/ntgNjn6MIxU53Ico96B5VJ1oXyHVgYJdxSx4/cbzprJAkJFxD aFm6Qgl88iQ3BuVuBJaumSq6pK769Eu30OBL1o5NtxW99HZb909bFN8+KGHND9TG OLsFdSscmjbi1k9unJz6Y1mvXGH1SMXjXi74R0/LgMB5AWr79GDFNjVoGPT68x20 9T02tRKT6PPkmn+Q4Dah3kA+Ti5UhkaJT8N9s5a8407gKHqeUHTq1JC/T5XaehMx o7dDOJkkbrOQcMw1Ogvs/Uq5o79nzl6d1wK1/0YzlyDD9uISYc8DXYpWbtX1X/r/ cfkQjiaRBSqRoEJyflU6I842aQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDYFT38Q sRohnNLB09jFbGpJejcoMB8GA1UdIwQYMBaAFPdRQ6tb6DC+k7zXdtMysP1beH47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdDMC8wMThFQkU1OEYz MUExMUVBQkMwMENDNUNDNEY5QUUwMi85MUZEcTF2b01MNlR2TmQyMHpLd19WdDRm anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxRkRxMXZvTUw2VHZOZDIwekt3X1Z0NGZqcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE3QzAvMDE4RUJFNThGMzFBMTFFQUJDMDBDQzVDQzRGOUFFMDIvOTRCRjA2QThG MzFEMTFFQThENjJGNTdFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEyqogMA0GCSqGSIb3DQEBCwUAA4IBAQB+d3+rxVS3Gh6mSNehfkGO zH9UWF83XCiQz6xKeAZ5d+Xm4DcQWDUr//8jxwIV9sJsLJawuXeVQwmBa7ZE+lzr wWWrd5ZmVsAraaaU3Pv4y7Ngsl+P/yFaLVka5UiwO0XyO/Wj+iDkoUoRxZGZ0hoC ovd+Zjvh3AAk+3xQCQeOxvUlnXlECwSvL6sAr0pIxPwhKNx+0cccUMJK3kP4Dj29 F8ygLJG3RHWAGPqCChMEhd+HBTorggPrlFlcp2L1CUZNW0WPnIrIW4IGG49IeJoT xlSToeqo3GcqUYXLeQYy7t1v7k2kT5ZtCWYpNm8jA5HMRQ6EdC/p5ISXfAAlu3Jz -----END CERTIFICATE-----Generated at Mon Mar 2 16:27:47 2026 by rpki-client