$ rpki-client -vvf rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/85AEBA76504C11ED829F7D24C4F9AE02.roa File: 85AEBA76504C11ED829F7D24C4F9AE02.roa (raw, json) Hash identifier: LRYq0mPrjweqGJPSdcgLlt3nrjlK6fosCT9C7fklNuQ= Subject key identifier: 43:10:A4:21:04:FC:C3:E1:01:DD:9F:62:EA:34:0A:1B:63:D8:D0:9D Certificate issuer: /CN=A91728E2/serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Certificate serial: 0280 Authority key identifier: 01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/85AEBA76504C11ED829F7D24C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:10:08 +0000 ROA not before: Tue 11 Nov 2025 00:17:22 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 24504 IP address blocks: 202.51.0.0/22 maxlen: 22 202.51.0.0/24 maxlen: 24 202.51.1.0/24 maxlen: 24 202.51.2.0/24 maxlen: 24 202.51.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91728E2, serialNumber=019704BE7E4ACE0BA12114B328EB020711EF4EAF Validity Not Before: Nov 11 00:17:22 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a42ca0-1d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:f1:88:95:6f:a1:a9:6a:bd:ad:f6:d0:fd:8f: 2c:64:e2:75:d7:22:11:2c:44:f1:fe:de:9c:87:26: b2:5d:d1:f1:35:cf:b0:01:f2:28:86:04:35:13:58: 38:7e:2c:c0:a3:ba:d2:74:4c:55:06:38:f5:3a:56: b6:3b:a0:d0:99:fe:bb:13:c5:cb:39:f7:80:a4:16: d9:a5:73:23:3a:ec:fe:e3:7d:04:35:4e:67:07:a5: 45:d5:58:fd:84:c8:f0:fd:8b:7a:32:25:d0:9e:da: 7f:11:29:62:32:ba:84:a2:08:1c:0a:a2:1d:df:af: b5:1a:1a:d1:b1:53:12:59:24:6d:41:6b:f6:1b:ea: 1f:7d:9e:24:df:a6:0d:b9:c9:2d:7e:93:f8:5c:72: dc:f1:36:b4:79:36:2b:e9:3f:c7:c6:20:a2:2f:ef: 59:7f:84:34:d8:f6:02:4c:b4:8c:61:b6:5d:75:40: a8:f6:52:08:44:30:42:be:bf:77:03:71:d6:12:cd: b0:b3:c4:58:12:19:97:3c:2a:86:60:9f:86:82:d9: db:37:f9:4a:b7:f6:3e:f5:23:49:2e:6f:29:c9:51: 81:69:11:50:1e:6f:db:b8:02:fe:29:6f:e3:ee:c6: 37:c4:4f:ed:bb:fc:8e:6f:cb:de:bf:b7:b4:a9:0c: 50:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:10:A4:21:04:FC:C3:E1:01:DD:9F:62:EA:34:0A:1B:63:D8:D0:9D X509v3 Authority Key Identifier: keyid:01:97:04:BE:7E:4A:CE:0B:A1:21:14:B3:28:EB:02:07:11:EF:4E:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/AZcEvn5KzguhIRSzKOsCBxHvTq8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZcEvn5KzguhIRSzKOsCBxHvTq8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91728E2/97013A4E504011ED8AECAA6FC4F9AE02/85AEBA76504C11ED829F7D24C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.51.0.0/22 Signature Algorithm: sha256WithRSAEncryption 59:e7:46:3b:1f:a0:66:e4:ef:9f:7b:6a:dd:80:1c:25:47:89: 77:ab:07:b2:f4:58:66:6e:87:47:d6:25:57:c0:9a:07:8b:ec: 7c:53:e5:30:7c:af:de:68:1e:d6:e5:5a:e2:65:29:bc:a4:51: b4:e2:6f:20:fa:56:83:a5:ad:f4:6e:2a:a3:8b:79:85:f9:37: 7a:ed:f0:72:10:1a:e8:1b:a8:40:6d:57:3e:91:c3:47:d9:a0: 4d:b5:81:57:67:18:6f:53:2d:0c:c7:8a:20:5a:66:fb:d0:65: 37:e1:59:05:b5:51:93:e1:15:68:cc:a4:aa:5e:b6:ec:25:7b: 0b:d1:98:a9:0a:6a:bf:20:fb:2d:b1:85:9b:f9:32:0a:3e:13: b4:41:62:f8:c9:e1:96:c9:12:57:8f:76:9d:46:57:98:dc:45: 8e:7a:c3:9e:39:f7:25:9e:0d:bb:64:b0:06:c8:68:8a:1e:78: ae:2c:e2:0b:da:fb:50:13:78:7d:4e:4b:7f:0f:89:44:7c:ff: 84:9d:ed:65:26:43:70:e6:b6:d5:61:87:7d:67:21:84:e8:b6: 0c:46:d8:e3:08:33:19:f0:b6:7a:06:f6:78:4e:fb:2c:33:dd: 0a:fc:1f:ae:6a:16:3d:9f:55:30:15:ca:95:70:d2:ae:54:ea: 3c:85:fc:2b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4RTIxMTAvBgNVBAUTKDAxOTcwNEJFN0U0QUNFMEJBMTIxMTRCMzI4RUIwMjA3 MTFFRjRFQUYwHhcNMjUxMTExMDAxNzIyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmNhMC0xZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk/GIlW+hqWq9rfbQ/Y8sZOJ11yIRLETx/t6chyayXdHxNc+wAfIohgQ1E1g4 fizAo7rSdExVBjj1Ola2O6DQmf67E8XLOfeApBbZpXMjOuz+430ENU5nB6VF1Vj9 hMjw/Yt6MiXQntp/ESliMrqEoggcCqId36+1GhrRsVMSWSRtQWv2G+offZ4k36YN ucktfpP4XHLc8Ta0eTYr6T/HxiCiL+9Zf4Q02PYCTLSMYbZddUCo9lIIRDBCvr93 A3HWEs2ws8RYEhmXPCqGYJ+GgtnbN/lKt/Y+9SNJLm8pyVGBaRFQHm/buAL+KW/j 7sY3xE/tu/yOb8vev7e0qQxQ6QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEMQpCEE /MPhAd2fYuo0Chtj2NCdMB8GA1UdIwQYMBaAFAGXBL5+Ss4LoSEUsyjrAgcR706v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjhFMi85NzAxM0E0RTUw NDAxMUVEOEFFQ0FBNkZDNEY5QUUwMi9BWmNFdm41S3pndWhJUlN6S09zQ0J4SHZU cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaY0V2bjVLemd1aElSU3pLT3NDQnhIdlRxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI4RTIvOTcwMTNBNEU1MDQwMTFFRDhBRUNBQTZGQzRGOUFFMDIvODVBRUJBNzY1 MDRDMTFFRDgyOUY3RDI0QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyjMAMA0GCSqGSIb3DQEBCwUAA4IBAQBZ50Y7H6Bm5O+fe2rdgBwl R4l3qwey9FhmbodH1iVXwJoHi+x8U+UwfK/eaB7W5VriZSm8pFG04m8g+laDpa30 biqji3mF+Td67fByEBroG6hAbVc+kcNH2aBNtYFXZxhvUy0Mx4ogWmb70GU34VkF tVGT4RVozKSqXrbsJXsL0ZipCmq/IPstsYWb+TIKPhO0QWL4yeGWyRJXj3adRleY 3EWOesOeOfclng27ZLAGyGiKHniuLOIL2vtQE3h9Tkt/D4lEfP+Ene1lJkNw5rbV YYd9ZyGE6LYMRtjjCDMZ8LZ6BvZ4TvssM90K/B+uahY9n1UwFcqVcNKuVOo8hfwr -----END CERTIFICATE-----Generated at Mon Mar 2 23:39:33 2026 by rpki-client