$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/05F505961AA311F0A475D464C4F9AE02.roa File: 05F505961AA311F0A475D464C4F9AE02.roa (raw, json) Hash identifier: xZbkhabGis/U5mUU9RekGm8eUQ6rFKaSmoEBRgqnHq8= Subject key identifier: 12:BC:C0:F5:78:34:0E:9F:DF:29:78:FC:C3:3C:52:51:2D:59:30:D8 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 0291 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/05F505961AA311F0A475D464C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:04:33 +0000 ROA not before: Sat 31 May 2025 03:50:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 396986 IP address blocks: 202.52.224.0/21 maxlen: 24 202.52.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: May 31 03:50:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a47fb1-ea20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:10:0d:db:40:df:ab:04:04:25:01:e8:53:b8: a2:51:d1:2f:45:c7:b4:72:29:d5:a6:fa:bf:c0:c3: 1d:91:eb:fd:9b:fa:7c:f0:f2:35:89:08:ff:12:36: 8e:98:9a:f2:a5:8a:2c:14:a3:8c:e7:07:d8:33:99: e8:8d:62:8d:86:5d:0f:92:df:06:a4:31:43:b5:0c: bb:3c:8e:98:95:40:7b:02:fd:15:f8:50:6f:ba:58: 78:55:71:2f:05:5b:30:0a:14:a2:de:77:0a:ac:53: b5:29:19:f8:cf:46:c7:fc:a7:fc:7f:1b:95:71:57: f9:6a:6b:00:b3:9a:ca:fc:87:d5:ae:da:05:7e:74: 49:fb:96:3d:ae:8c:9c:8a:05:a3:fb:d5:d1:d9:b5: da:3d:20:e4:4e:af:3f:6a:08:83:8f:45:d1:4c:a1: 45:64:da:0d:5b:96:e9:c3:cc:0c:50:76:9a:a3:d0: 1f:de:2d:03:4a:e3:ec:8e:81:2b:0e:ae:55:ec:aa: 15:1a:88:9c:bc:b8:c0:f8:e2:d3:96:ae:a8:5a:3e: a8:4d:92:52:36:2f:a7:3d:22:4c:ad:37:a5:cb:e2: 12:fb:b4:36:12:58:3b:5c:42:f3:08:ae:1d:dc:d8: ce:64:7a:46:eb:a7:0f:9b:cc:b1:25:63:d4:d8:52: a3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:BC:C0:F5:78:34:0E:9F:DF:29:78:FC:C3:3C:52:51:2D:59:30:D8 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/05F505961AA311F0A475D464C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.52.224.0/21 202.52.240.0/21 Signature Algorithm: sha256WithRSAEncryption 25:16:4d:8a:15:38:86:62:b3:b9:38:0b:27:9c:e2:a8:b1:ff: 65:09:c6:df:f8:77:b7:3e:53:98:05:0e:b4:18:cf:c7:62:73: 4d:64:ce:8c:9b:e3:8f:3f:98:e0:47:46:78:08:b1:79:a0:15: 3c:f5:b9:d9:ec:12:42:8a:ad:41:89:43:44:e7:71:ba:89:09: 1e:1e:49:47:19:fd:64:46:ba:3e:98:68:7a:1e:fb:68:79:ca: ee:72:05:48:b1:38:55:9b:76:f4:a5:a7:bd:09:2d:d5:f2:72: 95:d8:61:b9:68:0f:5e:6c:d5:16:69:b4:ae:ac:07:3b:78:44: 58:78:3e:3e:49:23:60:41:97:f8:bb:24:8d:fa:9c:ae:db:6a: 2b:1e:a8:7d:d3:7b:81:8e:4a:9f:33:79:65:90:71:b6:55:22: 35:fe:2c:37:ed:c6:14:71:42:29:56:c5:33:f4:64:45:1a:dd: 2f:d7:98:b8:bf:11:7e:87:2b:87:ad:0f:c5:84:18:5a:1f:05: be:15:dc:ad:64:a1:0f:f9:3d:3f:98:08:17:4b:bc:c9:39:be: 47:68:cc:c3:21:a3:43:ff:cb:a9:e1:54:26:f0:bf:45:c7:b1: c3:8a:a6:60:c5:9c:9f:5a:f1:14:2a:6e:2b:11:37:af:0f:b0: 63:a6:bb:c0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwNTMxMDM1MDU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2ZiMS1lYTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAihAN20DfqwQEJQHoU7iiUdEvRce0cinVpvq/wMMdkev9m/p88PI1iQj/EjaO mJrypYosFKOM5wfYM5nojWKNhl0Pkt8GpDFDtQy7PI6YlUB7Av0V+FBvulh4VXEv BVswChSi3ncKrFO1KRn4z0bH/Kf8fxuVcVf5amsAs5rK/IfVrtoFfnRJ+5Y9royc igWj+9XR2bXaPSDkTq8/agiDj0XRTKFFZNoNW5bpw8wMUHaao9Af3i0DSuPsjoEr Dq5V7KoVGoicvLjA+OLTlq6oWj6oTZJSNi+nPSJMrTely+IS+7Q2Elg7XELzCK4d 3NjOZHpG66cPm8yxJWPU2FKjWwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFBK8wPV4 NA6f3yl4/MM8UlEtWTDYMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvMTYxRDRDMEFFNENBMTFFREE0MTRFMjU5QzRGOUFFMDIvMDVGNTA1OTYx QUEzMTFGMEE0NzVENDY0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQDyjTgAwQDyjTwMA0GCSqGSIb3DQEBCwUAA4IBAQAlFk2KFTiGYrO5 OAsnnOKosf9lCcbf+He3PlOYBQ60GM/HYnNNZM6Mm+OPP5jgR0Z4CLF5oBU89bnZ 7BJCiq1BiUNE53G6iQkeHklHGf1kRro+mGh6HvtoecrucgVIsThVm3b0pae9CS3V 8nKV2GG5aA9ebNUWabSurAc7eERYeD4+SSNgQZf4uySN+pyu22orHqh903uBjkqf M3llkHG2VSI1/iw37cYUcUIpVsUz9GRFGt0v15i4vxF+hyuHrQ/FhBhaHwW+Fdyt ZKEP+T0/mAgXS7zJOb5HaMzDIaND/8up4VQm8L9Fx7HDiqZgxZyfWvEUKm4rETev D7BjprvA -----END CERTIFICATE-----Generated at Mon Mar 2 19:09:56 2026 by rpki-client