$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa File: E7FE45667E8311ECA552B67FC4F9AE02.roa (raw, json) Hash identifier: UDGIexCjWZjf9oWBoZsn81ywHvMY4QFQvNjug6FA+Yo= Subject key identifier: D4:A8:04:15:32:99:FF:87:C0:59:33:17:82:0D:A2:D4:06:D0:50:EC Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 0481 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:21:51 +0000 ROA not before: Sun 11 Jan 2026 00:19:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23767 IP address blocks: 202.83.248.0/22 maxlen: 22 202.83.250.0/24 maxlen: 24 202.130.56.0/22 maxlen: 22 202.130.56.0/24 maxlen: 24 202.130.58.0/24 maxlen: 24 202.130.59.0/24 maxlen: 24 2001:df0:75::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1153 (0x481) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Jan 11 00:19:55 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44b7e-5da8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c7:b3:f5:88:a3:dd:62:ba:d6:4e:22:c2:f3: 2c:d8:95:b6:df:ad:3b:b8:02:9e:e8:4e:1b:bc:7b: 0f:4e:8a:77:8b:a0:8e:07:0d:0f:03:7d:5e:55:b4: 56:78:45:6a:60:75:ce:6a:5f:a7:9e:e7:51:74:14: 2a:59:3b:4d:1e:aa:33:5b:5f:d2:45:f8:68:07:e5: 3a:23:e8:0e:ae:de:53:92:68:74:d9:d2:6a:89:97: 6d:e3:0a:d5:8b:89:78:72:c1:ed:7b:77:8d:82:a6: b7:ef:ab:91:34:e1:a5:64:a1:86:b8:2b:68:a0:2c: c5:5b:da:61:c5:ed:3c:c4:9c:e1:5e:5f:e4:22:f8: bc:d0:17:d0:2f:7d:6a:a0:83:45:f3:31:02:78:e7: f6:34:84:bb:5c:8f:67:6a:5a:bd:24:27:9e:fd:3c: c7:b9:e6:42:43:45:e8:cc:26:f1:1e:75:e9:20:cb: 26:7e:24:20:d4:7c:93:19:ad:10:80:e0:45:19:62: 70:3b:57:6e:4c:82:da:93:88:1f:f7:37:91:73:3b: c4:ef:1b:de:1e:69:85:77:c7:90:7c:87:84:17:4c: 8e:5d:2b:f4:72:a6:1d:2c:0f:b3:fc:5b:cb:89:76: 9d:94:6f:96:4b:b0:f2:57:97:5d:c6:e7:e2:ec:a8: 17:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A8:04:15:32:99:FF:87:C0:59:33:17:82:0D:A2:D4:06:D0:50:EC X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.83.248.0/22 202.130.56.0/22 IPv6: 2001:df0:75::/48 Signature Algorithm: sha256WithRSAEncryption 54:98:d7:0e:f7:03:b6:04:50:3b:ba:83:68:ba:cb:0b:f5:c0: 4e:62:81:23:3a:83:35:cf:5e:57:f1:40:55:68:41:ba:22:a8: 8b:24:0c:39:77:e4:16:1c:2c:9e:7f:55:be:18:9f:e9:e0:03: c5:d0:29:34:b3:41:0e:c4:89:b9:f8:82:e8:5d:fe:62:96:b6: f9:1a:1e:98:df:06:0f:ee:c3:25:3a:55:cc:bf:33:f1:36:b8: 11:92:fe:a8:82:57:b8:e0:81:de:74:02:21:d6:e0:13:6f:93: 51:55:98:38:82:b9:db:fa:50:c5:0d:9a:5d:3e:45:5b:41:c5: cf:8b:3c:86:c3:02:da:d1:80:1c:af:cb:22:98:3b:c3:74:85: 3a:a7:a0:e1:59:6c:43:6f:56:72:39:e7:2e:76:e9:97:95:85: f0:01:67:fc:ea:02:72:68:84:ea:87:a4:b0:c7:5b:20:70:89: c2:8a:2b:61:a3:ea:3d:ff:07:a3:6d:e9:af:a6:fa:5d:95:bf: ef:dd:fe:f1:eb:89:9c:97:ef:e9:a0:cb:7c:49:a2:42:f1:a7: c3:75:44:df:14:07:95:90:a5:f6:d8:ca:4a:81:cd:cf:9f:b2: 2f:b5:10:c2:cd:6c:89:3d:a8:a2:d6:a2:73:bb:5d:69:bd:f1: 88:66:fa:ad -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICBIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjYwMTExMDAxOTU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGI3ZS01ZGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48ez9Yij3WK61k4iwvMs2JW23607uAKe6E4bvHsPTop3i6COBw0PA31eVbRW eEVqYHXOal+nnudRdBQqWTtNHqozW1/SRfhoB+U6I+gOrt5Tkmh02dJqiZdt4wrV i4l4csHte3eNgqa376uRNOGlZKGGuCtooCzFW9phxe08xJzhXl/kIvi80BfQL31q oINF8zECeOf2NIS7XI9nalq9JCee/TzHueZCQ0XozCbxHnXpIMsmfiQg1HyTGa0Q gOBFGWJwO1duTILak4gf9zeRczvE7xveHmmFd8eQfIeEF0yOXSv0cqYdLA+z/FvL iXadlG+WS7DyV5ddxufi7KgXvwIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFNSoBBUy mf+HwFkzF4INotQG0FDsMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA4RTEvRjkwRjlFODg3RTgxMTFFQ0I4ODczQTdGQzRGOUFFMDIvRTdGRTQ1NjY3 RTgzMTFFQ0E1NTJCNjdGQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCylP4AwQCyoI4MA8EAgACMAkDBwAgAQ3wAHUwDQYJKoZIhvcNAQEL BQADggEBAFSY1w73A7YEUDu6g2i6ywv1wE5igSM6gzXPXlfxQFVoQboiqIskDDl3 5BYcLJ5/Vb4Yn+ngA8XQKTSzQQ7Eibn4guhd/mKWtvkaHpjfBg/uwyU6Vcy/M/E2 uBGS/qiCV7jggd50AiHW4BNvk1FVmDiCudv6UMUNml0+RVtBxc+LPIbDAtrRgByv yyKYO8N0hTqnoOFZbENvVnI55y526ZeVhfABZ/zqAnJohOqHpLDHWyBwicKKK2Gj 6j3/B6Nt6a+m+l2Vv+/d/vHriZyX7+mgy3xJokLxp8N1RN8UB5WQpfbYykqBzc+f si+1EMLNbIk9qKLWonO7XWm98Yhm+q0= -----END CERTIFICATE-----Generated at Mon Mar 2 05:34:07 2026 by rpki-client