$ rpki-client -vvf rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/7C4C4384CB6611F09E0E3B40C4F9AE02.roa File: 7C4C4384CB6611F09E0E3B40C4F9AE02.roa (raw, json) Hash identifier: jmLTUdjA6fVp52xmmEEVibY5+Y7NyInAVp9PHPY/5uE= Subject key identifier: 8E:2C:B4:78:14:C8:10:42:79:79:CC:D7:B3:2F:56:09:73:9A:D5:38 Certificate issuer: /CN=A91862F7/serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Certificate serial: 0A28 Authority key identifier: 05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/7C4C4384CB6611F09E0E3B40C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:26:34 +0000 ROA not before: Thu 27 Nov 2025 07:55:48 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 137470 IP address blocks: 202.3.0.0/24 maxlen: 24 202.3.1.0/24 maxlen: 24 202.3.2.0/24 maxlen: 24 202.3.3.0/24 maxlen: 24 202.3.4.0/24 maxlen: 24 202.3.5.0/24 maxlen: 24 203.13.217.0/24 maxlen: 24 203.13.218.0/24 maxlen: 24 203.13.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2600 (0xa28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862F7, serialNumber=058421DE70780730473E5CC545BA0AE5DB9B4C0A Validity Not Before: Nov 27 07:55:48 2025 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a468ba-6820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ed:b8:04:e7:90:81:e1:ed:33:53:14:80:0d: a9:cf:d6:d7:ed:46:e2:03:51:5c:73:46:3c:1d:42: 4d:b4:d3:6f:63:ae:9e:c8:fa:08:bf:de:04:cc:d1: 7f:b3:44:a5:9c:93:a6:22:a6:1c:fc:d9:49:4f:75: b0:8b:d2:94:98:59:cf:62:d0:42:12:3c:f3:f3:57: 98:46:16:6e:07:c8:f7:86:86:86:ab:61:9b:54:76: fb:91:08:85:6e:ec:27:79:2b:cc:a8:52:bf:6c:2b: f9:88:d2:02:d5:b5:86:06:26:79:7f:09:ae:e8:36: ff:77:b4:df:5b:5c:c0:85:1e:fe:a4:02:ec:9b:b9: 35:ad:5e:b8:26:63:b2:d6:e0:a9:11:c6:df:71:a5: 3f:9e:36:9b:58:c1:19:6a:1f:fe:2f:21:f1:02:b8: e7:04:16:9a:85:e6:b8:72:70:24:3f:02:09:ea:c8: ab:73:52:b5:34:02:b8:40:23:de:97:d1:cb:72:8f: 63:73:88:12:52:b9:59:4e:59:bc:2a:b3:4c:12:ad: 96:cc:3b:f1:98:eb:da:0d:93:16:74:50:f2:cc:72: 4e:db:1a:df:41:c7:e9:a0:89:11:64:aa:54:b2:3c: 20:cf:c2:eb:7e:a3:a3:9f:f4:71:11:e9:a6:52:81: 9e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:2C:B4:78:14:C8:10:42:79:79:CC:D7:B3:2F:56:09:73:9A:D5:38 X509v3 Authority Key Identifier: keyid:05:84:21:DE:70:78:07:30:47:3E:5C:C5:45:BA:0A:E5:DB:9B:4C:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/BYQh3nB4BzBHPlzFRboK5dubTAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BYQh3nB4BzBHPlzFRboK5dubTAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91862F7/5EAC61448FA611EA9ACB7E7FC4F9AE02/7C4C4384CB6611F09E0E3B40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.3.0.0-202.3.5.255 203.13.217.0-203.13.219.255 Signature Algorithm: sha256WithRSAEncryption 48:0f:84:82:8f:63:bd:23:88:6b:fe:17:9e:61:8d:c8:84:22: e0:af:d9:20:23:ae:30:7d:f9:f6:f3:26:7e:e5:de:5b:94:bd: 9c:28:33:37:06:d1:8f:ab:26:9c:bc:d2:1f:95:e8:ce:71:2d: c7:ed:0d:b5:f5:1b:86:10:55:1c:bc:9a:db:ff:db:47:d0:86: 11:7a:74:d1:6f:0b:86:0a:e1:ad:4a:13:a7:31:68:ca:e2:53: 28:f4:f9:4d:1b:e9:9c:1a:92:40:c7:78:f2:4d:b4:ae:c0:97: 21:5a:85:df:79:21:54:2e:4d:56:75:a6:94:e8:c3:a4:93:1d: 95:65:35:0a:97:de:c1:43:86:b7:e8:38:ab:f1:94:e8:a0:ff: 4a:74:9d:de:c5:43:67:5c:20:da:17:21:42:a8:fd:d2:a6:1c: 41:39:22:20:dd:f3:91:f9:e2:70:65:fb:45:8a:4d:df:61:71: 6c:2d:e5:dd:43:b9:70:26:04:55:a4:bb:0c:11:06:1c:7b:35: fa:18:61:93:f0:f2:f7:e0:60:ed:80:d5:07:01:ad:71:3e:12: ee:ee:b8:24:8b:05:b6:cc:41:0c:72:6f:23:72:15:15:ee:4a: f1:86:69:4e:d3:9c:bd:64:aa:5f:67:d5:1b:bc:87:d5:f8:5c: 8e:9a:0f:b0 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICCigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyRjcxMTAvBgNVBAUTKDA1ODQyMURFNzA3ODA3MzA0NzNFNUNDNTQ1QkEwQUU1 REI5QjRDMEEwHhcNMjUxMTI3MDc1NTQ4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjhiYS02ODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1e24BOeQgeHtM1MUgA2pz9bX7UbiA1Fcc0Y8HUJNtNNvY66eyPoIv94EzNF/ s0SlnJOmIqYc/NlJT3Wwi9KUmFnPYtBCEjzz81eYRhZuB8j3hoaGq2GbVHb7kQiF buwneSvMqFK/bCv5iNIC1bWGBiZ5fwmu6Db/d7TfW1zAhR7+pALsm7k1rV64JmOy 1uCpEcbfcaU/njabWMEZah/+LyHxArjnBBaahea4cnAkPwIJ6sirc1K1NAK4QCPe l9HLco9jc4gSUrlZTlm8KrNMEq2WzDvxmOvaDZMWdFDyzHJO2xrfQcfpoIkRZKpU sjwgz8LrfqOjn/RxEemmUoGeMQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFI4stHgU yBBCeXnM17MvVglzmtU4MB8GA1UdIwQYMBaAFAWEId5weAcwRz5cxUW6CuXbm0wK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjJGNy81RUFDNjE0NDhG QTYxMUVBOUFDQjdFN0ZDNEY5QUUwMi9CWVFoM25CNEJ6QkhQbHpGUmJvSzVkdWJU QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JZUWgzbkI0QnpCSFBsekZSYm9LNWR1YlRBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyRjcvNUVBQzYxNDQ4RkE2MTFFQTlBQ0I3RTdGQzRGOUFFMDIvN0M0QzQzODRD QjY2MTFGMDlFMEUzQjQwQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAh BAIAATAbMAsDAwDKAwMEAcoDBDAMAwQAyw3ZAwQCyw3YMA0GCSqGSIb3DQEBCwUA A4IBAQBID4SCj2O9I4hr/heeYY3IhCLgr9kgI64wffn28yZ+5d5blL2cKDM3BtGP qyacvNIflejOcS3H7Q219RuGEFUcvJrb/9tH0IYRenTRbwuGCuGtShOnMWjK4lMo 9PlNG+mcGpJAx3jyTbSuwJchWoXfeSFULk1WdaaU6MOkkx2VZTUKl97BQ4a36Dir 8ZTooP9KdJ3exUNnXCDaFyFCqP3SphxBOSIg3fOR+eJwZftFik3fYXFsLeXdQ7lw JgRVpLsMEQYcezX6GGGT8PL34GDtgNUHAa1xPhLu7rgkiwW2zEEMcm8jchUV7krx hmlO05y9ZKpfZ9UbvIfV+FyOmg+w -----END CERTIFICATE-----Generated at Mon Mar 2 21:10:42 2026 by rpki-client