$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa File: 553596D65DB511EE841C151FC4F9AE02.roa (raw, json) Hash identifier: ENKRczYYvLUIozCAd5X4sketAA/sYkbVgxD+0/V4DAk= Subject key identifier: F2:61:BA:C8:18:09:D7:77:6A:D9:8A:2B:C2:96:EF:89:B4:FE:C7:D8 Certificate issuer: /CN=A91A3399/serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Certificate serial: 01DD Authority key identifier: 3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:21:29 +0000 ROA not before: Thu 25 Dec 2025 03:22:55 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133915 IP address blocks: 202.50.140.0/24 maxlen: 24 202.50.141.0/24 maxlen: 24 202.50.142.0/24 maxlen: 24 202.50.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3399, serialNumber=3DBDD7ED412480E9355C27F3C113B5640D3186B3 Validity Not Before: Dec 25 03:22:55 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a41329-fe93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:25:55:71:bb:81:a5:df:85:72:62:a7:ff:0e: a9:17:73:e4:46:dd:aa:de:6a:e2:b0:f5:ee:1a:48: f0:41:ef:6f:0f:ef:b4:76:d7:f1:8d:51:d3:77:ca: 43:90:e4:e1:72:09:8b:5a:a2:db:91:49:f7:2c:7e: 6a:7b:ca:c7:1f:e3:32:fb:2c:75:93:fd:4f:69:fb: 22:af:a0:2e:fe:89:e1:d8:13:a7:71:4c:20:4d:97: c1:d1:b7:8e:6f:32:00:ce:0e:fa:b3:db:a5:65:5c: 25:a2:d3:71:91:e1:74:dd:73:79:c7:ad:59:a4:d7: 34:83:60:d0:08:56:49:f3:23:14:38:f6:e6:8c:ae: b5:81:20:66:31:1d:da:ad:13:32:46:a3:2e:96:0f: 99:3a:a6:a5:74:3d:47:fe:cf:75:1e:67:d6:98:f9: 88:5b:15:7f:83:23:ce:7a:63:8b:a9:af:cf:e1:0b: f5:fd:fc:b0:86:82:2a:5c:b1:8e:12:d7:6e:0f:df: 77:d9:14:b0:41:73:5b:fe:86:77:60:e1:bb:d3:cc: e3:a4:3c:87:d9:53:56:26:f9:4e:ba:98:24:d4:82: 1c:43:f9:59:13:01:6c:ba:88:55:ab:8d:f4:c3:c2: e8:70:41:0c:9c:b6:ab:4a:2f:60:81:37:3f:64:c6: 5c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:61:BA:C8:18:09:D7:77:6A:D9:8A:2B:C2:96:EF:89:B4:FE:C7:D8 X509v3 Authority Key Identifier: keyid:3D:BD:D7:ED:41:24:80:E9:35:5C:27:F3:C1:13:B5:64:0D:31:86:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pb3X7UEkgOk1XCfzwRO1ZA0xhrM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3399/BA68C3285CB811EE8523BC7AC4F9AE02/553596D65DB511EE841C151FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.50.140.0/22 Signature Algorithm: sha256WithRSAEncryption 40:94:51:e5:04:61:09:b8:37:e3:7a:1f:2e:ad:86:c9:0f:66: 35:8c:a4:1a:3f:15:fa:2e:8d:79:74:26:fe:22:30:04:34:ad: f1:85:ab:07:2c:61:cc:cb:2c:e5:33:cf:dc:6f:1f:a7:ce:93: 1b:65:b8:80:03:20:10:50:84:47:71:26:88:d5:3d:59:b3:f7: e4:66:c9:a5:92:27:c0:5d:df:24:21:d1:6f:6f:e4:ce:9f:d5: 79:b1:bd:f4:30:61:5b:c0:c2:c8:66:61:03:2f:55:67:99:46: 7c:f1:ce:de:a9:90:6a:7b:d2:e8:a4:27:a9:84:9b:ed:b1:8f: 14:21:1d:3f:9c:8f:e0:49:f7:88:f1:30:ca:19:1e:15:4f:99: cd:ba:d9:df:84:db:02:20:6d:fc:59:5c:7f:9b:2d:f0:24:88: cf:8c:88:a7:2a:20:a9:29:8c:8e:61:c2:e1:41:9d:0e:30:7a: 73:3b:bc:bb:c7:da:46:70:17:fc:7b:87:3f:23:7d:65:c5:23: 65:06:e5:45:48:70:e1:0e:4f:7d:ea:cd:7e:55:8e:b8:4c:89: 12:d4:4e:a3:70:b9:2e:82:94:fc:f4:46:96:5a:8b:cb:f8:25: 25:9a:7e:f4:f6:fa:4a:97:55:f6:41:e0:09:7a:b7:38:3a:f7: 76:bc:98:0e -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMzOTkxMTAvBgNVBAUTKDNEQkREN0VENDEyNDgwRTkzNTVDMjdGM0MxMTNCNTY0 MEQzMTg2QjMwHhcNMjUxMjI1MDMyMjU1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTMyOS1mZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyVVcbuBpd+FcmKn/w6pF3PkRt2q3mrisPXuGkjwQe9vD++0dtfxjVHTd8pD kOThcgmLWqLbkUn3LH5qe8rHH+My+yx1k/1Pafsir6Au/onh2BOncUwgTZfB0beO bzIAzg76s9ulZVwlotNxkeF03XN5x61ZpNc0g2DQCFZJ8yMUOPbmjK61gSBmMR3a rRMyRqMulg+ZOqaldD1H/s91HmfWmPmIWxV/gyPOemOLqa/P4Qv1/fywhoIqXLGO EtduD9932RSwQXNb/oZ3YOG708zjpDyH2VNWJvlOupgk1IIcQ/lZEwFsuohVq430 w8LocEEMnLarSi9ggTc/ZMZcJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPJhusgY Cdd3atmKK8KW74m0/sfYMB8GA1UdIwQYMBaAFD291+1BJIDpNVwn88ETtWQNMYaz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzM5OS9CQTY4QzMyODVD QjgxMUVFODUyM0JDN0FDNEY5QUUwMi9QYjNYN1VFa2dPazFYQ2Z6d1JPMVpBMHho ck0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BiM1g3VUVrZ09rMVhDZnp3Uk8xWkEweGhyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMzOTkvQkE2OEMzMjg1Q0I4MTFFRTg1MjNCQzdBQzRGOUFFMDIvNTUzNTk2RDY1 REI1MTFFRTg0MUMxNTFGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyjKMMA0GCSqGSIb3DQEBCwUAA4IBAQBAlFHlBGEJuDfjeh8urYbJ D2Y1jKQaPxX6Lo15dCb+IjAENK3xhasHLGHMyyzlM8/cbx+nzpMbZbiAAyAQUIRH cSaI1T1Zs/fkZsmlkifAXd8kIdFvb+TOn9V5sb30MGFbwMLIZmEDL1VnmUZ88c7e qZBqe9LopCephJvtsY8UIR0/nI/gSfeI8TDKGR4VT5nNutnfhNsCIG38WVx/my3w JIjPjIinKiCpKYyOYcLhQZ0OMHpzO7y7x9pGcBf8e4c/I31lxSNlBuVFSHDhDk99 6s1+VY64TIkS1E6jcLkugpT89EaWWovL+CUlmn709vpKl1X2QeAJerc4Ovd2vJgO -----END CERTIFICATE-----Generated at Mon Mar 2 09:40:11 2026 by rpki-client