$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/5B196FD80A4611ECAE818D54C4F9AE02.roa File: 5B196FD80A4611ECAE818D54C4F9AE02.roa (raw, json) Hash identifier: yZMlmWs6ehiqiK21MWo58HZmpGkvpysqNROF9+RqzZE= Subject key identifier: FB:3A:60:25:DD:4F:E0:A8:0D:9D:16:26:91:73:53:55:29:3D:92:FB Certificate issuer: /CN=A91A5F82/serialNumber=7447B2835EACB88AC48727CB726BB87B97BA778A Certificate serial: 0865 Authority key identifier: 74:47:B2:83:5E:AC:B8:8A:C4:87:27:CB:72:6B:B8:7B:97:BA:77:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/5B196FD80A4611ECAE818D54C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:51:25 +0000 ROA not before: Tue 16 Sep 2025 21:32:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7473 IP address blocks: 202.165.128.0/19 maxlen: 19 202.165.128.0/20 maxlen: 24 202.165.144.0/20 maxlen: 24 2400:7000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.crl rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5F82, serialNumber=7447B2835EACB88AC48727CB726BB87B97BA778A Validity Not Before: Sep 16 21:32:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a4526d-6697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:55:f6:29:b2:9e:f2:90:0e:19:25:d7:85:33: 9d:d1:4b:9c:ec:17:a5:2d:bf:44:be:e9:7f:73:75: 10:84:11:90:2d:b7:19:71:10:78:7c:0f:26:46:c1: 10:35:51:f1:2f:6d:2e:22:a3:1d:b3:a3:a5:b7:ca: 22:7b:c3:a1:12:d6:72:a5:2b:f1:9d:e0:f8:ec:e2: 87:8c:d2:20:71:3c:73:5e:fa:ce:f8:70:0a:c3:89: ed:94:11:71:d3:c4:de:65:fe:a8:61:6b:1b:6c:6d: 12:ce:cf:1a:23:08:fe:c5:f3:16:2d:e1:03:c9:1b: 04:46:81:10:49:d0:c1:5c:3e:a8:49:55:2a:a3:ca: be:5b:5f:5d:e3:86:41:af:52:5e:56:39:39:0b:b2: 27:4e:04:a1:14:cb:db:fb:0a:5c:73:53:db:4e:27: 35:84:7c:29:d9:1c:94:d7:60:61:99:59:fd:6d:53: 3e:84:b3:06:d6:f7:f5:d4:59:61:c6:52:51:b4:3f: 62:39:1a:ce:4e:da:c9:77:a0:39:7a:1e:bd:eb:87: e8:64:b9:43:42:47:36:5a:79:86:7d:75:be:b6:22: 8f:f3:c7:bd:ee:6e:72:bb:c9:ba:95:a6:b3:d2:b0: ad:9a:39:1d:e8:af:59:bd:df:a9:2d:01:0a:f4:e7: 5c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3A:60:25:DD:4F:E0:A8:0D:9D:16:26:91:73:53:55:29:3D:92:FB X509v3 Authority Key Identifier: keyid:74:47:B2:83:5E:AC:B8:8A:C4:87:27:CB:72:6B:B8:7B:97:BA:77:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/5B196FD80A4611ECAE818D54C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.165.128.0/19 IPv6: 2400:7000::/32 Signature Algorithm: sha256WithRSAEncryption 1b:1d:50:f0:c2:5f:b1:4e:16:f3:ff:51:fc:d3:d8:a9:ed:9d: dc:1c:09:f8:8f:86:ee:71:26:6e:30:18:4d:e6:b4:eb:24:9c: 9b:3c:6c:23:ea:c5:05:06:4d:bc:2f:67:51:15:d0:3e:ce:94: c8:2e:e0:19:c8:5c:5f:a7:c3:9e:88:fe:94:05:3d:8e:49:2e: f9:5e:81:27:f2:fb:c1:b5:fa:69:74:fc:52:c1:7a:81:8e:73: b7:f9:87:cf:1f:a8:6f:45:6e:e3:b6:d6:37:65:1b:80:42:88: 82:51:8a:a3:23:12:db:6f:fc:17:7e:e5:30:b8:d4:dd:84:96: a6:3a:0e:a5:af:a6:df:5c:2e:1b:96:aa:f5:3e:47:c1:19:99: 7d:d3:55:46:72:ee:f6:98:ec:37:16:cd:f3:0c:d9:39:d5:53: 7d:4f:ee:2c:77:f2:07:08:c1:95:3d:bc:3f:ac:6e:67:5b:62: 5f:01:92:52:7b:85:b4:a1:8b:c0:72:71:81:79:c7:92:96:b9: 9c:f1:ab:3b:c6:aa:b9:94:f5:4a:26:b7:54:d1:46:27:ba:e2: 9b:3a:6c:80:fb:2d:6d:83:84:40:f5:9e:04:18:6b:46:cc:8e: 69:ce:14:9c:94:58:e2:04:f5:1f:03:38:47:7c:bc:8f:e5:0c: c4:c5:2c:8b -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVGODIxMTAvBgNVBAUTKDc0NDdCMjgzNUVBQ0I4OEFDNDg3MjdDQjcyNkJCODdC OTdCQTc3OEEwHhcNMjUwOTE2MjEzMjEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTI2ZC02Njk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7VX2KbKe8pAOGSXXhTOd0Uuc7BelLb9Evul/c3UQhBGQLbcZcRB4fA8mRsEQ NVHxL20uIqMds6Olt8oie8OhEtZypSvxneD47OKHjNIgcTxzXvrO+HAKw4ntlBFx 08TeZf6oYWsbbG0Szs8aIwj+xfMWLeEDyRsERoEQSdDBXD6oSVUqo8q+W19d44ZB r1JeVjk5C7InTgShFMvb+wpcc1PbTic1hHwp2RyU12BhmVn9bVM+hLMG1vf11Flh xlJRtD9iORrOTtrJd6A5eh6964foZLlDQkc2WnmGfXW+tiKP88e97m5yu8m6laaz 0rCtmjkd6K9Zvd+pLQEK9Odc6wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFPs6YCXd T+CoDZ0WJpFzU1UpPZL7MB8GA1UdIwQYMBaAFHRHsoNerLiKxIcny3JruHuXuneK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUY4Mi8zMTA3QjNFQ0Y3 QzUxMUVBQkMzNDk1MEFDNEY5QUUwMi9kRWV5ZzE2c3VJckVoeWZMY211NGU1ZTZk NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RFZXlnMTZzdUlyRWh5ZkxjbXU0ZTVlNmQ0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVGODIvMzEwN0IzRUNGN0M1MTFFQUJDMzQ5NTBBQzRGOUFFMDIvNUIxOTZGRDgw QTQ2MTFFQ0FFODE4RDU0QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQFyqWAMA0EAgACMAcDBQAkAHAAMA0GCSqGSIb3DQEBCwUAA4IBAQAb HVDwwl+xThbz/1H809ip7Z3cHAn4j4bucSZuMBhN5rTrJJybPGwj6sUFBk28L2dR FdA+zpTILuAZyFxfp8OeiP6UBT2OSS75XoEn8vvBtfppdPxSwXqBjnO3+YfPH6hv RW7jttY3ZRuAQoiCUYqjIxLbb/wXfuUwuNTdhJamOg6lr6bfXC4blqr1PkfBGZl9 01VGcu72mOw3Fs3zDNk51VN9T+4sd/IHCMGVPbw/rG5nW2JfAZJSe4W0oYvAcnGB eceSlrmc8as7xqq5lPVKJrdU0UYnuuKbOmyA+y1tg4RA9Z4EGGtGzI5pzhSclFji BPUfAzhHfLyP5QzExSyL -----END CERTIFICATE-----Generated at Mon Mar 2 05:43:11 2026 by rpki-client