$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7F0270C6721B11EF81654E68C4F9AE02.roa File: 7F0270C6721B11EF81654E68C4F9AE02.roa (raw, json) Hash identifier: xxLL5qUqAKMKqiffIXf/dl+Npa+UBhmsZSXe4F02gyw= Subject key identifier: D0:D0:D8:9D:61:20:34:58:5F:8C:68:29:7C:54:BB:CC:D0:E2:E1:2C Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0262 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7F0270C6721B11EF81654E68C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:17:08 +0000 ROA not before: Wed 31 Dec 2025 04:24:35 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 17827 IP address blocks: 202.28.100.0/24 maxlen: 24 202.28.101.0/24 maxlen: 24 202.28.102.0/24 maxlen: 24 202.28.103.0/24 maxlen: 24 2001:3c8:130a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:35 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490b4-8454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e9:e9:f4:f6:1a:6e:21:fa:c6:7e:fb:41:8a: dd:5a:f0:5d:24:6e:4a:ff:67:a6:de:34:50:e6:26: c8:95:00:ae:c3:17:21:8d:91:ca:4b:8f:f7:f3:2a: 01:09:97:6d:9a:c6:d6:01:13:f0:a7:a7:ef:e1:5a: ef:e6:c8:89:f6:c1:bc:e7:94:71:e6:86:ec:17:c8: bd:eb:4c:ad:4b:65:59:26:eb:cf:98:74:5c:e3:87: dc:ee:47:9b:0f:6a:79:93:a9:3b:c9:30:57:cc:8a: 88:94:84:91:44:b3:34:40:7f:09:e1:8a:70:83:eb: 36:fe:f9:03:8d:4e:c7:7f:3c:ec:f3:0c:10:5a:8b: af:6d:92:30:96:be:ab:de:4f:c9:4d:57:ae:96:dd: d9:04:7e:ab:70:b1:62:2e:1e:a3:05:e0:9e:fb:81: 0d:9d:8c:f2:70:40:a8:9b:12:f3:2f:7e:18:4f:e4: c7:82:49:ee:eb:ce:0d:94:85:ec:76:ab:95:f3:4b: d9:c2:a6:f3:1c:af:5d:81:52:98:ff:f4:37:25:a6: 43:da:c0:25:a4:be:28:b8:f3:ad:53:f2:20:d3:57: 68:18:6e:b8:cb:44:03:b2:04:76:d2:f8:0a:50:a5: f1:47:8c:a4:4b:de:ab:e5:78:f0:f0:40:a6:a5:38: e1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D0:D8:9D:61:20:34:58:5F:8C:68:29:7C:54:BB:CC:D0:E2:E1:2C X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7F0270C6721B11EF81654E68C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.28.100.0/22 IPv6: 2001:3c8:130a::/48 Signature Algorithm: sha256WithRSAEncryption a0:51:d5:e8:43:6a:a5:78:0f:c8:4b:58:26:b2:12:2d:6d:94: 93:a0:ef:76:3e:b0:d9:e6:3f:e1:6c:44:a4:14:4c:7a:fb:4f: 46:6d:56:4b:2c:54:86:b0:c0:74:2d:95:b8:2a:55:31:99:fd: ba:83:a7:22:8f:ae:c1:dc:40:3a:24:7b:69:da:b8:09:98:20: 03:ef:45:b9:ad:3b:b8:a5:0e:67:2a:a0:e8:ca:0e:97:06:ab: 0f:a7:d9:31:32:b4:b6:0a:7a:32:80:e2:23:28:07:70:1a:9e: 7d:91:00:63:79:24:b6:3e:db:bd:29:45:1e:e0:d3:b3:cd:34: b9:59:c8:70:b3:36:26:7e:4b:59:23:4a:04:5e:8e:56:19:70: da:fc:b0:9d:73:d5:67:cf:b5:24:ab:ae:18:4f:1c:79:d0:51: 03:8e:5f:58:f6:ed:e8:16:8a:c6:bd:b0:d4:a3:b5:da:db:84: 17:55:d3:7e:21:38:0d:e1:af:bf:35:f0:35:b2:27:fc:49:ad: f6:fa:90:62:3e:cf:48:8d:4d:ab:b2:e9:5d:ea:58:23:c9:a8: f4:a9:7a:84:2d:1f:7e:7f:ab:c6:31:89:f4:e3:d0:e9:aa:2c: 68:57:1a:67:bf:fa:d7:77:92:a2:b2:7e:88:bc:b5:8a:a3:db: d2:a5:2d:f4 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDM1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBiNC04NDU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOnp9PYabiH6xn77QYrdWvBdJG5K/2em3jRQ5ibIlQCuwxchjZHKS4/38yoB CZdtmsbWARPwp6fv4Vrv5siJ9sG855Rx5obsF8i960ytS2VZJuvPmHRc44fc7keb D2p5k6k7yTBXzIqIlISRRLM0QH8J4Ypwg+s2/vkDjU7Hfzzs8wwQWouvbZIwlr6r 3k/JTVeult3ZBH6rcLFiLh6jBeCe+4ENnYzycEComxLzL34YT+THgknu684NlIXs dquV80vZwqbzHK9dgVKY//Q3JaZD2sAlpL4ouPOtU/Ig01doGG64y0QDsgR20vgK UKXxR4ykS96r5Xjw8ECmpTjhCQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNDQ2J1h IDRYX4xoKXxUu8zQ4uEsMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvN0YwMjcwQzY3 MjFCMTFFRjgxNjU0RTY4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQCyhxkMA8EAgACMAkDBwAgAQPIEwowDQYJKoZIhvcNAQELBQADggEB AKBR1ehDaqV4D8hLWCayEi1tlJOg73Y+sNnmP+FsRKQUTHr7T0ZtVkssVIawwHQt lbgqVTGZ/bqDpyKPrsHcQDoke2nauAmYIAPvRbmtO7ilDmcqoOjKDpcGqw+n2TEy tLYKejKA4iMoB3Aann2RAGN5JLY+270pRR7g07PNNLlZyHCzNiZ+S1kjSgRejlYZ cNr8sJ1z1WfPtSSrrhhPHHnQUQOOX1j27egWisa9sNSjtdrbhBdV034hOA3hr781 8DWyJ/xJrfb6kGI+z0iNTauy6V3qWCPJqPSpeoQtH35/q8YxifTj0OmqLGhXGme/ +td3kqKyfoi8tYqj29KlLfQ= -----END CERTIFICATE-----Generated at Mon Mar 2 11:02:10 2026 by rpki-client