$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa File: ED90A2B8721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: duwwcTMpqFpSNEt/ps4IaNym801tTif70IXBqdZhwe8= Subject key identifier: C6:C8:BA:98:56:A9:EF:CE:8E:E4:5B:31:A1:EC:EF:66:59:00:77:88 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 024D Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:49 +0000 ROA not before: Wed 31 Dec 2025 04:24:16 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 136624 IP address blocks: 202.29.24.0/24 maxlen: 24 2001:3c8:cb01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:16 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490a1-0714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:33:84:b2:9c:bf:59:23:44:fa:a8:e5:4d:69: cb:93:7d:b9:34:f9:db:46:a6:d8:df:47:2c:e6:b6: 5e:a7:07:d3:c6:61:c0:91:e2:f8:0f:c5:9a:1c:01: 68:12:7a:4e:39:d3:32:cf:e9:ce:29:e5:e3:28:93: af:ac:83:f2:64:cb:76:65:a4:07:90:44:b1:91:66: 81:1c:56:d2:bc:11:06:70:d0:a5:29:83:2e:32:2b: 2d:14:00:76:6e:74:72:64:fa:37:bf:15:ad:53:df: c8:14:5c:2a:12:5f:0a:00:b7:f4:47:bc:0c:ca:36: 82:c5:14:d0:5d:43:21:fb:68:36:9b:9c:a8:06:65: 6e:7b:5d:d8:3e:22:23:22:9e:63:65:15:22:a1:fa: 00:04:5c:03:e9:68:a6:c4:f2:bb:7e:de:aa:9d:9c: 71:b5:2d:1c:fe:ca:8d:45:fd:8c:8a:81:ae:10:b9: 3d:5a:45:99:ec:4e:65:50:cc:b9:74:f7:b0:e0:58: da:6c:25:aa:08:71:35:9c:b5:74:7e:54:73:74:77: e3:c8:d2:78:fd:5c:04:f6:33:7c:25:6f:72:ba:3d: ea:25:1e:5d:4c:e5:5f:41:4f:c6:40:81:05:81:18: 5e:26:35:48:05:7a:e0:8d:e9:ae:db:92:ee:84:37: dd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C8:BA:98:56:A9:EF:CE:8E:E4:5B:31:A1:EC:EF:66:59:00:77:88 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED90A2B8721311EFA9D7CA3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.24.0/24 IPv6: 2001:3c8:cb01::/48 Signature Algorithm: sha256WithRSAEncryption 89:af:4b:cb:75:23:9c:e4:4c:e6:f0:1e:15:14:00:2b:4d:97: 98:72:cb:64:f1:bd:d1:f3:b5:36:03:78:ea:b3:33:9e:5d:7c: 63:71:80:14:80:ff:c3:69:7d:36:59:af:f0:c9:b0:03:c8:7f: 7d:80:5c:46:b2:8e:01:72:23:14:22:dd:f9:62:d3:d1:86:9f: 4f:f8:0a:fd:2f:8c:d5:b9:cd:98:a6:25:04:83:53:52:a2:04: 18:e1:11:4e:95:d3:5a:27:f8:1b:22:6d:98:5a:27:c0:b2:09: c3:0d:09:0a:5c:f7:17:2d:d5:3b:4f:70:68:94:ac:19:2e:54: 5c:ec:6c:46:e4:ce:f0:85:0e:27:34:d6:80:20:08:41:92:af: e3:03:7a:90:54:a5:fc:15:dc:9d:57:cc:79:81:d0:78:48:e6: 78:80:b5:6d:aa:d1:76:4a:4b:b6:19:a4:0a:f9:4f:90:a0:4a: f2:3d:1e:98:df:d5:91:6f:6f:d6:c3:20:4d:2a:be:67:26:35: 01:4f:1a:67:14:b2:2e:8a:e3:2e:d8:d4:01:5b:7e:63:81:b5: 1d:83:7c:6f:24:af:d4:df:02:15:99:f0:7a:8b:2d:6f:d7:eb: c2:cc:e5:a8:e7:ce:35:ff:d2:8f:05:ad:54:fb:96:c9:b2:89: 21:49:fe:fb -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDE2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBhMS0wNzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTOEspy/WSNE+qjlTWnLk325NPnbRqbY30cs5rZepwfTxmHAkeL4D8WaHAFo EnpOOdMyz+nOKeXjKJOvrIPyZMt2ZaQHkESxkWaBHFbSvBEGcNClKYMuMistFAB2 bnRyZPo3vxWtU9/IFFwqEl8KALf0R7wMyjaCxRTQXUMh+2g2m5yoBmVue13YPiIj Ip5jZRUiofoABFwD6WimxPK7ft6qnZxxtS0c/sqNRf2MioGuELk9WkWZ7E5lUMy5 dPew4FjabCWqCHE1nLV0flRzdHfjyNJ4/VwE9jN8JW9yuj3qJR5dTOVfQU/GQIEF gRheJjVIBXrgjemu25LuhDfd1wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFMbIuphW qe/OjuRbMaHs72ZZAHeIMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUQ5MEEyQjg3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyh0YMA8EAgACMAkDBwAgAQPIywEwDQYJKoZIhvcNAQELBQADggEB AImvS8t1I5zkTObwHhUUACtNl5hyy2TxvdHztTYDeOqzM55dfGNxgBSA/8NpfTZZ r/DJsAPIf32AXEayjgFyIxQi3fli09GGn0/4Cv0vjNW5zZimJQSDU1KiBBjhEU6V 01on+BsibZhaJ8CyCcMNCQpc9xct1TtPcGiUrBkuVFzsbEbkzvCFDic01oAgCEGS r+MDepBUpfwV3J1XzHmB0HhI5niAtW2q0XZKS7YZpAr5T5CgSvI9Hpjf1ZFvb9bD IE0qvmcmNQFPGmcUsi6K4y7Y1AFbfmOBtR2DfG8kr9TfAhWZ8HqLLW/X68LM5ajn zjX/0o8FrVT7lsmyiSFJ/vs= -----END CERTIFICATE-----Generated at Mon Mar 2 16:10:07 2026 by rpki-client