$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa File: EEF98246721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: /87l35+1nIFuBLA+vhIwV1Sp6R2+IuThMc2jnMjCLAE= Subject key identifier: F6:A8:4C:44:52:B8:29:DF:74:AC:5C:FC:07:41:39:72:EE:19:24:F5 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0254 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:56 +0000 ROA not before: Wed 31 Dec 2025 04:24:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138003 IP address blocks: 202.29.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:23 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490a7-3a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9e:25:2e:f4:9d:0f:34:f0:a3:ab:8e:d8:e3: bd:10:5d:f1:40:0a:d1:73:79:4c:6d:14:61:33:85: e0:c6:99:d1:18:33:e0:eb:23:70:e5:db:77:08:c2: f6:77:d2:2e:b3:f5:61:1b:37:63:b7:17:de:11:69: a3:1a:04:81:ec:16:22:28:83:05:84:4b:9e:13:92: 48:13:1f:84:87:28:d7:3d:36:dc:63:00:59:57:1a: 14:8e:c9:f6:fd:42:7a:63:ff:63:b1:b7:93:e8:ab: 09:1a:50:c6:81:71:a0:69:80:95:ba:93:d5:5a:89: f0:1d:01:01:b8:fd:83:9a:71:a9:c6:b4:45:da:ea: a4:f3:c9:c5:2c:6e:b7:27:20:b9:20:d9:b7:73:72: 07:8a:e9:bd:cd:d5:4c:e8:ff:0f:ce:6c:e5:71:15: 88:d7:6b:d1:43:b5:2f:e9:b3:99:a3:94:f1:b7:73: 63:61:7f:df:ec:9e:86:35:16:b1:80:28:ce:9a:df: 82:72:a7:04:ba:a2:55:6a:74:01:8c:63:a8:47:b7: 5d:ab:9f:16:d1:19:ae:25:cc:b4:fc:0f:44:f5:f5: d6:97:47:3c:9c:a4:19:0f:55:f9:83:dc:1b:e9:54: 09:7c:a5:18:12:c8:27:d5:88:1d:64:89:9c:d2:0c: da:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A8:4C:44:52:B8:29:DF:74:AC:5C:FC:07:41:39:72:EE:19:24:F5 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/EEF98246721311EFA9D7CA3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.103.0/24 Signature Algorithm: sha256WithRSAEncryption 11:8f:b3:39:41:3e:b1:30:bc:41:4a:d5:6a:78:31:8d:0b:a0: 34:f9:b7:47:2a:97:e3:9d:73:bf:92:7d:4e:c4:6c:69:98:f4: b0:0e:6a:ac:a6:0f:a1:95:cc:0f:44:de:a5:59:d8:b1:0d:4c: bd:ef:9b:9a:46:27:22:47:01:42:59:1f:59:56:a9:69:d6:88: ee:b3:35:c6:93:2d:cb:73:7a:4a:8c:27:2a:56:00:57:af:de: e9:64:f5:e6:c2:02:99:3e:af:11:d8:fc:be:26:64:24:c9:d2: 42:5b:0f:f6:55:8e:76:94:32:87:df:40:8d:fd:9a:6f:9c:d4: 65:f9:25:4c:39:7f:4d:c1:c2:5a:48:8f:3d:07:10:fd:63:1b: 12:b9:e4:c0:4d:77:2b:9a:61:da:ca:67:88:d1:29:5e:5b:47: 0e:25:10:8e:f0:be:f5:6e:5d:ef:94:6a:0f:6c:1a:46:e6:d0: 2f:9e:ba:ab:61:2b:f8:16:99:74:4e:9c:82:2e:2f:5c:50:19: 98:3a:75:2c:f5:5c:13:94:8c:df:a3:33:1e:0a:ab:31:4e:04: 81:83:30:4f:52:5f:3e:45:90:59:c4:e6:dd:60:16:8b:b8:9b: 99:73:13:3c:29:fc:21:76:4f:07:a6:71:c9:a5:ae:b7:e4:a2: 19:37:50:a4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBhNy0zYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx54lLvSdDzTwo6uO2OO9EF3xQArRc3lMbRRhM4XgxpnRGDPg6yNw5dt3CML2 d9Ius/VhGzdjtxfeEWmjGgSB7BYiKIMFhEueE5JIEx+EhyjXPTbcYwBZVxoUjsn2 /UJ6Y/9jsbeT6KsJGlDGgXGgaYCVupPVWonwHQEBuP2DmnGpxrRF2uqk88nFLG63 JyC5INm3c3IHium9zdVM6P8PzmzlcRWI12vRQ7Uv6bOZo5Txt3NjYX/f7J6GNRax gCjOmt+CcqcEuqJVanQBjGOoR7ddq58W0RmuJcy0/A9E9fXWl0c8nKQZD1X5g9wb 6VQJfKUYEsgn1YgdZImc0gzaEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPaoTERS uCnfdKxc/AdBOXLuGST1MB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUVGOTgyNDY3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyh1nMA0GCSqGSIb3DQEBCwUAA4IBAQARj7M5QT6xMLxBStVqeDGN C6A0+bdHKpfjnXO/kn1OxGxpmPSwDmqspg+hlcwPRN6lWdixDUy975uaRiciRwFC WR9ZVqlp1ojuszXGky3Lc3pKjCcqVgBXr97pZPXmwgKZPq8R2Py+JmQkydJCWw/2 VY52lDKH30CN/ZpvnNRl+SVMOX9NwcJaSI89BxD9YxsSueTATXcrmmHaymeI0Sle W0cOJRCO8L71bl3vlGoPbBpG5tAvnrqrYSv4Fpl0TpyCLi9cUBmYOnUs9VwTlIzf ozMeCqsxTgSBgzBPUl8+RZBZxObdYBaLuJuZcxM8Kfwhdk8HpnHJpa635KIZN1Ck -----END CERTIFICATE-----Generated at Mon Mar 2 05:57:36 2026 by rpki-client