$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa File: F065A3D0721311EFA9D7CA3AC4F9AE02.roa (raw, json) Hash identifier: +Fy8zKLfQFEp21MH4GhqH9IpEDM1PpSuleFac1zzV8U= Subject key identifier: 54:C9:82:31:6D:FC:C4:A4:EF:05:DE:99:42:AC:52:72:6C:78:A2:DF Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0258 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:59 +0000 ROA not before: Wed 31 Dec 2025 04:24:27 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 140075 IP address blocks: 202.29.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:27 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490ab-8374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:1f:64:10:23:d6:ce:15:c8:8c:24:94:64: 4e:f9:a8:e5:3b:5c:bc:b8:a2:94:60:5d:64:8b:2f: 8d:ca:40:1e:08:9d:d7:3e:18:9c:3b:29:ed:02:b8: 43:14:db:37:a8:16:5d:1b:7d:6f:b3:bc:73:0b:2b: 37:9d:95:3b:12:8e:db:e6:7e:26:f7:5c:72:5c:d5: b6:b9:8a:0e:b5:49:0d:a4:4b:a7:f1:76:9b:2d:df: 7a:b1:ca:77:f0:d8:34:c2:2f:44:e3:99:da:de:78: 54:19:82:d0:0c:23:94:37:05:c5:90:97:22:77:42: cf:07:40:61:ee:ec:ee:5a:fc:ab:4a:c6:33:85:83: 2e:46:6c:12:79:7a:30:48:f2:02:09:3b:1d:2a:b0: b3:8b:09:a6:cf:57:11:83:e1:ef:e9:c6:48:e9:65: fc:4d:6e:44:f5:ca:b7:67:40:41:4a:db:a1:b7:5d: e2:f3:4f:c2:d9:98:60:f8:e7:3c:4a:99:62:c6:97: e7:a1:4b:b0:ed:24:67:d2:fc:56:2d:b4:e0:49:51: 58:e8:85:38:fa:6a:09:bf:9c:cf:11:9f:10:71:cb: 12:80:5c:6c:dc:68:0f:8b:b1:da:3d:f4:97:b0:1a: d0:20:c5:96:c6:0d:a1:1d:4d:71:d7:4a:91:a8:29: 19:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C9:82:31:6D:FC:C4:A4:EF:05:DE:99:42:AC:52:72:6C:78:A2:DF X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/F065A3D0721311EFA9D7CA3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.53.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:2e:c8:cc:b5:c7:b2:48:9b:a9:08:8b:16:5c:5d:95:92:54: a5:af:7a:88:1d:8a:14:c7:96:35:4a:4c:07:05:69:8b:90:ca: 14:a2:46:ca:75:7e:33:3b:19:eb:f8:b3:8c:66:87:93:44:4e: 31:95:93:db:0d:11:27:58:3f:5f:23:d0:de:a7:38:50:13:a9: 52:79:f4:f7:ba:69:7c:51:9c:51:fb:9b:63:c2:ae:a7:bc:27: e9:dd:7c:50:f6:d7:d8:be:a3:80:af:87:a1:c0:90:eb:29:d9: b4:98:76:0c:59:cb:5c:04:1c:1e:8a:10:e7:87:ec:7f:67:f6: d7:ba:a7:64:16:35:77:91:d9:82:91:8a:a1:6a:7c:f9:0e:d6: 2c:f0:1b:cf:e4:bd:dd:66:af:a2:21:71:5b:70:f3:ec:da:2d: 27:f5:cd:18:00:51:a5:ad:b9:39:1f:8b:b7:da:1b:e7:ab:5d: 7c:4f:71:c4:b3:5a:41:c9:ff:69:56:64:c0:52:63:2d:67:5f: c8:39:57:c7:dd:f1:df:80:7a:33:62:c5:df:95:57:8e:6d:dc: 9a:5c:8d:c1:dc:b2:ac:4d:f6:f7:fa:4b:54:72:cc:09:4f:d3: 42:94:0b:1c:ad:4d:0c:d0:c4:2a:a0:94:c9:e2:cd:76:07:48: b0:a7:ac:bd -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDI3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBhYi04Mzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOsfZBAj1s4VyIwklGRO+ajlO1y8uKKUYF1kiy+NykAeCJ3XPhicOyntArhD FNs3qBZdG31vs7xzCys3nZU7Eo7b5n4m91xyXNW2uYoOtUkNpEun8XabLd96scp3 8Ng0wi9E45na3nhUGYLQDCOUNwXFkJcid0LPB0Bh7uzuWvyrSsYzhYMuRmwSeXow SPICCTsdKrCziwmmz1cRg+Hv6cZI6WX8TW5E9cq3Z0BBStuht13i80/C2Zhg+Oc8 SplixpfnoUuw7SRn0vxWLbTgSVFY6IU4+moJv5zPEZ8QccsSgFxs3GgPi7HaPfSX sBrQIMWWxg2hHU1x10qRqCkZlQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFTJgjFt /MSk7wXemUKsUnJseKLfMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRjA2NUEzRDA3 MjEzMTFFRkE5RDdDQTNBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyh01MA0GCSqGSIb3DQEBCwUAA4IBAQAKLsjMtceySJupCIsWXF2V klSlr3qIHYoUx5Y1SkwHBWmLkMoUokbKdX4zOxnr+LOMZoeTRE4xlZPbDREnWD9f I9DepzhQE6lSefT3uml8UZxR+5tjwq6nvCfp3XxQ9tfYvqOAr4ehwJDrKdm0mHYM WctcBBweihDnh+x/Z/bXuqdkFjV3kdmCkYqhanz5DtYs8BvP5L3dZq+iIXFbcPPs 2i0n9c0YAFGlrbk5H4u32hvnq118T3HEs1pByf9pVmTAUmMtZ1/IOVfH3fHfgHoz YsXflVeObdyaXI3B3LKsTfb3+ktUcswJT9NClAscrU0M0MQqoJTJ4s12B0iwp6y9 -----END CERTIFICATE-----Generated at Mon Mar 2 06:23:36 2026 by rpki-client