$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/2B622E1282F511EF9090F681C4F9AE02.roa File: 2B622E1282F511EF9090F681C4F9AE02.roa (raw, json) Hash identifier: ASkZLn/NWBAwVh59cVjcukQp4AEdjyXM88LF9t8bVkY= Subject key identifier: 3A:0A:18:6F:D4:13:57:D4:AF:F3:90:E1:99:33:31:CE:D8:43:11:4F Certificate issuer: /CN=A91B0770/serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Certificate serial: 35B2 Authority key identifier: 1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/2B622E1282F511EF9090F681C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:25:57 +0000 ROA not before: Wed 26 Mar 2025 14:50:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24391 IP address blocks: 202.91.136.0/22 maxlen: 24 202.91.140.0/23 maxlen: 24 202.91.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13746 (0x35b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0770, serialNumber=1D6225AD943ECA389FA4B66C1974351E34C428FB Validity Not Before: Mar 26 14:50:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45a85-a4f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:cc:7b:ab:f4:dc:fd:45:a4:70:5b:2e:3d:53: 7a:9f:82:51:5e:22:2c:f9:85:ac:25:b5:64:7f:17: 5d:69:67:6b:99:c7:37:a9:8f:24:76:7b:86:f8:7a: b1:b0:a2:ca:30:bc:b6:e1:53:c0:33:40:3b:1e:e4: 7d:27:f4:cd:3a:69:38:f6:9f:71:97:72:04:de:7c: 30:46:7c:76:7c:23:89:e1:af:d4:cb:6a:cf:9d:89: a9:7d:56:23:a3:96:dd:f6:49:80:31:01:5e:16:c9: 90:a5:c9:2e:f6:ef:9b:bc:6e:96:e3:13:ba:af:de: 49:90:14:78:cf:15:ed:b1:1c:b6:54:11:7c:dd:81: 04:cc:c9:dd:82:be:7c:62:c1:3f:76:81:65:69:d0: 24:14:e5:c5:c8:19:9e:63:fc:f3:53:f4:b2:8f:44: d4:a3:6b:b6:29:9f:73:c4:b1:5a:25:dd:ec:79:2b: eb:cc:c2:2a:85:11:2b:c9:59:f4:5c:08:8f:46:83: 7c:94:01:68:05:76:a6:d3:8e:71:74:fa:43:d5:86: 6c:b6:90:a6:54:f6:a5:6a:41:03:0c:4b:83:50:8a: 63:4a:96:71:22:99:db:de:f6:63:a8:6c:89:b0:dc: 50:1d:ad:15:1c:02:cb:3e:60:38:8b:12:da:b9:9e: df:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0A:18:6F:D4:13:57:D4:AF:F3:90:E1:99:33:31:CE:D8:43:11:4F X509v3 Authority Key Identifier: keyid:1D:62:25:AD:94:3E:CA:38:9F:A4:B6:6C:19:74:35:1E:34:C4:28:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWIlrZQ-yjifpLZsGXQ1HjTEKPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0770/C33683B61D8E11E28A9B57ED08B02CD2/2B622E1282F511EF9090F681C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.91.136.0/21 Signature Algorithm: sha256WithRSAEncryption 39:46:7a:2d:3f:dc:5f:76:01:29:3c:c2:3a:83:a8:54:3e:8b: 6f:38:ca:16:8f:ee:ab:7e:55:a8:22:91:72:f3:64:fe:6b:25: c5:53:e6:f7:14:9f:c7:36:a6:ab:e0:b4:3c:f0:34:3e:85:3c: 34:51:a4:38:ca:33:cc:eb:69:4a:3a:95:2e:e0:a2:53:03:b7: 3c:2c:5d:28:75:56:4d:66:0c:21:d4:db:e1:93:a4:a2:4a:78: 96:66:e0:46:d4:5a:e8:20:b3:b0:72:2f:16:c1:75:35:15:b6: c4:6b:74:39:36:f9:a2:23:e5:cf:d0:60:d1:b3:15:07:af:6e: 90:b8:4e:c5:3b:f8:08:65:84:06:f5:39:b2:46:2e:d2:2b:18: 72:b6:86:ad:46:4d:aa:8f:af:9a:8d:8b:8e:14:4b:7d:9b:de: 83:e8:46:8c:fb:fc:fe:31:0b:a1:c8:a3:e5:cc:9f:af:41:16: 24:55:b6:71:ed:0d:ab:cb:59:ff:37:90:df:5e:af:e3:09:33: a7:62:d0:6a:88:f9:6f:a5:44:c4:6e:4b:da:ce:9c:f4:89:9b: 90:af:2c:dd:39:72:31:6c:b6:af:ca:ca:be:f0:88:1d:f1:c3: 9b:84:05:cd:93:15:50:73:c8:7d:a0:da:1f:88:52:04:99:40: 24:b2:04:64 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NzAxMTAvBgNVBAUTKDFENjIyNUFEOTQzRUNBMzg5RkE0QjY2QzE5NzQzNTFF MzRDNDI4RkIwHhcNMjUwMzI2MTQ1MDU0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NWE4NS1hNGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAjsx7q/Tc/UWkcFsuPVN6n4JRXiIs+YWsJbVkfxddaWdrmcc3qY8kdnuG+Hqx sKLKMLy24VPAM0A7HuR9J/TNOmk49p9xl3IE3nwwRnx2fCOJ4a/Uy2rPnYmpfVYj o5bd9kmAMQFeFsmQpcku9u+bvG6W4xO6r95JkBR4zxXtsRy2VBF83YEEzMndgr58 YsE/doFladAkFOXFyBmeY/zzU/Syj0TUo2u2KZ9zxLFaJd3seSvrzMIqhREryVn0 XAiPRoN8lAFoBXam045xdPpD1YZstpCmVPalakEDDEuDUIpjSpZxIpnb3vZjqGyJ sNxQHa0VHALLPmA4ixLauZ7fywIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDoKGG/U E1fUr/OQ4ZkzMc7YQxFPMB8GA1UdIwQYMBaAFB1iJa2UPso4n6S2bBl0NR40xCj7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc3MC9DMzM2ODNCNjFE OEUxMUUyOEE5QjU3RUQwOEIwMkNEMi9IV0lsclpRLXlqaWZwTFpzR1hRMUhqVEVL UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXSWxyWlEteWppZnBMWnNHWFExSGpURUtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3NzAvQzMzNjgzQjYxRDhFMTFFMjhBOUI1N0VEMDhCMDJDRDIvMkI2MjJFMTI4 MkY1MTFFRjkwOTBGNjgxQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyluIMA0GCSqGSIb3DQEBCwUAA4IBAQA5RnotP9xfdgEpPMI6g6hU PotvOMoWj+6rflWoIpFy82T+ayXFU+b3FJ/HNqar4LQ88DQ+hTw0UaQ4yjPM62lK OpUu4KJTA7c8LF0odVZNZgwh1Nvhk6SiSniWZuBG1FroILOwci8WwXU1FbbEa3Q5 NvmiI+XP0GDRsxUHr26QuE7FO/gIZYQG9TmyRi7SKxhytoatRk2qj6+ajYuOFEt9 m96D6EaM+/z+MQuhyKPlzJ+vQRYkVbZx7Q2ry1n/N5DfXq/jCTOnYtBqiPlvpUTE bkvazpz0iZuQryzdOXIxbLavysq+8Igd8cObhAXNkxVQc8h9oNofiFIEmUAksgRk -----END CERTIFICATE-----Generated at Mon Mar 2 13:49:52 2026 by rpki-client