$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/1B4BDA5C48B011EF9D34415EC4F9AE02.roa File: 1B4BDA5C48B011EF9D34415EC4F9AE02.roa (raw, json) Hash identifier: i0u++KF1Q5xKES8G1ajMnqQJU/uhVCVuB5dgmU3QsM8= Subject key identifier: 75:E7:78:E4:93:CB:70:0D:B1:47:53:32:C4:A3:F7:7D:A3:52:3E:9A Certificate issuer: /CN=A91B2472/serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Certificate serial: 013A Authority key identifier: 9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/1B4BDA5C48B011EF9D34415EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:33:17 +0000 ROA not before: Wed 27 Aug 2025 06:12:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18199 IP address blocks: 202.37.68.0/24 maxlen: 24 202.37.167.0/24 maxlen: 24 202.50.240.0/24 maxlen: 24 202.169.192.0/19 maxlen: 24 2403:de00::/32 maxlen: 32 2403:de00:100::/40 maxlen: 40 2403:de00:200::/39 maxlen: 40 2403:de00:400::/38 maxlen: 40 2403:de00:1000::/36 maxlen: 40 2403:de00:2000::/35 maxlen: 40 2403:de00:4000::/34 maxlen: 35 2403:de00:4000::/35 maxlen: 40 2403:de00:6000::/36 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2472, serialNumber=9E513ACC4D7B90014A867FB52AF89229E00BA4AC Validity Not Before: Aug 27 06:12:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5919c-7190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d1:8a:11:60:b4:e7:a9:c8:c2:c2:6d:49:a2: 0d:51:65:ad:28:db:b6:15:b3:b1:c0:5c:c5:8d:ae: 2f:5f:ce:9d:5d:5b:76:a1:bd:bb:56:4b:28:4f:3a: a7:c4:fa:8f:ef:0a:16:dd:f1:8c:0a:22:8f:0a:aa: 4f:0f:73:86:dd:a8:b9:48:2d:79:d1:31:ff:67:95: 63:5c:f5:8e:87:92:50:02:59:0a:a2:12:41:ac:e8: ec:70:5c:45:6d:6b:9b:16:a5:d8:28:f9:44:cc:4c: 06:42:e9:1d:80:61:74:29:05:28:82:08:b7:63:79: c8:0b:17:c2:a1:bd:49:e0:ce:fc:c3:f4:4e:ac:76: 89:67:f3:1c:e6:77:fa:b0:fe:b0:d6:2b:a0:59:da: 40:2e:7a:6b:64:8c:b5:e1:a7:99:e5:4e:c5:4c:51: a1:2c:49:c4:ce:fc:ff:b8:2a:86:55:12:61:53:a2: b6:a5:4d:ae:08:e1:51:fa:d2:51:d7:29:29:61:53: e5:ba:d4:77:db:cb:0a:09:86:a9:bf:3a:47:f0:30: 4b:7b:49:d6:a4:28:cf:27:6b:50:cf:cc:9d:fc:c3: c0:01:e9:75:9e:12:5f:56:4e:ae:8e:56:df:6d:f5: 50:ed:36:b6:4e:ed:38:de:f8:62:f1:50:65:4a:d0: 65:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E7:78:E4:93:CB:70:0D:B1:47:53:32:C4:A3:F7:7D:A3:52:3E:9A X509v3 Authority Key Identifier: keyid:9E:51:3A:CC:4D:7B:90:01:4A:86:7F:B5:2A:F8:92:29:E0:0B:A4:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/nlE6zE17kAFKhn-1KviSKeALpKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nlE6zE17kAFKhn-1KviSKeALpKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2472/E62B735A481911EFB8BE4534C4F9AE02/1B4BDA5C48B011EF9D34415EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.68.0/24 202.37.167.0/24 202.50.240.0/24 202.169.192.0/19 IPv6: 2403:de00::/32 Signature Algorithm: sha256WithRSAEncryption ae:0e:7a:be:5c:c4:4d:db:1e:1b:38:8c:5d:3e:50:62:a6:2a: a1:58:4f:3b:4a:0d:1e:7f:1e:ec:f1:b8:3d:c9:e8:53:d4:83: 26:65:19:3f:75:a2:7d:ea:83:85:36:a8:3a:8c:89:87:f3:00: 65:48:13:68:e0:3c:6e:72:4b:ac:1d:82:61:dd:1f:e7:ea:d2: 57:78:81:8b:89:8f:9f:5f:5d:55:24:77:8e:d1:75:db:39:97: 04:a1:32:90:12:e8:24:83:1e:a4:2e:0e:df:de:e8:26:3d:d9: a0:83:6f:7d:24:7b:74:43:25:e9:44:34:3c:24:b5:a7:6f:9c: b0:73:c0:e7:87:b1:99:b4:04:fc:80:2b:0e:ea:f1:2e:86:4b: 0e:f7:17:ba:c6:e6:d1:7e:42:f5:44:54:9e:2a:c4:d3:40:b6: 1d:3e:57:01:ba:d0:2b:3d:54:5f:d9:f1:2c:84:35:67:99:88: c4:15:ef:c9:5d:e0:61:37:04:c6:d9:b0:70:d8:30:51:2f:1a: 1d:49:c1:28:d4:27:dd:3f:3e:c3:21:7a:ef:77:fa:05:45:54: 90:94:8d:b8:0c:25:81:49:66:fa:dd:da:fb:62:eb:47:73:b6: 48:ae:6e:dc:ae:b2:85:19:2c:ff:35:0c:17:80:64:01:63:41: 58:4b:01:56 -----BEGIN CERTIFICATE----- MIIFXTCCBEWgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjI0NzIxMTAvBgNVBAUTKDlFNTEzQUNDNEQ3QjkwMDE0QTg2N0ZCNTJBRjg5MjI5 RTAwQkE0QUMwHhcNMjUwODI3MDYxMjM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTE5Yy03MTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNGKEWC056nIwsJtSaINUWWtKNu2FbOxwFzFja4vX86dXVt2ob27VksoTzqn xPqP7woW3fGMCiKPCqpPD3OG3ai5SC150TH/Z5VjXPWOh5JQAlkKohJBrOjscFxF bWubFqXYKPlEzEwGQukdgGF0KQUoggi3Y3nICxfCob1J4M78w/ROrHaJZ/Mc5nf6 sP6w1iugWdpALnprZIy14aeZ5U7FTFGhLEnEzvz/uCqGVRJhU6K2pU2uCOFR+tJR 1ykpYVPlutR328sKCYapvzpH8DBLe0nWpCjPJ2tQz8yd/MPAAel1nhJfVk6ujlbf bfVQ7Ta2Tu043vhi8VBlStBljQIDAQABo4ICgTCCAn0wHQYDVR0OBBYEFHXneOST y3ANsUdTMsSj932jUj6aMB8GA1UdIwQYMBaAFJ5ROsxNe5ABSoZ/tSr4kingC6Ss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjQ3Mi9FNjJCNzM1QTQ4 MTkxMUVGQjhCRTQ1MzRDNEY5QUUwMi9ubEU2ekUxN2tBRktobi0xS3ZpU0tlQUxw S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25sRTZ6RTE3a0FGS2huLTFLdmlTS2VBTHBLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjI0NzIvRTYyQjczNUE0ODE5MTFFRkI4QkU0NTM0QzRGOUFFMDIvMUI0QkRBNUM0 OEIwMTFFRjlEMzQ0MTVFQzRGOUFFMDIucm9hMEAGCCsGAQUFBwEHAQH/BDEwLzAe BAIAATAYAwQAyiVEAwQAyiWnAwQAyjLwAwQFyqnAMA0EAgACMAcDBQAkA94AMA0G CSqGSIb3DQEBCwUAA4IBAQCuDnq+XMRN2x4bOIxdPlBipiqhWE87Sg0efx7s8bg9 yehT1IMmZRk/daJ96oOFNqg6jImH8wBlSBNo4DxuckusHYJh3R/n6tJXeIGLiY+f X11VJHeO0XXbOZcEoTKQEugkgx6kLg7f3ugmPdmgg299JHt0QyXpRDQ8JLWnb5yw c8Dnh7GZtAT8gCsO6vEuhksO9xe6xubRfkL1RFSeKsTTQLYdPlcButArPVRf2fEs hDVnmYjEFe/JXeBhNwTG2bBw2DBRLxodScEo1CfdPz7DIXrvd/oFRVSQlI24DCWB SWb63dr7YutHc7ZIrm7crrKFGSz/NQwXgGQBY0FYSwFW -----END CERTIFICATE-----Generated at Mon Mar 2 17:26:29 2026 by rpki-client