$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/77D96D4A4F3411EFBA0A2659C4F9AE02.roa File: 77D96D4A4F3411EFBA0A2659C4F9AE02.roa (raw, json) Hash identifier: yyOi/VAw5sRVCQX5TpgvFtNkRFTz06wlp/omi2nfwPw= Subject key identifier: 19:0E:92:A5:1C:D8:27:C5:87:46:FB:8D:50:49:E0:28:0B:87:B6:E9 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 36EF Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/77D96D4A4F3411EFBA0A2659C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:43:55 +0000 ROA not before: Fri 12 Dec 2025 14:30:44 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 45814 IP address blocks: 116.90.106.0/24 maxlen: 24 116.90.107.0/24 maxlen: 24 116.90.108.0/24 maxlen: 24 116.90.109.0/24 maxlen: 24 116.90.110.0/24 maxlen: 24 202.69.33.0/24 maxlen: 24 202.69.36.0/24 maxlen: 24 202.69.42.0/24 maxlen: 24 202.69.54.0/24 maxlen: 24 202.69.55.0/24 maxlen: 24 202.142.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14063 (0x36ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Dec 12 14:30:44 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a488eb-28ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:7a:8d:fb:be:62:d3:af:15:ed:9e:72:2b:6a: aa:04:09:4a:48:1d:38:e5:65:f9:cb:96:86:0e:d1: 47:4f:1d:bb:b7:94:e7:f8:70:49:94:6f:9e:99:af: a4:16:d6:23:08:fd:a4:bb:b9:27:78:83:cc:ff:b8: 71:41:0c:42:ce:51:6c:6c:4d:61:25:60:88:41:d2: d5:4c:6c:a9:6b:52:f3:0d:dc:e9:82:7b:32:62:6f: 2b:f2:e7:62:b6:e8:ab:0f:b3:a6:ec:50:c2:40:a1: 6c:bb:17:15:21:8f:c3:c9:ac:ec:9d:76:b5:2e:d9: 54:66:3a:4c:b3:c9:4a:49:8a:df:dd:89:1b:61:a7: ea:8e:66:08:46:11:75:7a:54:c0:2f:5c:86:3c:33: c7:8e:4f:23:c9:bd:4c:93:36:61:d8:48:1b:4b:f8: 99:0b:a2:7a:54:d5:f6:f1:aa:21:75:37:3a:b6:60: 7f:5c:7a:50:ed:27:67:11:b4:4b:9f:6c:4c:5d:df: 74:9e:5d:0e:ec:0b:32:08:83:24:fe:a5:5f:82:25: d3:85:e2:cf:53:8e:54:0c:39:c5:6d:6b:c5:dc:f1: ec:75:64:74:26:8f:f1:af:64:4e:37:a4:d6:db:ca: 2b:a6:e9:69:65:1b:a0:81:0c:1f:69:cf:51:6f:f2: 47:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:0E:92:A5:1C:D8:27:C5:87:46:FB:8D:50:49:E0:28:0B:87:B6:E9 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/77D96D4A4F3411EFBA0A2659C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 116.90.106.0-116.90.110.255 202.69.33.0/24 202.69.36.0/24 202.69.42.0/24 202.69.54.0/23 202.142.152.0/24 Signature Algorithm: sha256WithRSAEncryption a0:98:05:ec:cf:d4:dd:0e:7f:55:ba:ad:d8:61:cf:d5:56:86: 31:1a:80:c9:44:8a:cb:9c:ac:fb:bc:8a:3d:2d:a2:dd:12:7e: c8:c6:e8:b0:b2:c5:64:0a:c8:18:46:6a:90:ec:69:88:7a:1d: a6:a2:8b:37:3e:82:cf:ff:bd:90:b8:c5:00:4b:8d:d2:10:f0: 91:c3:11:13:57:3e:08:08:73:6d:16:1e:b5:fa:2b:31:57:ee: f2:a4:ab:96:2b:19:78:6a:0d:bf:0b:50:8d:ac:01:9e:28:2f: 3b:dc:b5:dd:5b:b7:63:af:ca:fc:18:fc:8e:f5:a0:d7:4e:82: 5f:8a:d3:69:c9:91:4d:dd:51:f0:dc:20:34:22:ec:0b:69:6a: fd:26:a8:1e:20:8e:9a:e0:e4:0a:5f:3f:d3:5a:54:bd:ec:71: ae:e9:3b:13:e4:70:44:d4:ab:31:49:2c:8e:d8:86:52:37:31: 3c:30:48:c9:9b:c7:9a:01:57:2d:c7:84:10:30:bb:9c:a6:d6: df:95:ae:31:4f:a3:53:4f:37:32:e4:9e:08:7e:da:96:2b:dd: ba:4f:bf:de:c5:90:cd:0b:b9:c3:b3:52:4a:bf:d1:e6:21:0d: 38:0f:35:fc:50:d8:61:af:88:6d:7f:d0:c6:75:05:fb:cc:3e: 8c:bd:5d:62 -----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgICNu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUxMjEyMTQzMDQ0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODhlYi0yOGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAh3qN+75i068V7Z5yK2qqBAlKSB045WX5y5aGDtFHTx27t5Tn+HBJlG+ema+k FtYjCP2ku7kneIPM/7hxQQxCzlFsbE1hJWCIQdLVTGypa1LzDdzpgnsyYm8r8udi tuirD7Om7FDCQKFsuxcVIY/DyazsnXa1LtlUZjpMs8lKSYrf3YkbYafqjmYIRhF1 elTAL1yGPDPHjk8jyb1MkzZh2EgbS/iZC6J6VNX28aohdTc6tmB/XHpQ7SdnEbRL n2xMXd90nl0O7AsyCIMk/qVfgiXTheLPU45UDDnFbWvF3PHsdWR0Jo/xr2RON6TW 28orpulpZRuggQwfac9Rb/JHrQIDAQABo4IChjCCAoIwHQYDVR0OBBYEFBkOkqUc 2CfFh0b7jVBJ4CgLh7bpMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvNzdEOTZENEE0 RjM0MTFFRkJBMEEyNjU5QzRGOUFFMDIucm9hMEUGCCsGAQUFBwEHAQH/BDYwNDAy BAIAATAsMAwDBAF0WmoDBAB0Wm4DBADKRSEDBADKRSQDBADKRSoDBAHKRTYDBADK jpgwDQYJKoZIhvcNAQELBQADggEBAKCYBezP1N0Of1W6rdhhz9VWhjEagMlEisuc rPu8ij0tot0SfsjG6LCyxWQKyBhGapDsaYh6Haaiizc+gs//vZC4xQBLjdIQ8JHD ERNXPggIc20WHrX6KzFX7vKkq5YrGXhqDb8LUI2sAZ4oLzvctd1bt2OvyvwY/I71 oNdOgl+K02nJkU3dUfDcIDQi7Atpav0mqB4gjprg5ApfP9NaVL3sca7pOxPkcETU qzFJLI7YhlI3MTwwSMmbx5oBVy3HhBAwu5ym1t+VrjFPo1NPNzLkngh+2pYr3bpP v97FkM0LucOzUkq/0eYhDTgPNfxQ2GGviG1/0MZ1BfvMPoy9XWI= -----END CERTIFICATE-----Generated at Mon Mar 2 04:13:18 2026 by rpki-client