$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C16DCDDAB3B511EA8BFADC14C4F9AE02.roa File: C16DCDDAB3B511EA8BFADC14C4F9AE02.roa (raw, json) Hash identifier: oHnX/hxYILr9+zc/E+u2+0Q1MHhW+KzrVph1PkDwMXk= Subject key identifier: DD:72:0E:9B:79:38:53:8F:5F:C4:43:1A:4A:D8:23:BB:7E:3D:76:BB Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 12C4 Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C16DCDDAB3B511EA8BFADC14C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:08:42 +0000 ROA not before: Thu 04 Dec 2025 16:46:50 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 131477 IP address blocks: 124.108.20.0/24 maxlen: 24 124.108.22.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4804 (0x12c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73, serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Validity Not Before: Dec 4 16:46:50 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a480aa-c3a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8d:36:54:33:d4:62:9e:52:75:7f:a4:ad:07: 85:5f:a7:d3:19:0f:d9:1c:25:87:f2:09:9f:03:51: 8a:c4:9f:37:8e:2e:d4:cf:87:95:6a:0b:b8:77:8f: 3e:cf:9e:da:07:df:60:21:18:e8:5a:5b:fa:fe:8a: 57:d6:92:7a:36:f3:26:38:1c:04:a0:0a:1d:06:4b: f4:ca:39:04:35:ac:76:48:c8:20:2f:74:30:12:d6: 1f:c6:87:a6:4a:f3:bb:01:91:af:0c:b4:8a:bf:3a: 12:a7:0c:17:ea:48:bf:86:81:89:55:05:b1:eb:29: 34:da:ac:ce:87:74:7c:87:cd:0e:93:83:3c:57:0b: 67:9d:53:ad:aa:e1:c1:dc:a0:7e:15:08:80:f3:42: 76:93:bd:33:1f:8e:fe:54:16:14:87:20:38:59:a8: 43:f6:cd:61:ad:01:5b:8d:0a:b7:b3:43:81:63:b7: da:58:97:a2:b2:35:a7:c7:7b:d6:1b:94:cb:11:6a: b3:73:0a:76:b3:78:b9:63:41:ed:fc:7c:ef:d4:dd: 86:73:16:d7:a2:44:29:06:e2:5a:95:84:97:35:af: 88:01:db:19:26:1b:b3:a5:48:d5:8c:32:9a:55:03: 51:38:d7:ec:71:b4:d9:b0:1d:0e:7e:a6:83:24:cd: 50:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:72:0E:9B:79:38:53:8F:5F:C4:43:1A:4A:D8:23:BB:7E:3D:76:BB X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/C16DCDDAB3B511EA8BFADC14C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 124.108.20.0/24 124.108.22.0/23 Signature Algorithm: sha256WithRSAEncryption 67:02:26:6f:b4:8e:4c:32:a0:96:10:03:a5:78:79:19:48:aa: 38:36:b2:f2:c7:1a:7b:e7:2c:e9:88:d3:5a:81:28:5e:b5:17: bf:3c:52:a4:da:f7:05:62:fb:05:22:f3:88:12:2e:7f:a0:2f: ef:f0:36:c8:9f:42:0b:a5:ae:48:79:5f:a1:4e:81:76:e0:27: ac:06:8a:d8:d7:77:d4:ee:95:dc:cb:cc:68:11:fa:e4:87:c2: d1:c3:75:ab:7e:79:ee:22:d0:32:b7:b9:64:49:e8:23:2a:d8: 2e:a6:87:40:e5:d2:00:36:05:d8:68:02:bd:13:72:84:41:6b: 1d:59:43:82:f6:d9:1a:11:e8:3d:09:46:a4:a6:b4:70:e6:36: 56:f3:08:26:07:84:05:55:8e:5a:32:b8:8c:b9:62:a8:88:d0: 95:c0:a8:0c:ce:e8:bc:83:86:8d:7b:76:5c:fa:bc:f3:d6:8b: 61:77:5c:a9:0a:3c:ed:e1:95:9a:c7:df:e0:1e:db:67:0b:ad: d8:2f:fb:10:7a:45:d5:c7:9e:6d:91:4c:19:56:54:95:72:f1: 33:cb:82:55:6a:29:b3:7b:36:3b:bd:9f:e6:a1:85:1a:05:86: aa:9f:93:c2:92:88:10:00:67:d8:c4:9d:13:36:fa:e6:0b:52: 0f:9a:59:d7 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICEsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjUxMjA0MTY0NjUwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODBhYS1jM2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvo02VDPUYp5SdX+krQeFX6fTGQ/ZHCWH8gmfA1GKxJ83ji7Uz4eVagu4d48+ z57aB99gIRjoWlv6/opX1pJ6NvMmOBwEoAodBkv0yjkENax2SMggL3QwEtYfxoem SvO7AZGvDLSKvzoSpwwX6ki/hoGJVQWx6yk02qzOh3R8h80Ok4M8VwtnnVOtquHB 3KB+FQiA80J2k70zH47+VBYUhyA4WahD9s1hrQFbjQq3s0OBY7faWJeisjWnx3vW G5TLEWqzcwp2s3i5Y0Ht/Hzv1N2GcxbXokQpBuJalYSXNa+IAdsZJhuzpUjVjDKa VQNRONfscbTZsB0OfqaDJM1QCwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFN1yDpt5 OFOPX8RDGkrYI7t+PXa7MB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvQzE2RENEREFC M0I1MTFFQThCRkFEQzE0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAfGwUAwQBfGwWMA0GCSqGSIb3DQEBCwUAA4IBAQBnAiZvtI5MMqCW EAOleHkZSKo4NrLyxxp75yzpiNNagShetRe/PFKk2vcFYvsFIvOIEi5/oC/v8DbI n0ILpa5IeV+hToF24CesBorY13fU7pXcy8xoEfrkh8LRw3WrfnnuItAyt7lkSegj KtgupodA5dIANgXYaAK9E3KEQWsdWUOC9tkaEeg9CUakprRw5jZW8wgmB4QFVY5a MriMuWKoiNCVwKgMzui8g4aNe3Zc+rzz1othd1ypCjzt4ZWax9/gHttnC63YL/sQ ekXVx55tkUwZVlSVcvEzy4JVaimzezY7vZ/moYUaBYaqn5PCkogQAGfYxJ0TNvrm C1IPmlnX -----END CERTIFICATE-----Generated at Mon Mar 2 12:35:09 2026 by rpki-client