$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/4B9F1AA6354F11EC8531C34DC4F9AE02.roa File: 4B9F1AA6354F11EC8531C34DC4F9AE02.roa (raw, json) Hash identifier: cucAqDfIf3D0jPGb+5i3/trzUjwmYs5adT+GAVhtJiU= Subject key identifier: D8:E6:67:86:8A:E8:BE:6B:34:EC:96:0D:91:6B:7A:CB:45:45:D6:BF Certificate issuer: /CN=A91C3ABA/serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Certificate serial: 0533 Authority key identifier: E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/4B9F1AA6354F11EC8531C34DC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:51:54 +0000 ROA not before: Sat 15 Mar 2025 00:15:41 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24265 IP address blocks: 202.58.4.0/22 maxlen: 22 202.58.5.0/24 maxlen: 24 203.190.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1331 (0x533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ABA, serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Validity Not Before: Mar 15 00:15:41 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3fe2a-4d21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e0:42:a6:64:7d:92:5d:47:47:15:40:1c:78: ee:bf:80:09:bb:08:fc:ea:ec:a5:24:14:83:f3:03: 4f:b5:43:ee:74:1a:00:dd:c7:ed:75:d0:be:8b:2c: 98:8c:35:69:5f:4b:de:11:39:53:ea:d5:8f:34:93: b6:82:f2:24:38:11:05:88:13:5f:5a:05:9b:dc:2e: 33:f6:f4:49:c5:3f:e4:04:8e:9e:1f:38:00:54:2b: e9:26:ae:eb:d2:3c:ca:51:8f:38:e1:25:52:b7:d7: 11:09:31:fa:0e:e3:b5:c3:62:45:35:30:d5:20:a0: 33:db:6e:6d:87:19:69:f8:c7:02:e0:7c:04:a6:6b: f7:3e:54:00:29:67:b0:f5:12:57:4f:67:b9:a5:aa: 35:ff:78:32:b2:e3:40:9b:98:f1:b2:8c:bf:71:a0: ac:fb:47:00:0b:2d:11:bf:37:28:4b:d4:f3:ee:d9: cc:05:54:00:ed:77:9d:29:66:b8:b0:93:fb:a0:44: ec:95:fe:ae:35:c3:1b:66:c8:79:4d:43:42:e0:47: 67:23:a2:1c:4e:0d:b6:c4:81:f7:fa:31:42:a0:b4: 11:a5:43:d6:a6:8b:ff:81:7c:97:96:dc:b2:d1:6a: 8e:c1:85:94:dc:6e:44:65:4c:16:29:72:4d:d7:f0: e4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E6:67:86:8A:E8:BE:6B:34:EC:96:0D:91:6B:7A:CB:45:45:D6:BF X509v3 Authority Key Identifier: keyid:E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/4B9F1AA6354F11EC8531C34DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.58.4.0/22 203.190.28.0/22 Signature Algorithm: sha256WithRSAEncryption 61:34:5a:8e:27:51:87:8c:6b:17:50:54:dc:25:7c:f4:b2:f8: 1f:70:24:bb:82:cf:aa:b2:26:e3:44:64:3c:90:9b:4e:cc:02: 25:17:55:6f:52:4b:d0:87:00:4c:fb:ac:bb:5c:e1:e3:0f:53: fa:c7:13:29:db:79:98:0c:33:6c:24:d9:ec:e8:d8:a2:5e:3f: 84:7b:36:de:06:46:85:ef:ed:ba:20:d6:ab:9a:e8:a2:5a:e5: 7a:11:1d:fb:89:9c:f8:8e:3d:e4:85:99:05:dc:a0:35:62:1e: 86:9e:bb:14:2b:fb:a3:a3:5a:99:f9:b3:57:b2:f0:8e:2d:18: af:00:81:7d:8d:c7:75:37:a9:3b:24:26:9c:c7:a9:74:04:56: fe:ef:0b:13:d4:7e:03:45:5d:08:bb:92:98:03:71:e8:4c:f3: fa:e2:db:ca:ca:7d:c2:14:72:a5:13:ef:5c:03:64:71:de:97: 43:36:bb:99:d4:09:91:b5:1a:57:c9:81:fa:96:d2:b7:1c:e8: 9b:89:1f:d4:ce:1a:56:60:24:73:42:f9:23:eb:0e:3f:82:f5: 16:47:ec:12:96:a2:5d:e0:ac:68:b0:8f:7f:97:04:d2:ea:c3: 31:1d:ee:7d:f9:06:86:5e:e9:31:0f:e1:5e:9a:56:8d:dd:e4: 12:5e:c2:a9 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBQkExMTAvBgNVBAUTKEU1OTkzMTU1QzQ0NDNBMkU1NkMwREUyMzMzQTQ0QjU2 Q0FENDkxOUMwHhcNMjUwMzE1MDAxNTQxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmUyYS00ZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteBCpmR9kl1HRxVAHHjuv4AJuwj86uylJBSD8wNPtUPudBoA3cftddC+iyyY jDVpX0veETlT6tWPNJO2gvIkOBEFiBNfWgWb3C4z9vRJxT/kBI6eHzgAVCvpJq7r 0jzKUY844SVSt9cRCTH6DuO1w2JFNTDVIKAz225thxlp+McC4HwEpmv3PlQAKWew 9RJXT2e5pao1/3gysuNAm5jxsoy/caCs+0cACy0RvzcoS9Tz7tnMBVQA7XedKWa4 sJP7oETslf6uNcMbZsh5TUNC4EdnI6IcTg22xIH3+jFCoLQRpUPWpov/gXyXltyy 0WqOwYWU3G5EZUwWKXJN1/Dk+wIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFNjmZ4aK 6L5rNOyWDZFrestFRda/MB8GA1UdIwQYMBaAFOWZMVXERDouVsDeIzOkS1bK1JGc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0FCQS85ODVGMDkyMjM1 NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9pNVd3TjRqTTZSTFZzclVr WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVaa3hWY1JFT2k1V3dONGpNNlJMVnNyVWtady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNBQkEvOTg1RjA5MjIzNTRCMTFFQ0I2MkRCRDQ4QzRGOUFFMDIvNEI5RjFBQTYz NTRGMTFFQzg1MzFDMzREQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCyjoEAwQCy74cMA0GCSqGSIb3DQEBCwUAA4IBAQBhNFqOJ1GHjGsX UFTcJXz0svgfcCS7gs+qsibjRGQ8kJtOzAIlF1VvUkvQhwBM+6y7XOHjD1P6xxMp 23mYDDNsJNns6NiiXj+EezbeBkaF7+26INarmuiiWuV6ER37iZz4jj3khZkF3KA1 Yh6GnrsUK/ujo1qZ+bNXsvCOLRivAIF9jcd1N6k7JCacx6l0BFb+7wsT1H4DRV0I u5KYA3HoTPP64tvKyn3CFHKlE+9cA2Rx3pdDNruZ1AmRtRpXyYH6ltK3HOibiR/U zhpWYCRzQvkj6w4/gvUWR+wSlqJd4KxosI9/lwTS6sMxHe59+QaGXukxD+FemlaN 3eQSXsKp -----END CERTIFICATE-----Generated at Mon Mar 2 05:48:42 2026 by rpki-client