$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/06370CB2DB9211E9B70EDD2EC4F9AE02.roa File: 06370CB2DB9211E9B70EDD2EC4F9AE02.roa (raw, json) Hash identifier: QJuobED8AIYNaA07H0l+GwSOVK0e9Xo+0hZGeA9Tr5g= Subject key identifier: 82:66:66:1E:6D:C3:2C:4A:B0:5A:11:46:E9:66:AC:2E:35:72:2D:1B Certificate issuer: /CN=A91C9606/serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Certificate serial: 0DC1 Authority key identifier: 1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/06370CB2DB9211E9B70EDD2EC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:27:54 +0000 ROA not before: Tue 04 Nov 2025 18:07:24 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 45237 IP address blocks: 202.131.0.0/24 maxlen: 24 202.131.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3521 (0xdc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9606, serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Validity Not Before: Nov 4 18:07:24 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46909-d00f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:7a:d7:60:fd:66:5c:fc:f2:70:e0:4f:e4:37: 8f:22:38:3b:f3:5e:b3:9e:19:dc:d4:7f:7f:3c:fc: a7:22:28:e9:0e:19:ce:f0:81:b6:92:8d:b6:d1:44: 2d:f8:65:64:49:27:a6:52:b8:38:20:55:14:1b:77: ed:55:5b:56:3c:f9:a4:42:3c:b0:e8:d5:ad:df:8a: 6e:d7:6e:9e:95:9c:84:68:d1:e7:34:22:8a:7a:80: 0f:24:5e:0c:8c:34:b4:cd:09:6c:17:c5:d1:1a:97: d5:6b:38:af:99:dd:08:ed:d0:ff:9b:04:81:3a:3d: dd:55:2a:b3:5c:d3:4e:c5:4c:2e:6f:3f:74:20:95: f7:db:56:10:74:00:a7:a0:98:19:67:a0:37:b5:8e: 18:8f:7d:64:e9:87:6b:d9:1c:07:63:a6:ce:f4:af: 17:53:43:be:92:c8:f0:07:4b:6e:01:00:52:32:7e: 36:65:d2:aa:db:5d:56:db:04:84:2d:80:79:91:29: 6d:d6:f3:eb:65:a8:e4:03:e1:cf:7f:87:e4:a2:59: 91:47:ba:bf:45:67:74:0f:c4:3c:ef:77:43:82:ee: dd:55:f8:75:c7:6c:e3:eb:77:5d:51:f3:0d:da:45: 67:8d:9e:38:bd:3f:59:52:d1:7c:a2:0c:1d:90:79: 59:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:66:66:1E:6D:C3:2C:4A:B0:5A:11:46:E9:66:AC:2E:35:72:2D:1B X509v3 Authority Key Identifier: keyid:1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/06370CB2DB9211E9B70EDD2EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.131.0.0/24 202.131.4.0/24 Signature Algorithm: sha256WithRSAEncryption c2:2d:08:b6:3e:9f:1f:cb:1f:a8:9d:56:3d:e3:cb:08:a7:f5: 1f:83:3a:d8:3d:b5:f6:26:eb:a8:33:86:c9:8d:8a:64:8e:6a: a3:46:60:92:df:a7:8b:00:39:de:f8:7b:36:c9:7f:6b:fa:c2: 31:1e:7e:1c:0f:32:6c:15:3d:2f:ac:f9:52:58:59:70:84:81: 07:8b:94:11:3d:92:42:f5:e6:87:c3:df:14:55:e7:ae:8f:66: ac:bf:79:7e:f7:73:af:87:3b:45:e5:a5:7b:6d:c1:f9:b1:de: 2e:aa:74:f7:c7:fd:d4:53:4d:c9:ef:f6:92:6f:10:69:2b:d5: 10:8e:22:b0:05:5f:68:34:f7:79:3d:ba:8c:ef:39:99:51:db: c8:4b:e6:2d:90:ee:c4:a1:02:35:55:37:30:63:1c:80:3e:41: af:c0:45:b2:f9:f9:4b:66:cc:0f:3f:b0:39:4d:a7:4a:cd:3c: f0:17:02:3f:89:77:ee:4d:41:bc:12:d6:ce:b4:af:77:67:75: 1c:e2:e2:d4:87:b5:73:dc:c1:04:ce:77:6e:e6:b8:40:e6:42: b1:4a:cc:e6:3c:de:fb:92:3f:b5:98:28:f2:79:ae:99:e3:4a: 16:f5:52:6f:eb:ff:94:eb:aa:42:38:5a:4f:9d:73:5a:8a:13: eb:f4:bf:62 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICDcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk2MDYxMTAvBgNVBAUTKDFCNDcxREFEQ0Q5MTIwOTMzNTEzNkVBQ0Y2Q0M5ODg4 Mjg2NTRCMkEwHhcNMjUxMTA0MTgwNzI0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjkwOS1kMDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAg3rXYP1mXPzycOBP5DePIjg7816znhnc1H9/PPynIijpDhnO8IG2ko220UQt +GVkSSemUrg4IFUUG3ftVVtWPPmkQjyw6NWt34pu126elZyEaNHnNCKKeoAPJF4M jDS0zQlsF8XRGpfVazivmd0I7dD/mwSBOj3dVSqzXNNOxUwubz90IJX321YQdACn oJgZZ6A3tY4Yj31k6Ydr2RwHY6bO9K8XU0O+ksjwB0tuAQBSMn42ZdKq211W2wSE LYB5kSlt1vPrZajkA+HPf4fkolmRR7q/RWd0D8Q873dDgu7dVfh1x2zj63ddUfMN 2kVnjZ44vT9ZUtF8ogwdkHlZZQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFIJmZh5t wyxKsFoRRulmrC41ci0bMB8GA1UdIwQYMBaAFBtHHa3NkSCTNRNurPbMmIgoZUsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTYwNi85QzlGOUY5QURC OTAxMUU5QTNDMTJGMkNDNEY5QUUwMi9HMGNkcmMyUklKTTFFMjZzOXN5WWlDaGxT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cwY2RyYzJSSUpNMUUyNnM5c3lZaUNobFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk2MDYvOUM5RjlGOUFEQjkwMTFFOUEzQzEyRjJDQzRGOUFFMDIvMDYzNzBDQjJE QjkyMTFFOUI3MEVERDJFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAyoMAAwQAyoMEMA0GCSqGSIb3DQEBCwUAA4IBAQDCLQi2Pp8fyx+o nVY948sIp/UfgzrYPbX2JuuoM4bJjYpkjmqjRmCS36eLADne+Hs2yX9r+sIxHn4c DzJsFT0vrPlSWFlwhIEHi5QRPZJC9eaHw98UVeeuj2asv3l+93OvhztF5aV7bcH5 sd4uqnT3x/3UU03J7/aSbxBpK9UQjiKwBV9oNPd5PbqM7zmZUdvIS+YtkO7EoQI1 VTcwYxyAPkGvwEWy+flLZswPP7A5TadKzTzwFwI/iXfuTUG8EtbOtK93Z3Uc4uLU h7Vz3MEEzndu5rhA5kKxSszmPN77kj+1mCjyea6Z40oW9VJv6/+U66pCOFpPnXNa ihPr9L9i -----END CERTIFICATE-----Generated at Mon Mar 2 07:21:06 2026 by rpki-client