$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa File: 7A9CD75E23E311F0BB28EA29C4F9AE02.roa (raw, json) Hash identifier: VZEltJw0vEDbOnRvRf9ELAdzaAN+QgrjbGf4Pt5gMhA= Subject key identifier: 8D:13:53:F8:BF:64:23:BA:6E:40:51:82:BE:52:47:E8:6D:D7:67:64 Certificate issuer: /CN=A91C9606/serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Certificate serial: 0DC2 Authority key identifier: 1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:27:54 +0000 ROA not before: Tue 04 Nov 2025 18:07:25 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 55342 IP address blocks: 202.131.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9606, serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Validity Not Before: Nov 4 18:07:25 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4690a-beb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:95:b4:46:42:2b:10:72:c5:8d:0c:4a:a1:54: 10:c3:7f:bb:f1:fd:82:52:dc:08:43:8c:5d:6e:91: 8c:20:e5:78:80:4a:b3:bd:73:47:c9:53:69:af:59: d9:b4:f6:0a:95:02:26:54:4a:8d:68:96:44:36:0d: f4:45:6e:97:80:be:a6:52:1e:b1:0d:51:c0:c9:b0: dc:27:27:3f:4f:1e:fe:32:0c:3e:f4:11:5f:68:b4: 44:11:e4:2e:d1:38:e1:01:67:b9:13:51:37:b7:e2: 91:d2:6b:2c:f0:95:d7:80:9e:50:76:46:30:fd:da: f2:68:da:2f:62:d4:14:bf:0c:73:ee:7c:9a:af:4f: 99:9d:ce:8c:f0:a8:c0:34:e2:1f:9a:1f:bd:5f:57: e2:84:de:1c:00:39:5a:86:a5:03:9d:65:df:08:fb: 1e:ed:39:ae:c9:f1:43:df:0a:0a:7f:3e:a5:da:d3: ce:61:38:01:e5:71:c5:b4:2b:ac:f2:58:c6:e2:53: 98:20:7a:c9:07:d2:8f:e5:44:58:b9:ac:ae:21:57: cb:eb:bf:c9:10:a4:b9:b8:6f:a2:ca:4b:32:4e:f4: 9a:37:62:3c:34:92:4e:d4:55:c4:fc:5c:56:18:fe: f5:21:66:29:00:b5:73:51:c7:ee:59:5f:c5:6c:90: af:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:13:53:F8:BF:64:23:BA:6E:40:51:82:BE:52:47:E8:6D:D7:67:64 X509v3 Authority Key Identifier: keyid:1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.131.1.0/24 Signature Algorithm: sha256WithRSAEncryption 46:0a:eb:85:37:81:43:7c:58:e5:c5:c4:25:1c:6d:b7:a0:47: ce:ac:31:03:5c:ed:22:ef:27:2a:19:dc:39:c9:a0:b5:23:4e: 24:7c:b4:77:81:3e:bb:f2:78:78:65:5b:4d:64:0d:87:95:79: 28:30:20:48:c4:2d:90:82:b9:09:05:c3:24:28:ee:1c:cc:25: d4:49:f3:c2:18:02:28:5c:05:af:8d:8f:a6:47:f1:28:ea:fc: 20:a8:74:b6:d0:28:3d:e5:bc:5e:61:89:1d:8e:19:91:66:89: 04:32:69:35:79:64:2b:6d:60:14:b4:d3:6a:20:09:74:5f:05: e7:5b:8a:1b:38:76:13:02:6b:dd:e0:f4:22:e8:2f:e3:d4:a8: ec:2d:31:ab:dc:d7:b1:44:98:ce:ac:51:a0:ec:55:be:53:98: 88:01:08:f2:50:23:d9:f8:6b:ee:2f:7f:29:7b:7c:12:f6:ea: 35:f8:d3:80:bc:00:72:50:d8:b6:ac:cc:09:19:f1:2d:9f:c5: 3a:23:37:a9:87:52:32:c1:b8:24:2f:ba:99:8f:ab:c6:c2:ce: 81:b8:e7:ef:f8:a6:9d:c0:b6:cd:e0:45:1c:18:41:8d:ae:03: d3:a2:53:df:6a:20:43:8d:76:44:91:2c:65:8e:85:08:35:51: 5c:06:9e:c5 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk2MDYxMTAvBgNVBAUTKDFCNDcxREFEQ0Q5MTIwOTMzNTEzNkVBQ0Y2Q0M5ODg4 Mjg2NTRCMkEwHhcNMjUxMTA0MTgwNzI1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjkwYS1iZWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJW0RkIrEHLFjQxKoVQQw3+78f2CUtwIQ4xdbpGMIOV4gEqzvXNHyVNpr1nZ tPYKlQImVEqNaJZENg30RW6XgL6mUh6xDVHAybDcJyc/Tx7+Mgw+9BFfaLREEeQu 0TjhAWe5E1E3t+KR0mss8JXXgJ5QdkYw/dryaNovYtQUvwxz7nyar0+Znc6M8KjA NOIfmh+9X1fihN4cADlahqUDnWXfCPse7TmuyfFD3woKfz6l2tPOYTgB5XHFtCus 8ljG4lOYIHrJB9KP5URYuayuIVfL67/JEKS5uG+iyksyTvSaN2I8NJJO1FXE/FxW GP71IWYpALVzUcfuWV/FbJCvzQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFI0TU/i/ ZCO6bkBRgr5SR+ht12dkMB8GA1UdIwQYMBaAFBtHHa3NkSCTNRNurPbMmIgoZUsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTYwNi85QzlGOUY5QURC OTAxMUU5QTNDMTJGMkNDNEY5QUUwMi9HMGNkcmMyUklKTTFFMjZzOXN5WWlDaGxT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cwY2RyYzJSSUpNMUUyNnM5c3lZaUNobFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk2MDYvOUM5RjlGOUFEQjkwMTFFOUEzQzEyRjJDQzRGOUFFMDIvN0E5Q0Q3NUUy M0UzMTFGMEJCMjhFQTI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyoMBMA0GCSqGSIb3DQEBCwUAA4IBAQBGCuuFN4FDfFjlxcQlHG23 oEfOrDEDXO0i7ycqGdw5yaC1I04kfLR3gT678nh4ZVtNZA2HlXkoMCBIxC2QgrkJ BcMkKO4czCXUSfPCGAIoXAWvjY+mR/Eo6vwgqHS20Cg95bxeYYkdjhmRZokEMmk1 eWQrbWAUtNNqIAl0XwXnW4obOHYTAmvd4PQi6C/j1KjsLTGr3NexRJjOrFGg7FW+ U5iIAQjyUCPZ+GvuL38pe3wS9uo1+NOAvAByUNi2rMwJGfEtn8U6Izeph1Iywbgk L7qZj6vGws6BuOfv+KadwLbN4EUcGEGNrgPTolPfaiBDjXZEkSxljoUINVFcBp7F -----END CERTIFICATE-----Generated at Mon Mar 2 04:37:28 2026 by rpki-client