$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/966FD4648D2411EF9914EF63C4F9AE02.roa File: 966FD4648D2411EF9914EF63C4F9AE02.roa (raw, json) Hash identifier: w7eYnxJy/ErX8uBHC7lb97b71ahe13DgTz190X2OvQU= Subject key identifier: 10:84:4E:00:0D:98:46:64:3C:B2:01:CD:16:0F:9F:39:2F:84:37:EC Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Certificate serial: 0BFE Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/966FD4648D2411EF9914EF63C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:35:05 +0000 ROA not before: Sat 12 Jul 2025 19:59:30 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17819 IP address blocks: 101.97.33.0/24 maxlen: 24 101.97.38.0/24 maxlen: 24 202.177.216.0/24 maxlen: 24 2404:4f00::/32 maxlen: 32 2404:4f00::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:40:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3070 (0xbfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE558, serialNumber=B36B971724A3BABD890B754598933720F972FEAF Validity Not Before: Jul 12 19:59:30 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a478c9-476b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:90:e2:fd:7f:88:59:00:c3:dc:c1:85:11:da: 43:18:8f:8d:37:f7:47:c4:80:39:24:dd:c3:80:d8: 0c:84:aa:ee:9d:f7:33:84:1b:fc:6a:23:7f:dc:77: 53:c9:54:89:b3:95:bb:60:12:07:26:b9:5c:a6:1a: b5:93:7d:21:8d:27:85:4d:7a:1a:af:4a:af:e0:49: 18:c6:48:b1:87:ec:c5:cb:e6:57:d7:40:68:b1:1b: a3:ad:96:0d:06:0a:d4:4f:81:0d:64:17:5a:4d:e7: 62:3c:0e:6d:a4:a1:63:54:3d:94:df:ca:30:57:e0: 70:7f:66:07:fb:46:12:2f:61:5b:91:d4:03:18:55: 79:b8:fb:0b:9a:78:ec:83:c9:47:1d:3b:74:6f:e9: 29:52:de:67:c5:cb:a5:b7:c8:c4:51:38:04:85:24: fe:1c:c8:e6:c3:5e:ee:b2:93:c3:33:80:6e:d4:4b: 65:91:df:e7:70:8f:31:66:d1:a0:41:5c:cc:5e:88: 6d:e6:1a:1f:89:21:8f:13:61:dd:48:30:8a:89:28: 79:4e:f1:63:b7:f4:2b:ed:a4:c2:ee:9f:7e:9e:e3: cb:fc:77:5a:fe:7e:aa:74:8e:46:ca:74:13:c6:5a: 34:a0:61:58:7d:34:52:c9:70:ee:dd:d2:8c:be:55: a9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:84:4E:00:0D:98:46:64:3C:B2:01:CD:16:0F:9F:39:2F:84:37:EC X509v3 Authority Key Identifier: keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/966FD4648D2411EF9914EF63C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 101.97.33.0/24 101.97.38.0/24 202.177.216.0/24 IPv6: 2404:4f00::/32 Signature Algorithm: sha256WithRSAEncryption 4b:93:e1:78:34:6d:71:e5:5f:92:8f:6e:97:f7:66:32:4b:78: 66:d6:d8:f3:56:7c:49:09:af:8a:af:49:7e:d3:75:6d:89:ef: 26:7b:e7:80:11:0f:fa:0a:09:37:f3:9c:18:7d:4c:e2:f0:b3: 20:4d:ef:36:21:e0:22:1a:87:32:06:dc:d2:15:9f:77:76:46: 10:de:45:c1:53:c3:b0:00:71:94:9e:1d:bc:16:45:7d:46:7b: ec:5a:58:f3:5e:8b:36:ec:ce:ed:71:ef:ed:29:a2:1a:90:a2: ff:9a:17:7a:ae:aa:45:59:7b:ac:58:bf:f7:76:89:ee:8a:5c: 82:14:ff:3f:5d:c0:71:2a:12:87:7a:b9:db:7c:cc:8a:2a:c0: 3d:a4:75:9c:9c:cd:66:26:5d:e7:6c:e7:83:37:f0:85:54:d0: 07:15:b3:23:8f:9d:c4:d8:89:b1:12:08:66:18:16:88:f1:1a: b0:11:8c:83:f1:37:35:7d:e7:bc:26:91:06:94:6d:53:7e:61: fa:bc:35:61:93:67:ed:90:7f:82:99:f1:c0:c9:da:97:a6:36: 0d:9d:59:c2:92:89:a3:8b:ac:50:41:84:eb:f7:0c:76:29:b3: ce:e3:dd:35:d6:5e:f6:bb:c3:6c:62:cf:0c:92:03:f9:13:99: 68:79:f4:64 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICC/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1NTgxMTAvBgNVBAUTKEIzNkI5NzE3MjRBM0JBQkQ4OTBCNzU0NTk4OTMzNzIw Rjk3MkZFQUYwHhcNMjUwNzEyMTk1OTMwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzhjOS00NzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZDi/X+IWQDD3MGFEdpDGI+NN/dHxIA5JN3DgNgMhKrunfczhBv8aiN/3HdT yVSJs5W7YBIHJrlcphq1k30hjSeFTXoar0qv4EkYxkixh+zFy+ZX10BosRujrZYN BgrUT4ENZBdaTediPA5tpKFjVD2U38owV+Bwf2YH+0YSL2FbkdQDGFV5uPsLmnjs g8lHHTt0b+kpUt5nxcult8jEUTgEhST+HMjmw17uspPDM4Bu1Etlkd/ncI8xZtGg QVzMXoht5hofiSGPE2HdSDCKiSh5TvFjt/Qr7aTC7p9+nuPL/Hda/n6qdI5GynQT xlo0oGFYfTRSyXDu3dKMvlWpLQIDAQABo4ICezCCAncwHQYDVR0OBBYEFBCETgAN mEZkPLIBzRYPnzkvhDfsMB8GA1UdIwQYMBaAFLNrlxcko7q9iQt1RZiTNyD5cv6v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTU1OC8zREYxNEYwODUz OTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVyMkpDM1ZGbUpNM0lQbHlf cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MydVhGeVNqdXIySkMzVkZtSk0zSVBseV9xOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1NTgvM0RGMTRGMDg1Mzk0MTFFQUJGNkI0RjVGQzRGOUFFMDIvOTY2RkQ0NjQ4 RDI0MTFFRjk5MTRFRjYzQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQAZWEhAwQAZWEmAwQAyrHYMA0EAgACMAcDBQAkBE8AMA0GCSqGSIb3 DQEBCwUAA4IBAQBLk+F4NG1x5V+Sj26X92YyS3hm1tjzVnxJCa+Kr0l+03Vtie8m e+eAEQ/6Cgk385wYfUzi8LMgTe82IeAiGocyBtzSFZ93dkYQ3kXBU8OwAHGUnh28 FkV9RnvsWljzXos27M7tce/tKaIakKL/mhd6rqpFWXusWL/3donuilyCFP8/XcBx KhKHernbfMyKKsA9pHWcnM1mJl3nbOeDN/CFVNAHFbMjj53E2ImxEghmGBaI8Rqw EYyD8Tc1fee8JpEGlG1TfmH6vDVhk2ftkH+CmfHAydqXpjYNnVnCkomji6xQQYTr 9wx2KbPO49011l72u8NsYs8MkgP5E5loefRk -----END CERTIFICATE-----Generated at Mon Mar 2 10:50:02 2026 by rpki-client