$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa File: 4E8DA224547711EF9EDD014DC4F9AE02.roa (raw, json) Hash identifier: hEszwjLLlGjAQWr8R8eiMuWITyAjg0iy90PkI3Yb1NY= Subject key identifier: E2:04:D1:02:6E:14:18:B2:F8:32:E4:78:63:36:86:15:C5:ED:6F:B0 Certificate issuer: /CN=A91CFD43/serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Certificate serial: 0389 Authority key identifier: FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:21:50 +0000 ROA not before: Thu 17 Apr 2025 01:07:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18390 IP address blocks: 202.87.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD43, serialNumber=FC688FB95CC5205E03E70A605C994C5D495AB332 Validity Not Before: Apr 17 01:07:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3e90d-b1eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3a:5c:ec:26:a2:a7:d2:ff:57:a7:4b:5b:2e: f0:d2:15:11:07:bb:9a:23:c8:73:09:f9:5f:54:84: 6c:77:8e:f7:20:10:29:f7:e1:44:ea:11:f6:32:a0: fa:bd:ac:e5:ee:50:29:64:29:95:05:7b:26:86:d4: f6:a3:b2:66:ae:51:a5:cc:36:e0:2d:63:e3:5c:2b: 35:67:4d:42:b1:31:af:4e:15:64:83:fe:6d:c4:42: 69:46:58:8b:30:3d:09:d3:11:18:34:c3:8c:e0:aa: e1:32:2a:ac:b4:1e:e2:f2:6e:27:50:f0:36:8e:2c: 22:b4:7f:2b:08:8e:9c:41:3b:3a:24:36:18:43:39: f1:48:08:94:a2:76:4b:6a:d0:51:de:ca:e9:d9:26: aa:80:f5:c2:3d:fd:da:91:47:09:a6:31:7e:ab:e4: c9:5d:53:29:cd:85:8f:a6:c2:c8:21:e5:18:31:09: 81:e2:b4:68:bd:32:ed:e5:99:ba:9d:fb:f2:6a:8c: ba:99:0c:1c:fd:e4:b9:a5:b7:e8:91:0b:53:5c:07: ab:ea:45:da:1a:20:db:1b:92:e8:de:db:83:1c:cf: 29:d0:e5:d2:0d:2a:35:20:56:f7:93:19:7c:6d:b1: a7:cb:f9:1d:57:99:dc:9d:11:e0:80:0d:68:c5:a4: bd:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:04:D1:02:6E:14:18:B2:F8:32:E4:78:63:36:86:15:C5:ED:6F:B0 X509v3 Authority Key Identifier: keyid:FC:68:8F:B9:5C:C5:20:5E:03:E7:0A:60:5C:99:4C:5D:49:5A:B3:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/_GiPuVzFIF4D5wpgXJlMXUlaszI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_GiPuVzFIF4D5wpgXJlMXUlaszI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD43/7D998076DCD111ECA3AB9D36C4F9AE02/4E8DA224547711EF9EDD014DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.87.160.0/20 Signature Algorithm: sha256WithRSAEncryption 8d:d2:13:12:59:7c:ff:0f:e2:3e:32:93:d2:2c:6a:52:67:4f: 88:29:1c:8a:c3:1e:e9:c2:3a:18:69:68:a3:b2:f3:58:5c:ed: e1:b2:33:12:1c:c0:83:f3:cc:8c:38:a4:37:64:7a:1d:c3:97: a2:20:77:95:1a:da:6e:e8:8d:9f:d0:c8:8a:44:46:57:05:df: ab:39:a9:e6:f0:c6:4f:be:b0:79:59:04:c1:38:bd:14:06:69: 0f:6b:37:18:86:c7:cd:c3:22:21:1b:e0:a4:4b:2c:22:3b:f4: 20:99:9a:df:fd:58:41:2a:7c:82:1c:b7:06:51:a1:40:a0:15: 40:6f:1d:23:4b:a4:4c:b9:59:5d:76:d9:db:62:17:ac:86:b5: aa:9d:44:c5:8a:96:a3:a5:db:b3:ce:14:72:e8:2a:e3:27:c4: 1e:c7:b4:f6:27:48:d3:42:7b:2a:92:1a:7a:41:23:1c:84:0b: a4:04:c3:d4:34:22:90:71:07:4f:b9:28:60:30:6e:58:05:3c: a1:96:69:87:73:34:5e:3b:88:eb:e6:15:91:66:94:bf:3c:ff: fe:f3:fb:3f:61:11:5b:b4:af:3b:16:1d:5b:70:04:94:5f:2c: d1:5d:cd:a4:4b:b4:9c:c8:d0:73:54:13:f1:92:14:f7:69:f8: 00:77:0b:d9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENDMxMTAvBgNVBAUTKEZDNjg4RkI5NUNDNTIwNUUwM0U3MEE2MDVDOTk0QzVE NDk1QUIzMzIwHhcNMjUwNDE3MDEwNzE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTkwZC1iMWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Dpc7Caip9L/V6dLWy7w0hURB7uaI8hzCflfVIRsd473IBAp9+FE6hH2MqD6 vazl7lApZCmVBXsmhtT2o7JmrlGlzDbgLWPjXCs1Z01CsTGvThVkg/5txEJpRliL MD0J0xEYNMOM4KrhMiqstB7i8m4nUPA2jiwitH8rCI6cQTs6JDYYQznxSAiUonZL atBR3srp2SaqgPXCPf3akUcJpjF+q+TJXVMpzYWPpsLIIeUYMQmB4rRovTLt5Zm6 nfvyaoy6mQwc/eS5pbfokQtTXAer6kXaGiDbG5Lo3tuDHM8p0OXSDSo1IFb3kxl8 bbGny/kdV5ncnRHggA1oxaS91wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOIE0QJu FBiy+DLkeGM2hhXF7W+wMB8GA1UdIwQYMBaAFPxoj7lcxSBeA+cKYFyZTF1JWrMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ0My83RDk5ODA3NkRD RDExMUVDQTNBQjlEMzZDNEY5QUUwMi9fR2lQdVZ6RklGNEQ1d3BnWEpsTVhVbGFz ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19HaVB1VnpGSUY0RDV3cGdYSmxNWFVsYXN6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZENDMvN0Q5OTgwNzZEQ0QxMTFFQ0EzQUI5RDM2QzRGOUFFMDIvNEU4REEyMjQ1 NDc3MTFFRjlFREQwMTREQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEylegMA0GCSqGSIb3DQEBCwUAA4IBAQCN0hMSWXz/D+I+MpPSLGpS Z0+IKRyKwx7pwjoYaWijsvNYXO3hsjMSHMCD88yMOKQ3ZHodw5eiIHeVGtpu6I2f 0MiKREZXBd+rOanm8MZPvrB5WQTBOL0UBmkPazcYhsfNwyIhG+CkSywiO/QgmZrf /VhBKnyCHLcGUaFAoBVAbx0jS6RMuVlddtnbYheshrWqnUTFipajpduzzhRy6Crj J8Qex7T2J0jTQnsqkhp6QSMchAukBMPUNCKQcQdPuShgMG5YBTyhlmmHczReO4jr 5hWRZpS/PP/+8/s/YRFbtK87Fh1bcASUXyzRXc2kS7ScyNBzVBPxkhT3afgAdwvZ -----END CERTIFICATE-----Generated at Mon Mar 2 04:51:49 2026 by rpki-client