$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa File: B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa (raw, json) Hash identifier: NPMK3D88JFBSE0rhn5n+EZFf1LsVuCFtTXP7Tj/h8LY= Subject key identifier: 26:82:94:6C:3F:75:03:85:58:58:6D:7D:40:B8:51:DC:3C:55:98:E5 Certificate issuer: /CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Certificate serial: 0931 Authority key identifier: 03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:49:31 +0000 ROA not before: Wed 31 Dec 2025 20:16:53 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 24320 IP address blocks: 202.72.240.0/24 maxlen: 24 202.72.241.0/24 maxlen: 24 202.72.242.0/24 maxlen: 24 202.72.243.0/24 maxlen: 24 202.72.244.0/24 maxlen: 24 202.72.245.0/24 maxlen: 24 202.72.246.0/24 maxlen: 24 202.72.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2353 (0x931) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8704, serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Validity Not Before: Dec 31 20:16:53 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a451fb-ea74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fb:ab:70:8e:08:12:fc:3c:97:be:c0:92:b4: 1c:8b:a5:dd:05:a6:57:6e:b3:ca:97:bd:14:ae:2b: 4e:c5:b7:81:f3:05:a7:00:d1:65:bc:d1:de:91:63: 3a:94:c3:f0:77:01:ac:aa:79:ee:64:a0:31:8d:fe: 09:c6:be:25:df:e3:11:11:5e:19:57:a4:6a:46:4a: d2:1f:95:a8:27:81:bb:7f:3c:a0:1a:c0:72:a8:5f: fc:a3:04:83:62:1d:91:58:77:47:72:15:5f:02:47: 21:f0:b8:c4:e1:1e:e8:a6:20:8c:e6:32:81:64:98: eb:b9:e2:9e:f2:09:24:b8:3a:fe:60:44:54:9e:77: 0f:a4:f2:c5:d2:3c:48:43:5e:5e:ad:d9:7d:b7:07: b5:90:56:a0:e3:34:c8:f9:73:88:10:75:1a:fe:1b: 7e:12:f2:55:68:84:ff:12:a3:01:3a:e7:fa:78:30: 06:6e:13:3a:f4:8e:a0:3f:05:89:e3:15:a6:cd:55: 0b:fc:10:f9:77:58:df:ac:25:49:1d:3d:f3:e5:2e: 23:3b:66:4a:1e:c8:96:70:ef:df:f3:9a:52:cb:b3: eb:b8:53:65:6e:f2:df:e7:0e:2b:9b:77:3f:13:dc: 72:67:e5:6a:8d:1d:a3:0c:85:bf:e2:e4:18:c6:f4: ac:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:82:94:6C:3F:75:03:85:58:58:6D:7D:40:B8:51:DC:3C:55:98:E5 X509v3 Authority Key Identifier: keyid:03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 7b:64:de:21:e0:56:f5:84:7d:39:d0:b7:6d:89:c4:49:cd:14: d4:5a:4e:fa:05:23:cb:3c:9f:a5:9b:a7:6b:45:41:97:50:b6: c6:17:2b:00:9f:3d:0f:4f:95:64:21:eb:ca:59:f8:b4:e4:73: f2:af:64:01:a7:87:9a:ac:60:a9:a8:9c:82:b5:67:8a:7f:fa: 74:13:7f:93:81:aa:22:4d:f9:55:0c:50:75:00:f5:2c:2e:e2: 67:c4:5d:22:cc:3f:63:90:fa:cc:d6:3f:61:54:f1:b9:71:9c: d5:80:3b:3d:77:11:d6:96:93:73:cc:94:6d:c1:16:5d:ca:28: 0f:2b:be:2b:b3:0e:b1:34:b6:42:02:70:6b:f7:7b:44:17:79: a6:9c:c8:50:a0:9f:b5:a4:0e:85:16:33:29:97:61:8a:5e:b2: a7:0a:3b:5a:22:84:6b:6e:39:66:19:89:a4:65:5a:d7:24:63: e6:8b:ce:24:5e:c1:93:af:3b:79:1b:bb:96:df:ff:7f:72:cb: b8:53:20:15:08:fa:cf:85:1c:ae:34:48:18:14:3e:d5:20:20: 20:07:f9:1e:f7:16:b9:72:91:f5:47:b2:1b:ef:8e:88:7e:28: 82:94:91:4f:ca:52:72:8c:5b:8d:9d:a4:fc:b7:47:5f:45:98: 5e:9c:36:af -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3MDQxMTAvBgNVBAUTKDAzMDdFRjBGMjlDRjIyREIwOTcwRjUwODNDMDIzQzJB QTBENkY1MTcwHhcNMjUxMjMxMjAxNjUzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTFmYi1lYTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/urcI4IEvw8l77AkrQci6XdBaZXbrPKl70UritOxbeB8wWnANFlvNHekWM6 lMPwdwGsqnnuZKAxjf4Jxr4l3+MREV4ZV6RqRkrSH5WoJ4G7fzygGsByqF/8owSD Yh2RWHdHchVfAkch8LjE4R7opiCM5jKBZJjrueKe8gkkuDr+YERUnncPpPLF0jxI Q15erdl9twe1kFag4zTI+XOIEHUa/ht+EvJVaIT/EqMBOuf6eDAGbhM69I6gPwWJ 4xWmzVUL/BD5d1jfrCVJHT3z5S4jO2ZKHsiWcO/f85pSy7PruFNlbvLf5w4rm3c/ E9xyZ+VqjR2jDIW/4uQYxvSs/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCaClGw/ dQOFWFhtfUC4Udw8VZjlMB8GA1UdIwQYMBaAFAMH7w8pzyLbCXD1CDwCPCqg1vUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODcwNC81NjU1QUM5OEJD MEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0c0pjUFVJUEFJOEtxRFc5 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3ZnZEeW5QSXRzSmNQVUlQQUk4S3FEVzlSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg3MDQvNTY1NUFDOThCQzBDMTFFQTkxRTA5QjY4QzRGOUFFMDIvQjFBQUM1QjJC QzQxMTFFQTlBNUIyNzg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDykjwMA0GCSqGSIb3DQEBCwUAA4IBAQB7ZN4h4Fb1hH050LdticRJ zRTUWk76BSPLPJ+lm6drRUGXULbGFysAnz0PT5VkIevKWfi05HPyr2QBp4earGCp qJyCtWeKf/p0E3+TgaoiTflVDFB1APUsLuJnxF0izD9jkPrM1j9hVPG5cZzVgDs9 dxHWlpNzzJRtwRZdyigPK74rsw6xNLZCAnBr93tEF3mmnMhQoJ+1pA6FFjMpl2GK XrKnCjtaIoRrbjlmGYmkZVrXJGPmi84kXsGTrzt5G7uW3/9/csu4UyAVCPrPhRyu NEgYFD7VICAgB/ke9xa5cpH1R7Ib746IfiiClJFPylJyjFuNnaT8t0dfRZhenDav -----END CERTIFICATE-----Generated at Mon Mar 2 13:52:35 2026 by rpki-client