$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/006CE5442FBA11ECA05BB46EC4F9AE02.roa File: 006CE5442FBA11ECA05BB46EC4F9AE02.roa (raw, json) Hash identifier: cTGsV1Z/ioD5Em72tVUbOoayFdAQKfYImJCMeRL7h6M= Subject key identifier: 6B:CA:C0:53:F5:EC:D9:90:0E:FB:1A:41:6C:D4:DD:66:67:DA:9F:CB Certificate issuer: /CN=A91DCAE8/serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Certificate serial: 3584 Authority key identifier: AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/006CE5442FBA11ECA05BB46EC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:22:10 +0000 ROA not before: Sat 20 Sep 2025 15:01:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139797 IP address blocks: 202.57.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13700 (0x3584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCAE8, serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Validity Not Before: Sep 20 15:01:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a483d1-7854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:51:eb:18:47:6c:3e:19:8b:af:b4:e9:6b:31: d7:98:77:6a:c1:0a:ab:85:09:c9:5e:8a:cb:c1:d8: 3d:10:96:33:a0:cf:57:d2:e6:42:7f:de:b8:ff:51: 3a:3d:4f:b2:cb:f2:ef:a8:13:91:35:e4:09:5a:9b: dc:16:3b:cf:ba:d8:b4:26:1a:60:38:ab:75:ec:6f: cd:2e:32:b0:5d:11:ed:e1:88:53:55:4f:cb:0c:61: c5:04:48:93:0b:5e:b1:50:a0:6c:0b:1f:a5:56:45: b1:15:83:1e:18:cc:e0:d2:a3:aa:84:89:92:20:48: e0:e0:56:bd:be:8b:6d:11:28:2f:7e:0f:cc:b1:88: b5:27:34:52:f6:98:eb:82:5d:fd:a8:3d:bb:3d:5b: ca:1e:88:85:57:df:10:40:a3:7a:46:bc:22:aa:e0: 5f:ed:68:4d:f6:6a:35:ef:ca:4b:5b:0f:cb:b1:ca: a2:54:48:81:42:75:b5:7b:be:81:0a:27:87:8d:b1: b6:71:f0:de:ce:84:13:29:2a:2d:ce:6a:da:9a:4e: 35:4b:92:18:b5:b5:a6:a5:7e:3e:69:3a:0f:5f:86: 7d:33:8c:39:45:82:66:8c:85:52:c9:3f:f7:11:0e: 4e:a3:82:ef:c5:21:62:02:46:25:48:16:12:14:26: 74:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CA:C0:53:F5:EC:D9:90:0E:FB:1A:41:6C:D4:DD:66:67:DA:9F:CB X509v3 Authority Key Identifier: keyid:AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/006CE5442FBA11ECA05BB46EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.57.208.0/24 Signature Algorithm: sha256WithRSAEncryption b2:c0:b1:e9:a8:b5:5c:5d:07:fc:17:0d:35:b3:72:68:26:fb: 2f:dc:a8:ff:13:d8:7d:52:47:7d:c2:63:59:d4:35:b1:1f:36: ef:37:e6:65:db:b9:95:06:3c:c4:b9:36:e2:eb:9e:d5:40:43: 12:e0:a0:f5:ba:74:b8:7e:97:c1:3a:60:40:bf:7a:b1:e6:d5: ff:8f:30:3f:90:77:1e:e6:04:f7:d5:30:6c:cc:7d:79:92:28: a0:1d:3f:73:c3:0e:bc:eb:a9:48:ad:1a:ae:52:4f:61:cc:81: c3:90:15:7c:bd:78:dd:0c:48:0e:5a:a8:d6:3e:82:58:13:c6: 6d:92:d7:30:84:c1:be:35:c6:b3:fa:bc:5a:43:9a:58:dc:e0: ec:ef:95:2d:bd:78:04:34:8e:df:54:0c:df:f5:62:f6:33:77: a3:45:86:5e:cc:a0:ba:ea:bb:d1:68:69:34:41:c7:f6:42:f1: c9:2e:4f:69:bc:b1:d7:86:63:52:f2:64:31:57:36:d7:01:a3: f0:d7:2b:82:31:28:fb:76:9c:22:3e:84:b7:cf:56:65:86:5e: d8:c9:0b:8d:ff:e9:4a:a4:ac:a8:4b:b2:44:c0:bd:18:16:1a: 16:da:c4:c4:80:06:a2:df:84:f8:14:e1:c0:89:49:68:5c:78: 8e:ae:53:67 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENBRTgxMTAvBgNVBAUTKEFBQjBFMkI2MkY2MzQzODk1NzMwQzA1NDg4RTdGQzRF MjZDNTFBNkMwHhcNMjUwOTIwMTUwMTAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODNkMS03ODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1HrGEdsPhmLr7TpazHXmHdqwQqrhQnJXorLwdg9EJYzoM9X0uZCf964/1E6 PU+yy/LvqBORNeQJWpvcFjvPuti0JhpgOKt17G/NLjKwXRHt4YhTVU/LDGHFBEiT C16xUKBsCx+lVkWxFYMeGMzg0qOqhImSIEjg4Fa9vottESgvfg/MsYi1JzRS9pjr gl39qD27PVvKHoiFV98QQKN6RrwiquBf7WhN9mo178pLWw/LscqiVEiBQnW1e76B CieHjbG2cfDezoQTKSotzmramk41S5IYtbWmpX4+aToPX4Z9M4w5RYJmjIVSyT/3 EQ5Oo4LvxSFiAkYlSBYSFCZ0uQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGvKwFP1 7NmQDvsaQWzU3WZn2p/LMB8GA1UdIwQYMBaAFKqw4rYvY0OJVzDAVIjn/E4mxRps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0FFOC84QjZBREUxNDFE OTMxMUUyOTJDQjIzRjcwOEIwMkNEMi9xckRpdGk5alE0bFhNTUJVaU9mOFRpYkZH bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyRGl0aTlqUTRsWE1NQlVpT2Y4VGliRkdtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENBRTgvOEI2QURFMTQxRDkzMTFFMjkyQ0IyM0Y3MDhCMDJDRDIvMDA2Q0U1NDQy RkJBMTFFQ0EwNUJCNDZFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyjnQMA0GCSqGSIb3DQEBCwUAA4IBAQCywLHpqLVcXQf8Fw01s3Jo Jvsv3Kj/E9h9Ukd9wmNZ1DWxHzbvN+Zl27mVBjzEuTbi657VQEMS4KD1unS4fpfB OmBAv3qx5tX/jzA/kHce5gT31TBszH15kiigHT9zww6866lIrRquUk9hzIHDkBV8 vXjdDEgOWqjWPoJYE8ZtktcwhMG+Ncaz+rxaQ5pY3ODs75UtvXgENI7fVAzf9WL2 M3ejRYZezKC66rvRaGk0Qcf2QvHJLk9pvLHXhmNS8mQxVzbXAaPw1yuCMSj7dpwi PoS3z1Zlhl7YyQuN/+lKpKyoS7JEwL0YFhoW2sTEgAai34T4FOHAiUloXHiOrlNn -----END CERTIFICATE-----Generated at Mon Mar 2 06:16:49 2026 by rpki-client