$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa File: 5366509AC63511EAAC843455C4F9AE02.roa (raw, json) Hash identifier: 2dGdHKeMcuIvSTX7iFjfVdensV8pnXlc8bJBe8kDDVc= Subject key identifier: 15:48:45:10:6E:F5:4A:E5:14:83:71:84:F4:95:71:AE:F7:21:AC:F9 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 28AE Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa Signing time: Tue 31 Mar 2026 16:20:26 +0000 ROA not before: Tue 31 Mar 2026 16:20:26 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 9497 IP address blocks: 202.138.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10414 (0x28ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Mar 31 16:20:26 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cbf44a-35a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:04:5b:1e:81:7b:6d:44:fa:42:88:3f:dd:0f: 6b:4d:10:e1:0e:fd:34:10:9a:6f:6c:9a:21:10:e6: 4d:a8:a2:13:0d:dc:fa:f1:8d:ee:25:a5:78:74:41: 1c:ce:e2:7d:df:96:58:d4:1e:a4:f7:1f:ce:a8:20: ce:a4:99:5c:49:f4:15:1e:07:7b:ad:9f:7e:03:95: 6e:ee:69:40:58:76:c4:5f:3c:69:c2:3e:00:82:63: cf:d6:6d:6d:67:a5:1f:82:3a:be:41:42:60:cd:cf: b2:3d:c4:14:d0:a4:eb:92:cb:a5:10:28:55:78:29: a0:77:de:ca:51:ea:46:ab:35:ab:77:99:42:71:90: 25:73:44:10:c5:c5:9c:78:63:99:ea:10:09:25:52: 2b:7d:00:67:6a:d9:e8:59:bf:e9:66:83:72:64:d2: 70:47:29:35:cf:52:9b:e4:c1:a1:db:07:0e:cc:47: fc:95:44:cd:f9:4c:f3:d7:04:d2:2c:6d:f9:9a:61: b6:2d:63:14:40:8b:cd:b1:1d:cf:4a:87:d6:52:3a: 48:79:a5:69:12:da:90:ad:91:db:89:d0:05:52:4e: a4:dd:1e:c3:49:d9:a6:6c:4b:74:22:cc:89:2e:79: e4:c7:38:d1:65:e5:0a:84:cb:d7:4d:d6:69:ec:97: f9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:48:45:10:6E:F5:4A:E5:14:83:71:84:F4:95:71:AE:F7:21:AC:F9 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.138.128.0/19 Signature Algorithm: sha256WithRSAEncryption 29:1c:d7:11:3c:a0:70:c6:82:c2:d6:77:95:57:4b:36:e1:e8: f7:55:d9:66:34:79:98:92:58:4e:12:a4:f5:dd:32:8e:ca:2a: c0:2f:76:d2:e6:0d:00:b1:9d:ad:b7:cf:a6:1c:b0:c8:aa:7d: 06:7e:e6:18:66:09:cc:5b:b0:e5:30:42:db:ec:a8:05:b7:9a: ae:fc:bd:01:58:50:f9:08:ba:52:07:11:46:45:ec:c5:30:af: 97:06:1f:f0:ec:ab:56:b4:37:f7:4f:ad:7e:b6:75:fc:5e:c0: 49:53:51:7e:6d:60:1d:50:5e:3d:a3:1b:be:04:7b:ac:f4:8c: 83:bc:01:40:6f:a1:4a:52:04:63:45:d8:4c:65:50:fc:e4:ae: f7:2c:a5:ce:b7:85:9d:bb:59:e8:f9:5b:91:b4:8b:ab:ac:af: 24:96:b2:4a:ab:f7:13:f9:d3:8f:8d:de:d4:ed:7a:8a:76:da: 22:9e:85:ac:03:d7:cc:66:ac:58:f6:0e:9b:08:47:18:76:dd: 62:3e:e6:63:a3:50:15:4d:72:bb:92:60:e3:ea:00:79:59:dc: 67:c0:6c:83:9b:d6:1b:b8:05:2a:f9:d4:c9:bf:bd:91:4a:c7: 6f:e8:26:fa:10:65:e7:fc:b2:d9:a2:17:94:c5:82:11:3c:e8: 75:a1:9b:40 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwMzMxMTYyMDI2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiZjQ0YS0zNWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQRbHoF7bUT6Qog/3Q9rTRDhDv00EJpvbJohEOZNqKITDdz68Y3uJaV4dEEc zuJ935ZY1B6k9x/OqCDOpJlcSfQVHgd7rZ9+A5Vu7mlAWHbEXzxpwj4AgmPP1m1t Z6Ufgjq+QUJgzc+yPcQU0KTrksulEChVeCmgd97KUepGqzWrd5lCcZAlc0QQxcWc eGOZ6hAJJVIrfQBnatnoWb/pZoNyZNJwRyk1z1Kb5MGh2wcOzEf8lUTN+Uzz1wTS LG35mmG2LWMUQIvNsR3PSofWUjpIeaVpEtqQrZHbidAFUk6k3R7DSdmmbEt0IsyJ LnnkxzjRZeUKhMvXTdZp7Jf57QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBVIRRBu 9UrlFINxhPSVca73Iaz5MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNTM2NjUwOUFD NjM1MTFFQUFDODQzNDU1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFyoqAMA0GCSqGSIb3DQEBCwUAA4IBAQApHNcRPKBwxoLC1neVV0s2 4ej3VdlmNHmYklhOEqT13TKOyirAL3bS5g0AsZ2tt8+mHLDIqn0GfuYYZgnMW7Dl MELb7KgFt5qu/L0BWFD5CLpSBxFGRezFMK+XBh/w7KtWtDf3T61+tnX8XsBJU1F+ bWAdUF49oxu+BHus9IyDvAFAb6FKUgRjRdhMZVD85K73LKXOt4Wdu1no+VuRtIur rK8klrJKq/cT+dOPjd7U7XqKdtoinoWsA9fMZqxY9g6bCEcYdt1iPuZjo1AVTXK7 kmDj6gB5WdxnwGyDm9YbuAUq+dTJv72RSsdv6Cb6EGXn/LLZoheUxYIRPOh1oZtA -----END CERTIFICATE-----Generated at Fri Apr 17 18:17:44 2026 by rpki-client