$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa File: 743ABB72997011EAB50D6934C4F9AE02.roa (raw, json) Hash identifier: TgloTHCWPURsO/1k0p40DWKdaGHNBtdJOfoMLcQC4gA= Subject key identifier: 05:80:4E:2A:91:DA:5F:33:97:56:25:36:1A:E1:E7:52:A2:5E:58:65 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 28A5 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa Signing time: Tue 31 Mar 2026 16:20:07 +0000 ROA not before: Tue 31 Mar 2026 16:20:07 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 20940 IP address blocks: 122.2.208.0/24 maxlen: 24 124.106.8.0/24 maxlen: 24 124.106.175.0/24 maxlen: 24 202.138.183.0/24 maxlen: 24 2001:4450:40::/48 maxlen: 48 2001:4457:ff0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10405 (0x28a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Mar 31 16:20:07 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cbf437-85e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:31:98:bb:3e:c7:6e:f4:3a:1b:da:39:76:17: cc:52:71:b1:6e:84:c3:b3:2e:00:c4:6f:67:74:8f: 34:cb:10:0d:8a:b9:c5:45:48:1d:22:60:df:9d:d3: 29:29:0a:a3:92:d6:3d:21:e0:b2:46:f7:da:8e:30: 47:d3:c6:01:80:a3:c8:fb:dc:aa:9d:c9:93:df:e9: c2:9d:95:d7:13:93:90:4f:0b:a5:38:a1:3c:55:f2: 9e:28:5f:4d:b0:5f:e4:ac:0c:a9:0f:c1:f4:d9:d0: 40:51:77:eb:fe:94:33:8f:cc:59:47:40:43:11:03: af:33:cd:56:79:65:c9:df:1d:a2:61:56:30:02:f6: c3:a8:58:47:18:3c:41:a7:57:ee:49:cd:22:42:57: e8:17:74:ff:39:39:9c:16:60:7f:90:95:43:c5:f3: cd:ec:3d:1d:4b:af:a7:03:27:7b:fc:1e:37:ce:01: d5:ba:fd:ef:4f:79:14:31:f5:b5:1a:69:36:53:12: 30:9a:63:ef:80:0a:4f:65:85:a4:5a:d6:0a:23:4f: 63:62:8e:2e:26:d9:f8:ef:54:1d:8c:ae:33:29:db: b6:13:be:76:f2:91:89:d6:af:aa:a1:b5:8f:db:c9: 03:d4:f8:8a:dc:d5:d7:9b:7c:de:49:b9:80:ea:42: b3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:80:4E:2A:91:DA:5F:33:97:56:25:36:1A:E1:E7:52:A2:5E:58:65 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.2.208.0/24 124.106.8.0/24 124.106.175.0/24 202.138.183.0/24 IPv6: 2001:4450:40::/48 2001:4457:ff0::/48 Signature Algorithm: sha256WithRSAEncryption 4b:4b:ad:b3:97:22:6c:68:38:b5:25:04:21:30:49:8d:c9:2e: db:73:ca:c3:a1:18:85:5d:13:f3:10:9c:44:30:01:54:40:f1: b8:a0:74:4b:3c:53:f7:56:c3:ab:8a:dc:95:f0:9d:30:26:e1: 3d:e8:20:43:74:59:b9:cc:f2:26:df:96:9b:af:1c:a2:d9:12: 31:54:4a:04:37:6f:e5:55:1c:db:5b:ca:cc:d3:ca:e7:9e:46: e9:7e:33:8b:0d:d7:71:4b:46:fb:08:1d:ff:16:7d:78:b5:33: e9:47:e8:91:66:93:03:4a:47:a5:de:bc:f8:62:39:50:70:a6: a4:4a:18:bc:c9:63:4a:99:d8:c9:d1:65:5e:0a:3d:ee:a8:9d: 22:03:43:b3:15:04:9a:fe:6b:bb:a8:92:0f:4d:8f:02:7a:0e: bb:ec:1a:ad:7c:f2:82:54:c2:04:20:8a:d7:9a:d8:26:37:bc: 10:ae:87:75:c9:76:f6:9c:fb:ba:a8:89:54:b9:a2:a9:bf:73: a0:c9:42:d0:bd:48:28:cd:a8:d7:ea:3e:20:50:ef:44:4c:09: 41:da:30:61:36:6e:9b:77:a6:1f:53:29:d2:f5:d5:20:1e:7b: 1a:11:4f:e2:2b:21:d2:f9:09:c2:51:45:c6:f1:8f:83:72:99: ea:5f:60:04 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICKKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwMzMxMTYyMDA3WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiZjQzNy04NWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAozGYuz7HbvQ6G9o5dhfMUnGxboTDsy4AxG9ndI80yxANirnFRUgdImDfndMp KQqjktY9IeCyRvfajjBH08YBgKPI+9yqncmT3+nCnZXXE5OQTwulOKE8VfKeKF9N sF/krAypD8H02dBAUXfr/pQzj8xZR0BDEQOvM81WeWXJ3x2iYVYwAvbDqFhHGDxB p1fuSc0iQlfoF3T/OTmcFmB/kJVDxfPN7D0dS6+nAyd7/B43zgHVuv3vT3kUMfW1 Gmk2UxIwmmPvgApPZYWkWtYKI09jYo4uJtn471QdjK4zKdu2E7528pGJ1q+qobWP 28kD1PiK3NXXm3zeSbmA6kKzWQIDAQABo4ICjDCCAogwHQYDVR0OBBYEFAWATiqR 2l8zl1YlNhrh51KiXlhlMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNzQzQUJCNzI5 OTcwMTFFQUI1MEQ2OTM0QzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjAe BAIAATAYAwQAegLQAwQAfGoIAwQAfGqvAwQAyoq3MBgEAgACMBIDBwAgAURQAEAD BwAgAURXD/AwDQYJKoZIhvcNAQELBQADggEBAEtLrbOXImxoOLUlBCEwSY3JLttz ysOhGIVdE/MQnEQwAVRA8bigdEs8U/dWw6uK3JXwnTAm4T3oIEN0WbnM8ibflpuv HKLZEjFUSgQ3b+VVHNtbyszTyueeRul+M4sN13FLRvsIHf8WfXi1M+lH6JFmkwNK R6XevPhiOVBwpqRKGLzJY0qZ2MnRZV4KPe6onSIDQ7MVBJr+a7uokg9NjwJ6Drvs Gq188oJUwgQgitea2CY3vBCuh3XJdvac+7qoiVS5oqm/c6DJQtC9SCjNqNfqPiBQ 70RMCUHaMGE2bpt3ph9TKdL11SAeexoRT+IrIdL5CcJRRcbxj4NymepfYAQ= -----END CERTIFICATE-----Generated at Fri Apr 17 10:31:24 2026 by rpki-client