$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/CAC3390AD30E11EB98AEFF45C4F9AE02.roa File: CAC3390AD30E11EB98AEFF45C4F9AE02.roa (raw, json) Hash identifier: sgw4Va5xBAbvxEnA80g+uDGNNw3JilHTbxgmChJswfI= Subject key identifier: 43:49:77:DF:40:DC:34:95:78:93:54:A0:FE:CE:6C:7F:93:1D:FE:53 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 28A2 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/CAC3390AD30E11EB98AEFF45C4F9AE02.roa Signing time: Tue 31 Mar 2026 16:20:02 +0000 ROA not before: Tue 31 Mar 2026 16:20:02 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 16625 IP address blocks: 202.138.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10402 (0x28a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Mar 31 16:20:02 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cbf432-8ce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a5:95:02:f0:8c:48:52:ad:d8:78:0e:ad:5e: d2:34:9d:ff:0d:be:47:48:81:a7:77:63:79:59:05: a1:2b:90:cb:ba:c7:a5:0d:9e:87:b2:b2:a5:fd:60: a2:fe:98:62:66:34:fd:d9:31:a1:18:0e:41:1b:76: 37:86:34:24:38:b9:64:e4:80:7d:f6:5f:45:5a:12: 20:df:6e:c0:fe:ae:d7:f2:75:35:64:79:56:74:a1: fe:d3:fc:ec:c7:8e:67:9f:e5:51:3c:f2:dd:93:dd: 36:a2:86:71:6b:10:ab:58:95:44:ba:02:60:9d:5b: 90:ff:8f:4b:b2:aa:9f:6d:90:1b:b4:d4:b5:c7:16: 9d:eb:ab:d2:08:f5:84:bc:a9:fa:a7:db:27:b8:41: 05:a3:af:20:5a:4c:72:30:62:34:ed:7b:f9:1b:2a: dc:07:d0:a5:bd:a6:5b:f1:d4:bd:c4:5b:f1:29:93: c9:1d:17:56:72:45:41:c7:2c:9c:a8:a6:b5:21:5d: 9f:f9:0c:32:e5:d7:5e:1c:57:da:56:92:5a:68:61: 2d:c3:4f:76:1b:5c:ba:d2:0f:dd:d7:65:5d:30:df: 80:bf:33:cc:4b:88:af:0c:82:a1:9c:9a:62:11:77: ef:2d:99:01:ba:7e:ca:ac:d8:56:ab:46:c0:c5:d5: 3f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:49:77:DF:40:DC:34:95:78:93:54:A0:FE:CE:6C:7F:93:1D:FE:53 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/CAC3390AD30E11EB98AEFF45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.138.164.0/22 Signature Algorithm: sha256WithRSAEncryption bd:05:20:d9:00:88:da:1b:4e:2e:10:04:d7:0c:ff:83:cb:22: c2:0f:66:c0:1c:13:a0:e2:d5:69:f5:e7:f8:bc:5c:69:df:b9: f4:13:80:52:a0:16:08:00:3c:cf:8f:8d:cb:c0:46:82:7a:65: 46:90:8b:22:5f:2e:0b:c1:16:31:2b:0a:d9:2b:75:1a:1c:a8: 52:35:be:41:a7:d7:af:dc:e3:5b:cc:e8:b7:61:fb:61:2d:cd: 0f:1b:ce:ac:72:63:e9:bc:1b:83:e6:d1:7c:e1:01:d1:8e:55: 41:a6:b3:0a:5a:a9:6b:f7:ac:aa:82:37:2a:27:96:25:aa:28: 74:55:12:5b:fa:cf:27:09:6a:ae:70:67:6e:a0:03:f6:9b:f0: 3a:f3:8a:85:9e:04:ba:de:5e:b3:54:c0:5e:6c:1c:30:b3:6e: 1a:7f:5b:63:d1:1a:b1:5b:ae:fb:66:59:2a:46:28:38:f0:27: 58:23:d9:3d:fd:49:f2:f0:61:d7:b8:7e:37:23:76:02:f5:e2: 8d:46:75:23:ff:f6:06:d9:2c:d7:b0:f8:f1:68:28:e6:29:8f: 4c:00:da:2d:d3:f3:9b:d5:ec:bd:aa:43:32:48:91:00:98:d9: 39:61:8b:3d:cc:bc:f7:3f:7a:34:bb:73:36:1b:10:a1:3d:04: 31:0e:1d:b4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwMzMxMTYyMDAyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiZjQzMi04Y2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qWVAvCMSFKt2HgOrV7SNJ3/Db5HSIGnd2N5WQWhK5DLuselDZ6HsrKl/WCi /phiZjT92TGhGA5BG3Y3hjQkOLlk5IB99l9FWhIg327A/q7X8nU1ZHlWdKH+0/zs x45nn+VRPPLdk902ooZxaxCrWJVEugJgnVuQ/49LsqqfbZAbtNS1xxad66vSCPWE vKn6p9snuEEFo68gWkxyMGI07Xv5GyrcB9ClvaZb8dS9xFvxKZPJHRdWckVBxyyc qKa1IV2f+Qwy5ddeHFfaVpJaaGEtw092G1y60g/d12VdMN+AvzPMS4ivDIKhnJpi EXfvLZkBun7KrNhWq0bAxdU/dwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFENJd99A 3DSVeJNUoP7ObH+THf5TMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQ0FDMzM5MEFE MzBFMTFFQjk4QUVGRjQ1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyoqkMA0GCSqGSIb3DQEBCwUAA4IBAQC9BSDZAIjaG04uEATXDP+D yyLCD2bAHBOg4tVp9ef4vFxp37n0E4BSoBYIADzPj43LwEaCemVGkIsiXy4LwRYx KwrZK3UaHKhSNb5Bp9ev3ONbzOi3YfthLc0PG86scmPpvBuD5tF84QHRjlVBprMK Wqlr96yqgjcqJ5Ylqih0VRJb+s8nCWqucGduoAP2m/A684qFngS63l6zVMBebBww s24af1tj0RqxW677ZlkqRig48CdYI9k9/Uny8GHXuH43I3YC9eKNRnUj//YG2SzX sPjxaCjmKY9MANot0/Ob1ey9qkMySJEAmNk5YYs9zLz3P3o0u3M2GxChPQQxDh20 -----END CERTIFICATE-----Generated at Fri Apr 17 06:47:46 2026 by rpki-client