$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa File: 29B9D5B8524111EABEF0A119C4F9AE02.roa (raw, json) Hash identifier: RExF8CfPyMc1mjC/DYZwNJORmf6sh9d0s+P6jynoX8U= Subject key identifier: F3:86:F0:19:80:6B:12:A3:C5:8F:F1:31:97:7B:CF:64:2C:5B:EE:B7 Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0B4B Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:27:21 +0000 ROA not before: Tue 22 Apr 2025 19:49:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45495 IP address blocks: 202.4.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2891 (0xb4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Apr 22 19:49:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a40679-3bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:66:fe:96:11:4e:cb:cd:06:4d:76:59:8b:ba: 63:fe:12:3d:25:27:d4:2b:b0:dd:fc:40:bc:43:31: ea:98:a3:e3:a6:3f:fe:9f:1b:bf:70:60:34:71:88: 81:23:9b:c6:de:2b:22:c1:2e:f3:51:da:4e:cc:ae: 60:d9:37:03:7d:11:8b:6e:0b:fe:bf:cc:4b:19:66: 60:d5:e2:5e:0c:75:39:af:9d:67:ee:b7:4c:ee:30: 21:c3:50:63:f8:c8:df:76:6f:b3:60:77:c0:30:ce: 60:b6:e4:5e:71:6a:3e:45:2e:9f:30:5e:66:8c:ef: 24:d0:a1:17:58:29:aa:17:68:06:35:18:d9:20:77: c2:70:54:cf:dd:8e:6a:09:7a:fc:1b:8b:6f:66:6b: ab:42:93:3a:ef:e0:c4:4a:65:cb:2c:fa:03:c3:05: 1e:04:08:50:d0:63:36:61:9f:3d:69:b7:69:18:be: 92:69:69:60:0a:be:ea:d5:4c:79:5b:65:f4:11:34: f0:f5:21:df:ed:e3:dc:b4:ff:06:0c:28:67:55:6f: 7e:96:f7:97:b1:d0:15:7b:70:4b:f6:74:34:51:55: f3:ee:bd:c0:70:22:4f:9f:25:ad:01:4b:27:52:08: 27:09:58:1f:c3:ce:bc:26:cd:ef:30:55:dd:87:2c: 29:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:86:F0:19:80:6B:12:A3:C5:8F:F1:31:97:7B:CF:64:2C:5B:EE:B7 X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.4.251.0/24 Signature Algorithm: sha256WithRSAEncryption 24:e5:38:c6:41:a3:28:6f:40:10:6e:57:e2:e0:c7:4a:97:d2: 37:c1:2c:d4:75:85:f4:66:9d:bd:3c:46:2f:4b:79:0a:4b:c1: dd:28:a7:c8:d5:cc:8c:08:29:90:97:e5:fc:6b:dc:93:ce:a4: e8:01:d7:df:46:1e:44:4f:ab:df:bf:c5:d1:e6:00:d0:f0:c3: 39:09:11:12:9b:aa:bd:64:82:c4:a4:f1:f8:4c:04:0f:09:26: 42:29:82:66:af:ef:fd:bb:46:86:ff:98:b5:cd:66:3e:0d:6e: 32:b7:44:dd:b0:35:2c:db:07:fd:ac:16:4b:a5:13:a7:bc:83: ad:69:d4:c7:66:c5:44:72:d9:d3:66:e6:34:6c:a2:6e:75:76: 95:68:f0:05:50:fc:e8:9b:34:63:4e:a3:66:03:66:d9:e9:fd: d4:1e:71:3a:77:e7:75:3f:f7:2f:30:34:07:30:85:a3:3f:52: 93:d8:87:6e:86:e9:10:28:82:ce:77:cd:9d:19:7a:bf:13:41: fe:ae:cf:53:f4:85:82:ec:1e:be:f3:41:d8:28:1f:55:9d:86: d6:53:c4:08:b8:d0:77:af:31:f8:c2:13:85:f4:cb:7f:4a:85: 29:f9:e8:95:6a:df:06:40:4f:64:52:27:ba:c2:a1:2f:80:e3: ec:c5:fc:42 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjUwNDIyMTk0OTI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDY3OS0zYmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA92b+lhFOy80GTXZZi7pj/hI9JSfUK7Dd/EC8QzHqmKPjpj/+nxu/cGA0cYiB I5vG3isiwS7zUdpOzK5g2TcDfRGLbgv+v8xLGWZg1eJeDHU5r51n7rdM7jAhw1Bj +Mjfdm+zYHfAMM5gtuRecWo+RS6fMF5mjO8k0KEXWCmqF2gGNRjZIHfCcFTP3Y5q CXr8G4tvZmurQpM67+DESmXLLPoDwwUeBAhQ0GM2YZ89abdpGL6SaWlgCr7q1Ux5 W2X0ETTw9SHf7ePctP8GDChnVW9+lveXsdAVe3BL9nQ0UVXz7r3AcCJPnyWtAUsn UggnCVgfw868Js3vMFXdhywpqQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPOG8BmA axKjxY/xMZd7z2QsW+63MB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDQTEvNzA2M0U0MjQ1MjNGMTFFQThDOUNGMDE2QzRGOUFFMDIvMjlCOUQ1Qjg1 MjQxMTFFQUJFRjBBMTE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAygT7MA0GCSqGSIb3DQEBCwUAA4IBAQAk5TjGQaMob0AQblfi4MdK l9I3wSzUdYX0Zp29PEYvS3kKS8HdKKfI1cyMCCmQl+X8a9yTzqToAdffRh5ET6vf v8XR5gDQ8MM5CRESm6q9ZILEpPH4TAQPCSZCKYJmr+/9u0aG/5i1zWY+DW4yt0Td sDUs2wf9rBZLpROnvIOtadTHZsVEctnTZuY0bKJudXaVaPAFUPzomzRjTqNmA2bZ 6f3UHnE6d+d1P/cvMDQHMIWjP1KT2IduhukQKILOd82dGXq/E0H+rs9T9IWC7B6+ 80HYKB9VnYbWU8QIuNB3rzH4whOF9Mt/SoUp+eiVat8GQE9kUie6wqEvgOPsxfxC -----END CERTIFICATE-----Generated at Mon Mar 2 13:25:38 2026 by rpki-client