$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/AAFEACF0500311F0A7E46C33C4F9AE02.roa File: AAFEACF0500311F0A7E46C33C4F9AE02.roa (raw, json) Hash identifier: KAsjZTGjxlT8d6AMDd8zXBUGI6TylpSkB+FkLto9kGs= Subject key identifier: F1:00:37:C2:51:0C:B1:BA:8F:59:8A:B3:AF:D0:BF:FE:C8:B2:5D:CF Certificate issuer: /CN=A91E1F31/serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Certificate serial: 019B Authority key identifier: 69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/AAFEACF0500311F0A7E46C33C4F9AE02.roa Signing time: Sun 29 Mar 2026 04:39:12 +0000 ROA not before: Sun 29 Mar 2026 04:39:12 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 147314 IP address blocks: 202.37.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 04:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1F31, serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Validity Not Before: Mar 29 04:39:12 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c8acf0-6957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d7:b9:3a:58:c6:61:8f:45:74:6f:35:ed:30: a0:0f:82:ea:16:6e:5f:dc:03:d5:6e:b5:22:cc:2d: 14:b4:62:28:ef:92:f6:c3:aa:5e:f1:47:1a:f4:82: 96:1f:c8:ce:1c:1a:37:53:76:2c:3a:03:ab:01:3c: ac:94:9a:7b:e2:4a:11:dc:50:91:78:c9:20:01:55: 66:5c:35:06:2b:27:08:b9:c6:20:fc:a0:40:d6:ac: 7e:f4:44:b7:01:10:88:6a:2e:a9:f0:52:47:62:5b: e4:a0:37:0c:51:c0:ea:66:a5:20:6d:2b:1e:2c:95: 9e:bb:5d:2c:a2:5b:f4:b5:74:36:ba:0a:59:3e:00: 48:92:53:86:f7:de:a1:69:25:58:bb:35:b3:8d:a2: 0f:cf:a1:ac:c5:09:22:85:25:25:c6:09:66:07:d4: 8b:46:f8:3b:81:3f:19:f0:eb:93:7b:3f:b7:3e:ab: 67:88:e6:81:96:bd:59:c9:ad:de:bf:ad:e8:57:6b: 3f:57:65:11:7d:9c:3f:50:60:25:9c:63:66:15:55: e9:f2:d8:bc:a7:64:82:c4:73:2e:31:9a:8c:ee:e5: d8:c1:85:68:55:af:1d:c9:ef:0c:17:09:ea:59:8e: 37:8d:54:1b:d9:10:e5:00:b5:c4:67:48:e7:29:12: 1a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:00:37:C2:51:0C:B1:BA:8F:59:8A:B3:AF:D0:BF:FE:C8:B2:5D:CF X509v3 Authority Key Identifier: keyid:69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/AAFEACF0500311F0A7E46C33C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.37.47.0/24 Signature Algorithm: sha256WithRSAEncryption 12:c5:62:49:eb:0f:d5:f8:4a:93:a7:22:32:e6:35:91:ba:61: c8:47:4e:86:cd:b8:6b:2c:1c:fd:15:c5:61:a9:9b:e1:d9:0b: 43:5d:d3:89:4e:e9:df:8c:ed:8f:93:86:82:bd:cf:b9:57:5b: 4d:e2:a5:5f:3a:05:b7:c7:44:5e:fd:f9:7f:86:d3:42:d4:9b: 65:79:61:c7:22:ec:00:1c:2b:74:0f:19:c9:a7:92:53:74:ec: 13:08:d1:ef:37:43:23:eb:fe:27:5b:c4:7c:61:ca:eb:e4:3f: 79:ee:e0:14:3d:3a:54:06:ef:66:27:b7:d0:c9:2a:14:bb:7a: 26:5d:67:4e:da:72:b2:fb:8d:82:c2:08:91:9c:f7:5f:b6:e4: f3:2d:ee:4b:f6:10:90:59:fb:ed:b0:44:75:de:16:a5:02:39: e0:52:2f:df:f5:58:50:67:71:b4:e1:66:fe:33:c3:87:eb:fc: dc:f9:7c:72:15:18:30:84:09:00:32:9b:0d:57:1f:61:61:1e: 6a:23:f1:a5:e7:8d:56:0d:aa:c1:65:10:3f:35:90:b7:db:e8: c1:4e:ca:cf:4e:c2:8f:43:f2:02:19:9e:6f:a1:fd:f3:15:db: 7f:43:1b:fc:50:d4:7e:fb:9c:b0:cc:78:9a:1b:f8:f4:fd:0a: a3:de:31:8f -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFGMzExMTAvBgNVBAUTKDY5QTMyRDczRTAzOEEzMEQ0N0FDQUNFQjgxQ0Q3MzEy QUY3NTNBQjkwHhcNMjYwMzI5MDQzOTEyWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4YWNmMC02OTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ne5OljGYY9FdG817TCgD4LqFm5f3APVbrUizC0UtGIo75L2w6pe8Uca9IKW H8jOHBo3U3YsOgOrATyslJp74koR3FCReMkgAVVmXDUGKycIucYg/KBA1qx+9ES3 ARCIai6p8FJHYlvkoDcMUcDqZqUgbSseLJWeu10solv0tXQ2ugpZPgBIklOG996h aSVYuzWzjaIPz6GsxQkihSUlxglmB9SLRvg7gT8Z8OuTez+3PqtniOaBlr1Zya3e v63oV2s/V2URfZw/UGAlnGNmFVXp8ti8p2SCxHMuMZqM7uXYwYVoVa8dye8MFwnq WY43jVQb2RDlALXEZ0jnKRIa3wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPEAN8JR DLG6j1mKs6/Qv/7Isl3PMB8GA1UdIwQYMBaAFGmjLXPgOKMNR6ys64HNcxKvdTq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUYzMS9BMEY0RTBEMEUx QkUxMUVFQjA0NUVCMjZDNEY5QUUwMi9hYU10Yy1BNG93MUhyS3pyZ2MxekVxOTFP cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhTXRjLUE0b3cxSHJLenJnYzF6RXE5MU9yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFGMzEvQTBGNEUwRDBFMUJFMTFFRUIwNDVFQjI2QzRGOUFFMDIvQUFGRUFDRjA1 MDAzMTFGMEE3RTQ2QzMzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyiUvMA0GCSqGSIb3DQEBCwUAA4IBAQASxWJJ6w/V+EqTpyIy5jWR umHIR06GzbhrLBz9FcVhqZvh2QtDXdOJTunfjO2Pk4aCvc+5V1tN4qVfOgW3x0Re /fl/htNC1JtleWHHIuwAHCt0DxnJp5JTdOwTCNHvN0Mj6/4nW8R8Ycrr5D957uAU PTpUBu9mJ7fQySoUu3omXWdO2nKy+42CwgiRnPdftuTzLe5L9hCQWfvtsER13hal AjngUi/f9VhQZ3G04Wb+M8OH6/zc+XxyFRgwhAkAMpsNVx9hYR5qI/Gl541WDarB ZRA/NZC32+jBTsrPTsKPQ/ICGZ5vof3zFdt/Qxv8UNR++5ywzHiaG/j0/Qqj3jGP -----END CERTIFICATE-----Generated at Fri Apr 17 19:27:44 2026 by rpki-client