$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/7B938024B0CD11E58B55FC73C4F9AE02.roa File: 7B938024B0CD11E58B55FC73C4F9AE02.roa (raw, json) Hash identifier: /QQiHNO+P4zS7clMch+1xG2dmlltL/7vNQJGue0Q24E= Subject key identifier: 00:86:2A:E0:F2:B1:47:7A:C3:43:75:A6:E5:3A:FB:97:8B:EE:33:73 Certificate issuer: /CN=A91E2454/serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Certificate serial: 36A7 Authority key identifier: AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/7B938024B0CD11E58B55FC73C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:10:51 +0000 ROA not before: Tue 02 Dec 2025 14:41:47 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 18188 IP address blocks: 121.58.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 22:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13991 (0x36a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2454, serialNumber=AB6262BC7D02EC1AD48B71DA98B73D22A362DAF0 Validity Not Before: Dec 2 14:41:47 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4812b-f6f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:fd:c0:e3:e7:5a:dc:8b:51:fd:5c:b7:96:f9: 68:24:28:8c:91:05:e3:f9:81:f4:c2:96:d3:1c:a8: 20:6d:c1:e6:12:cd:52:99:ba:ac:33:91:2c:b6:fd: cc:14:c7:d3:c2:2f:4f:42:f9:9c:c7:80:1c:80:09: a5:6e:42:11:e0:7e:d8:7d:de:34:48:6f:d4:5a:d5: 33:77:17:bb:c7:20:61:13:3a:77:7a:9c:57:5e:55: 1e:a3:d3:96:4a:d5:05:97:95:38:ec:52:46:3a:c3: d7:dd:24:79:5d:59:c9:23:bb:61:00:a1:55:7b:84: ea:00:26:d5:09:e4:59:05:ed:73:4b:16:c9:5a:33: b5:c7:7b:ea:e7:d7:18:3f:cf:47:eb:e0:57:3e:fd: 03:6f:16:d5:8b:ab:9b:db:6d:75:d3:2d:ed:b0:1b: 1c:e4:d8:f3:9b:20:4d:d1:92:95:fc:d5:71:e9:d3: 09:f2:a4:a9:79:b8:2c:ac:cb:23:36:8b:02:ec:32: 35:e2:05:4d:94:4c:ad:a6:ac:a6:a3:1d:af:91:45: 44:00:5c:72:c1:cf:4f:9b:6a:61:fc:f6:70:53:46: 86:cc:3a:b1:1e:d7:90:0d:57:57:c9:08:6f:30:77: cf:3f:ee:58:39:a3:ed:e0:82:0f:b7:58:4d:a8:fe: b4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:86:2A:E0:F2:B1:47:7A:C3:43:75:A6:E5:3A:FB:97:8B:EE:33:73 X509v3 Authority Key Identifier: keyid:AB:62:62:BC:7D:02:EC:1A:D4:8B:71:DA:98:B7:3D:22:A3:62:DA:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/q2JivH0C7BrUi3HamLc9IqNi2vA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2JivH0C7BrUi3HamLc9IqNi2vA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2454/D4C30B421D8711E2A19822E008B02CD2/7B938024B0CD11E58B55FC73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 121.58.232.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:22:c3:a7:c4:63:65:d9:f6:75:77:e0:f0:fd:93:db:fa:b7: 20:c4:d3:25:f1:7d:b0:95:b8:76:43:2c:3c:91:2f:15:07:55: c2:bd:22:0a:47:c8:17:8c:49:0b:4a:26:17:4e:62:4d:cc:a6: cd:aa:63:b9:7e:5a:ab:c8:ad:0f:9d:49:2c:2a:40:32:2f:d8: b2:93:9b:53:cb:70:50:cb:be:f2:b7:73:8a:02:6c:b2:df:53: f9:2f:cd:eb:83:96:53:54:04:74:2b:5d:97:58:0b:15:70:ee: 24:e0:27:55:eb:48:5e:bb:c8:6f:27:85:bb:44:22:9d:12:9e: 61:79:f7:f5:a4:37:cd:e2:4b:67:ef:40:5a:ff:ab:c8:9e:c8: e8:82:98:c9:93:2f:86:56:e1:75:4a:84:16:7a:16:8d:47:5c: e0:ab:2b:c0:a2:16:87:ab:68:e7:14:e3:03:0a:7e:ef:20:b2: 80:4e:92:eb:c4:62:04:51:14:1d:b0:21:86:05:12:d8:7e:56: 6f:8b:07:92:80:96:d2:11:8e:c3:c1:64:e9:9c:61:83:b0:2f: 2c:8e:33:58:2d:37:21:39:29:4b:ad:f7:f3:30:3c:7f:d5:81: f3:5c:cb:84:e8:09:4a:e3:e4:82:84:c1:4b:58:23:ad:6b:2e: 24:a2:1d:52 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0NTQxMTAvBgNVBAUTKEFCNjI2MkJDN0QwMkVDMUFENDhCNzFEQTk4QjczRDIy QTM2MkRBRjAwHhcNMjUxMjAyMTQ0MTQ3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODEyYi1mNmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6P3A4+da3ItR/Vy3lvloJCiMkQXj+YH0wpbTHKggbcHmEs1SmbqsM5Estv3M FMfTwi9PQvmcx4AcgAmlbkIR4H7Yfd40SG/UWtUzdxe7xyBhEzp3epxXXlUeo9OW StUFl5U47FJGOsPX3SR5XVnJI7thAKFVe4TqACbVCeRZBe1zSxbJWjO1x3vq59cY P89H6+BXPv0DbxbVi6ub22110y3tsBsc5NjzmyBN0ZKV/NVx6dMJ8qSpebgsrMsj NosC7DI14gVNlEytpqymox2vkUVEAFxywc9Pm2ph/PZwU0aGzDqxHteQDVdXyQhv MHfPP+5YOaPt4IIPt1hNqP60IwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFACGKuDy sUd6w0N1puU6+5eL7jNzMB8GA1UdIwQYMBaAFKtiYrx9Auwa1Itx2pi3PSKjYtrw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQ1NC9ENEMzMEI0MjFE ODcxMUUyQTE5ODIyRTAwOEIwMkNEMi9xMkppdkgwQzdCclVpM0hhbUxjOUlxTmky dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EySml2SDBDN0JyVWkzSGFtTGM5SXFOaTJ2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI0NTQvRDRDMzBCNDIxRDg3MTFFMkExOTgyMkUwMDhCMDJDRDIvN0I5MzgwMjRC MENEMTFFNThCNTVGQzczQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAeTroMA0GCSqGSIb3DQEBCwUAA4IBAQBPIsOnxGNl2fZ1d+Dw/ZPb +rcgxNMl8X2wlbh2Qyw8kS8VB1XCvSIKR8gXjEkLSiYXTmJNzKbNqmO5flqryK0P nUksKkAyL9iyk5tTy3BQy77yt3OKAmyy31P5L83rg5ZTVAR0K12XWAsVcO4k4CdV 60heu8hvJ4W7RCKdEp5heff1pDfN4ktn70Ba/6vInsjogpjJky+GVuF1SoQWehaN R1zgqyvAohaHq2jnFOMDCn7vILKATpLrxGIEURQdsCGGBRLYflZviweSgJbSEY7D wWTpnGGDsC8sjjNYLTchOSlLrffzMDx/1YHzXMuE6AlK4+SChMFLWCOtay4koh1S -----END CERTIFICATE-----Generated at Mon Mar 2 15:27:07 2026 by rpki-client