$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/879C6CC6BC0A11EF8387A57BC4F9AE02.roa File: 879C6CC6BC0A11EF8387A57BC4F9AE02.roa (raw, json) Hash identifier: U2prKzUVYLMejIwBY9EOi9zclj2VGJE3Jm44WaqS9F8= Subject key identifier: 09:ED:EC:1B:C5:31:AF:A5:86:81:BB:C7:2D:72:65:B1:00:71:37:D7 Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0B42 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/879C6CC6BC0A11EF8387A57BC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:19:51 +0000 ROA not before: Wed 04 Jun 2025 20:05:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9229 IP address blocks: 202.174.130.0/24 maxlen: 24 202.174.155.0/24 maxlen: 24 202.174.156.0/24 maxlen: 24 202.174.157.0/24 maxlen: 24 202.174.159.0/24 maxlen: 24 203.88.80.0/24 maxlen: 24 203.88.81.0/24 maxlen: 24 203.88.82.0/24 maxlen: 24 203.88.86.0/24 maxlen: 24 203.88.87.0/24 maxlen: 24 203.88.88.0/24 maxlen: 24 203.88.89.0/24 maxlen: 24 203.88.90.0/24 maxlen: 24 203.88.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Jun 4 20:05:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42ee7-7ff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:82:0d:b6:b2:da:74:23:c4:3b:ee:91:cd:89: 7e:e9:88:23:2c:8f:36:fa:d5:75:bd:d3:f5:92:dd: 40:b1:72:b6:5d:0f:db:e0:fa:c3:04:81:d5:71:40: 7b:08:4f:d7:b0:f9:19:18:67:85:ab:32:0c:18:a3: d5:08:e7:17:a8:96:d0:7a:d2:70:70:41:54:21:c6: 10:0e:32:cb:e1:b2:15:94:85:3a:54:e3:cd:c2:a0: 2f:ad:db:b7:6a:2f:81:60:3a:0b:c0:e9:56:d1:71: 03:e7:32:e0:6a:65:69:ab:f3:e9:0c:20:18:60:8b: b1:10:ec:51:45:d9:2a:37:62:c2:45:2b:8b:14:cc: 2d:37:d6:6d:61:cd:d1:a9:04:cd:06:d7:e9:b0:67: a6:33:32:fc:4a:e9:36:41:3e:14:ba:5e:89:3a:20: 2e:72:cd:08:ae:3a:8c:bb:f9:bd:89:e5:c8:49:30: 45:49:16:f0:d8:4d:f7:a6:c6:e2:18:e7:3e:68:9c: 57:e6:7d:9c:cc:dc:a1:c2:dc:09:0e:98:fc:a0:2e: 34:13:b4:95:54:f6:a1:9a:f3:f8:1a:74:2b:be:44: d2:7e:6c:9c:bd:b5:f3:bf:4b:8f:19:56:22:7d:f6: d4:56:a4:f5:eb:96:ef:15:b9:77:36:9a:4c:c8:c1: fe:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:ED:EC:1B:C5:31:AF:A5:86:81:BB:C7:2D:72:65:B1:00:71:37:D7 X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/879C6CC6BC0A11EF8387A57BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.174.130.0/24 202.174.155.0-202.174.157.255 202.174.159.0/24 203.88.80.0-203.88.82.255 203.88.86.0-203.88.90.255 203.88.95.0/24 Signature Algorithm: sha256WithRSAEncryption 03:95:82:7d:f2:04:4e:57:c9:8e:2e:d6:ae:ca:f6:5d:c1:82: 40:02:c8:57:18:88:38:bc:7c:82:35:cb:ac:40:24:f9:5c:8b: 4b:3d:3d:6e:4e:cc:7d:1c:10:d6:c4:bd:7c:8f:78:4d:ca:05: 07:79:84:a7:aa:3d:b1:e4:b1:7c:40:28:95:d6:8e:1d:67:68: cc:a1:45:a5:02:d0:c2:22:c5:64:f5:db:f9:a3:a5:d5:11:97: b8:68:40:47:79:7a:77:eb:57:1b:95:cd:a8:3a:a2:c7:75:06: dd:4f:3f:0a:15:5b:b2:72:45:bd:65:72:4e:5c:67:09:b5:95: 16:64:18:0c:27:1c:6b:78:c7:c4:81:44:c2:2f:b1:8d:d2:00: 49:cc:44:49:c9:34:2e:d1:7b:b2:8e:d2:a1:dc:3d:be:27:21: 90:25:df:f5:50:2f:28:83:53:7d:bc:74:22:63:83:be:72:9c: 40:dd:ef:4e:8e:cd:4d:09:d0:6b:a1:57:1e:c0:bc:54:62:5a: d5:7c:b9:27:05:3b:34:b0:ab:52:4f:88:7c:8d:bd:bc:75:6a: 33:4a:04:56:8a:a8:88:e4:54:03:cd:34:ea:24:c1:ff:8c:16: 57:57:af:48:1d:20:2f:1d:7a:ca:b1:d0:b3:db:f2:64:b8:cf: 50:be:72:dd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUwNjA0MjAwNTA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmVlNy03ZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIINtrLadCPEO+6RzYl+6YgjLI82+tV1vdP1kt1AsXK2XQ/b4PrDBIHVcUB7 CE/XsPkZGGeFqzIMGKPVCOcXqJbQetJwcEFUIcYQDjLL4bIVlIU6VOPNwqAvrdu3 ai+BYDoLwOlW0XED5zLgamVpq/PpDCAYYIuxEOxRRdkqN2LCRSuLFMwtN9ZtYc3R qQTNBtfpsGemMzL8Suk2QT4Uul6JOiAucs0IrjqMu/m9ieXISTBFSRbw2E33psbi GOc+aJxX5n2czNyhwtwJDpj8oC40E7SVVPahmvP4GnQrvkTSfmycvbXzv0uPGVYi ffbUVqT165bvFbl3NppMyMH+twIDAQABo4ICljCCApIwHQYDVR0OBBYEFAnt7BvF Ma+lhoG7xy1yZbEAcTfXMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMjcvRjM4ODg3NjY2RjNBMTFFQTk4NDAxMzNEQzRGOUFFMDIvODc5QzZDQzZC QzBBMTFFRjgzODdBNTdCQzRGOUFFMDIucm9hMFUGCCsGAQUFBwEHAQH/BEYwRDBC BAIAATA8AwQAyq6CMAwDBADKrpsDBAHKrpwDBADKrp8wDAMEBMtYUAMEAMtYUjAM AwQBy1hWAwQAy1haAwQAy1hfMA0GCSqGSIb3DQEBCwUAA4IBAQADlYJ98gROV8mO LtauyvZdwYJAAshXGIg4vHyCNcusQCT5XItLPT1uTsx9HBDWxL18j3hNygUHeYSn qj2x5LF8QCiV1o4dZ2jMoUWlAtDCIsVk9dv5o6XVEZe4aEBHeXp361cblc2oOqLH dQbdTz8KFVuyckW9ZXJOXGcJtZUWZBgMJxxreMfEgUTCL7GN0gBJzERJyTQu0Xuy jtKh3D2+JyGQJd/1UC8og1N9vHQiY4O+cpxA3e9Ojs1NCdBroVcewLxUYlrVfLkn BTs0sKtST4h8jb28dWozSgRWiqiI5FQDzTTqJMH/jBZXV69IHSAvHXrKsdCz2/Jk uM9QvnLd -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:54 2026 by rpki-client