$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa File: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (raw, json) Hash identifier: GFfQfs1rBXk5RvNn/1eLrsagDcvE+KrBjwNFBGF3aQo= Subject key identifier: 10:37:B1:D6:8D:CB:EA:0A:09:3F:32:19:8A:64:03:A4:B0:36:34:C2 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 066D Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:11:40 +0000 ROA not before: Thu 22 Jan 2026 22:19:09 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 138627 IP address blocks: 113.30.129.0/24 maxlen: 24 150.195.215.0/24 maxlen: 24 150.195.216.0/24 maxlen: 24 202.75.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Jan 22 22:19:09 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4815c-acc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:02:f2:c6:1c:a6:6a:a1:1c:f1:df:a0:c3:a4: 6e:21:10:44:bf:5c:fb:6b:92:71:ee:a1:4a:1e:dc: 49:3c:50:d3:50:99:c1:48:16:5e:5d:88:05:4e:01: 29:59:a9:71:dc:f4:69:75:83:8b:37:3d:a4:51:0c: 7e:5c:39:25:83:b3:61:7d:18:94:7b:29:73:b4:46: 6c:76:18:a8:90:2f:90:f7:61:19:fa:b3:06:de:a8: 83:b2:11:27:90:57:47:51:52:a2:c3:b5:57:98:64: da:c1:12:99:39:9d:26:b5:0c:f0:7f:28:41:76:ba: 3c:d8:96:db:3e:72:82:36:cb:21:18:0c:35:ff:aa: 97:ca:f9:39:30:8c:5b:a1:48:01:08:d7:48:4b:8e: 3f:73:bc:c1:65:a9:03:49:3f:36:5b:3f:f9:7f:93: 19:a8:e1:9f:70:c6:1c:7e:72:e2:01:0f:dd:39:60: 41:81:1b:7f:a1:a3:b4:6d:97:9c:8a:11:8e:89:93: c6:0b:e4:a3:e0:06:de:f6:17:c5:9f:e1:57:ff:c7: 9b:ae:4e:b9:49:eb:8c:e7:33:6e:13:d9:f4:ba:1d: bb:e1:e9:ee:b7:f6:b4:0d:ef:06:6a:18:74:09:b2: 42:08:f5:ea:71:28:1b:d1:2d:4f:24:a2:0f:ae:df: 85:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:37:B1:D6:8D:CB:EA:0A:09:3F:32:19:8A:64:03:A4:B0:36:34:C2 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 113.30.129.0/24 150.195.215.0-150.195.216.255 202.75.245.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:ef:13:e3:d0:64:af:c3:3b:04:c8:64:50:c9:3d:bd:5d:3b: 33:ac:28:6f:5a:6d:01:b5:04:1a:f9:f2:c5:b7:72:45:a0:67: 4a:e8:a5:e0:57:2c:b2:c3:47:89:2b:01:cd:5f:f4:cf:d1:c8: bc:28:f3:b2:c7:ec:e5:9d:81:2d:49:ef:86:1c:75:a3:6a:60: 79:3d:26:74:e5:f0:c1:d4:ce:17:c4:4e:48:20:7c:b3:16:0f: 30:e4:b8:90:70:f0:0f:1c:f8:ef:56:5a:36:60:65:3b:cd:17: 3a:c9:d9:04:bb:f6:0d:a4:57:86:51:8c:2f:dc:bf:ec:50:c1: 22:61:1f:42:54:4b:00:f9:25:b6:7c:19:ea:af:26:f5:72:6d: 57:72:4e:98:17:42:45:72:07:02:4b:a2:cb:1a:fc:39:ba:29: 36:9a:c5:34:97:ae:a0:6b:87:04:6a:43:1a:34:23:93:fe:8d: 7b:5b:18:6d:c4:6c:f7:74:b3:d7:3a:97:08:72:12:e1:31:39: 59:6a:0f:6f:6a:d9:a1:09:32:8e:93:9f:47:6e:42:19:6c:46: f3:3a:fd:38:4b:62:f6:4e:39:06:07:6d:34:9d:b9:eb:3a:71: 03:ae:55:ca:bb:2e:20:61:c8:02:1f:a0:16:21:66:18:19:80: 2a:b0:b2:af -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjYwMTIyMjIxOTA5WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODE1Yy1hY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gLyxhymaqEc8d+gw6RuIRBEv1z7a5Jx7qFKHtxJPFDTUJnBSBZeXYgFTgEp Walx3PRpdYOLNz2kUQx+XDklg7NhfRiUeylztEZsdhiokC+Q92EZ+rMG3qiDshEn kFdHUVKiw7VXmGTawRKZOZ0mtQzwfyhBdro82JbbPnKCNsshGAw1/6qXyvk5MIxb oUgBCNdIS44/c7zBZakDST82Wz/5f5MZqOGfcMYcfnLiAQ/dOWBBgRt/oaO0bZec ihGOiZPGC+Sj4Abe9hfFn+FX/8ebrk65SeuM5zNuE9n0uh274enut/a0De8Gahh0 CbJCCPXqcSgb0S1PJKIPrt+F3wIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFBA3sdaN y+oKCT8yGYpkA6SwNjTCMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREM0QvQjAyMDJEMzJEOEI5MTFFQkFCQzFGNDg1QzRGOUFFMDIvNUZBMUJGODgw MkREMTFFRTg2ODY1QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQAcR6BMAwDBACWw9cDBACWw9gDBADKS/UwDQYJKoZIhvcNAQELBQAD ggEBAB/vE+PQZK/DOwTIZFDJPb1dOzOsKG9abQG1BBr58sW3ckWgZ0ropeBXLLLD R4krAc1f9M/RyLwo87LH7OWdgS1J74YcdaNqYHk9JnTl8MHUzhfETkggfLMWDzDk uJBw8A8c+O9WWjZgZTvNFzrJ2QS79g2kV4ZRjC/cv+xQwSJhH0JUSwD5JbZ8Geqv JvVybVdyTpgXQkVyBwJLossa/Dm6KTaaxTSXrqBrhwRqQxo0I5P+jXtbGG3EbPd0 s9c6lwhyEuExOVlqD29q2aEJMo6Tn0duQhlsRvM6/ThLYvZOOQYHbTSdues6cQOu Vcq7LiBhyAIfoBYhZhgZgCqwsq8= -----END CERTIFICATE-----Generated at Mon Mar 2 14:59:04 2026 by rpki-client