$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/FAE7339CF7B911EA91318653C4F9AE02.roa File: FAE7339CF7B911EA91318653C4F9AE02.roa (raw, json) Hash identifier: gjXk5FJ28SiJiqatM16BZg/99HgL3HEPLn3XZb4vIWY= Subject key identifier: 76:6F:A9:BF:EB:FC:8A:04:4A:F4:6D:F8:60:87:4D:87:2B:F9:B5:91 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 085E Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/FAE7339CF7B911EA91318653C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:22:22 +0000 ROA not before: Mon 22 Sep 2025 21:13:17 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133105 IP address blocks: 202.1.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2142 (0x85e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458, serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Sep 22 21:13:17 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a42f7e-2050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:94:68:36:b3:a9:ff:b1:87:74:eb:e7:6f:21: 90:f8:1a:04:3d:7a:7c:97:b6:73:b2:8a:82:57:e8: d6:8f:77:54:96:54:51:dc:cb:2a:1b:82:43:76:c1: e5:e3:c4:85:49:d5:48:48:05:43:7e:88:b7:d0:ec: 01:fe:ee:52:5b:df:d7:4b:c1:b3:07:fb:dc:b6:91: 6f:6f:a8:c7:25:c7:57:aa:d3:98:e6:90:39:b6:06: ff:a5:18:61:3f:03:35:00:04:7a:35:e5:7c:62:02: 95:76:93:db:4a:f9:7b:54:e8:98:7e:80:ea:f5:1b: 58:10:bc:62:d5:0b:2a:be:3d:36:38:5a:71:bc:88: 2d:9c:83:9c:db:b8:d2:fa:c8:3f:52:d4:31:16:89: c6:d4:e4:7e:35:70:a6:d9:3f:3b:8b:ee:2f:48:c8: 97:7f:8f:af:33:f7:21:6f:f1:f5:77:f6:23:7e:42: b7:85:40:6b:3d:69:fe:fe:66:6e:29:fe:8d:a8:68: 20:92:8c:97:5d:aa:1c:e0:a3:ab:90:68:2f:97:d7: 78:a6:b3:ef:17:09:94:dd:53:76:ac:98:d1:06:0c: 78:35:eb:0d:1f:7d:7a:28:34:02:8b:bd:25:ba:22: 89:05:94:3a:79:59:b6:fc:3c:4a:cc:9b:1a:05:58: 33:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6F:A9:BF:EB:FC:8A:04:4A:F4:6D:F8:60:87:4D:87:2B:F9:B5:91 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/FAE7339CF7B911EA91318653C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.1.237.0/24 Signature Algorithm: sha256WithRSAEncryption 45:20:e3:13:3a:ab:22:25:7f:c1:8e:45:df:17:4f:ac:ca:c6: bf:d5:5b:8e:19:bf:1c:1b:42:37:8d:04:b2:e7:b7:bf:f0:43: 5c:a6:8a:28:f4:e6:79:c7:32:a6:29:e2:e5:91:c9:e6:b9:6f: 95:85:b0:3f:31:d8:cf:02:6e:3c:d5:26:3c:75:9f:a7:c7:63: 03:d1:fd:76:6c:14:27:68:dc:3c:3e:9b:96:b0:08:99:4e:8b: 0d:54:36:32:3a:df:a1:19:73:c5:4d:52:ac:58:3f:58:c2:6e: 49:72:98:80:d4:ac:c8:d1:79:9f:89:95:1e:67:18:94:26:ac: f9:b4:fa:70:4b:2b:82:c3:8c:54:11:f4:a1:7a:a6:6e:fd:d0: 07:ff:40:64:32:2e:8e:01:7f:2c:37:83:ba:03:02:45:84:1d: 45:54:fb:c4:04:f4:6a:e2:44:4e:c6:83:f6:91:fe:f3:4a:a2: ca:5d:84:0d:1d:55:fa:4d:c6:75:d9:a7:80:72:ab:ea:62:c2: ba:37:59:d1:88:f2:cf:4b:ef:f3:00:cb:8a:d4:4c:a2:c4:cc: ce:81:6c:67:c9:37:5d:af:bf:de:26:2f:23:46:49:ab:fb:c4: df:b9:b9:d9:32:d6:17:7f:9b:5a:43:b5:7c:cb:57:6b:ad:57: 9a:48:60:f8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjUwOTIyMjExMzE3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmY3ZS0yMDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35RoNrOp/7GHdOvnbyGQ+BoEPXp8l7ZzsoqCV+jWj3dUllRR3MsqG4JDdsHl 48SFSdVISAVDfoi30OwB/u5SW9/XS8GzB/vctpFvb6jHJcdXqtOY5pA5tgb/pRhh PwM1AAR6NeV8YgKVdpPbSvl7VOiYfoDq9RtYELxi1Qsqvj02OFpxvIgtnIOc27jS +sg/UtQxFonG1OR+NXCm2T87i+4vSMiXf4+vM/chb/H1d/YjfkK3hUBrPWn+/mZu Kf6NqGggkoyXXaoc4KOrkGgvl9d4prPvFwmU3VN2rJjRBgx4NesNH316KDQCi70l uiKJBZQ6eVm2/DxKzJsaBVgzqwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHZvqb/r /IoESvRt+GCHTYcr+bWRMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg0NTgvRjhBRjEyMDJGNjE1MTFFQTgzNzcwMDZDQzRGOUFFMDIvRkFFNzMzOUNG N0I5MTFFQTkxMzE4NjUzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAygHtMA0GCSqGSIb3DQEBCwUAA4IBAQBFIOMTOqsiJX/BjkXfF0+s ysa/1VuOGb8cG0I3jQSy57e/8ENcpooo9OZ5xzKmKeLlkcnmuW+VhbA/MdjPAm48 1SY8dZ+nx2MD0f12bBQnaNw8PpuWsAiZTosNVDYyOt+hGXPFTVKsWD9Ywm5JcpiA 1KzI0XmfiZUeZxiUJqz5tPpwSyuCw4xUEfSheqZu/dAH/0BkMi6OAX8sN4O6AwJF hB1FVPvEBPRq4kROxoP2kf7zSqLKXYQNHVX6TcZ12aeAcqvqYsK6N1nRiPLPS+/z AMuK1EyixMzOgWxnyTddr7/eJi8jRkmr+8TfubnZMtYXf5taQ7V8y1drrVeaSGD4 -----END CERTIFICATE-----Generated at Mon Mar 2 04:42:10 2026 by rpki-client