$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa File: D35D0A48129B11EB97265731C4F9AE02.roa (raw, json) Hash identifier: diSw7qmWUus4mOdmHscWK8Yvs5z6qONTH/QRyfny908= Subject key identifier: AE:E1:AD:16:FC:92:0E:24:53:F0:7E:2B:54:00:E5:1E:30:80:85:1F Certificate issuer: /CN=A91F2573/serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Certificate serial: 0819 Authority key identifier: E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:08:20 +0000 ROA not before: Wed 04 Feb 2026 21:18:07 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 56035 IP address blocks: 110.173.228.0/24 maxlen: 24 110.173.229.0/24 maxlen: 24 110.173.230.0/24 maxlen: 24 110.173.231.0/24 maxlen: 24 120.88.0.0/24 maxlen: 24 120.88.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2073 (0x819) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2573, serialNumber=E847DEAD5C0FED49E33A3B6224EFF3E4ECDA4196 Validity Not Before: Feb 4 21:18:07 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a44854-0776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f2:64:c6:59:60:d6:c0:f5:a7:94:b1:e4:b7: 40:6f:54:b3:8b:69:8e:6b:e2:e6:41:b4:f9:f3:c5: 7d:20:8a:3b:ac:4d:de:ff:cf:17:57:34:cd:81:16: 51:d9:1c:5a:07:c9:70:4e:55:00:4a:df:0a:b3:05: f1:46:17:78:cb:ce:5f:19:58:c4:58:85:03:b6:87: 20:f3:09:f8:83:be:6b:ff:bb:5e:7a:10:59:70:30: 5c:02:7c:21:32:06:54:32:a7:a4:3b:12:ed:64:c6: 31:16:91:b0:59:52:98:a3:b0:33:06:6c:e4:c7:95: 2d:62:de:b1:8d:b4:fb:ef:ba:9c:13:e1:7a:fc:b3: 79:22:d0:86:08:b6:7b:40:65:19:2c:5d:db:2c:a4: 0d:5a:e8:5f:38:54:3a:7d:a2:80:f7:24:9f:53:c6: 20:99:91:c3:e7:8d:e1:ca:07:e1:c4:09:3a:a1:40: 55:f4:00:be:1f:7f:5c:43:d9:2f:d6:e3:98:9a:30: 5b:97:36:94:88:0f:12:28:20:c3:49:09:04:45:47: 2b:2f:5f:69:41:5a:8d:c1:e2:cd:a4:c6:3a:5a:e0: f8:01:b3:60:3a:2b:14:31:94:c7:bd:fe:78:f6:0c: 09:2d:9a:f4:ac:65:40:ad:ea:39:85:d6:da:8a:f2: d0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E1:AD:16:FC:92:0E:24:53:F0:7E:2B:54:00:E5:1E:30:80:85:1F X509v3 Authority Key Identifier: keyid:E8:47:DE:AD:5C:0F:ED:49:E3:3A:3B:62:24:EF:F3:E4:EC:DA:41:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/6EferVwP7UnjOjtiJO_z5OzaQZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6EferVwP7UnjOjtiJO_z5OzaQZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2573/A90ED326129A11EB95939F30C4F9AE02/D35D0A48129B11EB97265731C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 110.173.228.0/22 120.88.0.0/23 Signature Algorithm: sha256WithRSAEncryption 66:38:a3:a7:cf:4c:ae:9d:ca:0f:40:7d:1e:78:d0:ff:aa:47: 37:4f:a6:d9:9f:51:3e:93:72:cc:ec:e6:b5:87:da:79:ee:f7: 1c:91:f5:fd:30:f7:9b:ad:39:4b:6d:a4:f5:59:c8:a0:c0:f7: 8f:59:6d:fb:2e:be:d4:69:7b:9c:78:ef:9a:e6:28:7b:6e:10: 15:5c:29:7f:ce:b5:ea:a8:ae:d7:e3:5c:21:be:52:ee:d7:4b: 8f:31:6b:cb:9f:cd:ed:38:b8:ed:21:46:7e:e8:a1:7c:d5:87: 48:04:38:72:85:dd:94:e1:53:03:ce:b6:55:c0:fd:b8:38:e7: af:6d:07:cc:8c:7f:ab:e6:ff:e0:cf:8f:82:02:9a:0a:aa:e6: 75:15:37:15:a2:c2:fd:20:76:8f:da:04:03:94:b5:21:72:d8: 26:23:c9:54:aa:96:f0:9e:08:54:c3:98:fe:86:72:37:59:63: ec:00:f6:ae:26:70:50:6a:be:c5:8e:76:53:63:36:45:1e:35: 70:7c:65:5e:b1:6e:d6:0b:5e:9f:3b:0c:5d:fa:b9:fd:a7:8a: 4c:a9:db:9a:9b:5a:70:62:d4:87:25:c7:63:77:d0:60:79:60: c1:8d:4b:34:68:8e:a0:79:55:ce:6a:90:9c:24:0f:ab:7e:ce: 1e:e8:3f:a3 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICCBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI1NzMxMTAvBgNVBAUTKEU4NDdERUFENUMwRkVENDlFMzNBM0I2MjI0RUZGM0U0 RUNEQTQxOTYwHhcNMjYwMjA0MjExODA3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDg1NC0wNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPJkxllg1sD1p5Sx5LdAb1Szi2mOa+LmQbT588V9IIo7rE3e/88XVzTNgRZR 2RxaB8lwTlUASt8KswXxRhd4y85fGVjEWIUDtocg8wn4g75r/7teehBZcDBcAnwh MgZUMqekOxLtZMYxFpGwWVKYo7AzBmzkx5UtYt6xjbT777qcE+F6/LN5ItCGCLZ7 QGUZLF3bLKQNWuhfOFQ6faKA9ySfU8YgmZHD543hygfhxAk6oUBV9AC+H39cQ9kv 1uOYmjBblzaUiA8SKCDDSQkERUcrL19pQVqNweLNpMY6WuD4AbNgOisUMZTHvf54 9gwJLZr0rGVAreo5hdbaivLQEwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFK7hrRb8 kg4kU/B+K1QA5R4wgIUfMB8GA1UdIwQYMBaAFOhH3q1cD+1J4zo7YiTv8+Ts2kGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjU3My9BOTBFRDMyNjEy OUExMUVCOTU5MzlGMzBDNEY5QUUwMi82RWZlclZ3UDdVbmpPanRpSk9fejVPemFR WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZFZmVyVndQN1Vuak9qdGlKT196NU96YVFaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI1NzMvQTkwRUQzMjYxMjlBMTFFQjk1OTM5RjMwQzRGOUFFMDIvRDM1RDBBNDgx MjlCMTFFQjk3MjY1NzMxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCbq3kAwQBeFgAMA0GCSqGSIb3DQEBCwUAA4IBAQBmOKOnz0yuncoP QH0eeND/qkc3T6bZn1E+k3LM7Oa1h9p57vcckfX9MPebrTlLbaT1WcigwPePWW37 Lr7UaXuceO+a5ih7bhAVXCl/zrXqqK7X41whvlLu10uPMWvLn83tOLjtIUZ+6KF8 1YdIBDhyhd2U4VMDzrZVwP24OOevbQfMjH+r5v/gz4+CApoKquZ1FTcVosL9IHaP 2gQDlLUhctgmI8lUqpbwnghUw5j+hnI3WWPsAPauJnBQar7FjnZTYzZFHjVwfGVe sW7WC16fOwxd+rn9p4pMqduam1pwYtSHJcdjd9BgeWDBjUs0aI6geVXOapCcJA+r fs4e6D+j -----END CERTIFICATE-----Generated at Mon Mar 2 20:02:01 2026 by rpki-client