$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa File: 40838EC01EDA11ED90A3A71FC4F9AE02.roa (raw, json) Hash identifier: 4Abgy+X2ZW9Ha0ytPuEUdXVUheE/F+OPg09zPVRwTxg= Subject key identifier: C8:B3:AB:8A:41:68:FB:36:4C:74:EE:97:D2:7B:65:F5:68:01:96:E6 Certificate issuer: /CN=A91F33A5/serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Certificate serial: 03C4 Authority key identifier: C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:26:01 +0000 ROA not before: Fri 05 Sep 2025 01:37:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134111 IP address blocks: 202.8.32.0/21 maxlen: 24 202.9.8.0/22 maxlen: 24 202.9.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 964 (0x3c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F33A5, serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Validity Not Before: Sep 5 01:37:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a44c79-a830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fe:35:3e:5a:2d:1d:0b:90:20:d9:31:ed:9a: 1a:5d:0c:ac:1f:0e:6a:f9:87:56:5d:14:f1:d7:a9: 15:67:00:a2:b7:b4:57:af:15:06:46:a4:df:7c:ad: 67:58:ba:05:df:1d:4f:17:3b:54:10:84:e3:d9:4e: db:9e:3e:9e:a0:ab:f1:09:4a:d0:54:03:36:15:ba: 25:6e:b1:aa:93:a2:90:45:52:99:e9:50:20:f5:0c: 7d:d9:0c:72:1c:bc:22:cf:2c:0f:9d:f7:f0:02:6f: 99:b4:85:50:47:68:b9:35:2f:1e:c0:e0:98:91:9f: 7b:48:f1:9e:42:ac:d0:45:ef:bb:98:67:d3:79:9a: a7:e1:de:38:6e:ff:c1:8f:56:93:3e:1f:d1:1d:25: a2:66:0a:98:cd:3f:91:61:3a:48:fe:b6:c3:53:58: 16:83:99:f9:29:d4:32:0d:79:92:a0:c2:81:c4:f0: 4a:94:90:96:8f:03:77:cf:8d:6a:9d:7f:f4:bb:9d: 31:8e:48:71:0b:c6:00:af:89:36:90:8e:ae:31:1b: b3:0a:96:03:5b:92:b5:73:b3:95:f3:bc:d9:45:7e: 3b:82:5c:8d:7b:92:df:92:d6:98:6a:0b:c6:4e:1c: 45:50:54:f5:6b:15:49:7a:96:dc:0c:86:4f:6c:75: df:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B3:AB:8A:41:68:FB:36:4C:74:EE:97:D2:7B:65:F5:68:01:96:E6 X509v3 Authority Key Identifier: keyid:C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.8.32.0/21 202.9.8.0-202.9.13.255 Signature Algorithm: sha256WithRSAEncryption ab:98:cc:d3:c5:10:27:54:ae:bc:73:f3:64:6e:a6:9e:43:90: 16:a1:87:3d:09:45:75:c4:f7:da:1d:5f:a2:5e:b0:d1:87:db: cf:76:27:9a:9f:25:a3:d6:bb:63:b4:8d:82:dd:ca:ac:ec:3a: 1d:05:f9:99:51:3b:7c:38:f1:c5:27:0d:fb:69:a6:36:7e:3c: 97:27:37:9f:51:5a:34:41:10:83:c6:00:d0:3a:cc:8f:27:63: a7:34:be:7d:59:7e:91:41:d8:12:03:ad:79:ea:20:a4:fa:29: 45:51:2d:aa:94:1d:3f:04:e3:74:15:66:93:83:a7:e5:f5:5a: 21:73:31:fd:b8:11:d4:a7:c1:de:a5:06:1d:f4:dd:77:77:cb: d8:2d:33:cd:60:a1:84:71:7a:7b:83:c8:da:28:22:fa:8c:32: 7b:e6:e0:e0:bf:78:91:72:c8:c8:84:08:01:d1:59:68:6a:e2: d2:07:69:a0:f3:13:59:8c:a7:db:6a:0a:f0:78:d3:27:ee:ab: eb:74:b8:a2:59:9c:89:cf:38:b9:1d:75:89:57:af:66:ec:ec: 4f:4d:aa:87:ec:45:b2:f6:22:c9:46:e9:d1:da:8b:99:d6:20: 5e:f8:96:dd:3c:a6:27:f1:79:c0:5e:07:6b:85:44:80:90:00: 79:dd:b4:0c -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMzQTUxMTAvBgNVBAUTKEM0RjYzOEMwOUUzNzIwNDZDMDFERjQ2MDRDMjgxMTY0 RjZBQzE2MjIwHhcNMjUwOTA1MDEzNzU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NGM3OS1hODMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/41PlotHQuQINkx7ZoaXQysHw5q+YdWXRTx16kVZwCit7RXrxUGRqTffK1n WLoF3x1PFztUEITj2U7bnj6eoKvxCUrQVAM2FbolbrGqk6KQRVKZ6VAg9Qx92Qxy HLwizywPnffwAm+ZtIVQR2i5NS8ewOCYkZ97SPGeQqzQRe+7mGfTeZqn4d44bv/B j1aTPh/RHSWiZgqYzT+RYTpI/rbDU1gWg5n5KdQyDXmSoMKBxPBKlJCWjwN3z41q nX/0u50xjkhxC8YAr4k2kI6uMRuzCpYDW5K1c7OV87zZRX47glyNe5LfktaYagvG ThxFUFT1axVJepbcDIZPbHXfPwIDAQABo4ICbjCCAmowHQYDVR0OBBYEFMizq4pB aPs2THTul9J7ZfVoAZbmMB8GA1UdIwQYMBaAFMT2OMCeNyBGwB30YEwoEWT2rBYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzNBNS8xQzBFNzA2QUQ0 RDgxMUVDQTQyNDVGMTBDNEY5QUUwMi94UFk0d0o0M0lFYkFIZlJnVENnUlpQYXNG aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQWTR3SjQzSUViQUhmUmdUQ2dSWlBhc0ZpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMzQTUvMUMwRTcwNkFENEQ4MTFFQ0E0MjQ1RjEwQzRGOUFFMDIvNDA4MzhFQzAx RURBMTFFRDkwQTNBNzFGQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQDygggMAwDBAPKCQgDBAHKCQwwDQYJKoZIhvcNAQELBQADggEBAKuY zNPFECdUrrxz82Rupp5DkBahhz0JRXXE99odX6JesNGH2892J5qfJaPWu2O0jYLd yqzsOh0F+ZlRO3w48cUnDftppjZ+PJcnN59RWjRBEIPGANA6zI8nY6c0vn1ZfpFB 2BIDrXnqIKT6KUVRLaqUHT8E43QVZpODp+X1WiFzMf24EdSnwd6lBh303Xd3y9gt M81goYRxenuDyNooIvqMMnvm4OC/eJFyyMiECAHRWWhq4tIHaaDzE1mMp9tqCvB4 0yfuq+t0uKJZnInPOLkddYlXr2bs7E9NqofsRbL2IslG6dHai5nWIF74lt08pifx ecBeB2uFRICQAHndtAw= -----END CERTIFICATE-----Generated at Mon Mar 2 05:39:04 2026 by rpki-client