$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa File: 395D655C7E7D11F09D59515FC4F9AE02.roa (raw, json) Hash identifier: wISzL57CKfWjmFG51rfgbb3uCs7qMuabttb3dl/m4bU= Subject key identifier: 10:74:DC:76:1D:D2:D0:BE:E3:6A:3D:12:42:C3:4F:CE:7A:12:A8:19 Certificate issuer: /CN=A91F3CB1/serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Certificate serial: E8 Authority key identifier: 7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa Signing time: Thu 09 Apr 2026 06:42:27 +0000 ROA not before: Thu 09 Apr 2026 06:42:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 136501 IP address blocks: 202.60.228.0/22 maxlen: 22 202.60.228.0/24 maxlen: 24 202.60.229.0/24 maxlen: 24 202.60.230.0/24 maxlen: 24 202.60.231.0/24 maxlen: 24 202.60.232.0/22 maxlen: 22 202.60.232.0/24 maxlen: 24 202.60.233.0/24 maxlen: 24 202.60.234.0/24 maxlen: 24 202.60.235.0/24 maxlen: 24 202.60.236.0/23 maxlen: 23 202.60.236.0/24 maxlen: 24 202.60.237.0/24 maxlen: 24 202.60.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3CB1, serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Validity Not Before: Apr 9 06:42:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69d74a53-fce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:13:71:33:73:6c:8c:0e:bd:e8:2a:63:68:c0: 11:7f:a0:3b:dc:b1:64:3b:f5:e5:92:2f:2b:6b:9e: 33:4e:1f:1e:3d:67:4c:54:0a:e2:4f:58:7c:95:72: 63:d6:f9:d1:92:11:67:95:9b:2a:5e:da:e6:62:48: d8:d7:5d:db:3c:84:63:35:48:cf:5f:3e:30:69:ed: 15:1a:0e:cb:d0:cc:cc:aa:f1:32:6c:26:70:95:89: 61:0c:fd:58:6b:d8:55:62:ed:3a:1e:34:da:91:9b: b2:7c:64:e9:3b:7e:1d:49:2d:c1:c1:82:c5:4b:59: 7e:7e:00:9b:e8:e6:72:19:ad:de:f1:01:45:ab:64: 06:93:5f:90:e8:56:3e:61:84:f0:dd:67:81:91:c0: 4b:3d:2e:4f:0a:9a:a6:86:f3:69:6e:b2:4e:ec:6a: 27:03:ed:5f:6f:fd:23:0b:99:62:e8:8c:7b:8e:de: 97:e6:5c:f4:9d:06:fd:cb:30:ce:78:e5:21:9e:cf: 25:65:cf:47:4e:c8:10:a2:d3:4f:2c:82:7b:ac:d2: 0a:18:8b:9d:e0:25:5c:1a:4a:e4:3c:be:08:08:d9: c6:3d:86:f9:dc:d6:8c:b7:22:8d:69:0c:65:b6:0e: 03:da:a5:85:d0:62:45:99:90:87:70:f5:41:3b:2d: 77:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:74:DC:76:1D:D2:D0:BE:E3:6A:3D:12:42:C3:4F:CE:7A:12:A8:19 X509v3 Authority Key Identifier: keyid:7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.60.228.0-202.60.238.255 Signature Algorithm: sha256WithRSAEncryption 9a:70:f9:0f:87:89:28:21:48:18:ca:41:ae:46:71:10:2d:2a: 58:04:71:74:5f:82:94:89:bd:db:55:84:d9:54:65:3d:f6:7a: 53:0f:db:f8:f1:1b:b5:61:be:72:70:79:40:4a:23:22:0e:72: b6:19:ea:30:66:dd:f8:b7:ab:26:a4:0c:ee:fa:67:1c:70:fe: 56:b4:db:a4:3a:e0:db:07:2a:6e:9e:be:b2:d6:98:e7:50:fc: ee:88:c9:83:3f:42:19:62:2c:66:54:e1:86:71:63:3a:b5:35: 6f:41:b4:de:03:6a:35:a9:ab:d7:ee:76:04:0b:7d:9d:9b:51: 7b:41:2a:45:f2:17:d6:b4:8f:5c:63:32:9a:16:d0:6b:7e:31: 99:82:34:de:b3:6a:1b:7f:51:f3:6e:9a:b0:1f:52:75:2c:70: bf:52:60:70:95:87:7a:24:d9:a7:31:7c:39:4d:f1:bc:12:c0: cf:98:f2:13:1b:66:39:1a:11:ac:e9:84:7b:7a:30:bd:96:36: 79:81:0b:93:28:79:04:f9:f7:48:3f:e1:48:78:e5:e8:4b:65: 1b:33:c5:10:fc:0a:c1:e3:a2:de:45:2c:6c:a3:11:a7:6f:84: e7:f2:ef:2a:1f:18:2d:b3:c4:18:f3:c6:08:70:14:33:d0:9e: 24:e5:98:a9 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDQjExMTAvBgNVBAUTKDdBRDc5RUVCM0I5MjgzNTREOTUwREM2RTRGOEJFQ0NC MjVDMkZDNEIwHhcNMjYwNDA5MDY0MjI3WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWQ3NGE1My1mY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8BNxM3NsjA696CpjaMARf6A73LFkO/Xlki8ra54zTh8ePWdMVAriT1h8lXJj 1vnRkhFnlZsqXtrmYkjY113bPIRjNUjPXz4wae0VGg7L0MzMqvEybCZwlYlhDP1Y a9hVYu06HjTakZuyfGTpO34dSS3BwYLFS1l+fgCb6OZyGa3e8QFFq2QGk1+Q6FY+ YYTw3WeBkcBLPS5PCpqmhvNpbrJO7GonA+1fb/0jC5li6Ix7jt6X5lz0nQb9yzDO eOUhns8lZc9HTsgQotNPLIJ7rNIKGIud4CVcGkrkPL4ICNnGPYb53NaMtyKNaQxl tg4D2qWF0GJFmZCHcPVBOy13mQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFBB03HYd 0tC+42o9EkLDT856EqgZMB8GA1UdIwQYMBaAFHrXnus7koNU2VDcbk+L7MslwvxL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0NCMS8yRDg0MzY5ODE2 ODYxMUYwODkxNjk4NUJDNEY5QUUwMi9ldGVlNnp1U2cxVFpVTnh1VDR2c3l5WENf RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V0ZWU2enVTZzFUWlVOeHVUNHZzeXlYQ19Fcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDQjEvMkQ4NDM2OTgxNjg2MTFGMDg5MTY5ODVCQzRGOUFFMDIvMzk1RDY1NUM3 RTdEMTFGMDlENTk1MTVGQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBALKPOQDBADKPO4wDQYJKoZIhvcNAQELBQADggEBAJpw+Q+HiSgh SBjKQa5GcRAtKlgEcXRfgpSJvdtVhNlUZT32elMP2/jxG7VhvnJweUBKIyIOcrYZ 6jBm3fi3qyakDO76Zxxw/la026Q64NsHKm6evrLWmOdQ/O6IyYM/QhliLGZU4YZx Yzq1NW9BtN4DajWpq9fudgQLfZ2bUXtBKkXyF9a0j1xjMpoW0Gt+MZmCNN6zaht/ UfNumrAfUnUscL9SYHCVh3ok2acxfDlN8bwSwM+Y8hMbZjkaEazphHt6ML2WNnmB C5MoeQT590g/4Uh45ehLZRszxRD8CsHjot5FLGyjEadvhOfy7yofGC2zxBjzxghw FDPQniTlmKk= -----END CERTIFICATE-----Generated at Fri Apr 17 14:58:48 2026 by rpki-client