$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa File: AFDD7E16DA6011EC9A304C24C4F9AE02.roa (raw, json) Hash identifier: n648Yvz53rsJ1dG0NtAeKrqioIBy25td2h9ZGC5vq8c= Subject key identifier: 29:C1:7F:EF:54:06:9D:11:D9:E9:43:73:AA:C7:6B:49:C9:0C:87:F9 Certificate issuer: /CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Certificate serial: 04E0 Authority key identifier: AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:53:24 +0000 ROA not before: Tue 03 Jun 2025 00:34:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45947 IP address blocks: 202.43.84.0/24 maxlen: 24 202.43.85.0/24 maxlen: 24 202.43.86.0/24 maxlen: 24 202.43.87.0/24 maxlen: 24 203.22.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4BB3, serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Validity Not Before: Jun 3 00:34:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fe84-31c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:de:76:90:65:46:88:60:58:44:3a:eb:b8:3d: 36:42:bf:20:54:74:26:95:56:2e:0d:c2:6d:11:69: 54:5c:24:97:fc:65:8f:e9:1e:28:be:e7:a5:03:06: 0c:60:e5:e6:0d:1b:fb:d3:89:ba:0f:b5:d9:d2:aa: 78:cf:40:c0:1b:70:dd:d0:ce:fc:2f:a3:89:e7:5e: 1f:10:57:c8:68:19:fb:2b:72:2a:1c:61:02:02:c9: 0c:9c:8f:5a:4e:6d:7b:30:17:8b:eb:d7:35:3d:76: 42:3e:fa:91:b8:02:c7:d1:01:df:71:4f:d5:ca:22: 64:f5:01:f1:d0:04:15:1f:a3:b8:4c:77:3e:67:3b: 65:99:61:90:dd:76:f0:78:01:c8:69:eb:75:b0:b4: e2:45:ac:e3:38:04:aa:49:85:d0:e4:a8:be:37:0f: de:b9:c0:53:fb:15:5f:33:49:d0:4f:03:87:24:6e: 2a:d7:c0:01:bd:d0:f3:1d:46:15:7f:64:f5:80:a4: ea:78:47:c0:31:98:89:b0:f2:14:d7:36:d6:17:2a: 5b:59:7f:a4:34:68:6a:f3:2a:91:70:90:84:e1:67: ca:13:68:96:1e:c3:6d:2b:cf:f5:84:1a:65:0f:9d: 4e:2e:84:f7:6a:a8:59:32:bf:68:f4:fa:e4:65:25: bf:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C1:7F:EF:54:06:9D:11:D9:E9:43:73:AA:C7:6B:49:C9:0C:87:F9 X509v3 Authority Key Identifier: keyid:AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.43.84.0/22 203.22.215.0/24 Signature Algorithm: sha256WithRSAEncryption 39:54:4b:dd:88:e5:f4:08:9c:0f:1e:1e:5b:c7:25:1d:ed:a9: d3:d7:cf:f6:5c:0e:8a:9a:95:e5:ba:f8:c8:44:cd:06:7e:67: dc:87:fe:9f:b5:9c:7e:6f:03:66:80:df:55:a0:10:48:2b:eb: 93:07:44:e9:2f:7d:fb:d9:ec:14:47:80:04:ab:fc:1f:9d:f2: 5d:eb:b3:40:fc:79:e5:63:f4:7f:21:00:5e:1d:e6:9b:d4:36: 4a:71:bf:41:a5:13:b1:52:10:99:56:43:77:c0:0c:f5:b5:66: 1c:b1:d6:25:1e:68:db:d5:33:86:11:d4:a7:7b:49:dc:46:1b: d6:b4:da:b0:ca:3c:73:bc:df:90:2c:d6:6e:a8:5b:d8:a3:c8: 8e:62:a9:fc:e1:56:94:04:e1:83:f3:93:6c:ac:04:02:45:2f: 0a:45:76:bb:bc:cc:b2:24:4f:db:4c:d6:f0:66:54:d6:8b:0c: a4:48:6f:f7:38:4f:f0:fe:4f:56:0c:a3:d1:fc:2c:5d:88:ff: 11:d2:43:08:01:7b:e3:b5:58:45:55:4e:1f:04:11:de:55:9f: 86:da:ce:b9:c8:42:b3:40:e0:3b:73:7a:65:c8:0a:64:99:75: a9:4d:2d:16:49:76:50:38:20:d7:e6:4e:15:65:6c:af:5e:51: 9f:fb:d6:32 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCQjMxMTAvBgNVBAUTKEFDN0M5RTcxODIyQzA1NjE4NTE4NjQ1M0Y5NjBCMkMx RThDQTk0RTMwHhcNMjUwNjAzMDAzNDM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmU4NC0zMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlt52kGVGiGBYRDrruD02Qr8gVHQmlVYuDcJtEWlUXCSX/GWP6R4ovuelAwYM YOXmDRv704m6D7XZ0qp4z0DAG3Dd0M78L6OJ514fEFfIaBn7K3IqHGECAskMnI9a Tm17MBeL69c1PXZCPvqRuALH0QHfcU/VyiJk9QHx0AQVH6O4THc+ZztlmWGQ3Xbw eAHIaet1sLTiRazjOASqSYXQ5Ki+Nw/eucBT+xVfM0nQTwOHJG4q18ABvdDzHUYV f2T1gKTqeEfAMZiJsPIU1zbWFypbWX+kNGhq8yqRcJCE4WfKE2iWHsNtK8/1hBpl D51OLoT3aqhZMr9o9PrkZSW/AwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFCnBf+9U Bp0R2elDc6rHa0nJDIf5MB8GA1UdIwQYMBaAFKx8nnGCLAVhhRhkU/lgssHoypTj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEJCMy9BRUE4NzNFQzVC QzcxMUVDQUQ1OEIwNUZDNEY5QUUwMi9ySHllY1lJc0JXR0ZHR1JULVdDeXdlakts T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIeWVjWUlzQldHRkdHUlQtV0N5d2VqS2xPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRCQjMvQUVBODczRUM1QkM3MTFFQ0FENThCMDVGQzRGOUFFMDIvQUZERDdFMTZE QTYwMTFFQzlBMzA0QzI0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCyitUAwQAyxbXMA0GCSqGSIb3DQEBCwUAA4IBAQA5VEvdiOX0CJwP Hh5bxyUd7anT18/2XA6KmpXluvjIRM0Gfmfch/6ftZx+bwNmgN9VoBBIK+uTB0Tp L3372ewUR4AEq/wfnfJd67NA/HnlY/R/IQBeHeab1DZKcb9BpROxUhCZVkN3wAz1 tWYcsdYlHmjb1TOGEdSne0ncRhvWtNqwyjxzvN+QLNZuqFvYo8iOYqn84VaUBOGD 85NsrAQCRS8KRXa7vMyyJE/bTNbwZlTWiwykSG/3OE/w/k9WDKPR/CxdiP8R0kMI AXvjtVhFVU4fBBHeVZ+G2s65yEKzQOA7c3plyApkmXWpTS0WSXZQOCDX5k4VZWyv XlGf+9Yy -----END CERTIFICATE-----Generated at Mon Mar 2 09:01:59 2026 by rpki-client