$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/B0203536062A11F185F9D5F9263D8C67.roa File: B0203536062A11F185F9D5F9263D8C67.roa (raw, json) Hash identifier: 6dnR2Nm3KNO6A8Yh2KSvhbTBZD8W+AyXyUMBx8JMzbg= Subject key identifier: 2B:F8:64:C0:74:C1:5D:12:36:BE:6C:95:13:CA:B9:B3:DD:6C:77:D2 Certificate issuer: /CN=A91F5972/serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Certificate serial: 0625 Authority key identifier: AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/B0203536062A11F185F9D5F9263D8C67.roa Signing time: Sun 01 Mar 2026 18:44:49 +0000 ROA not before: Tue 10 Feb 2026 02:46:24 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45237 IP address blocks: 202.170.64.0/24 maxlen: 24 202.170.65.0/24 maxlen: 24 202.170.66.0/24 maxlen: 24 202.170.67.0/24 maxlen: 24 202.170.68.0/24 maxlen: 24 202.170.69.0/24 maxlen: 24 202.170.70.0/24 maxlen: 24 202.170.71.0/24 maxlen: 24 202.170.74.0/24 maxlen: 24 202.170.75.0/24 maxlen: 24 202.170.77.0/24 maxlen: 24 202.170.78.0/24 maxlen: 24 202.170.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5972, serialNumber=AF798743DAB647868AB66673AF7A136C2EA0EA5B Validity Not Before: Feb 10 02:46:24 2026 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a48921-24d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:2b:9b:10:40:b5:e1:09:bd:5a:f7:c0:6f:73: 11:14:17:65:d6:cd:cd:7e:ba:ea:17:98:ff:38:31: d1:b2:ee:54:af:a0:e3:e2:43:bb:8f:37:dd:7e:0d: 89:83:60:1e:33:45:42:91:ed:53:60:50:8d:d8:ce: 04:0a:b9:77:d6:7e:8e:5f:b1:3a:4d:54:e3:43:15: 2f:ff:48:a1:7b:95:0c:f0:35:a1:01:3f:df:28:ff: 19:64:da:0e:1a:3b:c5:61:6a:18:6a:0c:34:ac:9c: 3a:00:d2:41:48:8a:d7:9a:2f:e8:93:f7:fc:31:06: 2d:4d:5f:c0:02:ec:ab:0e:1a:df:db:0c:50:be:33: ba:af:09:c2:f1:75:79:bc:4e:fd:50:16:db:13:57: bd:ff:5b:9b:b8:ac:a9:cf:1f:98:f1:5e:c6:d5:18: fa:11:7a:b9:ec:db:b1:7e:5e:ed:19:41:b0:57:80: cb:f1:a7:7c:da:f6:b6:93:2d:db:37:87:8c:ff:ca: 3e:55:29:13:bf:07:1b:e0:ad:76:ac:4a:62:41:e5: 98:bc:da:32:d9:07:d2:45:ff:a5:5b:ab:84:7c:3a: a5:5a:a7:3d:1d:4b:0d:e4:b7:6e:d6:1e:a8:f4:f5: 99:48:89:b5:12:f9:34:64:d8:b8:f0:85:bc:1f:52: 1d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F8:64:C0:74:C1:5D:12:36:BE:6C:95:13:CA:B9:B3:DD:6C:77:D2 X509v3 Authority Key Identifier: keyid:AF:79:87:43:DA:B6:47:86:8A:B6:66:73:AF:7A:13:6C:2E:A0:EA:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3mHQ9q2R4aKtmZzr3oTbC6g6ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5972/9BF6C44EF03111EB95F76748C4F9AE02/B0203536062A11F185F9D5F9263D8C67.roa sbgp-ipAddrBlock: critical IPv4: 202.170.64.0/21 202.170.74.0/23 202.170.77.0-202.170.79.255 Signature Algorithm: sha256WithRSAEncryption 82:11:c7:5f:3a:7e:eb:62:c8:38:9f:2e:2d:cb:52:9c:66:fb: 19:37:ee:05:41:b8:7b:f9:a0:a2:a3:de:45:e3:a1:5a:cc:6e: 9f:6b:f8:8b:a0:de:6f:1c:3f:17:c7:02:34:58:64:8a:81:a6: 53:8b:9d:52:35:3c:6f:bd:1c:7a:c9:a3:65:ac:e4:1c:d5:de: de:5c:32:28:26:93:ed:d2:84:e2:11:aa:9f:bb:32:ac:12:4e: f1:a7:0f:27:3f:ae:ae:88:82:6a:00:d0:80:1e:64:8f:6f:af: 6c:49:6e:22:ac:47:b0:3b:6e:51:72:17:a1:fc:93:27:69:a9: 24:00:d9:8e:01:8f:50:30:11:e5:ec:52:eb:49:1f:5a:d2:68: 82:4d:c3:0d:0b:f0:c5:3c:b0:53:27:a6:62:b2:5c:93:9d:bb: 12:c0:af:6d:62:34:f9:21:48:4a:ee:30:2f:87:91:22:18:84: e8:6a:0a:38:ab:d3:94:f1:1d:a3:1c:4c:c9:1f:09:ab:26:38: c0:42:46:47:7b:76:fd:96:28:b9:c8:d4:cf:f8:09:e1:4f:17: b4:84:c5:e8:3e:e5:e1:7a:be:39:7f:ce:ef:67:d6:05:87:dd: 5a:05:a4:61:4e:1d:5c:32:fb:15:54:5c:41:4f:8f:a8:d4:a0: 66:6e:dd:f8 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5NzIxMTAvBgNVBAUTKEFGNzk4NzQzREFCNjQ3ODY4QUI2NjY3M0FGN0ExMzZD MkVBMEVBNUIwHhcNMjYwMjEwMDI0NjI0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODkyMS0yNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAhSubEEC14Qm9WvfAb3MRFBdl1s3NfrrqF5j/ODHRsu5Ur6Dj4kO7jzfdfg2J g2AeM0VCke1TYFCN2M4ECrl31n6OX7E6TVTjQxUv/0ihe5UM8DWhAT/fKP8ZZNoO GjvFYWoYagw0rJw6ANJBSIrXmi/ok/f8MQYtTV/AAuyrDhrf2wxQvjO6rwnC8XV5 vE79UBbbE1e9/1ubuKypzx+Y8V7G1Rj6EXq57Nuxfl7tGUGwV4DL8ad82va2ky3b N4eM/8o+VSkTvwcb4K12rEpiQeWYvNoy2QfSRf+lW6uEfDqlWqc9HUsN5Ldu1h6o 9PWZSIm1Evk0ZNi48IW8H1Id6QIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFCv4ZMB0 wV0SNr5slRPKubPdbHfSMB8GA1UdIwQYMBaAFK95h0PatkeGirZmc696E2wuoOpb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTk3Mi85QkY2QzQ0RUYw MzExMUVCOTVGNzY3NDhDNEY5QUUwMi9yM21IUTlxMlI0YUt0bVp6cjNvVGJDNmc2 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzbUhROXEyUjRhS3RtWnpyM29UYkM2ZzZscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU5NzIvOUJGNkM0NEVGMDMxMTFFQjk1Rjc2NzQ4QzRGOUFFMDIvQjAyMDM1MzYw NjJBMTFGMTg1RjlENUY5MjYzRDhDNjcucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQDyqpAAwQByqpKMAwDBADKqk0DBATKqkAwDQYJKoZIhvcNAQELBQAD ggEBAIIRx186futiyDifLi3LUpxm+xk37gVBuHv5oKKj3kXjoVrMbp9r+Iug3m8c PxfHAjRYZIqBplOLnVI1PG+9HHrJo2Ws5BzV3t5cMigmk+3ShOIRqp+7MqwSTvGn Dyc/rq6IgmoA0IAeZI9vr2xJbiKsR7A7blFyF6H8kydpqSQA2Y4Bj1AwEeXsUutJ H1rSaIJNww0L8MU8sFMnpmKyXJOduxLAr21iNPkhSEruMC+HkSIYhOhqCjir05Tx HaMcTMkfCasmOMBCRkd7dv2WKLnI1M/4CeFPF7SExeg+5eF6vjl/zu9n1gWH3VoF pGFOHVwy+xVUXEFPj6jUoGZu3fg= -----END CERTIFICATE-----Generated at Mon Mar 2 08:40:29 2026 by rpki-client