$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/C4662D3A5FD311EDAE56DD7FC4F9AE02.roa File: C4662D3A5FD311EDAE56DD7FC4F9AE02.roa (raw, json) Hash identifier: Z5HvLfJRCWWPtpANNACtMj7b18F6vbfNbpJjSdS2KbM= Subject key identifier: 83:46:ED:32:FF:58:97:92:C4:B1:6C:46:FF:E5:B9:49:BF:7D:7A:A7 Certificate issuer: /CN=A91F8A41/serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Certificate serial: 07AC Authority key identifier: CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/C4662D3A5FD311EDAE56DD7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:56:19 +0000 ROA not before: Sat 10 May 2025 22:22:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10101 IP address blocks: 202.152.64.0/19 maxlen: 19 202.152.64.0/24 maxlen: 24 202.152.65.0/24 maxlen: 24 202.152.66.0/24 maxlen: 24 202.152.67.0/24 maxlen: 24 202.152.68.0/24 maxlen: 24 202.152.69.0/24 maxlen: 24 202.152.70.0/24 maxlen: 24 202.152.71.0/24 maxlen: 24 202.152.72.0/24 maxlen: 24 202.152.73.0/24 maxlen: 24 202.152.76.0/22 maxlen: 22 202.152.76.0/24 maxlen: 24 202.152.77.0/24 maxlen: 24 202.152.78.0/24 maxlen: 24 202.152.79.0/24 maxlen: 24 202.152.80.0/24 maxlen: 24 202.152.81.0/24 maxlen: 24 202.152.82.0/24 maxlen: 24 202.152.83.0/24 maxlen: 24 202.152.84.0/24 maxlen: 24 202.152.85.0/24 maxlen: 24 202.152.86.0/24 maxlen: 24 202.152.87.0/24 maxlen: 24 202.152.88.0/22 maxlen: 22 202.152.92.0/24 maxlen: 24 202.152.93.0/24 maxlen: 24 202.152.94.0/24 maxlen: 24 202.152.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A41, serialNumber=CDFEDF2D411C84C36DC3BB6A02FDF1AC50B5BA14 Validity Not Before: May 10 22:22:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45392-d578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ae:46:a7:d7:20:08:e0:17:53:db:de:66:fc: f5:0c:1d:24:19:36:ee:ba:37:bf:00:2e:1c:d9:67: ab:23:f1:3b:32:61:75:19:35:20:81:f2:93:c2:44: 93:e8:04:23:fd:63:9b:79:a7:ac:84:93:57:5c:f8: fd:8a:55:0a:1b:13:34:ea:e0:f9:66:05:e0:22:f0: c1:82:11:e9:75:7e:2f:52:e4:cc:6e:3a:fb:35:25: 31:5c:4f:21:04:48:3c:f3:88:a4:86:c8:18:47:a7: 5c:68:ae:9c:21:23:79:50:75:88:7b:d0:19:b6:3a: a1:92:0d:a8:a8:57:94:58:d6:f4:cb:08:d5:5a:35: 02:22:db:58:81:9d:85:9b:34:0f:20:27:6a:53:c1: 8a:07:b5:eb:ba:4d:35:a1:c1:38:2e:a7:f5:41:94: 74:cc:5b:fc:6b:fb:56:0f:9e:2c:af:03:35:6a:4c: 4c:26:96:d2:04:bc:52:09:b7:62:01:01:5b:bd:ea: 15:bc:1f:86:ca:f7:91:c3:7c:c7:15:c3:f2:6d:6d: 51:c9:8c:1c:05:57:34:6e:73:00:bc:c4:d7:3f:e2: c4:33:5d:81:b5:a5:67:3f:76:b5:6c:bf:6b:c0:27: 2f:1d:d6:73:79:07:1f:74:ac:14:34:5d:cf:80:55: 79:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:46:ED:32:FF:58:97:92:C4:B1:6C:46:FF:E5:B9:49:BF:7D:7A:A7 X509v3 Authority Key Identifier: keyid:CD:FE:DF:2D:41:1C:84:C3:6D:C3:BB:6A:02:FD:F1:AC:50:B5:BA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/zf7fLUEchMNtw7tqAv3xrFC1uhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zf7fLUEchMNtw7tqAv3xrFC1uhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A41/554140DE87BC11EBB3C08272C4F9AE02/C4662D3A5FD311EDAE56DD7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.152.64.0/19 Signature Algorithm: sha256WithRSAEncryption 96:af:90:6d:94:a4:8e:73:61:a8:36:4d:a1:30:8d:97:f9:8e: f1:93:cc:87:bf:74:39:e9:48:2b:c4:ca:08:fb:a5:2d:78:f4: 7c:61:13:08:20:8f:b7:fc:03:8d:a4:b1:b0:7d:b8:9f:d1:8c: 0e:ae:61:f5:07:eb:cb:9d:90:25:42:05:5b:c3:6f:01:7b:63: 2c:0a:ca:ad:99:95:cc:88:d7:80:25:35:8f:eb:f5:76:20:13: ca:70:ff:08:74:a4:8c:bf:b8:a7:fb:39:7a:8f:1b:dc:64:b0: a0:e0:62:01:31:1c:2b:9c:8c:d7:03:43:69:a4:8a:48:43:48: a1:2c:74:58:e8:da:2c:06:d6:38:96:75:a0:47:0b:6f:2c:87: 8b:c3:db:33:11:70:12:bb:64:78:15:0d:79:59:64:56:04:cd: b4:8e:8a:e4:87:e1:42:fb:15:3b:88:f5:26:23:61:88:5f:31: 5f:39:06:a1:e3:6e:42:1e:d0:81:9a:42:25:b8:37:68:e2:42: 61:92:6f:79:3c:63:20:f9:56:1b:60:79:c8:97:f6:0e:12:f4: c5:f0:8c:b4:af:f0:c0:90:a0:27:12:82:b3:92:f6:a8:34:35: 36:66:a5:02:01:58:da:36:76:36:ba:2e:9b:6e:b4:b9:10:9e: 82:a1:ee:d9 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDExMTAvBgNVBAUTKENERkVERjJENDExQzg0QzM2REMzQkI2QTAyRkRGMUFD NTBCNUJBMTQwHhcNMjUwNTEwMjIyMjE2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTM5Mi1kNTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr65Gp9cgCOAXU9veZvz1DB0kGTbuuje/AC4c2WerI/E7MmF1GTUggfKTwkST 6AQj/WObeaeshJNXXPj9ilUKGxM06uD5ZgXgIvDBghHpdX4vUuTMbjr7NSUxXE8h BEg884ikhsgYR6dcaK6cISN5UHWIe9AZtjqhkg2oqFeUWNb0ywjVWjUCIttYgZ2F mzQPICdqU8GKB7Xruk01ocE4Lqf1QZR0zFv8a/tWD54srwM1akxMJpbSBLxSCbdi AQFbveoVvB+GyveRw3zHFcPybW1RyYwcBVc0bnMAvMTXP+LEM12BtaVnP3a1bL9r wCcvHdZzeQcfdKwUNF3PgFV5UQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFING7TL/ WJeSxLFsRv/luUm/fXqnMB8GA1UdIwQYMBaAFM3+3y1BHITDbcO7agL98axQtboU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0MS81NTQxNDBERTg3 QkMxMUVCQjNDMDgyNzJDNEY5QUUwMi96ZjdmTFVFY2hNTnR3N3RxQXYzeHJGQzF1 aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pmN2ZMVUVjaE1OdHc3dHFBdjN4ckZDMXVoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhBNDEvNTU0MTQwREU4N0JDMTFFQkIzQzA4MjcyQzRGOUFFMDIvQzQ2NjJEM0E1 RkQzMTFFREFFNTZERDdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFyphAMA0GCSqGSIb3DQEBCwUAA4IBAQCWr5BtlKSOc2GoNk2hMI2X +Y7xk8yHv3Q56UgrxMoI+6UtePR8YRMIII+3/AONpLGwfbif0YwOrmH1B+vLnZAl QgVbw28Be2MsCsqtmZXMiNeAJTWP6/V2IBPKcP8IdKSMv7in+zl6jxvcZLCg4GIB MRwrnIzXA0NppIpIQ0ihLHRY6NosBtY4lnWgRwtvLIeLw9szEXASu2R4FQ15WWRW BM20jorkh+FC+xU7iPUmI2GIXzFfOQah425CHtCBmkIluDdo4kJhkm95PGMg+VYb YHnIl/YOEvTF8Iy0r/DAkKAnEoKzkvaoNDU2ZqUCAVjaNnY2ui6bbrS5EJ6Coe7Z -----END CERTIFICATE-----Generated at Mon Mar 2 11:18:17 2026 by rpki-client