$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/54040CE414F111F08814732CC4F9AE02.roa File: 54040CE414F111F08814732CC4F9AE02.roa (raw, json) Hash identifier: oAPFqh7JlYzzoOFTZFjvYHDih/9V54IJj2eqz87eTwA= Subject key identifier: 0B:C1:98:A8:48:4C:25:5E:F0:13:34:F8:7B:81:BE:CF:87:38:AA:A9 Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 2534 Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/54040CE414F111F08814732CC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:13:47 +0000 ROA not before: Wed 09 Apr 2025 03:18:38 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 19905 IP address blocks: 202.176.192.0/24 maxlen: 24 202.176.197.0/24 maxlen: 24 202.176.198.0/24 maxlen: 24 202.176.200.0/24 maxlen: 24 202.176.202.0/24 maxlen: 24 202.176.215.0/24 maxlen: 24 202.176.221.0/24 maxlen: 24 203.208.224.0/24 maxlen: 24 203.208.228.0/24 maxlen: 24 203.208.231.0/24 maxlen: 24 203.208.232.0/24 maxlen: 24 203.208.233.0/24 maxlen: 24 203.208.237.0/24 maxlen: 24 203.208.239.0/24 maxlen: 24 203.208.240.0/24 maxlen: 24 203.208.248.0/24 maxlen: 24 203.208.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9524 (0x2534) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: Apr 9 03:18:38 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42d7b-b27f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:94:93:72:ee:d9:93:89:bd:89:31:ef:e5:17: 2e:1d:92:54:56:c2:29:af:0d:12:1d:d4:ab:71:60: 4d:48:9a:45:3c:4f:c0:0e:94:85:90:2a:d4:76:89: 30:39:81:c0:92:0a:fd:36:27:60:8d:d0:59:e8:be: 8a:ab:15:cd:80:ae:cb:c4:24:aa:7d:65:79:bb:9b: 8f:a9:b9:3e:46:33:cc:a1:d9:f0:56:2b:06:c7:f2: b9:11:69:91:0c:af:70:cf:1f:c6:07:a5:db:c2:c4: 19:e1:16:5d:0a:c5:7e:4b:bb:c7:81:d9:71:78:53: 80:69:3f:3e:b2:b5:8e:07:55:e3:a0:78:b2:e9:16: 02:02:1c:95:1d:57:e3:72:96:a1:bb:e3:df:6b:60: df:29:b9:5c:51:cd:d6:76:06:65:ad:e5:57:d4:77: 7a:1d:7a:81:f3:c8:3b:af:c1:36:63:54:b3:4b:9c: 49:20:65:39:9d:ce:ad:c5:4e:b2:d1:32:7c:d8:d1: f0:b4:e8:73:f8:c6:03:43:6a:5c:bb:84:53:96:7d: 49:18:7d:b6:54:02:c1:e9:1c:97:c8:8b:a7:26:e0: 5e:92:f6:12:4f:37:83:f2:2e:b3:d8:8c:cd:62:3b: 2d:6d:d1:b5:36:ce:75:05:d8:ec:7d:8b:5c:9c:1e: 2d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:C1:98:A8:48:4C:25:5E:F0:13:34:F8:7B:81:BE:CF:87:38:AA:A9 X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/54040CE414F111F08814732CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.176.192.0/24 202.176.197.0-202.176.198.255 202.176.200.0/24 202.176.202.0/24 202.176.215.0/24 202.176.221.0/24 203.208.224.0/24 203.208.228.0/24 203.208.231.0-203.208.233.255 203.208.237.0/24 203.208.239.0-203.208.240.255 203.208.248.0/24 203.208.255.0/24 Signature Algorithm: sha256WithRSAEncryption 58:29:41:df:5d:ac:bd:d3:f7:54:79:a8:dc:5c:14:fb:f4:07: 93:3e:53:0e:58:f1:29:5b:69:20:ad:bb:76:c0:3e:5a:b9:4b: bf:2f:3d:72:ed:4f:a1:c5:e7:af:37:50:e1:8f:89:df:a9:19: 8a:01:81:2e:d7:2e:c2:61:3f:12:ba:01:cf:75:2a:9b:d2:6f: 5d:51:d1:3d:12:ee:3c:f0:be:6f:a0:d8:a8:87:42:b3:51:45: 1e:84:5c:97:8f:c2:da:d9:00:d4:26:39:0b:24:e6:cc:d1:90: 18:d1:b0:41:8a:b6:89:f2:59:80:6e:2d:e5:04:e0:26:04:db: 35:e6:58:cb:c7:9c:7f:5d:85:fb:6b:92:97:8d:c4:ae:a3:0c: 73:a6:ac:78:5e:2d:7e:a8:72:fd:36:2e:2b:de:38:03:1c:b7: 1f:26:cf:17:b1:3b:c9:92:bd:8b:f3:7c:63:7b:9b:27:56:09: 6c:5f:1e:c0:70:df:13:fa:8b:42:34:0b:9d:07:ac:e4:15:80: 76:8e:1e:e3:3b:d9:72:40:27:3d:00:29:82:c9:f7:92:0c:df: 5b:00:54:7f:47:67:4b:74:66:e8:fc:b3:2b:30:54:86:5d:ec: ff:ac:4a:af:1c:38:28:d0:34:2e:61:d4:72:d7:21:b4:80:da: 69:15:ea:89 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICJTQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjUwNDA5MDMxODM4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmQ3Yi1iMjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9JSTcu7Zk4m9iTHv5RcuHZJUVsIprw0SHdSrcWBNSJpFPE/ADpSFkCrUdokw OYHAkgr9NidgjdBZ6L6KqxXNgK7LxCSqfWV5u5uPqbk+RjPModnwVisGx/K5EWmR DK9wzx/GB6XbwsQZ4RZdCsV+S7vHgdlxeFOAaT8+srWOB1XjoHiy6RYCAhyVHVfj cpahu+Pfa2DfKblcUc3WdgZlreVX1Hd6HXqB88g7r8E2Y1SzS5xJIGU5nc6txU6y 0TJ82NHwtOhz+MYDQ2pcu4RTln1JGH22VALB6RyXyIunJuBekvYSTzeD8i6z2IzN YjstbdG1Ns51BdjsfYtcnB4trwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFAvBmKhI TCVe8BM0+HuBvs+HOKqpMB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkxNkEvMUQ3QUQwQkE0NThEMTFFNUIzOTU3QTc5QzRGOUFFMDIvNTQwNDBDRTQx NEYxMTFGMDg4MTQ3MzJDQzRGOUFFMDIucm9hMH8GCCsGAQUFBwEHAQH/BHAwbjBs BAIAATBmAwQAyrDAMAwDBADKsMUDBADKsMYDBADKsMgDBADKsMoDBADKsNcDBADK sN0DBADL0OADBADL0OQwDAMEAMvQ5wMEAcvQ6AMEAMvQ7TAMAwQAy9DvAwQAy9Dw AwQAy9D4AwQAy9D/MA0GCSqGSIb3DQEBCwUAA4IBAQBYKUHfXay90/dUeajcXBT7 9AeTPlMOWPEpW2kgrbt2wD5auUu/Lz1y7U+hxeevN1Dhj4nfqRmKAYEu1y7CYT8S ugHPdSqb0m9dUdE9Eu488L5voNioh0KzUUUehFyXj8La2QDUJjkLJObM0ZAY0bBB iraJ8lmAbi3lBOAmBNs15ljLx5x/XYX7a5KXjcSuowxzpqx4Xi1+qHL9Ni4r3jgD HLcfJs8XsTvJkr2L83xje5snVglsXx7AcN8T+otCNAudB6zkFYB2jh7jO9lyQCc9 ACmCyfeSDN9bAFR/R2dLdGbo/LMrMFSGXez/rEqvHDgo0DQuYdRy1yG0gNppFeqJ -----END CERTIFICATE-----Generated at Mon Mar 2 10:55:06 2026 by rpki-client