$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/54040CE414F111F08814732CC4F9AE02.roa File: 54040CE414F111F08814732CC4F9AE02.roa (raw, json) Hash identifier: 5R5PyJeyYhErp1HguNQ/WySNIlpzY/MFdVpl7sNAifM= Subject key identifier: A6:AF:A4:3E:CA:7F:FD:80:CE:4E:E8:32:24:F5:C9:57:84:E4:93:D6 Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 2547 Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/54040CE414F111F08814732CC4F9AE02.roa Signing time: Mon 30 Mar 2026 16:18:50 +0000 ROA not before: Mon 30 Mar 2026 16:18:50 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 19905 IP address blocks: 202.176.192.0/24 maxlen: 24 202.176.197.0/24 maxlen: 24 202.176.198.0/24 maxlen: 24 202.176.200.0/24 maxlen: 24 202.176.202.0/24 maxlen: 24 202.176.215.0/24 maxlen: 24 202.176.221.0/24 maxlen: 24 203.208.224.0/24 maxlen: 24 203.208.228.0/24 maxlen: 24 203.208.231.0/24 maxlen: 24 203.208.232.0/24 maxlen: 24 203.208.233.0/24 maxlen: 24 203.208.237.0/24 maxlen: 24 203.208.239.0/24 maxlen: 24 203.208.240.0/24 maxlen: 24 203.208.248.0/24 maxlen: 24 203.208.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9543 (0x2547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: Mar 30 16:18:50 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69caa26a-db90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3d:8b:33:89:20:5a:b7:ef:6e:86:98:0d:ce: 39:c9:ad:46:87:f4:dd:e8:6d:a6:26:05:a9:32:2f: b3:0c:13:1f:94:c8:80:44:00:29:2d:e2:43:e3:c2: bc:b1:5d:39:91:87:fe:ec:6f:d7:bb:02:94:6c:a5: 22:c1:dd:78:5b:11:92:e7:5c:f5:f8:40:c9:3b:db: 6b:41:89:22:17:c7:88:c3:f7:7f:0f:e8:16:4f:52: 45:11:84:06:7d:6c:ad:13:02:aa:c2:f2:00:11:9e: 71:73:02:4c:5e:bf:54:43:c0:e3:ab:9b:af:d8:ca: 01:1d:ad:f2:a0:e8:fe:05:3e:4c:db:07:49:f1:cb: 67:99:55:a1:d8:12:d0:c7:47:a1:97:71:a8:29:ba: 6a:5d:41:d6:6b:e3:8c:4f:c4:24:76:aa:92:d5:df: 56:a7:a0:9c:aa:cd:90:3a:6e:f2:33:94:b3:2d:a9: 58:c7:89:9c:05:54:9a:14:eb:84:4f:16:e6:ea:6e: 18:48:45:07:9d:e6:b7:36:66:1e:17:7f:c3:36:41: b9:5d:fa:99:80:28:65:30:19:f2:4f:7d:f6:77:38: 29:47:ce:ef:b1:cd:93:cc:c1:29:35:c2:11:30:7f: 81:08:63:b1:1a:61:44:b9:fe:ba:ce:31:b4:50:74: 7f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:AF:A4:3E:CA:7F:FD:80:CE:4E:E8:32:24:F5:C9:57:84:E4:93:D6 X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/54040CE414F111F08814732CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.176.192.0/24 202.176.197.0-202.176.198.255 202.176.200.0/24 202.176.202.0/24 202.176.215.0/24 202.176.221.0/24 203.208.224.0/24 203.208.228.0/24 203.208.231.0-203.208.233.255 203.208.237.0/24 203.208.239.0-203.208.240.255 203.208.248.0/24 203.208.255.0/24 Signature Algorithm: sha256WithRSAEncryption 12:af:69:f6:b4:11:b1:f1:8a:b8:2d:a8:63:13:40:05:01:c1: 15:1a:35:f1:52:11:a2:5b:c2:a1:8d:9e:9f:97:60:a1:c2:4f: bd:24:d1:02:af:7a:e3:6e:31:eb:6f:fa:0f:c7:f8:31:29:f7: 2c:7f:06:ca:5e:74:8c:39:ce:69:57:bd:61:ac:9e:07:9f:ee: 83:c4:c3:e5:6c:56:ec:c3:5f:ff:72:37:99:6c:c0:2f:89:37: c9:df:2e:ac:5d:a5:30:6b:e4:0c:22:95:fe:31:77:d0:d0:ab: dd:ba:aa:db:11:1c:27:66:8a:38:f2:1b:e5:2e:d7:a3:fd:e4: 0f:b7:ef:d3:1a:88:08:3c:27:31:08:e9:62:cf:a2:ca:9e:ab: ea:1a:8b:f0:c0:29:b8:bf:95:2e:f4:8b:7b:1e:e2:48:34:ee: ae:62:fa:dd:c3:1d:c1:b8:89:32:79:e7:7d:89:be:f8:a0:90: 51:9d:27:f5:34:21:fa:80:77:19:3a:9d:16:d5:bf:03:97:14: 05:78:6f:f7:87:5c:de:1c:11:21:9b:d1:e3:65:f0:91:a8:fa: 2b:a8:e0:f4:2f:5f:9a:20:e6:c8:9d:37:55:78:7a:37:18:82: 93:7c:6e:ea:7d:76:49:c9:14:42:56:e8:ce:02:fd:aa:a6:6c: 0c:e2:79:57 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICJUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjYwMzMwMTYxODUwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhYTI2YS1kYjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvD2LM4kgWrfvboaYDc45ya1Gh/Td6G2mJgWpMi+zDBMflMiARAApLeJD48K8 sV05kYf+7G/XuwKUbKUiwd14WxGS51z1+EDJO9trQYkiF8eIw/d/D+gWT1JFEYQG fWytEwKqwvIAEZ5xcwJMXr9UQ8Djq5uv2MoBHa3yoOj+BT5M2wdJ8ctnmVWh2BLQ x0ehl3GoKbpqXUHWa+OMT8QkdqqS1d9Wp6Ccqs2QOm7yM5SzLalYx4mcBVSaFOuE Txbm6m4YSEUHnea3NmYeF3/DNkG5XfqZgChlMBnyT332dzgpR87vsc2TzMEpNcIR MH+BCGOxGmFEuf66zjG0UHR/iQIDAQABo4ICwDCCArwwHQYDVR0OBBYEFKavpD7K f/2Azk7oMiT1yVeE5JPWMB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkxNkEvMUQ3QUQwQkE0NThEMTFFNUIzOTU3QTc5QzRGOUFFMDIvNTQwNDBDRTQx NEYxMTFGMDg4MTQ3MzJDQzRGOUFFMDIucm9hMH8GCCsGAQUFBwEHAQH/BHAwbjBs BAIAATBmAwQAyrDAMAwDBADKsMUDBADKsMYDBADKsMgDBADKsMoDBADKsNcDBADK sN0DBADL0OADBADL0OQwDAMEAMvQ5wMEAcvQ6AMEAMvQ7TAMAwQAy9DvAwQAy9Dw AwQAy9D4AwQAy9D/MA0GCSqGSIb3DQEBCwUAA4IBAQASr2n2tBGx8Yq4LahjE0AF AcEVGjXxUhGiW8KhjZ6fl2Chwk+9JNECr3rjbjHrb/oPx/gxKfcsfwbKXnSMOc5p V71hrJ4Hn+6DxMPlbFbsw1//cjeZbMAviTfJ3y6sXaUwa+QMIpX+MXfQ0Kvduqrb ERwnZoo48hvlLtej/eQPt+/TGogIPCcxCOliz6LKnqvqGovwwCm4v5Uu9It7HuJI NO6uYvrdwx3BuIkyeed9ib74oJBRnSf1NCH6gHcZOp0W1b8DlxQFeG/3h1zeHBEh m9HjZfCRqPorqOD0L1+aIObInTdVeHo3GIKTfG7qfXZJyRRCVujOAv2qpmwM4nlX -----END CERTIFICATE-----Generated at Fri Apr 17 04:51:08 2026 by rpki-client