$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/66476E182EAC11EFAAAF8E67C4F9AE02.roa File: 66476E182EAC11EFAAAF8E67C4F9AE02.roa (raw, json) Hash identifier: SY3cJmeJRYwxQTdV8LuINvKyBM5cYU9gdA5scwGtw/k= Subject key identifier: D2:AC:FA:24:4C:4B:97:03:EA:C3:7B:40:39:37:99:6D:BB:42:D7:92 Certificate issuer: /CN=A91FA6FF/serialNumber=CAE3DB8ADEE7A16AB6CA537F2347B0205BDF4F76 Certificate serial: 0169 Authority key identifier: CA:E3:DB:8A:DE:E7:A1:6A:B6:CA:53:7F:23:47:B0:20:5B:DF:4F:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/66476E182EAC11EFAAAF8E67C4F9AE02.roa Signing time: Fri 27 Mar 2026 04:40:56 +0000 ROA not before: Fri 27 Mar 2026 04:40:56 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 0 IP address blocks: 202.3.136.0/24 maxlen: 24 2001:dee:c000::/48 maxlen: 48 2001:dee:c000::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.crl rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 04:36:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6FF, serialNumber=CAE3DB8ADEE7A16AB6CA537F2347B0205BDF4F76 Validity Not Before: Mar 27 04:40:56 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c60a58-1261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:10:72:42:4a:47:90:92:5e:2f:7d:7f:a7:70: 5c:cd:09:08:e7:5b:59:82:96:ac:c5:81:30:c9:2e: b2:de:8f:a3:86:c3:30:97:8b:f3:7a:fd:c8:55:13: 6f:42:09:e0:eb:4d:53:a7:39:49:44:99:0e:d4:4c: 92:a5:52:bb:cc:7c:fe:be:48:cf:d7:3b:31:d5:48: ae:9e:46:8f:da:d0:c2:3e:9e:ac:a8:c8:e5:5c:3c: 33:77:54:94:c4:be:ac:fd:32:b0:5f:93:9c:91:ec: c2:88:0d:b3:73:6b:d5:fd:ea:b1:7f:da:b7:f4:10: f6:5c:f8:7c:e3:8b:ee:00:78:46:34:10:fc:59:31: e2:cf:0a:6f:0a:9a:ee:1d:47:0f:a7:23:59:e6:7d: 1c:1a:84:ff:45:1f:a4:02:36:ef:bc:3b:39:3c:a3: 20:b1:d1:ff:ac:17:1b:48:2d:37:76:cd:71:2c:aa: 04:7e:7d:1d:4f:39:88:12:3b:06:ef:67:a0:ca:ec: ca:69:c0:17:ad:dd:ab:be:ae:4d:38:18:fa:3c:6e: b6:98:bc:71:c7:15:78:b8:e4:17:a8:5b:0f:7f:01: f5:20:51:4c:e4:18:5e:1b:44:f5:c4:55:a4:8b:7c: f0:fb:ca:a1:97:93:e4:0a:20:00:be:94:9f:18:92: 28:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:AC:FA:24:4C:4B:97:03:EA:C3:7B:40:39:37:99:6D:BB:42:D7:92 X509v3 Authority Key Identifier: keyid:CA:E3:DB:8A:DE:E7:A1:6A:B6:CA:53:7F:23:47:B0:20:5B:DF:4F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/66476E182EAC11EFAAAF8E67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.3.136.0/24 IPv6: 2001:dee:c000::/48 Signature Algorithm: sha256WithRSAEncryption 4d:e7:58:e8:b7:46:e9:54:51:e2:fd:c1:d7:2c:4a:34:05:58: 0e:8b:4a:4e:7c:25:ab:79:60:c1:38:53:97:cb:c4:45:d5:bd: dc:5d:06:04:2e:e9:9d:19:03:fc:52:e4:92:c5:67:30:10:27: e0:18:78:c0:9f:b8:19:fb:ff:36:f8:52:69:b9:fd:63:17:2b: 10:9a:51:a7:9c:8a:c0:e0:37:ab:a5:dd:9d:2f:2d:c6:53:5c: f5:04:06:7a:96:21:bc:e1:92:2c:60:78:5a:38:c6:5c:6d:d5: cb:ac:d1:19:47:3b:f9:42:ad:76:3e:1a:a0:35:e4:6e:da:8e: 37:71:2e:1f:37:f7:22:d5:ac:10:a7:d2:e0:c1:4a:1c:c1:53: a6:cd:62:f9:11:74:59:5b:fa:c6:34:bc:1e:4f:65:15:4c:09: f6:38:30:63:3d:83:e2:5b:5e:e9:0e:1a:39:a9:bf:a7:6a:83: 77:de:62:a7:24:8b:c9:a0:ea:f5:62:1c:36:fb:77:b7:38:aa: 24:81:dd:ca:4a:e3:fe:f9:d1:4b:c6:08:0b:1a:89:3b:75:a8: 8a:37:d4:cc:02:a6:7c:0c:e6:e7:f9:fb:3e:05:0c:10:a5:c9: d9:04:65:11:f0:06:c1:ae:8a:e2:fb:20:be:47:23:ca:3a:65: 98:90:2b:6e -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2RkYxMTAvBgNVBAUTKENBRTNEQjhBREVFN0ExNkFCNkNBNTM3RjIzNDdCMDIw NUJERjRGNzYwHhcNMjYwMzI3MDQ0MDU2WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM2MGE1OC0xMjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshByQkpHkJJeL31/p3BczQkI51tZgpasxYEwyS6y3o+jhsMwl4vzev3IVRNv Qgng601TpzlJRJkO1EySpVK7zHz+vkjP1zsx1UiunkaP2tDCPp6sqMjlXDwzd1SU xL6s/TKwX5OckezCiA2zc2vV/eqxf9q39BD2XPh844vuAHhGNBD8WTHizwpvCpru HUcPpyNZ5n0cGoT/RR+kAjbvvDs5PKMgsdH/rBcbSC03ds1xLKoEfn0dTzmIEjsG 72egyuzKacAXrd2rvq5NOBj6PG62mLxxxxV4uOQXqFsPfwH1IFFM5BheG0T1xFWk i3zw+8qhl5PkCiAAvpSfGJIoTQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNKs+iRM S5cD6sN7QDk3mW27QteSMB8GA1UdIwQYMBaAFMrj24re56FqtspTfyNHsCBb3092 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTZGRi9EMjgxRTczMDJF MjkxMUVGQkFFRDZBMUFDNEY5QUUwMi95dVBiaXQ3bm9XcTJ5bE5fSTBld0lGdmZU M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l1UGJpdDdub1dxMnlsTl9JMGV3SUZ2ZlQzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE2RkYvRDI4MUU3MzAyRTI5MTFFRkJBRUQ2QTFBQzRGOUFFMDIvNjY0NzZFMTgy RUFDMTFFRkFBQUY4RTY3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAygOIMA8EAgACMAkDBwAgAQ3uwAAwDQYJKoZIhvcNAQELBQADggEB AE3nWOi3RulUUeL9wdcsSjQFWA6LSk58Jat5YME4U5fLxEXVvdxdBgQu6Z0ZA/xS 5JLFZzAQJ+AYeMCfuBn7/zb4Umm5/WMXKxCaUaecisDgN6ul3Z0vLcZTXPUEBnqW IbzhkixgeFo4xlxt1cus0RlHO/lCrXY+GqA15G7ajjdxLh839yLVrBCn0uDBShzB U6bNYvkRdFlb+sY0vB5PZRVMCfY4MGM9g+JbXukOGjmpv6dqg3feYqcki8mg6vVi HDb7d7c4qiSB3cpK4/750UvGCAsaiTt1qIo31MwCpnwM5uf5+z4FDBClydkEZRHw BsGuiuL7IL5HI8o6ZZiQK24= -----END CERTIFICATE-----Generated at Fri Apr 17 06:55:16 2026 by rpki-client