$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/4B9F1AA6354F11EC8531C34DC4F9AE02.roa File: 4B9F1AA6354F11EC8531C34DC4F9AE02.roa (raw, json) Hash identifier: FjlCfaAiS0/SIVjNyB82F27uQR6v8yVVRfaKD0rMx5w= Subject key identifier: 61:0E:87:D3:5B:1F:E4:5F:B8:C5:07:D7:FA:F5:7C:D9:DB:DE:93:4E Certificate issuer: /CN=A91C3ABA/serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Certificate serial: 0547 Authority key identifier: E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/4B9F1AA6354F11EC8531C34DC4F9AE02.roa Signing time: Wed 01 Apr 2026 00:30:20 +0000 ROA not before: Wed 01 Apr 2026 00:30:20 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 24265 IP address blocks: 202.58.4.0/22 maxlen: 22 202.58.5.0/24 maxlen: 24 203.190.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 23:15:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3ABA, serialNumber=E5993155C4443A2E56C0DE2333A44B56CAD4919C Validity Not Before: Apr 1 00:30:20 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cc671c-bef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:98:92:59:2d:be:c6:02:35:da:a5:a1:ec: 0f:51:a7:98:2e:d2:42:b3:f9:49:79:bf:8d:6a:0f: 4c:ee:28:80:e5:f1:12:ab:98:4e:5d:94:d0:3b:4b: 2e:16:d5:9c:a8:f7:13:97:58:a6:12:0d:7d:0f:70: 82:a6:7b:e9:a7:72:42:6c:e2:b1:a3:01:4f:51:ae: 22:b0:4f:cf:ed:7f:b1:fe:b7:aa:85:98:2b:61:29: 6a:df:50:cc:2f:bb:8f:f4:88:af:a6:83:2c:24:ec: c3:0d:1d:c6:92:88:3c:c1:f0:57:20:37:56:34:41: 94:47:a8:d3:f7:79:6a:d9:c8:12:59:59:c4:37:91: 8a:43:39:82:5a:02:e4:2d:ca:63:a6:a1:ac:39:a8: 11:6a:e6:ef:ee:9e:1e:2a:c7:af:a2:5c:24:18:b3: 3b:99:d2:be:2c:ca:b4:e2:a6:16:88:86:82:9a:10: 25:9e:8b:98:41:52:94:ce:41:77:bc:51:7a:77:d1: 4b:a0:a3:e1:2a:df:c5:3b:f6:e8:55:92:29:cc:8c: c3:b6:79:72:1d:bc:97:3f:5d:eb:df:1f:44:89:56: 89:a8:6a:e2:23:32:d9:ab:75:f7:5d:67:e8:d0:e1: 8c:87:c0:b4:8b:c1:a4:f2:84:33:4b:48:10:94:56: 5e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:0E:87:D3:5B:1F:E4:5F:B8:C5:07:D7:FA:F5:7C:D9:DB:DE:93:4E X509v3 Authority Key Identifier: keyid:E5:99:31:55:C4:44:3A:2E:56:C0:DE:23:33:A4:4B:56:CA:D4:91:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/5ZkxVcREOi5WwN4jM6RLVsrUkZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ZkxVcREOi5WwN4jM6RLVsrUkZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3ABA/985F0922354B11ECB62DBD48C4F9AE02/4B9F1AA6354F11EC8531C34DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.58.4.0/22 203.190.28.0/22 Signature Algorithm: sha256WithRSAEncryption 23:87:be:89:05:9d:81:1b:56:4f:da:18:a4:41:52:6c:e0:ca: fb:fc:d0:9e:2a:8a:a4:14:36:97:5b:ee:cc:e0:1d:b7:61:65: f8:bd:45:de:3e:97:64:9b:62:98:f3:51:d2:c2:96:3a:5d:10: 5f:3a:89:04:6c:d8:1e:a9:86:a8:2f:a4:c9:41:08:9f:34:9f: c3:e0:5f:b1:7c:ed:3d:ea:ad:99:db:6f:b9:00:e8:2a:fd:5e: 4e:29:db:5b:09:e6:24:a8:ff:03:5b:6b:73:f2:a2:76:ed:42: 09:0b:78:40:05:ae:5e:24:4a:4d:16:dc:34:3c:f2:d1:48:8f: 91:25:05:a6:14:cd:50:42:ae:ee:05:95:d9:d2:e7:75:6c:ec: c8:ef:4a:74:a9:37:5a:b6:f1:10:41:94:c3:c1:dd:9d:0c:0b: c1:60:df:18:86:47:1d:72:9f:e9:10:34:7c:98:a5:cd:d4:0a: 62:fa:30:a2:4c:02:d2:19:cf:71:db:3d:81:26:0f:26:bd:68: 50:09:d7:77:ba:8c:ac:ae:da:02:ea:e1:fd:6c:5d:fa:e5:c3: 19:f3:c2:f8:92:92:91:36:34:bc:15:7f:01:02:c6:f9:c7:fe: e0:7c:1a:17:a7:75:10:e2:2d:dc:65:b1:f1:ec:3b:1e:87:06: 1b:a8:d3:02 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBQkExMTAvBgNVBAUTKEU1OTkzMTU1QzQ0NDNBMkU1NkMwREUyMzMzQTQ0QjU2 Q0FENDkxOUMwHhcNMjYwNDAxMDAzMDIwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNjNjcxYy1iZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7yYklktvsYCNdqloewPUaeYLtJCs/lJeb+Nag9M7iiA5fESq5hOXZTQO0su FtWcqPcTl1imEg19D3CCpnvpp3JCbOKxowFPUa4isE/P7X+x/reqhZgrYSlq31DM L7uP9IivpoMsJOzDDR3Gkog8wfBXIDdWNEGUR6jT93lq2cgSWVnEN5GKQzmCWgLk LcpjpqGsOagRaubv7p4eKsevolwkGLM7mdK+LMq04qYWiIaCmhAlnouYQVKUzkF3 vFF6d9FLoKPhKt/FO/boVZIpzIzDtnlyHbyXP13r3x9EiVaJqGriIzLZq3X3XWfo 0OGMh8C0i8Gk8oQzS0gQlFZedQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFGEOh9Nb H+RfuMUH1/r1fNnb3pNOMB8GA1UdIwQYMBaAFOWZMVXERDouVsDeIzOkS1bK1JGc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0FCQS85ODVGMDkyMjM1 NEIxMUVDQjYyREJENDhDNEY5QUUwMi81Wmt4VmNSRU9pNVd3TjRqTTZSTFZzclVr WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVaa3hWY1JFT2k1V3dONGpNNlJMVnNyVWtady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNBQkEvOTg1RjA5MjIzNTRCMTFFQ0I2MkRCRDQ4QzRGOUFFMDIvNEI5RjFBQTYz NTRGMTFFQzg1MzFDMzREQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCyjoEAwQCy74cMA0GCSqGSIb3DQEBCwUAA4IBAQAjh76JBZ2BG1ZP 2hikQVJs4Mr7/NCeKoqkFDaXW+7M4B23YWX4vUXePpdkm2KY81HSwpY6XRBfOokE bNgeqYaoL6TJQQifNJ/D4F+xfO096q2Z22+5AOgq/V5OKdtbCeYkqP8DW2tz8qJ2 7UIJC3hABa5eJEpNFtw0PPLRSI+RJQWmFM1QQq7uBZXZ0ud1bOzI70p0qTdatvEQ QZTDwd2dDAvBYN8Yhkcdcp/pEDR8mKXN1Api+jCiTALSGc9x2z2BJg8mvWhQCdd3 uoysrtoC6uH9bF365cMZ88L4kpKRNjS8FX8BAsb5x/7gfBoXp3UQ4i3cZbHx7Dse hwYbqNMC -----END CERTIFICATE-----Generated at Sun Apr 5 21:47:22 2026 by rpki-client