$ rpki-client -vvf rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa File: 63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa (raw, json) Hash identifier: Ij8giMsojGjd18nsyvvGbo7KTBQMPLu9CA9WU2m1cO4= Subject key identifier: 37:DF:4D:6C:28:FA:46:91:7B:83:EC:56:0A:50:8A:88:D6:6C:DE:05 Certificate issuer: /CN=A91F223F/serialNumber=DBDAD009017D91DFB438D70D1B8D4D34862F068E Certificate serial: 018F Authority key identifier: DB:DA:D0:09:01:7D:91:DF:B4:38:D7:0D:1B:8D:4D:34:86:2F:06:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29rQCQF9kd-0ONcNG41NNIYvBo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa Signing time: Mon 29 Dec 2025 03:22:49 +0000 ROA not before: Mon 29 Dec 2025 03:22:49 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 45359 IP address blocks: 202.49.172.0/24 maxlen: 24 202.49.173.0/24 maxlen: 24 202.49.174.0/24 maxlen: 24 202.49.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/29rQCQF9kd-0ONcNG41NNIYvBo4.crl rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/29rQCQF9kd-0ONcNG41NNIYvBo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29rQCQF9kd-0ONcNG41NNIYvBo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Feb 2026 02:43:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 399 (0x18f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F223F, serialNumber=DBDAD009017D91DFB438D70D1B8D4D34862F068E Validity Not Before: Dec 29 03:22:49 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6951f409-8fc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bd:1d:8f:c0:9c:2b:3a:82:6e:80:83:d9:fe: 0b:52:75:c6:e5:de:0a:b4:61:2d:4c:bb:e4:2a:2b: 9d:a6:1d:4b:4d:38:fd:4b:96:d0:02:3c:d0:41:ef: bb:4c:4f:93:a1:64:b3:f4:9a:34:eb:d9:b4:46:cb: f3:23:b8:77:7d:d6:92:5d:a2:e8:00:c5:61:20:54: 30:e1:5f:bf:ef:eb:c8:d1:31:2d:f8:38:21:96:6f: e2:a3:d4:d1:33:a8:c8:96:24:01:17:1c:e5:47:09: 9a:96:43:71:2e:47:20:00:08:3a:fb:a8:3c:9d:ae: 2f:98:b5:4c:58:30:40:4e:b3:31:ec:6d:34:00:b7: 11:ad:f7:9d:f7:fa:af:da:99:7a:4d:00:1f:38:a1: 24:34:56:6c:a7:18:f6:cd:72:34:13:ce:5b:d4:c2: ed:93:88:83:60:dd:c0:45:07:a6:7c:ed:4a:98:5c: 9e:67:c9:5d:9e:5d:30:87:da:4b:08:31:aa:ec:28: ca:d9:7f:13:3a:c5:de:35:9c:44:c5:47:df:33:59: 7e:ab:d8:e4:c2:ba:3b:35:70:3e:64:d5:47:52:be: 17:4a:29:e7:95:5e:51:ab:ff:68:58:15:a5:28:ba: 22:49:07:2d:a1:0c:1e:29:72:db:71:ad:1f:1d:26: f1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DF:4D:6C:28:FA:46:91:7B:83:EC:56:0A:50:8A:88:D6:6C:DE:05 X509v3 Authority Key Identifier: keyid:DB:DA:D0:09:01:7D:91:DF:B4:38:D7:0D:1B:8D:4D:34:86:2F:06:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/29rQCQF9kd-0ONcNG41NNIYvBo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29rQCQF9kd-0ONcNG41NNIYvBo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F223F/0969127C8CAA11EE864DFD6DC4F9AE02/63E8E1AA8CAA11EE8B20D86EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.172.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:ae:69:7e:18:eb:0b:a5:d7:6c:30:4e:ac:aa:de:87:bf:36: 89:49:32:d0:2e:b9:88:5c:be:c5:21:df:0c:66:ef:b5:88:b8: 37:8d:57:6a:89:e3:0c:a0:b3:ca:75:c2:3a:2d:a2:34:f4:2b: ad:58:47:0a:91:c2:79:ba:5c:62:d9:5b:f6:b7:25:39:e8:4d: 01:d8:68:a2:75:1f:01:eb:fa:4a:9b:48:c8:42:49:2f:d7:c7: 22:79:45:50:96:d1:5f:25:f9:2c:c5:7e:c0:af:ae:43:b9:71: b1:71:7f:22:f5:d2:f8:14:22:55:62:c4:59:bc:72:be:9a:84: c3:e6:91:4d:99:c2:93:75:3b:cd:e6:59:69:59:a2:0f:8e:50: d6:08:43:21:c4:bd:05:a6:ac:c8:eb:52:e1:25:6d:65:90:2b: 4e:2d:4d:3d:f2:cd:00:e0:18:f7:da:61:27:ad:77:e8:68:46: af:f8:63:e0:cc:7e:30:6f:ef:21:82:d0:b1:d5:8d:c0:c4:e1: f2:c5:2f:bc:ce:5a:2e:57:b9:15:ab:bb:68:9a:7c:27:71:fd: cc:b7:a8:cc:b0:ca:1e:0c:a2:94:45:15:80:3f:78:c0:9f:01: e2:6c:6a:13:64:cc:64:7b:10:99:8d:df:8e:71:28:b2:24:79: 0c:ec:bb:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RjIyM0YxMTAvBgNVBAUTKERCREFEMDA5MDE3RDkxREZCNDM4RDcwRDFCOEQ0RDM0 ODYyRjA2OEUwHhcNMjUxMjI5MDMyMjQ5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDDA02OTUxZjQwOS04ZmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA070dj8CcKzqCboCD2f4LUnXG5d4KtGEtTLvkKiudph1LTTj9S5bQAjzQQe+7 TE+ToWSz9Jo069m0RsvzI7h3fdaSXaLoAMVhIFQw4V+/7+vI0TEt+Dghlm/io9TR M6jIliQBFxzlRwmalkNxLkcgAAg6+6g8na4vmLVMWDBATrMx7G00ALcRrfed9/qv 2pl6TQAfOKEkNFZspxj2zXI0E85b1MLtk4iDYN3ARQemfO1KmFyeZ8ldnl0wh9pL CDGq7CjK2X8TOsXeNZxExUffM1l+q9jkwro7NXA+ZNVHUr4XSinnlV5Rq/9oWBWl KLoiSQctoQweKXLbca0fHSbxDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDffTWwo +kaRe4PsVgpQiojWbN4FMB8GA1UdIwQYMBaAFNva0AkBfZHftDjXDRuNTTSGLwaO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjIzRi8wOTY5MTI3QzhD QUExMUVFODY0REZENkRDNEY5QUUwMi8yOXJRQ1FGOWtkLTBPTmNORzQxTk5JWXZC bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI5clFDUUY5a2QtME9OY05HNDFOTklZdkJvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjIyM0YvMDk2OTEyN0M4Q0FBMTFFRTg2NERGRDZEQzRGOUFFMDIvNjNFOEUxQUE4 Q0FBMTFFRThCMjBEODZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKMawwDQYJKoZIhvcNAQELBQADggEBAJquaX4Y6wul12ww Tqyq3oe/NolJMtAuuYhcvsUh3wxm77WIuDeNV2qJ4wygs8p1wjotojT0K61YRwqR wnm6XGLZW/a3JTnoTQHYaKJ1HwHr+kqbSMhCSS/XxyJ5RVCW0V8l+SzFfsCvrkO5 cbFxfyL10vgUIlVixFm8cr6ahMPmkU2ZwpN1O83mWWlZog+OUNYIQyHEvQWmrMjr UuElbWWQK04tTT3yzQDgGPfaYSetd+hoRq/4Y+DMfjBv7yGC0LHVjcDE4fLFL7zO Wi5XuRWru2iafCdx/cy3qMywyh4MopRFFYA/eMCfAeJsahNkzGR7EJmN345xKLIk eQzsu18= -----END CERTIFICATE-----Generated at Thu Feb 19 22:01:11 2026 by rpki-client