$ rpki-client -vvf rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa File: F5660FBC160611ECB3912A7EC4F9AE02.roa (raw, json) Hash identifier: jSGQxP09SiqSKhxNXc5lw5g218RQ1wLEioMxa2d9E88= Subject key identifier: C8:18:BD:BD:49:3B:CA:0A:13:BD:24:B8:FD:A1:B2:E2:82:F4:C5:D3 Certificate issuer: /CN=A91473F8/serialNumber=0BF2B5944C3A2CCAB6C1D12BC36A5AF3C2DCF77F Certificate serial: 0D59 Authority key identifier: 0B:F2:B5:94:4C:3A:2C:CA:B6:C1:D1:2B:C3:6A:5A:F3:C2:DC:F7:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa Signing time: Thu 26 Mar 2026 18:23:10 +0000 ROA not before: Thu 26 Mar 2026 18:23:10 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 38011 IP address blocks: 202.44.104.0/21 maxlen: 24 2402:21c0::/32 maxlen: 32 2402:21c0:100::/40 maxlen: 40 2402:21c0:200::/40 maxlen: 40 2402:21c0:300::/40 maxlen: 40 2402:21c0:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.crl rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 Apr 2026 23:18:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91473F8, serialNumber=0BF2B5944C3A2CCAB6C1D12BC36A5AF3C2DCF77F Validity Not Before: Mar 26 18:23:10 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69c5798e-eb2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:01:53:cf:b8:dd:3c:b8:6b:ef:20:dd:93:48: 86:ce:06:23:1d:96:9e:aa:5a:cd:d9:de:b7:e5:41: 8d:20:2a:44:ef:0b:a8:7d:1b:c5:90:94:2c:78:cc: 0e:c0:31:15:db:23:c9:42:70:87:e8:e0:f1:04:ed: 49:c6:e4:76:65:30:a3:16:1d:76:e2:26:c9:9c:f6: 93:1c:ef:c9:29:8b:d7:ec:b0:67:c4:ff:5b:ae:89: 33:d5:f4:fd:b8:d1:84:b7:7d:d6:a2:ba:5e:0c:91: 87:dc:ee:7d:6e:22:bc:e1:40:c8:a5:53:d7:58:c7: 88:ee:0e:c0:ff:5b:53:1b:26:22:0d:e7:29:8c:03: e4:4b:52:d8:be:3b:a1:d6:f3:66:0b:93:ae:bc:ba: fe:28:c8:c6:35:08:c6:26:21:8c:61:f2:26:06:69: f5:bc:03:d9:9c:8f:fc:2c:09:43:d2:3a:c9:53:69: ae:75:be:d6:5c:46:bf:89:1e:08:ed:e6:de:c8:99: 26:2e:af:17:4d:eb:e4:fe:1b:f5:3e:1e:97:4b:41: 66:a1:34:8f:10:52:d6:00:ff:4f:94:08:c3:53:1c: a4:b6:8b:d8:2b:3b:a2:0d:5a:81:99:79:bd:45:64: d6:72:72:67:1b:5f:7e:a1:74:d7:1e:d1:44:d9:e3: 98:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:18:BD:BD:49:3B:CA:0A:13:BD:24:B8:FD:A1:B2:E2:82:F4:C5:D3 X509v3 Authority Key Identifier: keyid:0B:F2:B5:94:4C:3A:2C:CA:B6:C1:D1:2B:C3:6A:5A:F3:C2:DC:F7:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/C_K1lEw6LMq2wdErw2pa88Lc938.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C_K1lEw6LMq2wdErw2pa88Lc938.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91473F8/4B456C88F36911E99C67A061C4F9AE02/F5660FBC160611ECB3912A7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.44.104.0/21 IPv6: 2402:21c0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:5c:5d:07:6e:29:56:41:54:a2:b9:6a:be:0e:b2:1d:75:b8: 95:6a:c2:a1:b0:40:6c:fe:1f:cd:ec:42:fd:0f:b0:b0:8a:50: e7:d4:c6:a9:bf:70:44:10:37:b1:fe:dc:da:79:1c:a6:a2:83: 84:af:55:64:c6:ce:ed:af:d7:81:8e:21:8d:38:1b:c0:f5:42: ff:59:f6:7f:6e:81:59:b8:06:40:31:82:c1:64:77:61:e1:a6: a1:af:67:42:9b:b5:11:6f:61:07:6d:b2:cd:38:87:2d:cf:2c: 28:70:61:72:2c:a6:1b:b6:7d:b3:9c:f1:c1:4c:88:d6:b9:1a: 8a:5b:c0:96:fa:85:cd:38:23:b2:a1:da:07:24:9a:b4:d9:6e: 64:1b:1e:20:d2:75:5f:fd:3b:c6:b9:b1:8b:1d:90:98:b1:fa: a7:32:22:ff:b7:8f:75:cc:4a:c5:30:9a:f2:ab:d6:35:22:31: 1c:b4:b4:e5:e4:dc:e2:a3:9d:8f:ed:a7:a1:aa:dd:1f:12:77: 1f:c6:58:48:20:cf:32:7c:ef:87:aa:5a:d2:03:f5:7a:4d:99: 00:60:19:23:aa:30:a4:89:22:39:2b:ed:bc:2a:54:14:d8:10: d6:38:ff:2f:c9:ae:fb:13:d2:92:04:31:9e:98:22:0b:27:3b: 7d:55:60:bc -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDczRjgxMTAvBgNVBAUTKDBCRjJCNTk0NEMzQTJDQ0FCNkMxRDEyQkMzNkE1QUYz QzJEQ0Y3N0YwHhcNMjYwMzI2MTgyMzEwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWM1Nzk4ZS1lYjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gFTz7jdPLhr7yDdk0iGzgYjHZaeqlrN2d635UGNICpE7wuofRvFkJQseMwO wDEV2yPJQnCH6ODxBO1JxuR2ZTCjFh124ibJnPaTHO/JKYvX7LBnxP9brokz1fT9 uNGEt33WorpeDJGH3O59biK84UDIpVPXWMeI7g7A/1tTGyYiDecpjAPkS1LYvjuh 1vNmC5OuvLr+KMjGNQjGJiGMYfImBmn1vAPZnI/8LAlD0jrJU2mudb7WXEa/iR4I 7ebeyJkmLq8XTevk/hv1Ph6XS0FmoTSPEFLWAP9PlAjDUxyktovYKzuiDVqBmXm9 RWTWcnJnG19+oXTXHtFE2eOY+wIDAQABo4ICbzCCAmswHQYDVR0OBBYEFMgYvb1J O8oKE70kuP2hsuKC9MXTMB8GA1UdIwQYMBaAFAvytZRMOizKtsHRK8NqWvPC3Pd/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzNGOC80QjQ1NkM4OEYz NjkxMUU5OUM2N0EwNjFDNEY5QUUwMi9DX0sxbEV3NkxNcTJ3ZEVydzJwYTg4TGM5 MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NfSzFsRXc2TE1xMndkRXJ3MnBhODhMYzkzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDczRjgvNEI0NTZDODhGMzY5MTFFOTlDNjdBMDYxQzRGOUFFMDIvRjU2NjBGQkMx NjA2MTFFQ0IzOTEyQTdFQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQDyixoMA0EAgACMAcDBQAkAiHAMA0GCSqGSIb3DQEBCwUAA4IBAQCM XF0HbilWQVSiuWq+DrIddbiVasKhsEBs/h/N7EL9D7CwilDn1Mapv3BEEDex/tza eRymooOEr1Vkxs7tr9eBjiGNOBvA9UL/WfZ/boFZuAZAMYLBZHdh4aahr2dCm7UR b2EHbbLNOIctzywocGFyLKYbtn2znPHBTIjWuRqKW8CW+oXNOCOyodoHJJq02W5k Gx4g0nVf/TvGubGLHZCYsfqnMiL/t491zErFMJryq9Y1IjEctLTl5Nzio52P7aeh qt0fEncfxlhIIM8yfO+HqlrSA/V6TZkAYBkjqjCkiSI5K+28KlQU2BDWOP8vya77 E9KSBDGemCILJzt9VWC8 -----END CERTIFICATE-----Generated at Tue Mar 31 12:47:57 2026 by rpki-client