$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AF0CF752FE6511EE93D6CC3AC4F9AE02.roa File: AF0CF752FE6511EE93D6CC3AC4F9AE02.roa (raw, json) Hash identifier: INelLhUiKYf/vXyhJtX2d+GWgZKz21m8R2nqKH0fFfM= Subject key identifier: FB:80:8F:9E:3A:91:E1:AA:35:76:AF:95:29:5C:74:2D:25:C9:DC:0A Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5EDF Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AF0CF752FE6511EE93D6CC3AC4F9AE02.roa Signing time: Mon 02 Mar 2026 22:20:04 +0000 ROA not before: Thu 28 Aug 2025 14:56:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24176 IP address blocks: 101.53.0.0/18 maxlen: 24 119.15.176.0/20 maxlen: 24 119.17.224.0/19 maxlen: 24 202.151.168.0/21 maxlen: 24 210.86.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24287 (0x5edf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d13-53ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:8a:52:0f:90:bc:b7:28:ab:d8:1d:3b:96: 0d:a3:e5:67:92:fe:b6:ea:75:be:85:5f:99:fb:f4: f1:af:37:ff:01:eb:2b:da:77:c4:ef:9c:a0:89:6b: 5c:a4:54:bd:cc:78:fa:57:c3:6d:b2:2c:d1:a1:4f: 83:3d:11:35:ab:6d:db:30:48:60:11:17:da:71:4b: 7a:0b:0e:4f:c5:49:00:55:d8:4a:d0:39:cf:9c:6d: bf:4d:fe:b2:bc:15:da:64:0b:b0:bf:ba:cb:bd:b1: 2b:45:7b:2f:67:cd:62:f8:64:c4:d4:54:19:f5:f8: 43:cf:eb:b7:b6:42:42:09:a6:83:21:0f:a7:0c:31: c8:d1:61:4f:30:55:72:72:26:db:96:ba:87:5a:ef: c4:95:30:c5:1a:d8:e3:23:82:0d:56:97:59:7d:56: 1c:a1:02:01:2b:7e:9c:73:ad:a4:82:4a:f5:d4:58: 18:24:6e:b2:41:76:fd:0b:cf:90:d6:30:32:7a:5d: af:d2:47:57:db:d2:9e:a2:7a:d8:6b:f1:ff:91:d9: 0d:05:00:52:4d:97:ba:08:30:7b:5a:48:81:72:dd: c8:e5:7e:d2:9a:8b:cb:80:98:08:8d:f9:ed:a2:90: c7:f3:a1:42:2e:4a:13:06:f1:c6:26:0a:e0:1f:09: ec:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:80:8F:9E:3A:91:E1:AA:35:76:AF:95:29:5C:74:2D:25:C9:DC:0A X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AF0CF752FE6511EE93D6CC3AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 101.53.0.0/18 119.15.176.0/20 119.17.224.0/19 202.151.168.0/21 210.86.232.0/21 Signature Algorithm: sha256WithRSAEncryption 50:3c:e5:9c:f4:a0:00:36:9c:68:cf:ce:ed:2c:24:b8:60:fb: d3:8f:77:68:1e:3f:3f:e7:0a:65:5c:af:7f:d2:52:9c:ba:da: cf:e6:07:91:f4:e5:2f:23:5e:7e:15:e2:c0:41:80:c1:bd:fb: d0:95:b7:75:85:53:8f:b9:3a:08:fb:5b:d1:de:6d:bb:f7:69: b1:73:0d:8c:f7:90:a9:79:54:a1:9c:f2:76:8a:49:06:66:97: 95:26:16:11:11:8f:cb:b6:fa:21:2a:bd:93:55:62:5a:4d:77: ce:4b:90:65:3b:6e:a7:0d:91:dd:09:36:8b:99:13:fc:1b:13: b9:f2:98:e3:df:b4:4b:85:db:c2:14:b9:a5:5c:44:ee:28:9a: 02:1d:63:9f:dc:f9:cb:8c:5c:cd:26:c5:01:c4:6d:78:71:ac: 69:c3:96:f1:be:73:28:97:f0:85:90:5d:6c:b2:63:a3:2a:8e: 1d:41:90:10:6c:c4:cc:51:f1:b9:f1:80:b1:16:4a:78:ef:8d: d3:89:e3:6e:d2:40:1a:85:46:c3:16:09:84:6b:2a:32:55:4a: e7:fa:df:43:38:21:7d:b0:b0:2a:56:c9:72:e6:8d:6b:7c:7a: 19:bb:ec:1e:56:4b:c5:37:bc:af:70:72:83:2d:a3:78:29:70: a7:57:07:51 -----BEGIN CERTIFICATE----- MIIFVDCCBDygAwIBAgICXt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjU2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQxMy01M2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuheKUg+QvLcoq9gdO5YNo+Vnkv626nW+hV+Z+/Txrzf/Aesr2nfE75ygiWtc pFS9zHj6V8NtsizRoU+DPRE1q23bMEhgERfacUt6Cw5PxUkAVdhK0DnPnG2/Tf6y vBXaZAuwv7rLvbErRXsvZ81i+GTE1FQZ9fhDz+u3tkJCCaaDIQ+nDDHI0WFPMFVy cibblrqHWu/ElTDFGtjjI4INVpdZfVYcoQIBK36cc62kgkr11FgYJG6yQXb9C8+Q 1jAyel2v0kdX29KeonrYa/H/kdkNBQBSTZe6CDB7WkiBct3I5X7SmovLgJgIjfnt opDH86FCLkoTBvHGJgrgHwnsCQIDAQABo4ICeDCCAnQwHQYDVR0OBBYEFPuAj546 keGqNXavlSlcdC0lydwKMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUYwQ0Y3NTJG RTY1MTFFRTkzRDZDQzNBQzRGOUFFMDIucm9hMDcGCCsGAQUFBwEHAQH/BCgwJjAk BAIAATAeAwQGZTUAAwQEdw+wAwQFdxHgAwQDypeoAwQD0lboMA0GCSqGSIb3DQEB CwUAA4IBAQBQPOWc9KAANpxoz87tLCS4YPvTj3doHj8/5wplXK9/0lKcutrP5geR 9OUvI15+FeLAQYDBvfvQlbd1hVOPuToI+1vR3m2792mxcw2M95CpeVShnPJ2ikkG ZpeVJhYREY/LtvohKr2TVWJaTXfOS5BlO26nDZHdCTaLmRP8GxO58pjj37RLhdvC FLmlXETuKJoCHWOf3PnLjFzNJsUBxG14caxpw5bxvnMol/CFkF1ssmOjKo4dQZAQ bMTMUfG58YCxFkp4743TieNu0kAahUbDFgmEayoyVUrn+t9DOCF9sLAqVsly5o1r fHoZu+weVkvFN7yvcHKDLaN4KXCnVwdR -----END CERTIFICATE-----Generated at Sat Mar 7 22:42:52 2026 by rpki-client