$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/144FD192722011EF981BE15DC4F9AE02.roa File: 144FD192722011EF981BE15DC4F9AE02.roa (raw, json) Hash identifier: gH05SIojqxUSHRFnbs+eHkZe0CxezsxNH1zXvxyN+V4= Subject key identifier: 67:3E:73:E2:5C:52:CD:13:58:F5:BD:50:5C:B1:C2:6F:8C:11:25:5E Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0272 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/144FD192722011EF981BE15DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:17:22 +0000 ROA not before: Wed 31 Dec 2025 04:24:51 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 56277 IP address blocks: 202.29.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:51 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490c2-ffda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:70:4d:34:37:e5:ce:fe:15:06:d5:ad:d3:9c: 60:61:35:ab:57:d6:53:b5:b8:c6:6c:26:78:96:95: da:f9:15:1b:49:66:42:18:0e:12:c3:40:06:27:35: 72:17:fc:7a:3e:6c:a0:b9:0b:0f:db:9c:aa:d0:ec: 00:08:4a:2c:c5:2b:c5:4d:de:70:00:f8:5c:a6:c3: 78:0e:a6:81:3f:e3:df:d7:3e:45:69:d4:38:92:58: b4:50:4a:7e:1d:b8:45:0a:24:ef:2c:2b:9e:55:a7: 5d:90:7a:83:ee:fe:a7:fa:35:46:50:9f:41:e4:24: 63:af:ac:bf:12:c0:23:95:93:33:45:e6:b8:f5:f1: b4:ae:d3:33:73:2a:93:0f:c1:7a:7d:5f:2c:fc:fa: e0:d4:ab:47:b8:e7:ad:49:2a:71:36:4b:ca:00:13: b0:b1:94:38:fc:12:bc:0b:5b:0c:0e:50:4c:95:f6: 1f:80:d2:12:e6:78:cf:4d:70:d7:d6:18:e2:da:e4: e7:a2:72:b2:52:27:d3:76:20:3a:0e:e6:c3:b0:6e: 7f:aa:e2:eb:83:b9:6e:de:c4:dd:d9:83:e7:37:7b: 95:d8:ee:23:76:90:00:3d:16:2b:35:29:53:97:e1: 25:60:08:08:e4:7d:3a:0d:f0:23:59:3c:84:84:9c: c9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3E:73:E2:5C:52:CD:13:58:F5:BD:50:5C:B1:C2:6F:8C:11:25:5E X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/144FD192722011EF981BE15DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.23.0/24 Signature Algorithm: sha256WithRSAEncryption a0:77:2e:36:5c:69:89:55:a3:4c:51:db:72:9c:61:c2:1d:8a: 0b:cb:35:ec:f9:30:30:64:8d:a1:c1:38:94:73:01:50:40:f5: f1:82:25:7a:89:7e:76:94:51:9f:c5:68:5c:66:12:50:b8:ea: 4b:b7:73:e1:34:81:b7:30:43:56:57:35:1b:a9:76:b3:cb:42: d2:29:7d:39:73:40:49:d1:c9:fc:b5:a0:7d:08:cb:ff:c4:56: 7d:b2:ef:10:8a:e1:54:a2:58:f9:03:8e:c2:04:cd:6e:74:97: 89:e3:1b:84:b5:6a:ca:77:40:71:02:a1:be:ed:17:28:d5:d1: 5d:18:e9:89:65:7a:da:42:65:4d:2a:e7:a1:d8:0f:98:6b:49: a9:e8:e7:63:b9:06:93:e9:49:ba:84:58:fc:62:5e:24:51:ca: e5:31:3f:ad:02:ad:1b:75:cf:c1:e4:86:ee:04:6e:96:02:8f: db:cc:e3:45:cc:01:79:66:f9:b9:57:f9:6c:47:42:fd:74:ee: d6:e5:96:e1:8b:34:05:a1:bd:0c:31:0f:e0:6c:97:1a:47:14: 38:01:9e:ca:9b:d9:c5:ee:6f:46:78:95:64:08:61:e5:0a:4c: 8b:2f:01:9a:a0:e8:d3:12:29:1b:d4:1c:c9:0c:8f:93:af:54: 37:85:c4:94 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDUxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBjMi1mZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn3BNNDflzv4VBtWt05xgYTWrV9ZTtbjGbCZ4lpXa+RUbSWZCGA4Sw0AGJzVy F/x6PmyguQsP25yq0OwACEosxSvFTd5wAPhcpsN4DqaBP+Pf1z5FadQ4kli0UEp+ HbhFCiTvLCueVaddkHqD7v6n+jVGUJ9B5CRjr6y/EsAjlZMzRea49fG0rtMzcyqT D8F6fV8s/Prg1KtHuOetSSpxNkvKABOwsZQ4/BK8C1sMDlBMlfYfgNIS5njPTXDX 1hji2uTnonKyUifTdiA6DubDsG5/quLrg7lu3sTd2YPnN3uV2O4jdpAAPRYrNSlT l+ElYAgI5H06DfAjWTyEhJzJEwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFGc+c+Jc Us0TWPW9UFyxwm+MESVeMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvMTQ0RkQxOTI3 MjIwMTFFRjk4MUJFMTVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyh0XMA0GCSqGSIb3DQEBCwUAA4IBAQCgdy42XGmJVaNMUdtynGHC HYoLyzXs+TAwZI2hwTiUcwFQQPXxgiV6iX52lFGfxWhcZhJQuOpLt3PhNIG3MENW VzUbqXazy0LSKX05c0BJ0cn8taB9CMv/xFZ9su8QiuFUolj5A47CBM1udJeJ4xuE tWrKd0BxAqG+7Rco1dFdGOmJZXraQmVNKueh2A+Ya0mp6OdjuQaT6Um6hFj8Yl4k UcrlMT+tAq0bdc/B5IbuBG6WAo/bzONFzAF5Zvm5V/lsR0L9dO7W5ZbhizQFob0M MQ/gbJcaRxQ4AZ7Km9nF7m9GeJVkCGHlCkyLLwGaoOjTEikb1BzJDI+Tr1Q3hcSU -----END CERTIFICATE-----Generated at Sun Mar 15 05:54:42 2026 by rpki-client