$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7CE0C4A0263E11F0BEF46E0CC4F9AE02.roa File: 7CE0C4A0263E11F0BEF46E0CC4F9AE02.roa (raw, json) Hash identifier: iyRgdjq2t2LQVTH4haZswKYypF9k+eCHdqj9CK7GMtA= Subject key identifier: 45:CC:76:56:5C:13:86:0E:8F:B3:67:90:BD:74:DA:F5:A9:BC:F5:EC Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0247 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7CE0C4A0263E11F0BEF46E0CC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:44 +0000 ROA not before: Wed 31 Dec 2025 04:24:11 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 133042 IP address blocks: 202.29.66.0/24 maxlen: 24 202.29.172.0/22 maxlen: 24 202.29.176.0/22 maxlen: 24 203.159.160.0/24 maxlen: 24 203.159.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:11 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4909c-20ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:88:d4:07:13:f5:82:7d:d5:76:c4:92:db:93: 91:d2:d9:a6:46:87:ce:1b:98:a5:37:4f:a9:18:f3: 82:e4:f5:7b:05:ee:ee:93:53:09:9c:70:64:8f:1b: 21:50:e0:1a:77:01:7d:22:13:43:27:b2:51:27:df: fc:56:16:42:9d:81:2a:15:23:0f:62:10:55:e7:f9: e9:d4:aa:9f:d7:eb:af:14:9f:4f:b6:62:96:70:c0: 4c:db:e3:1a:ef:f0:0f:ad:96:87:57:19:47:56:91: f1:db:56:93:66:1c:79:14:af:05:91:96:b7:05:f6: d7:f3:e9:36:48:e4:7a:fd:ae:24:60:58:26:35:c7: 03:d2:b0:59:ce:2d:16:48:fe:ea:4a:8f:90:65:70: 65:9b:57:60:4d:9e:08:07:6f:d4:13:41:d2:f4:e2: d9:34:a7:ea:68:96:a0:09:d3:f6:83:85:78:3a:43: 0a:92:eb:37:89:ad:89:14:dc:22:35:6f:99:82:68: b4:cd:60:1a:e4:e5:79:40:78:4b:c6:77:28:11:7d: b6:9e:7e:f9:ba:58:36:3e:a7:a0:9f:ef:f1:f6:08: 57:d6:b3:ff:a3:bb:e6:17:13:5d:82:c5:5b:6e:cc: 32:31:71:2f:fb:02:35:9b:31:3a:26:5f:ad:a0:9f: 14:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CC:76:56:5C:13:86:0E:8F:B3:67:90:BD:74:DA:F5:A9:BC:F5:EC X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/7CE0C4A0263E11F0BEF46E0CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.66.0/24 202.29.172.0-202.29.179.255 203.159.160.0/24 203.159.164.0/24 Signature Algorithm: sha256WithRSAEncryption 57:3d:33:bc:1e:5a:d5:18:c2:92:0e:8e:f0:3f:ec:c9:11:c4: d4:2f:12:81:1c:81:15:0a:df:13:04:50:88:1e:b7:75:a6:02: 3d:4a:8d:50:0e:f8:39:c7:07:1d:51:f2:55:c9:c6:ba:01:d3: a9:a9:8d:b4:e1:f8:c1:ce:c8:41:52:ce:74:93:9d:14:bb:6f: fc:bd:d4:d1:ce:69:38:3f:d9:22:83:b9:82:2b:4f:43:f6:4c: 01:7d:d8:97:fd:6d:9e:a1:7f:0e:7a:e0:bd:7f:de:db:36:ae: ef:df:98:97:d6:20:b2:e4:36:eb:cd:6b:b2:c8:a9:44:27:26: dd:18:3a:8f:1c:aa:a1:fc:1a:f8:49:9c:0f:77:2b:78:d7:2b: 7d:36:b6:6c:0c:18:75:29:99:2c:45:60:25:32:e8:9e:6d:e8: 82:47:72:f4:6c:68:fd:de:1b:60:11:86:b4:4b:25:3c:c8:58: 94:65:cc:25:c0:fe:5e:e3:48:71:3c:81:91:70:d9:4c:97:1d: 48:29:c7:5a:a9:af:41:6d:21:f2:5a:7f:00:95:92:0b:bd:01: a4:e8:dc:c4:c5:48:0a:44:07:ca:46:ec:a8:c9:d9:ad:17:a1: eb:ab:cc:64:5c:fe:96:c3:0a:2c:9e:39:d9:51:a1:6c:7d:24: dc:40:bc:7a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDExWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTA5Yy0yMGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIjUBxP1gn3VdsSS25OR0tmmRofOG5ilN0+pGPOC5PV7Be7uk1MJnHBkjxsh UOAadwF9IhNDJ7JRJ9/8VhZCnYEqFSMPYhBV5/np1Kqf1+uvFJ9PtmKWcMBM2+Ma 7/APrZaHVxlHVpHx21aTZhx5FK8FkZa3BfbX8+k2SOR6/a4kYFgmNccD0rBZzi0W SP7qSo+QZXBlm1dgTZ4IB2/UE0HS9OLZNKfqaJagCdP2g4V4OkMKkus3ia2JFNwi NW+Zgmi0zWAa5OV5QHhLxncoEX22nn75ulg2Pqegn+/x9ghX1rP/o7vmFxNdgsVb bswyMXEv+wI1mzE6Jl+toJ8UnQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFEXMdlZc E4YOj7NnkL102vWpvPXsMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvN0NFMEM0QTAy NjNFMTFGMEJFRjQ2RTBDQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgAwQAyh1CMAwDBALKHawDBALKHbADBADLn6ADBADLn6QwDQYJKoZIhvcN AQELBQADggEBAFc9M7weWtUYwpIOjvA/7MkRxNQvEoEcgRUK3xMEUIget3WmAj1K jVAO+DnHBx1R8lXJxroB06mpjbTh+MHOyEFSznSTnRS7b/y91NHOaTg/2SKDuYIr T0P2TAF92Jf9bZ6hfw564L1/3ts2ru/fmJfWILLkNuvNa7LIqUQnJt0YOo8cqqH8 GvhJnA93K3jXK302tmwMGHUpmSxFYCUy6J5t6IJHcvRsaP3eG2ARhrRLJTzIWJRl zCXA/l7jSHE8gZFw2UyXHUgpx1qpr0FtIfJafwCVkgu9AaTo3MTFSApEB8pG7KjJ 2a0XoeurzGRc/pbDCiyeOdlRoWx9JNxAvHo= -----END CERTIFICATE-----Generated at Sun Mar 15 05:53:26 2026 by rpki-client