$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/AC2F8D9691FE11F08175A865C4F9AE02.roa File: AC2F8D9691FE11F08175A865C4F9AE02.roa (raw, json) Hash identifier: pRtUXARVL6N22FXj01l+XXp/SxYgq6mU6cKkNkKO6tc= Subject key identifier: 38:47:0F:D7:B5:4A:81:58:94:81:94:69:79:3C:53:F6:7B:3D:42:C7 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0250 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/AC2F8D9691FE11F08175A865C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:52 +0000 ROA not before: Wed 31 Dec 2025 04:24:19 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137261 IP address blocks: 202.28.60.0/24 maxlen: 24 202.28.62.0/24 maxlen: 24 2001:3c8:1408::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 592 (0x250) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:19 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490a4-eb3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d5:71:7c:f0:4e:0d:73:a1:67:d8:5e:66:aa: b7:60:50:98:dd:b2:16:55:a5:b0:97:4a:cb:da:92: 5f:e1:9e:e3:5c:64:62:6f:0d:1e:4b:86:97:1d:1c: c1:64:00:9a:66:75:70:55:e3:b0:1a:0c:09:b0:4e: 25:3b:f6:1b:6e:99:f6:3c:b0:a7:65:18:57:bf:ab: 9b:fe:a9:f0:92:08:8c:d8:76:8f:5f:c4:64:3a:6b: 70:d1:bf:b2:ee:c6:de:b7:f3:1c:e0:49:71:69:4a: b2:08:86:d4:1c:39:da:02:df:07:70:4d:85:a2:bc: 69:a3:fd:6b:71:a4:75:cd:c2:9d:3e:24:ec:95:ba: 7f:6b:e1:5d:d9:5d:de:63:57:53:d0:a3:c5:bc:d4: 05:02:94:fa:f1:60:ed:76:c0:5f:6b:a6:45:5d:d3: d5:ad:3b:1f:4f:06:f4:ca:2d:f7:c4:f4:af:ea:97: 5c:08:71:f6:e6:0c:c1:fe:fb:58:4a:28:2d:e8:7c: 1b:ce:dc:ac:49:cb:c5:4a:a1:69:cc:40:f6:80:17: 42:d8:75:2e:ca:c4:09:46:5f:b0:17:de:80:a9:f5: ed:97:6a:d4:00:ba:d0:da:5b:a8:22:1d:72:0f:d1: de:c7:08:81:49:de:18:00:bb:ec:1e:36:4a:57:43: 16:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:47:0F:D7:B5:4A:81:58:94:81:94:69:79:3C:53:F6:7B:3D:42:C7 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/AC2F8D9691FE11F08175A865C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.28.60.0/24 202.28.62.0/24 IPv6: 2001:3c8:1408::/48 Signature Algorithm: sha256WithRSAEncryption 8a:2c:3d:24:9a:60:57:17:a6:8b:47:7c:7e:4f:e2:84:00:1d: 96:70:94:59:6f:61:4d:60:8f:4a:0a:f1:b7:74:9f:a0:8a:77: 2d:ab:cf:0d:97:c3:85:a8:a2:e6:24:96:de:d6:bc:43:2e:ec: f7:20:54:1f:82:68:79:bf:a6:ab:d5:13:94:58:23:3f:fc:2f: c0:0c:8d:39:d9:e7:2f:a8:10:b0:8c:a9:92:80:3f:a5:0a:65: a7:ee:b9:62:c7:70:53:dc:d2:0f:ee:57:d5:5e:03:c2:0f:5c: b6:ab:e5:d4:55:6c:87:d8:f4:01:d2:2a:88:90:46:f9:36:ac: 6e:9a:ab:b0:20:ce:07:07:08:b2:39:66:e8:59:12:25:7c:1c: f2:e8:45:d5:57:8b:9d:cd:ca:fb:da:3f:cb:12:6f:84:95:cf: 73:da:72:21:b8:e0:cf:56:a5:dc:c5:36:8b:18:c3:f5:cd:3f: 5c:d9:68:f3:72:08:18:f5:b7:04:50:c8:eb:eb:3c:fa:a4:7a: 8f:11:0a:86:7b:cb:5c:6c:a9:66:3a:bb:6a:6f:35:f5:d4:51: 8e:83:58:4d:34:b7:32:70:26:95:ff:fd:d0:98:d4:b5:98:ae: 67:50:4d:ba:32:cd:c4:2e:7a:aa:7c:8f:db:ba:9b:68:74:cd: f0:67:9b:59 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICAlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDE5WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBhNC1lYjNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNVxfPBODXOhZ9heZqq3YFCY3bIWVaWwl0rL2pJf4Z7jXGRibw0eS4aXHRzB ZACaZnVwVeOwGgwJsE4lO/Ybbpn2PLCnZRhXv6ub/qnwkgiM2HaPX8RkOmtw0b+y 7sbet/Mc4ElxaUqyCIbUHDnaAt8HcE2Forxpo/1rcaR1zcKdPiTslbp/a+Fd2V3e Y1dT0KPFvNQFApT68WDtdsBfa6ZFXdPVrTsfTwb0yi33xPSv6pdcCHH25gzB/vtY Sigt6HwbztysScvFSqFpzED2gBdC2HUuysQJRl+wF96AqfXtl2rUALrQ2luoIh1y D9HexwiBSd4YALvsHjZKV0MWqQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFDhHD9e1 SoFYlIGUaXk8U/Z7PULHMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQUMyRjhEOTY5 MUZFMTFGMDgxNzVBODY1QzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQAyhw8AwQAyhw+MA8EAgACMAkDBwAgAQPIFAgwDQYJKoZIhvcNAQEL BQADggEBAIosPSSaYFcXpotHfH5P4oQAHZZwlFlvYU1gj0oK8bd0n6CKdy2rzw2X w4WoouYklt7WvEMu7PcgVB+CaHm/pqvVE5RYIz/8L8AMjTnZ5y+oELCMqZKAP6UK ZafuuWLHcFPc0g/uV9VeA8IPXLar5dRVbIfY9AHSKoiQRvk2rG6aq7AgzgcHCLI5 ZuhZEiV8HPLoRdVXi53NyvvaP8sSb4SVz3PaciG44M9WpdzFNosYw/XNP1zZaPNy CBj1twRQyOvrPPqkeo8RCoZ7y1xsqWY6u2pvNfXUUY6DWE00tzJwJpX//dCY1LWY rmdQTboyzcQueqp8j9u6m2h0zfBnm1k= -----END CERTIFICATE-----Generated at Sun Mar 15 05:53:25 2026 by rpki-client