$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C241C00E721511EF9D7B9F3DC4F9AE02.roa File: C241C00E721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: i+SmaXziBQzJgIxW8ciFykNkBGbIWaK+mZhp7dH0W6U= Subject key identifier: 26:9A:8C:7A:2B:0D:7B:A5:79:00:94:CE:BB:BC:3F:0C:57:2E:24:50 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 024E Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C241C00E721511EF9D7B9F3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:50 +0000 ROA not before: Wed 31 Dec 2025 04:24:17 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137198 IP address blocks: 202.29.26.0/24 maxlen: 24 2001:3c8:1306::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:17 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490a2-059c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:dc:ab:a1:29:b9:b4:f3:e7:62:0e:9a:4a:d8: 5e:a4:63:87:4a:24:0a:ad:59:24:92:9d:4f:02:45: cb:96:e5:ac:67:59:6d:9e:f9:8f:35:ba:86:71:3a: 51:de:76:fc:08:b4:dd:1f:85:14:65:a7:ee:4d:bf: 77:7b:4d:f3:af:2a:89:bd:8b:6b:88:73:9b:7b:59: c6:8f:4f:e7:f2:50:9d:20:0d:42:b0:a6:f8:31:bb: 1d:da:9a:a4:7c:e4:52:8b:d0:d0:e7:2f:b3:25:65: 58:b2:d6:c1:35:e4:be:2b:f5:a5:6d:c7:8e:98:d4: bb:3e:33:e2:b6:3d:01:41:d2:8c:70:f4:89:53:ce: f4:ec:18:34:be:0b:bd:8c:e6:0a:2e:b1:59:e3:08: ba:8d:bd:cf:44:5d:f8:82:8d:ec:d5:b0:40:1a:14: 59:51:e2:46:fa:18:1a:3c:5e:f2:a4:20:78:96:ae: d0:d8:1a:c9:ed:a8:3f:8b:ab:2d:55:59:c8:4b:c5: e6:15:7d:51:cd:35:6f:9d:c2:a0:5b:1c:d0:7b:1e: af:c1:d7:b0:91:71:5a:b7:c1:e5:c5:d8:82:88:82: 00:03:bd:52:cd:01:ed:ec:fa:fc:b6:24:46:2f:f7: aa:37:68:c3:61:a8:62:87:30:94:6b:95:bd:4b:41: 15:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:9A:8C:7A:2B:0D:7B:A5:79:00:94:CE:BB:BC:3F:0C:57:2E:24:50 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C241C00E721511EF9D7B9F3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.26.0/24 IPv6: 2001:3c8:1306::/48 Signature Algorithm: sha256WithRSAEncryption 3a:b7:a8:09:d7:fe:2d:5d:b2:47:e5:49:1d:54:47:bb:ed:21: 57:6b:e8:82:f2:ac:9d:5d:64:d6:38:39:2b:db:07:c9:63:01: 4d:eb:9c:0c:bd:9e:fa:d6:ad:d4:14:d7:eb:9f:27:1b:2f:26: 18:28:99:62:0d:63:6e:e9:a2:e1:35:c5:39:5a:fe:d9:bc:3c: a9:91:06:e7:43:5d:49:2d:3f:36:f4:ce:47:b7:4a:09:a4:42: 82:47:41:79:b7:ed:16:78:50:fd:10:b3:9d:c6:23:9b:c8:7c: 3e:2c:47:fd:a8:71:c8:2c:b2:07:dd:70:02:4e:b6:7d:0c:d1: b2:e4:ad:43:0c:34:2a:5e:42:1b:ad:90:e3:36:d8:94:80:28: 08:1e:f4:b1:a6:7d:21:1d:60:ee:d1:69:57:7b:d5:a1:36:bd: 44:26:27:07:89:f0:30:6d:3a:8f:fb:4b:ed:16:69:f2:de:78: c4:7b:78:4a:b6:ac:0b:79:67:cc:f9:d1:5c:2b:1a:79:fe:f4: 31:91:4f:b4:07:7e:c1:b4:70:2c:de:01:bd:a4:e0:e7:3b:0b: 28:ab:df:e2:c1:5f:07:d1:34:84:c0:69:f2:b8:79:3f:15:83: bd:a5:7c:2c:44:7f:16:f4:67:cc:7f:be:24:26:04:7a:6f:3c: f6:9a:12:c8 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDE3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBhMi0wNTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdyroSm5tPPnYg6aSthepGOHSiQKrVkkkp1PAkXLluWsZ1ltnvmPNbqGcTpR 3nb8CLTdH4UUZafuTb93e03zryqJvYtriHObe1nGj0/n8lCdIA1CsKb4Mbsd2pqk fORSi9DQ5y+zJWVYstbBNeS+K/WlbceOmNS7PjPitj0BQdKMcPSJU8707Bg0vgu9 jOYKLrFZ4wi6jb3PRF34go3s1bBAGhRZUeJG+hgaPF7ypCB4lq7Q2BrJ7ag/i6st VVnIS8XmFX1RzTVvncKgWxzQex6vwdewkXFat8HlxdiCiIIAA71SzQHt7Pr8tiRG L/eqN2jDYahihzCUa5W9S0EVDwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFCaajHor DXuleQCUzru8PwxXLiRQMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQzI0MUMwMEU3 MjE1MTFFRjlEN0I5RjNEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyh0aMA8EAgACMAkDBwAgAQPIEwYwDQYJKoZIhvcNAQELBQADggEB ADq3qAnX/i1dskflSR1UR7vtIVdr6ILyrJ1dZNY4OSvbB8ljAU3rnAy9nvrWrdQU 1+ufJxsvJhgomWINY27pouE1xTla/tm8PKmRBudDXUktPzb0zke3SgmkQoJHQXm3 7RZ4UP0Qs53GI5vIfD4sR/2occgssgfdcAJOtn0M0bLkrUMMNCpeQhutkOM22JSA KAge9LGmfSEdYO7RaVd71aE2vUQmJweJ8DBtOo/7S+0WafLeeMR7eEq2rAt5Z8z5 0VwrGnn+9DGRT7QHfsG0cCzeAb2k4Oc7Cyir3+LBXwfRNITAafK4eT8Vg72lfCxE fxb0Z8x/viQmBHpvPPaaEsg= -----END CERTIFICATE-----Generated at Sun Mar 15 05:53:23 2026 by rpki-client