$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C304F128721511EF9D7B9F3DC4F9AE02.roa File: C304F128721511EF9D7B9F3DC4F9AE02.roa (raw, json) Hash identifier: GR32jP774Mjqh0H9v26PriMkM9g4PfNdC7PsyiVqtFQ= Subject key identifier: 74:F6:66:88:4A:96:CC:7C:74:E0:3A:CF:95:49:C8:F7:90:A4:E2:C5 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 024F Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C304F128721511EF9D7B9F3DC4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:51 +0000 ROA not before: Wed 31 Dec 2025 04:24:18 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 137241 IP address blocks: 202.29.80.0/23 maxlen: 23 2001:3c8:4007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:18 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a490a3-5d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:31:ca:f4:3b:a1:52:0d:fd:e4:4d:ce:72:67: 6d:33:2d:f9:c7:88:6a:78:89:f4:b4:c5:a1:e9:60: b0:e6:24:9e:34:1f:c0:8a:3a:68:8f:b7:08:31:59: 24:ab:9d:43:49:44:e6:50:d5:c5:e9:4e:95:48:13: 6f:38:37:9e:31:20:35:d0:11:e3:54:ac:61:37:26: b8:c7:71:8a:08:82:eb:8a:c0:5d:d0:bd:75:ef:3f: ee:7c:2e:4f:4e:a2:e3:d8:f3:a1:50:e2:9f:ba:2f: cd:00:c0:69:8a:3f:b5:ad:3c:0f:b5:75:46:5f:24: f4:26:93:dc:db:db:8d:ff:45:0a:97:01:40:f3:66: 77:1f:9b:c4:dd:8e:aa:95:83:25:49:3c:11:84:6b: 70:cf:8c:a7:ff:c4:77:db:eb:bd:8c:5e:6c:0e:11: 87:f5:17:07:41:c7:40:7a:d9:3f:ae:a4:81:88:a1: b3:48:49:9a:15:cc:25:e5:e9:69:72:b6:94:70:17: c4:55:e3:9e:da:db:45:28:6d:32:f0:a7:66:72:7c: 07:5c:5b:7c:37:fa:a2:8b:d1:1c:35:27:61:3e:d3: 6b:65:fe:11:9e:3d:f1:60:17:e7:85:aa:cf:50:e5: 51:63:48:5c:e6:2b:ea:34:46:ba:f1:1b:a4:ae:73: e8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F6:66:88:4A:96:CC:7C:74:E0:3A:CF:95:49:C8:F7:90:A4:E2:C5 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/C304F128721511EF9D7B9F3DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.80.0/23 IPv6: 2001:3c8:4007::/48 Signature Algorithm: sha256WithRSAEncryption 33:00:25:ed:9f:e6:46:93:41:34:f7:29:1b:bb:19:a9:4c:22: 9d:cd:15:1e:8c:68:58:97:71:74:27:7d:09:01:96:27:f6:eb: d9:53:b2:5e:e9:5c:49:b8:db:9b:1a:1e:9f:f9:88:25:1d:0e: 4c:25:9a:33:04:ef:9f:3d:f3:c0:48:ae:12:f9:b7:26:6a:63: 11:4d:80:23:52:3b:d5:a8:49:7f:08:5f:96:e7:60:8b:d4:c6: 52:d3:c3:04:a8:32:6e:3d:af:57:80:3f:ab:a8:1b:ed:17:5a: 49:1d:43:c3:3f:af:1a:9a:e5:21:a0:50:8d:a5:3a:35:7f:ae: 40:a8:15:c8:22:fb:eb:66:31:70:cd:69:8a:f0:46:a7:db:6e: f2:9d:e6:25:bb:c0:4b:45:eb:19:9d:96:a7:32:8c:48:ca:89: e4:d2:24:07:6a:1d:e7:41:f2:08:09:a8:3c:35:c0:b1:f6:09: 36:b1:3b:a2:84:f7:86:bd:65:3b:24:87:71:ff:c0:a9:76:a3: ce:68:68:70:4c:57:61:41:48:c3:fa:e5:65:dc:76:49:7c:b9: 02:40:15:50:c6:88:16:0f:99:fd:53:b2:34:a1:ad:3e:20:7b: f0:92:86:f5:57:49:39:ca:51:a0:14:02:b5:a8:07:9f:9a:1c: bc:b7:fb:3f -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDE4WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTBhMy01ZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjHK9DuhUg395E3OcmdtMy35x4hqeIn0tMWh6WCw5iSeNB/Aijpoj7cIMVkk q51DSUTmUNXF6U6VSBNvODeeMSA10BHjVKxhNya4x3GKCILrisBd0L117z/ufC5P TqLj2POhUOKfui/NAMBpij+1rTwPtXVGXyT0JpPc29uN/0UKlwFA82Z3H5vE3Y6q lYMlSTwRhGtwz4yn/8R32+u9jF5sDhGH9RcHQcdAetk/rqSBiKGzSEmaFcwl5elp craUcBfEVeOe2ttFKG0y8KdmcnwHXFt8N/qii9EcNSdhPtNrZf4Rnj3xYBfnharP UOVRY0hc5ivqNEa68RukrnPocwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFHT2ZohK lsx8dOA6z5VJyPeQpOLFMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQzMwNEYxMjg3 MjE1MTFFRjlEN0I5RjNEQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQByh1QMA8EAgACMAkDBwAgAQPIQAcwDQYJKoZIhvcNAQELBQADggEB ADMAJe2f5kaTQTT3KRu7GalMIp3NFR6MaFiXcXQnfQkBlif269lTsl7pXEm425sa Hp/5iCUdDkwlmjME758988BIrhL5tyZqYxFNgCNSO9WoSX8IX5bnYIvUxlLTwwSo Mm49r1eAP6uoG+0XWkkdQ8M/rxqa5SGgUI2lOjV/rkCoFcgi++tmMXDNaYrwRqfb bvKd5iW7wEtF6xmdlqcyjEjKieTSJAdqHedB8ggJqDw1wLH2CTaxO6KE94a9ZTsk h3H/wKl2o85oaHBMV2FBSMP65WXcdkl8uQJAFVDGiBYPmf1TsjShrT4ge/CShvVX STnKUaAUArWoB5+aHLy3+z8= -----END CERTIFICATE-----Generated at Sun Mar 15 05:53:25 2026 by rpki-client