$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED32AF1C721A11EFBDE87567C4F9AE02.roa File: ED32AF1C721A11EFBDE87567C4F9AE02.roa (raw, json) Hash identifier: glTK3dvBZSQDwIIEDJpmagnWHUv9CJRkPNDiEU5WqFw= Subject key identifier: BD:BA:33:4B:16:09:B2:70:47:51:34:6E:ED:76:90:62:86:BD:B1:28 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0240 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED32AF1C721A11EFBDE87567C4F9AE02.roa Signing time: Sun 01 Mar 2026 19:16:38 +0000 ROA not before: Wed 31 Dec 2025 04:24:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 131257 IP address blocks: 202.29.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 04:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 576 (0x240) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Dec 31 04:24:04 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a49095-4528 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:4b:69:11:10:97:64:55:51:36:23:e4:7e:67: 7e:e8:c7:59:10:67:8e:44:d8:bd:13:c2:ed:06:07: 34:2e:05:32:3a:27:49:2e:b0:77:8d:1b:4a:8e:4d: bc:1c:a7:26:24:78:ce:46:2b:76:db:4f:6f:09:41: a0:54:b2:53:36:e5:ce:e4:33:5f:65:41:b0:83:12: be:c3:e0:b4:64:2a:9a:fe:4b:a4:09:21:62:9c:1e: 87:1b:36:54:f5:ec:59:98:93:6c:99:ce:ab:57:38: 2f:96:01:f4:05:d6:04:dc:eb:e5:f6:9c:75:fb:0d: 2d:eb:17:16:39:89:c8:12:64:96:1c:f3:62:4e:67: d0:b0:1c:54:f8:c0:5d:a1:14:13:fe:80:78:34:fe: 78:c7:36:5d:64:ac:29:4b:88:ff:e9:e8:c8:ca:41: 68:26:d9:98:76:8e:4e:4c:b7:4f:95:9e:af:22:fe: 78:27:9e:99:5f:c2:ac:d7:ce:9e:52:80:1d:42:ce: 9c:3a:cb:96:c9:3f:f6:2b:b7:1f:cc:f8:ed:9e:e3: 67:29:19:69:0a:d7:a4:75:df:45:7d:0f:40:9f:88: 63:56:4b:6b:a2:ba:5b:a9:b2:13:91:a6:47:c2:00: c7:d6:68:8a:00:c0:c9:0a:aa:d3:fd:95:05:9d:48: bf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BA:33:4B:16:09:B2:70:47:51:34:6E:ED:76:90:62:86:BD:B1:28 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/ED32AF1C721A11EFBDE87567C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.29.18.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:76:61:3a:a5:40:86:fa:a9:f7:7e:b9:56:0e:0b:d4:ec:c0: e6:94:29:fa:d8:d5:ce:d4:90:b6:b1:6e:36:b5:2b:17:88:72: 2b:d1:23:7f:fa:64:26:fd:16:7f:70:f9:df:cc:e5:3f:85:39: d2:04:1c:9b:5c:b3:ff:2c:aa:75:9f:63:d9:da:c0:de:d9:75: 8d:6d:4a:b0:67:16:b9:e8:fa:fe:1e:60:74:e5:61:a1:d1:a9: be:2f:96:eb:bc:21:43:46:2c:cd:ec:10:aa:9c:d6:66:62:00: 3e:9c:af:2c:e9:0e:5c:70:01:b9:1c:af:0f:ed:4f:6d:ee:82: f5:a8:f4:d9:30:0a:4e:6e:83:b4:fb:14:2b:aa:c6:b4:f9:c5: ba:8a:cb:69:48:e0:a6:df:bd:ae:a5:0c:f3:22:1c:c4:25:96: 1d:d3:1d:c6:a8:6c:a2:94:71:2d:b9:59:c1:45:df:e0:7b:49: e4:0d:c5:00:8f:b5:54:41:55:0d:c0:0f:c9:78:2c:1e:78:b2: 41:b4:b7:78:93:a1:21:ef:50:d4:05:16:7d:e3:bd:20:bb:fc: 12:3d:22:83:17:20:9a:dd:e4:8a:0f:a9:0b:82:8c:a4:85:ca: d1:c0:8f:ef:c4:38:22:f0:e0:c6:2a:c1:4e:18:20:55:e2:77: 23:f1:e3:ba -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUxMjMxMDQyNDA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OTA5NS00NTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoUtpERCXZFVRNiPkfmd+6MdZEGeORNi9E8LtBgc0LgUyOidJLrB3jRtKjk28 HKcmJHjORit2209vCUGgVLJTNuXO5DNfZUGwgxK+w+C0ZCqa/kukCSFinB6HGzZU 9exZmJNsmc6rVzgvlgH0BdYE3Ovl9px1+w0t6xcWOYnIEmSWHPNiTmfQsBxU+MBd oRQT/oB4NP54xzZdZKwpS4j/6ejIykFoJtmYdo5OTLdPlZ6vIv54J56ZX8Ks186e UoAdQs6cOsuWyT/2K7cfzPjtnuNnKRlpCtekdd9FfQ9An4hjVktrorpbqbITkaZH wgDH1miKAMDJCqrT/ZUFnUi/GwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL26M0sW CbJwR1E0bu12kGKGvbEoMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvRUQzMkFGMUM3 MjFBMTFFRkJERTg3NTY3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyh0SMA0GCSqGSIb3DQEBCwUAA4IBAQB7dmE6pUCG+qn3frlWDgvU 7MDmlCn62NXO1JC2sW42tSsXiHIr0SN/+mQm/RZ/cPnfzOU/hTnSBBybXLP/LKp1 n2PZ2sDe2XWNbUqwZxa56Pr+HmB05WGh0am+L5brvCFDRizN7BCqnNZmYgA+nK8s 6Q5ccAG5HK8P7U9t7oL1qPTZMApOboO0+xQrqsa0+cW6istpSOCm372upQzzIhzE JZYd0x3GqGyilHEtuVnBRd/ge0nkDcUAj7VUQVUNwA/JeCweeLJBtLd4k6Eh71DU BRZ9470gu/wSPSKDFyCa3eSKD6kLgoykhcrRwI/vxDgi8ODGKsFOGCBV4ncj8eO6 -----END CERTIFICATE-----Generated at Sun Mar 15 05:50:58 2026 by rpki-client