$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/79F48DAAED0711EFA7332931C4F9AE02.roa File: 79F48DAAED0711EFA7332931C4F9AE02.roa (raw, json) Hash identifier: dlecxqbZAMbSA14zl4WPnusRoWo06VnO1BHgu9deOAE= Subject key identifier: CF:E3:F8:D2:1E:C7:E3:5D:63:D3:DC:05:26:FF:1D:0F:84:91:59:32 Certificate issuer: /CN=A91AB72F/serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Certificate serial: 0139 Authority key identifier: 12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/79F48DAAED0711EFA7332931C4F9AE02.roa Signing time: Sat 07 Mar 2026 05:40:56 +0000 ROA not before: Sat 07 Mar 2026 05:40:56 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 4764 IP address blocks: 202.4.31.0/24 maxlen: 24 203.5.0.0/24 maxlen: 24 203.8.221.0/24 maxlen: 24 203.20.64.0/24 maxlen: 24 203.22.255.0/24 maxlen: 24 203.23.173.0/24 maxlen: 24 203.27.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 05:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB72F, serialNumber=1244785D40C5EC58DFC4A328540F1B393DEA2375 Validity Not Before: Mar 7 05:40:56 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69abba67-9b19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f9:51:2c:be:b2:d8:da:a8:14:a7:25:4c:65: 84:40:cf:27:99:a3:cf:cc:5a:17:fa:34:70:11:62: e7:75:cd:bc:92:fb:74:bd:22:72:50:c3:24:cb:50: b9:ed:36:28:3b:1a:2c:75:93:ed:c7:64:78:db:c2: 0a:13:07:2e:f4:24:e4:39:6b:e3:cc:e5:72:56:ae: 00:e0:ab:bd:8c:f1:19:69:31:f3:aa:4f:02:d4:11: 9a:b0:5d:34:c9:38:b2:00:d6:8f:6b:7a:5e:a2:41: 2f:83:ba:54:75:e2:f5:cd:2a:17:de:8a:1b:3f:cd: 91:b3:f1:82:bf:4a:a7:7a:c5:bd:e2:95:ba:4d:ce: fd:e8:e0:47:e3:d9:3a:c7:11:62:45:41:da:f9:0d: 6f:9e:41:45:1b:4a:3a:9c:fe:92:6f:44:d6:62:e1: d0:a8:14:05:12:3f:bc:03:c5:87:05:bc:62:22:19: 9e:4f:45:08:58:5d:9d:bb:b5:a2:69:52:b7:2f:3d: 08:05:49:19:26:4f:58:ea:7a:90:4f:c8:3c:45:b7: 41:b1:dd:0a:7b:5f:80:90:78:26:77:29:5c:80:dc: f7:c9:cd:dc:cf:a9:ea:27:cd:34:3a:73:ca:b7:43: 35:01:3b:ca:f5:b8:df:ff:3f:fa:b5:7a:b0:59:04: 9b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E3:F8:D2:1E:C7:E3:5D:63:D3:DC:05:26:FF:1D:0F:84:91:59:32 X509v3 Authority Key Identifier: keyid:12:44:78:5D:40:C5:EC:58:DF:C4:A3:28:54:0F:1B:39:3D:EA:23:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/EkR4XUDF7FjfxKMoVA8bOT3qI3U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EkR4XUDF7FjfxKMoVA8bOT3qI3U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB72F/2FB49B3E43D111EF8BE8D87BC4F9AE02/79F48DAAED0711EFA7332931C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.4.31.0/24 203.5.0.0/24 203.8.221.0/24 203.20.64.0/24 203.22.255.0/24 203.23.173.0/24 203.27.101.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:c3:cb:4c:43:0a:2f:8e:49:28:65:2a:f7:ae:59:50:e8:7b: 29:4e:c6:ae:c5:6f:4b:d2:67:82:1b:df:2c:bf:1d:6a:cf:c5: a5:32:2d:50:6c:6d:68:3d:2a:cd:54:69:0f:fc:c5:a8:e1:0b: 1d:49:6f:93:a7:e4:c0:e3:03:b4:ef:c1:fa:7a:40:ae:26:60: 68:29:7f:b3:c8:fb:fe:87:b7:b1:6e:34:3a:c3:8a:72:fa:d7: e0:c1:64:9f:b8:ed:43:f6:bf:39:8b:e8:44:54:e1:87:58:d6: 92:b6:3d:dd:a1:15:87:6a:42:22:ae:0f:4c:d5:e9:b5:83:aa: 49:16:53:a6:e4:0f:f8:2e:63:19:74:22:25:06:39:a1:ff:13: 1f:aa:4f:c8:26:f1:7e:12:1e:35:bd:6b:a8:7a:83:3d:7f:26: 4c:30:cd:fe:16:2a:84:b9:e5:17:6f:22:aa:e9:20:1e:3d:d3: 8d:5d:bf:18:7e:cc:b0:e2:a3:dc:fc:c1:d4:c4:6c:a1:f8:be: b7:98:bb:a4:82:6c:ea:92:df:ad:7b:06:d9:aa:49:2e:23:73: bc:1a:57:c5:19:4d:5d:6c:3c:fc:8c:24:7b:e8:48:53:e9:8a: 46:a0:35:91:2b:df:ff:5f:e2:ca:1a:ee:59:e8:05:50:6d:61: 1d:ab:10:52 -----BEGIN CERTIFICATE----- MIIFYDCCBEigAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3MkYxMTAvBgNVBAUTKDEyNDQ3ODVENDBDNUVDNThERkM0QTMyODU0MEYxQjM5 M0RFQTIzNzUwHhcNMjYwMzA3MDU0MDU2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiYmE2Ny05YjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/lRLL6y2NqoFKclTGWEQM8nmaPPzFoX+jRwEWLndc28kvt0vSJyUMMky1C5 7TYoOxosdZPtx2R428IKEwcu9CTkOWvjzOVyVq4A4Ku9jPEZaTHzqk8C1BGasF00 yTiyANaPa3peokEvg7pUdeL1zSoX3oobP82Rs/GCv0qnesW94pW6Tc796OBH49k6 xxFiRUHa+Q1vnkFFG0o6nP6Sb0TWYuHQqBQFEj+8A8WHBbxiIhmeT0UIWF2du7Wi aVK3Lz0IBUkZJk9Y6nqQT8g8RbdBsd0Ke1+AkHgmdylcgNz3yc3cz6nqJ800OnPK t0M1ATvK9bjf/z/6tXqwWQSbCwIDAQABo4IChDCCAoAwHQYDVR0OBBYEFM/j+NIe x+NdY9PcBSb/HQ+EkVkyMB8GA1UdIwQYMBaAFBJEeF1AxexY38SjKFQPGzk96iN1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjcyRi8yRkI0OUIzRTQz RDExMUVGOEJFOEQ4N0JDNEY5QUUwMi9Fa1I0WFVERjdGamZ4S01vVkE4Yk9UM3FJ M1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VrUjRYVURGN0ZqZnhLTW9WQThiT1QzcUkzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI3MkYvMkZCNDlCM0U0M0QxMTFFRjhCRThEODdCQzRGOUFFMDIvNzlGNDhEQUFF RDA3MTFFRkE3MzMyOTMxQzRGOUFFMDIucm9hMEMGCCsGAQUFBwEHAQH/BDQwMjAw BAIAATAqAwQAygQfAwQAywUAAwQAywjdAwQAyxRAAwQAyxb/AwQAyxetAwQAyxtl MA0GCSqGSIb3DQEBCwUAA4IBAQALw8tMQwovjkkoZSr3rllQ6HspTsauxW9L0meC G98svx1qz8WlMi1QbG1oPSrNVGkP/MWo4QsdSW+Tp+TA4wO078H6ekCuJmBoKX+z yPv+h7exbjQ6w4py+tfgwWSfuO1D9r85i+hEVOGHWNaStj3doRWHakIirg9M1em1 g6pJFlOm5A/4LmMZdCIlBjmh/xMfqk/IJvF+Eh41vWuoeoM9fyZMMM3+FiqEueUX byKq6SAePdONXb8Yfsyw4qPc/MHUxGyh+L63mLukgmzqkt+tewbZqkkuI3O8GlfF GU1dbDz8jCR76EhT6YpGoDWRK9//X+LKGu5Z6AVQbWEdqxBS -----END CERTIFICATE-----Generated at Sun Mar 8 00:04:35 2026 by rpki-client