$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/863F0DD25A7111F1AAD3157ABD833773.roa File: 863F0DD25A7111F1AAD3157ABD833773.roa (raw, json) Hash identifier: XX+jIToyo9IFnK0I5bFVzqEt6Lm2ccIcYxfwAnhOJ78= Subject key identifier: 2F:3E:96:1E:D2:BB:A0:DF:EF:FB:39:A9:6B:0E:F4:26:4D:F8:63:4B Certificate issuer: /CN=A91B0D88/serialNumber=D099EEA9F5CDB6FE4C6EF98E8D8CF3364B9D6261 Certificate serial: 016A Authority key identifier: D0:99:EE:A9:F5:CD:B6:FE:4C:6E:F9:8E:8D:8C:F3:36:4B:9D:62:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0JnuqfXNtv5MbvmOjYzzNkudYmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/863F0DD25A7111F1AAD3157ABD833773.roa Signing time: Thu 28 May 2026 08:46:05 +0000 ROA not before: Thu 28 May 2026 08:46:05 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 13335 IP address blocks: 202.49.114.0/24 maxlen: 24 2401:9860::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/0JnuqfXNtv5MbvmOjYzzNkudYmE.crl rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/0JnuqfXNtv5MbvmOjYzzNkudYmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0JnuqfXNtv5MbvmOjYzzNkudYmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Jun 2026 05:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0D88, serialNumber=D099EEA9F5CDB6FE4C6EF98E8D8CF3364B9D6261 Validity Not Before: May 28 08:46:05 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1800cd-bdbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:63:98:d4:ac:48:57:eb:0e:b6:09:64:8f:0a: 85:ea:62:55:00:b1:b4:8a:46:19:ad:08:45:a9:38: 8f:5d:57:0b:ad:9e:22:55:f9:72:4a:bf:e2:1f:db: 50:2c:ae:b2:cb:1d:a8:6d:8f:c9:3d:c1:ac:ec:ad: 45:9b:88:4e:69:9f:74:3c:22:a8:04:37:58:54:53: a0:07:2f:d7:71:c8:3c:40:51:2e:d0:80:be:e3:32: 48:c4:3e:c1:39:45:86:32:30:0a:a6:42:39:30:7c: 96:84:7e:49:bb:82:f0:22:f3:7b:55:ca:ad:a5:60: 50:b8:6b:48:3f:6d:f0:a5:90:0a:5e:b1:54:4b:ce: 20:5f:8a:79:a6:17:c6:de:ea:a4:64:55:60:05:91: ff:4b:0b:20:61:75:db:0d:dd:cb:2d:fb:a3:5b:cc: 0e:a0:ae:fe:9c:83:8a:6f:40:77:66:1d:c3:15:af: c7:fb:0e:5c:8a:2c:c5:8f:7a:e0:f0:45:c4:93:e1: 7b:52:e6:00:e8:f7:56:15:1d:c1:67:af:66:52:05: 5e:1a:7d:78:d9:ce:a0:9d:a7:70:62:39:a9:cc:a1: b8:0b:81:d9:83:36:c0:8f:84:36:de:e2:a2:3f:38: d2:21:2f:0b:57:ed:3d:4c:1c:ac:cc:a1:8a:41:7b: d7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:3E:96:1E:D2:BB:A0:DF:EF:FB:39:A9:6B:0E:F4:26:4D:F8:63:4B X509v3 Authority Key Identifier: keyid:D0:99:EE:A9:F5:CD:B6:FE:4C:6E:F9:8E:8D:8C:F3:36:4B:9D:62:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/0JnuqfXNtv5MbvmOjYzzNkudYmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0JnuqfXNtv5MbvmOjYzzNkudYmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0D88/B986D91A431011EF88411782C4F9AE02/863F0DD25A7111F1AAD3157ABD833773.roa sbgp-ipAddrBlock: critical IPv4: 202.49.114.0/24 IPv6: 2401:9860::/32 Signature Algorithm: sha256WithRSAEncryption 30:37:52:71:5e:42:b0:eb:fb:6b:4b:0b:7f:ca:7a:b2:d3:58: 14:e8:aa:f8:84:02:b2:62:6f:e1:e2:51:31:ed:fd:ae:40:e8: c2:27:ec:1b:3d:69:e4:ae:ed:33:7e:c9:6c:d2:d1:ca:bb:61: 5e:22:d5:a4:5f:a8:a2:11:b6:46:de:cf:2d:00:73:dc:19:28: 4b:2e:8e:6f:9b:88:71:1f:8c:a3:bc:18:3b:62:b5:f0:47:60: 93:81:7c:03:e5:81:f3:33:1d:dd:9b:5e:83:90:65:d1:0f:df: c0:11:e1:33:d7:fb:be:06:e6:df:32:da:af:a4:47:5b:31:4b: 73:69:ce:db:65:a7:90:ad:14:95:d7:ab:95:82:12:ff:0f:81: 3d:7b:3b:47:c3:ed:3e:13:33:6c:31:82:46:67:89:bf:d1:ab: 53:d0:e5:7a:bf:c9:2d:37:fc:fb:d5:a9:69:e5:f2:9d:87:f0: 2c:19:f2:d2:0b:d7:0e:75:50:fb:89:13:d2:59:7f:ab:0b:87: 75:16:1c:63:17:a8:a9:85:06:c3:61:7f:4c:25:d2:f1:90:66: 18:7b:61:6e:c7:84:dc:21:c8:fb:f8:12:f8:d8:e7:2d:f3:f9: a0:a0:1e:64:7c:cc:57:b9:3e:b9:f1:f9:35:ad:dd:6f:25:be: 52:28:59:25 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBEODgxMTAvBgNVBAUTKEQwOTlFRUE5RjVDREI2RkU0QzZFRjk4RThEOENGMzM2 NEI5RDYyNjEwHhcNMjYwNTI4MDg0NjA1WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE4MDBjZC1iZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAi2OY1KxIV+sOtglkjwqF6mJVALG0ikYZrQhFqTiPXVcLrZ4iVflySr/iH9tQ LK6yyx2obY/JPcGs7K1Fm4hOaZ90PCKoBDdYVFOgBy/Xccg8QFEu0IC+4zJIxD7B OUWGMjAKpkI5MHyWhH5Ju4LwIvN7VcqtpWBQuGtIP23wpZAKXrFUS84gX4p5phfG 3uqkZFVgBZH/SwsgYXXbDd3LLfujW8wOoK7+nIOKb0B3Zh3DFa/H+w5ciizFj3rg 8EXEk+F7UuYA6PdWFR3BZ69mUgVeGn142c6gnadwYjmpzKG4C4HZgzbAj4Q23uKi PzjSIS8LV+09TByszKGKQXvXPQIDAQABo4ICbzCCAmswHQYDVR0OBBYEFC8+lh7S u6Df7/s5qWsO9CZN+GNLMB8GA1UdIwQYMBaAFNCZ7qn1zbb+TG75jo2M8zZLnWJh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEQ4OC9COTg2RDkxQTQz MTAxMUVGODg0MTE3ODJDNEY5QUUwMi8wSm51cWZYTnR2NU1idm1Pall6ek5rdWRZ bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBKbnVxZlhOdHY1TWJ2bU9qWXp6Tmt1ZFltRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBEODgvQjk4NkQ5MUE0MzEwMTFFRjg4NDExNzgyQzRGOUFFMDIvODYzRjBERDI1 QTcxMTFGMUFBRDMxNTdBQkQ4MzM3NzMucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQAyjFyMA0EAgACMAcDBQAkAZhgMA0GCSqGSIb3DQEBCwUAA4IBAQAw N1JxXkKw6/trSwt/ynqy01gU6Kr4hAKyYm/h4lEx7f2uQOjCJ+wbPWnkru0zfsls 0tHKu2FeItWkX6iiEbZG3s8tAHPcGShLLo5vm4hxH4yjvBg7YrXwR2CTgXwD5YHz Mx3dm16DkGXRD9/AEeEz1/u+BubfMtqvpEdbMUtzac7bZaeQrRSV16uVghL/D4E9 eztHw+0+EzNsMYJGZ4m/0atT0OV6v8ktN/z71alp5fKdh/AsGfLSC9cOdVD7iRPS WX+rC4d1FhxjF6iphQbDYX9MJdLxkGYYe2Fux4TcIcj7+BL42Oct8/mgoB5kfMxX uT658fk1rd1vJb5SKFkl -----END CERTIFICATE-----Generated at Tue Jun 2 21:36:02 2026 by rpki-client