$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB4E9/D386134440EE11F09E93351CC4F9AE02/539EAC9440EF11F08CFAFB1CC4F9AE02.roa File: 539EAC9440EF11F08CFAFB1CC4F9AE02.roa (raw, json) Hash identifier: p+/O/N2cnrVHm7O6YEqosl6vnHVBYYkRwfwZCmypB2U= Subject key identifier: 1C:88:A9:9A:52:F4:8F:F5:2E:92:5A:13:1F:1C:B1:0C:F8:A1:E2:E9 Certificate issuer: /CN=A91CB4E9/serialNumber=50AE716F3D36B9BEEAE27F10068F9E36A233AB91 Certificate serial: 97 Authority key identifier: 50:AE:71:6F:3D:36:B9:BE:EA:E2:7F:10:06:8F:9E:36:A2:33:AB:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UK5xbz02ub7q4n8QBo-eNqIzq5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB4E9/D386134440EE11F09E93351CC4F9AE02/539EAC9440EF11F08CFAFB1CC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:32:53 +0000 ROA not before: Sat 17 Jan 2026 06:25:02 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 16509 IP address blocks: 202.49.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB4E9/D386134440EE11F09E93351CC4F9AE02/UK5xbz02ub7q4n8QBo-eNqIzq5E.crl rsync://rpki.apnic.net/member_repository/A91CB4E9/D386134440EE11F09E93351CC4F9AE02/UK5xbz02ub7q4n8QBo-eNqIzq5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UK5xbz02ub7q4n8QBo-eNqIzq5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 06:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB4E9, serialNumber=50AE716F3D36B9BEEAE27F10068F9E36A233AB91 Validity Not Before: Jan 17 06:25:02 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a44005-806a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:44:59:c2:3e:ef:38:dd:f0:b0:8b:4a:88:a9: cc:4b:34:e0:f5:e6:e7:cc:8b:f4:85:ff:3a:3f:63: 1c:ef:27:16:57:97:a7:b4:69:e0:59:66:41:d2:bd: 96:cb:28:4f:6a:81:b0:d2:91:c1:8e:c4:16:1b:b7: 3d:a7:3d:81:ed:88:48:ba:7e:e3:e3:a4:f6:77:84: 95:2c:a4:13:fa:79:2e:c6:b5:e1:36:88:e8:87:a0: 9d:12:fd:37:fe:70:94:15:ed:ff:5d:6a:06:00:35: 7c:5a:76:b6:02:78:8c:3f:55:2d:ba:27:ae:5c:e8: b3:12:8b:d9:b3:af:44:c3:e3:d9:02:41:67:29:80: 3b:90:b9:6d:59:2c:cb:07:85:0f:83:62:8a:cb:31: af:ca:d1:0a:32:6b:6e:3a:11:14:31:37:c5:d0:6f: e1:fb:4d:43:8b:ca:0c:75:04:9f:21:c3:b2:2e:ec: de:4d:54:a3:1b:fe:fa:6d:cd:d0:c1:15:f0:97:81: 70:8c:b9:65:04:06:44:70:91:ca:90:0e:61:2e:d6: 30:d6:53:d1:a5:7d:25:93:4d:bd:87:63:b0:fa:37: 51:68:5c:df:09:98:5b:19:c3:b4:cd:5d:fc:50:f2: 26:bc:8c:60:21:13:23:e3:a7:8c:dc:5b:7f:d6:db: 21:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:88:A9:9A:52:F4:8F:F5:2E:92:5A:13:1F:1C:B1:0C:F8:A1:E2:E9 X509v3 Authority Key Identifier: keyid:50:AE:71:6F:3D:36:B9:BE:EA:E2:7F:10:06:8F:9E:36:A2:33:AB:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB4E9/D386134440EE11F09E93351CC4F9AE02/UK5xbz02ub7q4n8QBo-eNqIzq5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UK5xbz02ub7q4n8QBo-eNqIzq5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB4E9/D386134440EE11F09E93351CC4F9AE02/539EAC9440EF11F08CFAFB1CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.49.204.0/24 Signature Algorithm: sha256WithRSAEncryption 27:b3:34:50:c9:f8:4c:1d:62:26:16:e4:4e:7d:2a:18:78:3a: 2d:3b:22:e4:c8:1e:4b:a1:21:ab:15:b0:87:63:b3:d3:93:1c: a2:05:94:41:0c:ee:d3:aa:34:fb:db:34:20:52:08:d6:c9:e4: 1f:c8:45:28:a2:5b:ee:08:2d:20:83:33:ff:e3:ed:31:65:b3: 17:2a:e3:81:93:2d:e3:ca:c1:95:69:66:34:fc:e4:72:66:47: 83:3f:59:48:af:f4:13:ed:f9:3e:be:a1:70:d4:d1:b9:f9:55: 33:2f:61:1d:40:fe:ce:bf:c5:44:f5:9d:a2:e5:8d:53:b5:0b: 6c:e5:ce:55:56:aa:54:3b:46:e9:80:52:27:48:cc:7d:7d:26: 52:eb:33:de:77:a4:95:95:26:cb:cd:aa:bf:ec:41:9f:70:62: c5:51:64:40:3d:52:b3:99:a3:cb:59:b3:49:7b:4b:d5:81:95: 1e:9e:8b:70:73:5d:f4:2d:af:26:b2:e8:48:37:60:3f:ac:35: 6f:e5:ae:17:6b:b0:89:0c:33:7f:96:c2:e2:98:22:d6:3f:f9: 7f:69:e9:cd:aa:bf:76:f8:1f:6a:45:27:04:50:55:bf:6f:81: 09:5e:a3:10:ec:68:56:1d:70:35:22:f9:76:ca:74:77:b0:8b: 72:6a:eb:fe -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I0RTkxMTAvBgNVBAUTKDUwQUU3MTZGM0QzNkI5QkVFQUUyN0YxMDA2OEY5RTM2 QTIzM0FCOTEwHhcNMjYwMTE3MDYyNTAyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDAwNS04MDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnERZwj7vON3wsItKiKnMSzTg9ebnzIv0hf86P2Mc7ycWV5entGngWWZB0r2W yyhPaoGw0pHBjsQWG7c9pz2B7YhIun7j46T2d4SVLKQT+nkuxrXhNojoh6CdEv03 /nCUFe3/XWoGADV8Wna2AniMP1UtuieuXOizEovZs69Ew+PZAkFnKYA7kLltWSzL B4UPg2KKyzGvytEKMmtuOhEUMTfF0G/h+01Di8oMdQSfIcOyLuzeTVSjG/76bc3Q wRXwl4FwjLllBAZEcJHKkA5hLtYw1lPRpX0lk029h2Ow+jdRaFzfCZhbGcO0zV38 UPImvIxgIRMj46eM3Ft/1tshnwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFByIqZpS 9I/1LpJaEx8csQz4oeLpMB8GA1UdIwQYMBaAFFCucW89Nrm+6uJ/EAaPnjaiM6uR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjRFOS9EMzg2MTM0NDQw RUUxMUYwOUU5MzM1MUNDNEY5QUUwMi9VSzV4YnowMnViN3E0bjhRQm8tZU5xSXpx NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VLNXhiejAydWI3cTRuOFFCby1lTnFJenE1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0I0RTkvRDM4NjEzNDQ0MEVFMTFGMDlFOTMzNTFDQzRGOUFFMDIvNTM5RUFDOTQ0 MEVGMTFGMDhDRkFGQjFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyjHMMA0GCSqGSIb3DQEBCwUAA4IBAQAnszRQyfhMHWImFuROfSoY eDotOyLkyB5LoSGrFbCHY7PTkxyiBZRBDO7TqjT72zQgUgjWyeQfyEUoolvuCC0g gzP/4+0xZbMXKuOBky3jysGVaWY0/ORyZkeDP1lIr/QT7fk+vqFw1NG5+VUzL2Ed QP7Ov8VE9Z2i5Y1TtQts5c5VVqpUO0bpgFInSMx9fSZS6zPed6SVlSbLzaq/7EGf cGLFUWRAPVKzmaPLWbNJe0vVgZUenotwc130La8msuhIN2A/rDVv5a4Xa7CJDDN/ lsLimCLWP/l/aenNqr92+B9qRScEUFW/b4EJXqMQ7GhWHXA1Ivl2ynR3sItyauv+ -----END CERTIFICATE-----Generated at Thu Mar 19 12:32:09 2026 by rpki-client