$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/03BA6992ED7711EE9998FC11C4F9AE02.roa File: 03BA6992ED7711EE9998FC11C4F9AE02.roa (raw, json) Hash identifier: 4ltPjkJAsX+6JN5WYsYcJkqkB/QGduq8OB4qSY5kFTc= Subject key identifier: 1C:7A:05:05:5F:26:94:23:D4:27:AC:17:F3:AC:30:06:4F:54:0E:5E Certificate issuer: /CN=A91CE959/serialNumber=D6EC22A73A59D2AA955997470279C662D11088F2 Certificate serial: 0181 Authority key identifier: D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/03BA6992ED7711EE9998FC11C4F9AE02.roa Signing time: Sat 07 Mar 2026 04:40:01 +0000 ROA not before: Sat 07 Mar 2026 04:40:01 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 9311 IP address blocks: 202.58.20.0/24 maxlen: 24 202.58.22.0/24 maxlen: 24 202.58.26.0/24 maxlen: 24 202.58.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 04:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE959, serialNumber=D6EC22A73A59D2AA955997470279C662D11088F2 Validity Not Before: Mar 7 04:40:01 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69abac21-fdfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1e:1f:e5:b0:fc:4f:f5:db:14:a8:bb:b9:3b: f6:49:a5:fa:f6:54:01:d3:e3:65:83:33:22:6f:09: ed:01:3a:84:b8:3e:b8:b3:a2:7c:9f:09:6e:22:1e: fb:57:01:f9:37:ac:5d:1f:e9:16:9e:11:07:26:b2: d5:3b:e5:ee:cb:55:ed:e4:04:b9:5e:e0:6f:09:67: a0:f5:d5:fa:0b:58:5e:09:d1:34:9a:11:db:cd:21: 95:11:9d:4b:81:92:76:3b:1f:87:ea:f4:a1:4f:c5: 7c:ab:db:8b:5a:57:2f:4e:94:f6:f4:60:4f:1a:00: 7f:f1:f5:4c:80:2a:0c:69:a4:b0:a8:8e:3e:d5:28: 21:d7:9e:29:96:e2:12:ad:24:85:55:3c:83:82:dd: af:1d:7a:d3:51:84:3b:78:a1:34:fc:e6:74:08:49: 76:81:9f:e2:f7:16:24:f4:55:1d:eb:bf:be:54:8d: 45:5f:30:32:12:8f:62:c0:3e:3c:cb:b1:b0:30:c5: 45:24:df:fa:bf:ed:3a:bb:8a:dd:fc:d1:6c:fd:fd: 1b:14:38:6b:43:92:d9:fe:56:b3:30:dc:e4:19:48: d7:d1:25:37:2c:c9:55:31:0a:1c:8d:3d:43:a3:de: 34:20:9c:ec:fc:2f:e7:67:26:00:d8:86:01:28:a2: 81:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:7A:05:05:5F:26:94:23:D4:27:AC:17:F3:AC:30:06:4F:54:0E:5E X509v3 Authority Key Identifier: keyid:D6:EC:22:A7:3A:59:D2:AA:95:59:97:47:02:79:C6:62:D1:10:88:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/1uwipzpZ0qqVWZdHAnnGYtEQiPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1uwipzpZ0qqVWZdHAnnGYtEQiPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE959/AA4C77ECED7611EEAD871A11C4F9AE02/03BA6992ED7711EE9998FC11C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.58.20.0/24 202.58.22.0/24 202.58.26.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:7f:76:5f:3a:9f:b9:5a:44:1c:77:4c:67:0c:9d:72:27:f2: f0:6f:d4:59:bb:8f:a5:2f:80:fe:66:60:71:53:82:94:7d:7f: 61:87:2b:ca:d4:3c:2b:1a:a8:6b:0b:78:11:63:7c:b8:7f:89: 55:65:25:4e:5d:ee:5f:4b:ec:16:3d:8b:64:4c:fc:1e:7d:b5: 3b:69:d8:ec:b2:eb:91:17:86:78:9c:ad:80:67:0a:b1:a6:ba: 1f:37:90:c1:e7:76:2a:23:aa:7d:66:55:e3:ca:5d:f6:6c:43: f5:bb:93:02:3a:11:9a:ca:b9:39:b2:d5:bd:da:ad:f5:98:7d: f9:3a:3c:7f:57:be:da:a2:12:7f:74:c0:ea:df:c3:ca:da:58: d8:e2:56:3e:58:1d:47:7f:90:5f:2f:71:e5:b3:0e:0d:3c:4d: fa:d7:e5:df:67:65:da:5f:4e:bf:99:03:3f:69:a1:23:eb:ea: 2f:20:43:12:07:87:b0:21:51:f8:8e:aa:be:3d:03:f3:5a:9e: 39:0a:ad:74:e0:eb:1a:b6:2f:de:fb:e2:d2:84:46:4f:6e:16: c9:d2:25:d3:7e:ba:2e:46:02:8d:e9:9b:d6:f2:ae:35:ae:42: 35:16:cf:e0:ff:4f:39:2a:99:fd:43:5f:89:74:e7:1f:a1:c1: 37:7b:41:0f -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NTkxMTAvBgNVBAUTKEQ2RUMyMkE3M0E1OUQyQUE5NTU5OTc0NzAyNzlDNjYy RDExMDg4RjIwHhcNMjYwMzA3MDQ0MDAxWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWFiYWMyMS1mZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAph4f5bD8T/XbFKi7uTv2SaX69lQB0+NlgzMibwntATqEuD64s6J8nwluIh77 VwH5N6xdH+kWnhEHJrLVO+Xuy1Xt5AS5XuBvCWeg9dX6C1heCdE0mhHbzSGVEZ1L gZJ2Ox+H6vShT8V8q9uLWlcvTpT29GBPGgB/8fVMgCoMaaSwqI4+1Sgh154pluIS rSSFVTyDgt2vHXrTUYQ7eKE0/OZ0CEl2gZ/i9xYk9FUd67++VI1FXzAyEo9iwD48 y7GwMMVFJN/6v+06u4rd/NFs/f0bFDhrQ5LZ/lazMNzkGUjX0SU3LMlVMQocjT1D o940IJzs/C/nZyYA2IYBKKKBYQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBx6BQVf JpQj1CesF/OsMAZPVA5eMB8GA1UdIwQYMBaAFNbsIqc6WdKqlVmXRwJ5xmLREIjy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk1OS9BQTRDNzdFQ0VE NzYxMUVFQUQ4NzFBMTFDNEY5QUUwMi8xdXdpcHpwWjBxcVZXWmRIQW5uR1l0RVFp UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF1d2lwenBaMHFxVldaZEhBbm5HWXRFUWlQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5NTkvQUE0Qzc3RUNFRDc2MTFFRUFEODcxQTExQzRGOUFFMDIvMDNCQTY5OTJF RDc3MTFFRTk5OThGQzExQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAyjoUAwQAyjoWAwQByjoaMA0GCSqGSIb3DQEBCwUAA4IBAQAtf3Zf Op+5WkQcd0xnDJ1yJ/Lwb9RZu4+lL4D+ZmBxU4KUfX9hhyvK1DwrGqhrC3gRY3y4 f4lVZSVOXe5fS+wWPYtkTPwefbU7adjssuuRF4Z4nK2AZwqxprofN5DB53YqI6p9 ZlXjyl32bEP1u5MCOhGayrk5stW92q31mH35Ojx/V77aohJ/dMDq38PK2ljY4lY+ WB1Hf5BfL3Hlsw4NPE361+XfZ2XaX06/mQM/aaEj6+ovIEMSB4ewIVH4jqq+PQPz Wp45Cq104Osati/e++LShEZPbhbJ0iXTfrouRgKN6ZvW8q41rkI1Fs/g/085Kpn9 Q1+JdOcfocE3e0EP -----END CERTIFICATE-----Generated at Sun Mar 8 06:26:30 2026 by rpki-client