$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa File: 5D364EA2C5DC11F0B2B11B60C4F9AE02.roa (raw, json) Hash identifier: WXrkffcsPWLlWhyJc9ZnGKRdWxZGzBWuLOdC3IHK6S0= Subject key identifier: 12:C8:32:95:70:BD:2A:45:6B:FA:57:B9:10:D9:61:E2:1B:2D:DF:8F Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 1007 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:47:13 +0000 ROA not before: Wed 14 Jan 2026 18:15:17 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 7543 IP address blocks: 202.47.204.0/24 maxlen: 24 2403:e800:b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4103 (0x1007) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:15:17 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a489b0-e799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:1a:3d:22:bf:3d:c6:af:f1:b0:87:06:11:d6: 54:96:93:02:e3:89:ac:55:0f:73:34:3a:46:4b:91: 4b:0a:85:b7:1d:58:bd:c4:25:29:62:89:14:34:d5: cd:c0:76:16:f1:94:41:39:85:19:f3:4b:6a:ba:e2: f3:f7:8b:78:fd:b4:82:7d:93:f7:6e:98:5f:fd:62: 09:39:b1:e1:32:7b:ad:1c:2e:be:66:af:2d:53:00: 22:9d:0e:84:7c:1a:73:27:ef:46:c6:12:8c:69:4e: e7:b1:89:1d:3c:3d:9c:6f:c6:ce:c1:6f:27:d9:7d: ad:f3:0d:e7:f1:02:1d:60:ac:4c:e1:05:4b:cb:22: 5e:3d:0e:e5:09:1a:e8:0d:0a:c7:4b:9a:a2:99:9a: 43:f8:ff:d1:12:4d:ca:5d:78:fb:f2:88:04:fa:56: c5:45:66:d5:3f:9d:3a:16:b0:99:db:31:cf:ae:05: 2a:7b:e3:ef:0a:14:66:53:60:13:b6:20:2e:08:dd: 2f:1a:97:3d:a4:fd:de:bb:72:a9:e9:1e:3f:32:e9: ed:62:f6:8b:76:ef:d6:da:92:dd:e0:7a:76:72:ed: ba:f6:a1:eb:55:8e:82:bc:dd:76:15:96:aa:29:40: 8b:04:b2:76:ba:eb:ad:26:e0:c9:33:79:47:a6:15: 70:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C8:32:95:70:BD:2A:45:6B:FA:57:B9:10:D9:61:E2:1B:2D:DF:8F X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/5D364EA2C5DC11F0B2B11B60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.47.204.0/24 IPv6: 2403:e800:b00::/40 Signature Algorithm: sha256WithRSAEncryption 45:c4:07:d2:c5:ba:ec:7c:ba:2c:32:93:47:61:4b:5b:6a:72: 51:eb:36:4a:2a:cb:83:96:81:db:f9:d3:d9:96:64:ba:c1:c2: 9f:02:49:53:a2:d4:17:ff:b6:e0:dc:82:9e:14:13:17:d9:c8: 3c:af:c3:4c:85:1b:a3:3b:fa:ad:9c:22:97:ee:8b:fc:50:b6: 83:f9:1c:7b:c7:2a:30:3c:99:92:80:59:56:af:48:e1:a7:77: 6f:3c:86:ff:a6:9c:09:53:40:be:86:eb:a9:ef:77:ea:24:dc: eb:e0:23:87:b2:9c:1a:d4:40:88:1e:b1:2d:48:39:64:a3:3b: 00:03:8a:2a:66:15:93:82:dd:94:51:ac:25:13:9d:19:29:9e: f6:58:c4:ad:43:7a:9b:e1:57:ab:8f:16:ea:7b:a4:2e:34:35: 68:79:96:7d:04:2a:f8:49:d5:fa:3d:bf:81:69:ad:5e:a5:61: cb:78:78:ce:c6:c9:bf:c4:1c:11:f2:6d:69:e8:be:28:4b:72: dd:99:d3:8b:26:15:b6:21:1d:7c:87:a7:ab:27:0c:ad:ee:3c: 82:b1:15:91:23:f9:d3:91:b6:c1:9a:18:05:5b:d3:3b:da:fe: 21:2a:e2:54:3d:82:99:cb:11:79:d5:d3:d2:8c:53:55:48:da: f3:a2:9f:01 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICEAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNTE3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODliMC1lNzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkRo9Ir89xq/xsIcGEdZUlpMC44msVQ9zNDpGS5FLCoW3HVi9xCUpYokUNNXN wHYW8ZRBOYUZ80tquuLz94t4/bSCfZP3bphf/WIJObHhMnutHC6+Zq8tUwAinQ6E fBpzJ+9GxhKMaU7nsYkdPD2cb8bOwW8n2X2t8w3n8QIdYKxM4QVLyyJePQ7lCRro DQrHS5qimZpD+P/REk3KXXj78ogE+lbFRWbVP506FrCZ2zHPrgUqe+PvChRmU2AT tiAuCN0vGpc9pP3eu3Kp6R4/MuntYvaLdu/W2pLd4Hp2cu269qHrVY6CvN12FZaq KUCLBLJ2uuutJuDJM3lHphVwywIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFBLIMpVw vSpFa/pXuRDZYeIbLd+PMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNUQzNjRFQTJD NURDMTFGMEIyQjExQjYwQzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQAyi/MMA4EAgACMAgDBgAkA+gACzANBgkqhkiG9w0BAQsFAAOCAQEA RcQH0sW67Hy6LDKTR2FLW2pyUes2SirLg5aB2/nT2ZZkusHCnwJJU6LUF/+24NyC nhQTF9nIPK/DTIUbozv6rZwil+6L/FC2g/kce8cqMDyZkoBZVq9I4ad3bzyG/6ac CVNAvobrqe936iTc6+Ajh7KcGtRAiB6xLUg5ZKM7AAOKKmYVk4LdlFGsJROdGSme 9ljErUN6m+FXq48W6nukLjQ1aHmWfQQq+EnV+j2/gWmtXqVhy3h4zsbJv8QcEfJt aei+KEty3ZnTiyYVtiEdfIenqycMre48grEVkSP505G2wZoYBVvTO9r+ISriVD2C mcsRedXT0oxTVUja86KfAQ== -----END CERTIFICATE-----Generated at Sun Mar 8 03:30:12 2026 by rpki-client