$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/624A8CB0A75211EDB46F8967C4F9AE02.roa File: 624A8CB0A75211EDB46F8967C4F9AE02.roa (raw, json) Hash identifier: dVJcEiWpRACJoxXp8/joMlNohcH1dI43ijkAQVDDM3A= Subject key identifier: A1:6E:98:93:74:C4:02:04:A2:47:12:58:EC:0A:B4:4F:67:48:D9:87 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0FF2 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/624A8CB0A75211EDB46F8967C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:46:55 +0000 ROA not before: Wed 14 Jan 2026 18:14:56 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 131094 IP address blocks: 210.57.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 17:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4082 (0xff2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jan 14 18:14:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4899e-e2d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:06:80:31:7c:f4:0d:2c:1c:30:37:13:99:84: 59:23:de:c9:08:6e:67:1b:54:84:0b:f7:3a:69:ca: 81:15:78:ae:5f:5d:32:aa:f5:38:7f:7a:b5:26:25: 3e:07:9f:fc:4f:2b:a0:56:a2:15:77:34:d1:e4:ba: 33:61:00:6a:fe:10:83:0b:bc:58:2c:e1:54:66:4d: c6:36:44:fd:62:f7:f2:02:22:27:02:1f:06:a2:f0: 04:e4:e5:d3:7a:04:75:ae:3e:a6:36:0c:69:0e:a4: 3b:51:4d:15:d4:42:67:7e:7f:1b:28:12:64:c5:3f: 4f:20:45:3a:e4:be:5c:c5:4d:24:f7:41:4b:32:dc: 80:2a:39:01:5e:57:ad:1c:ef:5d:46:a5:2b:e5:da: ae:28:68:60:0b:c9:e6:5d:bb:e4:39:02:84:53:8d: 1c:71:b2:83:c7:7a:c4:d6:e8:28:ee:64:55:ac:6f: 92:0a:03:b0:f0:3d:e5:f4:b7:b1:ec:a4:91:64:5f: e2:9f:70:0e:ea:81:2d:c6:24:d7:52:be:56:55:f5: 80:af:84:25:8e:b7:cc:c9:bf:30:77:25:54:bc:98: 7f:1e:2a:6c:0d:b0:9a:30:a7:2b:7d:47:c9:88:50: 35:3b:25:bc:1e:3c:8d:64:0f:8a:2d:1d:13:26:15: 4e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6E:98:93:74:C4:02:04:A2:47:12:58:EC:0A:B4:4F:67:48:D9:87 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/624A8CB0A75211EDB46F8967C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 210.57.74.0/24 Signature Algorithm: sha256WithRSAEncryption 25:ea:fd:6f:12:d5:d5:6c:8b:d8:18:a2:43:fa:e4:3e:d5:c0: 29:08:4f:b4:d3:c3:2d:8d:33:57:b7:3d:88:a6:8b:04:fb:6d: 4b:0d:29:43:81:78:03:be:d2:a5:36:5a:1b:46:3c:1f:71:3d: ee:2f:a9:9b:34:78:c3:41:84:2e:d5:09:c3:4c:24:20:7d:e3: f5:f7:21:60:62:5f:01:93:49:6f:ff:b5:52:9f:cd:26:b8:ce: d2:d1:5d:52:08:70:de:6a:04:05:80:82:31:b7:be:3c:43:15: 31:52:cb:9f:0e:5f:ae:f1:5c:f0:8b:f5:bb:58:02:36:72:59: 6a:66:6e:93:b7:af:c6:cd:92:06:f4:36:c2:f0:71:a4:62:b7: 18:5b:f0:fa:da:50:2d:56:42:2d:7b:33:7a:61:6b:04:95:47: e1:f5:84:9e:ba:12:02:f8:af:c5:6b:e9:01:16:96:5a:26:5e: a8:4a:f9:e5:f5:16:16:c2:03:18:a3:aa:72:9b:33:e4:dc:87: 6d:b7:3b:16:4a:85:04:9b:82:2a:fc:de:07:fb:33:23:e5:77: e5:6b:68:e0:62:9e:91:c4:dd:f5:dc:52:35:aa:d6:37:6d:71: 50:a2:7a:b5:70:31:fe:f5:f4:27:95:2c:b2:a8:1d:0b:6d:71: a1:28:f2:62 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICD/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjYwMTE0MTgxNDU2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODk5ZS1lMmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgaAMXz0DSwcMDcTmYRZI97JCG5nG1SEC/c6acqBFXiuX10yqvU4f3q1JiU+ B5/8TyugVqIVdzTR5LozYQBq/hCDC7xYLOFUZk3GNkT9YvfyAiInAh8GovAE5OXT egR1rj6mNgxpDqQ7UU0V1EJnfn8bKBJkxT9PIEU65L5cxU0k90FLMtyAKjkBXlet HO9dRqUr5dquKGhgC8nmXbvkOQKEU40ccbKDx3rE1ugo7mRVrG+SCgOw8D3l9Lex 7KSRZF/in3AO6oEtxiTXUr5WVfWAr4QljrfMyb8wdyVUvJh/HipsDbCaMKcrfUfJ iFA1OyW8HjyNZA+KLR0TJhVOsQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKFumJN0 xAIEokcSWOwKtE9nSNmHMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNjI0QThDQjBB NzUyMTFFREI0NkY4OTY3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQA0jlKMA0GCSqGSIb3DQEBCwUAA4IBAQAl6v1vEtXVbIvYGKJD+uQ+ 1cApCE+008MtjTNXtz2IposE+21LDSlDgXgDvtKlNlobRjwfcT3uL6mbNHjDQYQu 1QnDTCQgfeP19yFgYl8Bk0lv/7VSn80muM7S0V1SCHDeagQFgIIxt748QxUxUsuf Dl+u8Vzwi/W7WAI2cllqZm6Tt6/GzZIG9DbC8HGkYrcYW/D62lAtVkItezN6YWsE lUfh9YSeuhIC+K/Fa+kBFpZaJl6oSvnl9RYWwgMYo6pymzPk3IdttzsWSoUEm4Iq /N4H+zMj5Xfla2jgYp6RxN313FI1qtY3bXFQonq1cDH+9fQnlSyyqB0LbXGhKPJi -----END CERTIFICATE-----Generated at Sun Mar 8 03:30:20 2026 by rpki-client