$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/974869042C2A11F19F1796939D833773.roa File: 974869042C2A11F19F1796939D833773.roa (raw, json) Hash identifier: OeaomLN4Q8pcNvH+I1YBnwu7+mzao8SuLeZZtE3M27g= Subject key identifier: 42:E7:82:99:B8:63:14:15:C3:7F:14:B3:D4:DB:74:02:AA:3D:CA:A3 Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0D20 Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/974869042C2A11F19F1796939D833773.roa Signing time: Sun 17 May 2026 13:23:32 +0000 ROA not before: Sun 17 May 2026 13:23:32 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 138004 IP address blocks: 202.125.64.0/24 maxlen: 24 202.125.66.0/24 maxlen: 24 202.125.67.0/24 maxlen: 24 202.125.68.0/24 maxlen: 24 202.125.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 18:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3360 (0xd20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: May 17 13:23:32 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6a09c153-7123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:59:48:32:f2:9d:aa:c0:fb:14:ff:ea:a5:a7: 97:05:07:de:80:65:58:3d:d6:35:4c:22:28:e6:6f: e0:0a:c0:54:0e:95:2b:ea:29:db:ed:b2:1c:5c:a3: 4a:48:ad:95:08:c2:df:ad:32:6a:ed:0e:83:e9:af: 9d:86:8e:fd:12:07:60:81:79:f6:1e:52:dd:8f:3d: a9:a2:ca:53:19:eb:08:11:e5:ae:73:15:29:d7:ce: 08:34:39:2e:ce:7a:ae:af:27:dc:0c:e0:c4:6d:97: b2:ba:8d:ec:2c:6f:11:7f:d5:62:b7:f5:71:8e:3e: 28:68:f1:f9:e8:5b:ec:f8:c7:71:14:e0:8e:0b:a7: d5:98:c6:e9:25:35:46:e1:08:96:40:0f:9f:c8:ce: 8f:a0:a4:06:1f:90:3f:40:eb:be:10:ee:6c:59:45: 6f:dd:83:ca:9c:fc:3c:5c:ad:d3:c0:2a:2b:75:46: fe:99:63:f2:00:37:b8:88:d7:c1:d2:6b:c1:ae:64: 4b:32:86:51:f9:5f:5d:eb:92:36:b8:c0:6c:ca:b4: 4d:46:50:98:56:bc:d5:db:ee:6a:a4:18:7d:4a:21: a2:07:40:d5:27:f6:ef:da:78:fa:cb:df:9c:c3:59: d4:66:f3:d5:bf:f4:50:bc:2f:f6:56:4b:67:70:24: 16:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E7:82:99:B8:63:14:15:C3:7F:14:B3:D4:DB:74:02:AA:3D:CA:A3 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/974869042C2A11F19F1796939D833773.roa sbgp-ipAddrBlock: critical IPv4: 202.125.64.0/24 202.125.66.0-202.125.68.255 202.125.79.0/24 Signature Algorithm: sha256WithRSAEncryption 62:fd:a9:2c:b6:dd:2f:f4:42:6e:05:1e:7c:9e:cf:2c:3a:76: 71:c2:f2:37:90:76:de:f6:a5:1f:2b:16:c5:d5:ff:10:18:77: c5:96:a2:e3:91:55:4f:0e:3c:f3:d4:cd:c1:d2:32:1b:6a:8b: ab:48:b6:6f:37:6a:97:27:8a:e7:6b:92:bd:97:35:22:89:b7: f2:2e:6a:3d:fb:6e:70:c6:e0:db:3f:ac:20:b8:e0:92:62:ba: a5:23:1b:d0:e6:30:22:7b:91:6d:ed:29:49:d8:c3:fc:ce:a2: 84:92:ee:59:bc:48:30:f1:de:a4:4e:75:c0:27:a6:76:3d:73: 2c:c0:ea:46:1b:0a:c1:6a:df:24:b1:e0:5d:68:13:95:5e:9d: 08:93:ce:75:5b:b3:9c:bd:0c:04:ee:6c:a4:dd:d5:85:9d:f0: 8b:3d:de:e9:a2:57:fe:d2:5a:87:23:a0:c2:1b:c1:5a:a2:7f: 81:df:7f:43:b9:8b:b1:7e:60:75:ed:be:df:81:98:40:53:b0: 96:ce:70:04:4f:e5:1e:6c:60:3d:65:32:e3:55:58:62:62:fb: 27:65:ee:07:12:16:16:2b:eb:53:6d:e2:43:16:07:ac:8c:74: 94:50:81:f2:13:fa:e1:5d:ce:d8:cf:f4:fb:b8:49:96:01:2c: 87:55:83:f4 -----BEGIN CERTIFICATE----- MIIFUDCCBDigAwIBAgICDSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjYwNTE3MTMyMzMyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02YTA5YzE1My03MTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAullIMvKdqsD7FP/qpaeXBQfegGVYPdY1TCIo5m/gCsBUDpUr6inb7bIcXKNK SK2VCMLfrTJq7Q6D6a+dho79EgdggXn2HlLdjz2pospTGesIEeWucxUp184INDku znquryfcDODEbZeyuo3sLG8Rf9Vit/Vxjj4oaPH56Fvs+MdxFOCOC6fVmMbpJTVG 4QiWQA+fyM6PoKQGH5A/QOu+EO5sWUVv3YPKnPw8XK3TwCordUb+mWPyADe4iNfB 0mvBrmRLMoZR+V9d65I2uMBsyrRNRlCYVrzV2+5qpBh9SiGiB0DVJ/bv2nj6y9+c w1nUZvPVv/RQvC/2VktncCQWQwIDAQABo4ICdDCCAnAwHQYDVR0OBBYEFELngpm4 YxQVw38Us9TbdAKqPcqjMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQzNDUvRUM3OENEREEwNTM4MTFFQUI1ODk3NjY4QzRGOUFFMDIvOTc0ODY5MDQy QzJBMTFGMTlGMTc5NjkzOUQ4MzM3NzMucm9hMDMGCCsGAQUFBwEHAQH/BCQwIjAg BAIAATAaAwQAyn1AMAwDBAHKfUIDBADKfUQDBADKfU8wDQYJKoZIhvcNAQELBQAD ggEBAGL9qSy23S/0Qm4FHnyezyw6dnHC8jeQdt72pR8rFsXV/xAYd8WWouORVU8O PPPUzcHSMhtqi6tItm83apcniudrkr2XNSKJt/Iuaj37bnDG4Ns/rCC44JJiuqUj G9DmMCJ7kW3tKUnYw/zOooSS7lm8SDDx3qROdcAnpnY9cyzA6kYbCsFq3ySx4F1o E5VenQiTznVbs5y9DATubKTd1YWd8Is93umiV/7SWocjoMIbwVqif4Hff0O5i7F+ YHXtvt+BmEBTsJbOcARP5R5sYD1lMuNVWGJi+ydl7gcSFhYr61Nt4kMWB6yMdJRQ gfIT+uFdztjP9Pu4SZYBLIdVg/Q= -----END CERTIFICATE-----Generated at Thu May 21 11:57:51 2026 by rpki-client