$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa File: B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa (raw, json) Hash identifier: EaEIkoL8X3Bs8catDydmdxqS40jl2dudc0xm8Au52PE= Subject key identifier: 79:27:A4:AE:C3:17:2D:BE:EA:02:91:07:26:1D:D9:60:22:5D:A0:DC Certificate issuer: /CN=A91D8704/serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Certificate serial: 0965 Authority key identifier: 03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa Signing time: Thu 28 May 2026 20:24:42 +0000 ROA not before: Thu 28 May 2026 20:24:42 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 24320 IP address blocks: 202.72.240.0/24 maxlen: 24 202.72.241.0/24 maxlen: 24 202.72.242.0/24 maxlen: 24 202.72.243.0/24 maxlen: 24 202.72.244.0/24 maxlen: 24 202.72.245.0/24 maxlen: 24 202.72.246.0/24 maxlen: 24 202.72.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 20:07:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8704, serialNumber=0307EF0F29CF22DB0970F5083C023C2AA0D6F517 Validity Not Before: May 28 20:24:42 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6a18a48a-3737 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f3:66:4a:8a:51:d9:2d:34:d5:cc:7b:2d:b8: 2f:78:64:55:9e:ee:f5:ec:55:52:78:e4:0a:9f:eb: b7:ab:3a:0f:b4:0f:9f:25:23:bd:3b:f3:ee:d7:cf: 58:54:50:0d:c1:49:19:2a:d0:4a:29:68:6e:e5:c5: b3:12:c2:01:18:ee:a4:4f:8b:08:e1:be:93:88:e1: 03:86:39:87:66:1a:25:9c:c8:f9:d3:2a:10:44:a0: 13:c3:5d:5f:45:e2:1f:cc:b7:6a:dd:42:a6:00:f8: 1c:72:bc:bd:c7:c9:9d:94:2a:3a:75:ee:39:51:55: ac:9f:ed:10:89:94:70:95:4e:c9:ab:24:f6:33:6c: 9a:af:aa:ba:05:43:df:80:29:50:36:d6:09:85:69: ca:61:a2:16:72:8b:e5:7c:fe:88:b7:39:4d:59:1b: 2b:7e:63:50:11:e7:c2:8f:29:47:72:9f:b2:ac:1b: 63:5a:66:3f:6b:74:09:cd:58:62:10:4f:a5:e9:d1: 2e:a2:91:a3:d7:c0:86:c3:26:e7:06:c9:4a:c8:0a: cf:8b:32:40:47:9d:aa:a1:53:69:ed:05:27:e1:44: 95:68:7e:a3:d0:ca:ac:01:07:1c:06:95:cf:62:8d: 3b:80:66:9e:d8:77:3e:db:67:29:60:8d:41:b6:ed: d3:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:27:A4:AE:C3:17:2D:BE:EA:02:91:07:26:1D:D9:60:22:5D:A0:DC X509v3 Authority Key Identifier: keyid:03:07:EF:0F:29:CF:22:DB:09:70:F5:08:3C:02:3C:2A:A0:D6:F5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/AwfvDynPItsJcPUIPAI8KqDW9Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AwfvDynPItsJcPUIPAI8KqDW9Rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8704/5655AC98BC0C11EA91E09B68C4F9AE02/B1AAC5B2BC4111EA9A5B2786C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 25:83:19:cf:b7:95:81:a6:ff:81:b0:04:75:9a:68:0b:e4:f8: 7c:e8:70:3b:39:58:3e:0c:16:d5:74:b4:7e:7e:75:e3:0b:27: 5c:b1:ae:30:41:76:cf:67:c5:8a:b5:d5:1f:1d:0a:3a:7f:2c: 23:c6:cd:69:5a:e0:24:dd:da:c3:64:2e:7e:37:09:f4:e2:62: 7f:ec:b4:f1:27:42:3f:db:64:52:da:7e:3f:ce:37:43:7a:57: a1:4e:c1:61:00:e7:28:0f:d0:26:90:0e:0e:ab:d1:a5:88:97: 25:01:80:b5:d2:1a:00:65:e9:9a:89:8c:7b:bd:ee:34:63:dc: 08:f4:9c:49:3c:78:68:a1:62:f1:73:fd:35:5a:84:92:8d:70: 88:f1:11:2e:cb:c5:db:67:bd:64:27:97:25:87:69:32:a6:03: 0c:d7:85:60:c2:ac:20:de:d6:8b:52:58:38:e0:dc:ef:ee:72: d4:42:de:c2:8a:08:18:e8:37:96:1e:8e:c1:7f:25:f5:c3:03: 91:09:bf:29:b5:54:12:a6:52:04:19:ae:25:8e:16:49:f7:dc: 56:12:9f:b4:99:34:5c:2c:87:bc:26:f2:47:d0:24:52:e0:ca: bf:46:45:38:2a:ae:9a:fa:4e:8d:f5:2c:db:7e:9f:1f:17:63: 54:33:29:f6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3MDQxMTAvBgNVBAUTKDAzMDdFRjBGMjlDRjIyREIwOTcwRjUwODNDMDIzQzJB QTBENkY1MTcwHhcNMjYwNTI4MjAyNDQyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTE4YTQ4YS0zNzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4/NmSopR2S001cx7LbgveGRVnu717FVSeOQKn+u3qzoPtA+fJSO9O/Pu189Y VFANwUkZKtBKKWhu5cWzEsIBGO6kT4sI4b6TiOEDhjmHZholnMj50yoQRKATw11f ReIfzLdq3UKmAPgccry9x8mdlCo6de45UVWsn+0QiZRwlU7JqyT2M2yar6q6BUPf gClQNtYJhWnKYaIWcovlfP6ItzlNWRsrfmNQEefCjylHcp+yrBtjWmY/a3QJzVhi EE+l6dEuopGj18CGwybnBslKyArPizJAR52qoVNp7QUn4USVaH6j0MqsAQccBpXP Yo07gGae2Hc+22cpYI1Btu3TyQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHknpK7D Fy2+6gKRByYd2WAiXaDcMB8GA1UdIwQYMBaAFAMH7w8pzyLbCXD1CDwCPCqg1vUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODcwNC81NjU1QUM5OEJD MEMxMUVBOTFFMDlCNjhDNEY5QUUwMi9Bd2Z2RHluUEl0c0pjUFVJUEFJOEtxRFc5 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F3ZnZEeW5QSXRzSmNQVUlQQUk4S3FEVzlSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg3MDQvNTY1NUFDOThCQzBDMTFFQTkxRTA5QjY4QzRGOUFFMDIvQjFBQUM1QjJC QzQxMTFFQTlBNUIyNzg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDykjwMA0GCSqGSIb3DQEBCwUAA4IBAQAlgxnPt5WBpv+BsAR1mmgL 5Ph86HA7OVg+DBbVdLR+fnXjCydcsa4wQXbPZ8WKtdUfHQo6fywjxs1pWuAk3drD ZC5+Nwn04mJ/7LTxJ0I/22RS2n4/zjdDelehTsFhAOcoD9AmkA4Oq9GliJclAYC1 0hoAZemaiYx7ve40Y9wI9JxJPHhooWLxc/01WoSSjXCI8REuy8XbZ71kJ5clh2ky pgMM14Vgwqwg3taLUlg44Nzv7nLUQt7CiggY6DeWHo7BfyX1wwORCb8ptVQSplIE Ga4ljhZJ99xWEp+0mTRcLIe8JvJH0CRS4Mq/RkU4Kq6a+k6N9Szbfp8fF2NUMyn2 -----END CERTIFICATE-----Generated at Wed Jun 24 12:24:11 2026 by rpki-client