$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa File: 5366509AC63511EAAC843455C4F9AE02.roa (raw, json) Hash identifier: LDxg+AB2TirUVMScrJxflfGfwGCZPaKZqe8lg8qNz4A= Subject key identifier: C5:61:87:D9:73:08:A4:F3:85:EC:09:EE:65:FB:91:F6:A7:AE:66:36 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2872 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:39:10 +0000 ROA not before: Tue 08 Apr 2025 15:53:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9497 IP address blocks: 202.138.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10354 (0x2872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a487ce-8fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:99:a6:b0:1b:ce:14:89:90:87:43:f0:38:66: 84:77:f2:37:e6:b2:79:83:d1:e6:3a:3d:84:9a:7b: 57:d9:bc:72:2e:ca:1d:f1:4a:e7:23:12:48:01:fd: c7:e0:fc:23:7e:c2:ce:3d:da:8d:6f:e4:04:b2:76: a7:02:f3:88:15:64:b0:7b:8f:20:29:6f:f0:ca:6e: 8e:56:04:fe:f9:76:a6:8e:e5:e1:c4:84:96:51:0d: 1a:39:68:0e:ab:7c:3f:e7:95:93:9e:4b:85:c2:f2: 71:b8:34:8b:8d:12:5d:cd:be:5c:2b:0f:6c:e5:7d: 71:f5:74:e5:64:02:31:76:a3:cc:48:72:7a:49:a1: 4d:1e:07:e6:fb:47:d8:b4:7c:98:6c:27:21:02:01: 99:25:1d:36:60:90:01:8a:be:78:fa:36:fe:7b:f4: 85:be:96:a2:d6:ea:89:0e:e4:c9:e9:2d:5d:cb:e1: e8:03:42:91:43:78:57:7b:dc:54:1d:a3:91:40:b9: 7c:86:05:43:6d:b6:c7:86:6d:45:c8:18:2e:37:2a: 0e:5b:b7:5e:e9:54:21:58:7a:e6:d8:15:28:85:d5: 79:7f:63:0d:83:c2:21:ce:5d:8a:dc:97:28:11:e1: ca:3c:9c:be:40:23:f7:a7:1b:e8:fe:be:7e:37:e4: 8a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:61:87:D9:73:08:A4:F3:85:EC:09:EE:65:FB:91:F6:A7:AE:66:36 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/5366509AC63511EAAC843455C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.138.128.0/19 Signature Algorithm: sha256WithRSAEncryption 49:65:5a:62:f5:80:33:24:dc:c7:5d:c5:83:f1:91:2d:5f:14: 70:1e:a0:96:9a:55:b3:89:63:7d:2a:ef:41:b7:b5:e5:74:19: aa:33:9d:ff:5f:cc:44:d3:d2:6f:9d:be:cf:c0:02:47:62:3e: 8a:39:60:7d:03:6d:13:2c:b2:99:68:ac:f6:21:58:e3:cd:b9: 81:88:56:26:46:aa:51:fd:e3:3f:4d:bc:ff:26:c8:2c:e5:fb: da:07:7d:41:17:da:98:1b:32:69:41:0c:10:eb:fe:9a:07:3f: 76:c7:9a:41:15:30:0a:f0:ba:33:90:41:8e:95:33:07:9e:66: 8a:18:85:36:f7:5c:9a:68:29:ae:7f:23:4e:7e:bf:59:e9:34: b3:6c:78:76:10:22:10:5e:a8:c5:81:e5:29:a7:eb:7b:79:a2: f0:3b:e2:dd:f0:fd:9b:66:87:30:29:2a:a9:bf:65:25:60:f2: fb:57:cb:2b:6f:c8:fd:14:54:ab:b0:31:a8:92:08:16:c3:1b: 57:ae:e6:16:eb:32:12:ce:8d:a6:a0:ec:39:41:7c:a7:fb:ce: 2b:5a:54:cd:86:5f:19:db:da:55:e8:64:45:38:f0:46:f9:5c: dc:0c:10:0c:0b:6c:1a:90:ed:8e:e6:c7:39:4a:7d:ff:14:bf: 0e:97:c7:0b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdjZS04ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5mmsBvOFImQh0PwOGaEd/I35rJ5g9HmOj2EmntX2bxyLsod8UrnIxJIAf3H 4PwjfsLOPdqNb+QEsnanAvOIFWSwe48gKW/wym6OVgT++XamjuXhxISWUQ0aOWgO q3w/55WTnkuFwvJxuDSLjRJdzb5cKw9s5X1x9XTlZAIxdqPMSHJ6SaFNHgfm+0fY tHyYbCchAgGZJR02YJABir54+jb+e/SFvpai1uqJDuTJ6S1dy+HoA0KRQ3hXe9xU HaORQLl8hgVDbbbHhm1FyBguNyoOW7de6VQhWHrm2BUohdV5f2MNg8Ihzl2K3Jco EeHKPJy+QCP3pxvo/r5+N+SKAwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMVhh9lz CKTzhewJ7mX7kfanrmY2MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNTM2NjUwOUFD NjM1MTFFQUFDODQzNDU1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQFyoqAMA0GCSqGSIb3DQEBCwUAA4IBAQBJZVpi9YAzJNzHXcWD8ZEt XxRwHqCWmlWziWN9Ku9Bt7XldBmqM53/X8xE09Jvnb7PwAJHYj6KOWB9A20TLLKZ aKz2IVjjzbmBiFYmRqpR/eM/Tbz/Jsgs5fvaB31BF9qYGzJpQQwQ6/6aBz92x5pB FTAK8LozkEGOlTMHnmaKGIU291yaaCmufyNOfr9Z6TSzbHh2ECIQXqjFgeUpp+t7 eaLwO+Ld8P2bZocwKSqpv2UlYPL7V8srb8j9FFSrsDGokggWwxtXruYW6zISzo2m oOw5QXyn+84rWlTNhl8Z29pV6GRFOPBG+VzcDBAMC2wakO2O5sc5Sn3/FL8Ol8cL -----END CERTIFICATE-----Generated at Sun Mar 8 03:26:27 2026 by rpki-client