$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa File: 743ABB72997011EAB50D6934C4F9AE02.roa (raw, json) Hash identifier: ArgsxP2sLySElCV6E9319sOSOpXMuLb9HOsFnGtKI6U= Subject key identifier: 44:FE:34:F4:07:43:43:98:5F:E6:9C:E5:A8:F0:E5:2F:43:AC:8F:60 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2874 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:39:15 +0000 ROA not before: Wed 11 Feb 2026 03:25:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20940 IP address blocks: 122.2.208.0/24 maxlen: 24 124.106.8.0/24 maxlen: 24 124.106.175.0/24 maxlen: 24 202.138.183.0/24 maxlen: 24 2001:4450:40::/48 maxlen: 48 2001:4457:ff0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10356 (0x2874) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Feb 11 03:25:27 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a487d3-7b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c1:a9:55:a2:6f:5b:8e:02:57:97:a4:43:09: d4:56:f5:c1:d4:e4:90:fd:15:ab:53:19:83:88:6a: 0e:5c:fd:c5:db:c0:7a:80:5b:5c:62:31:cb:eb:9b: f1:8a:3b:d0:2d:9d:16:6a:fc:dd:13:a0:da:2d:dd: bd:ac:5f:34:52:17:b7:2c:f4:97:d9:2b:76:2f:b5: 5f:47:08:e6:0e:25:c8:8e:59:2e:d9:f7:b1:ed:59: f2:a7:1f:df:df:16:10:96:ad:bd:89:ba:99:af:33: 79:25:61:14:03:bf:ed:db:6d:80:3f:2c:17:3b:1f: 54:84:a3:33:30:12:c3:7e:98:eb:e6:79:34:c2:db: 98:e6:c4:a4:c0:50:4d:6e:5b:12:75:a2:be:b9:99: 45:3b:ee:4f:f9:a0:b1:b1:ac:24:fa:7d:26:05:6a: 6f:e6:49:b3:65:93:e6:06:18:33:49:a7:31:43:37: 10:2a:97:12:3e:0b:15:af:49:11:4e:a5:85:53:f9: 23:03:60:db:d4:d1:47:c7:36:15:76:aa:77:7b:f5: 96:ea:56:bf:78:1b:78:8c:8f:58:52:e6:13:24:53: dd:43:c4:d5:4a:64:0a:c8:bd:cf:08:c1:45:5d:f0: c1:5c:a4:c4:bd:0f:c8:b9:fd:10:f5:27:3e:c7:dd: 0e:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:FE:34:F4:07:43:43:98:5F:E6:9C:E5:A8:F0:E5:2F:43:AC:8F:60 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 122.2.208.0/24 124.106.8.0/24 124.106.175.0/24 202.138.183.0/24 IPv6: 2001:4450:40::/48 2001:4457:ff0::/48 Signature Algorithm: sha256WithRSAEncryption 1b:97:b9:71:44:41:00:04:fe:2d:b4:14:4e:57:d3:d8:15:16: b2:a0:12:1f:b3:7d:fc:db:c8:b6:13:6e:d2:d6:1d:d9:75:ac: c1:ef:b4:14:9b:06:f0:d3:1d:d5:dd:22:18:b6:88:99:62:52: 8d:67:99:69:eb:d0:e2:7c:84:83:2d:5f:43:ab:e7:0b:fd:bb: 87:c6:cf:45:ca:77:d5:b3:ec:7c:d9:52:35:24:6d:aa:e8:f1: a0:2c:2d:12:d0:c3:10:26:81:eb:9a:0e:c4:9b:44:01:80:b9: f8:dd:cd:21:0f:f9:3b:b8:4b:85:53:fc:77:62:d1:eb:4c:3e: 0e:9e:f3:60:4e:33:10:9c:40:c9:80:5e:6a:75:9f:59:79:97: a7:06:2b:71:27:d1:09:e4:01:b5:0e:09:0a:10:af:67:36:1f: f3:ff:fa:8b:77:17:bd:fd:c9:9c:44:36:06:fa:0a:19:c9:9a: 1b:9f:ba:6a:7f:f6:03:29:d6:5c:30:71:52:ea:fd:a8:3d:d7: aa:07:fd:3b:e8:59:74:40:33:10:8d:3b:91:c7:d7:3f:3f:88: f3:49:92:18:38:ee:9a:fa:53:35:41:0d:fc:d6:2a:cd:09:71: 6b:91:d3:ae:aa:40:7f:d8:ce:e6:9c:11:ce:32:f4:07:ac:12: a3:c9:6f:d5 -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICKHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwMjExMDMyNTI3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdkMy03Yjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysGpVaJvW44CV5ekQwnUVvXB1OSQ/RWrUxmDiGoOXP3F28B6gFtcYjHL65vx ijvQLZ0WavzdE6DaLd29rF80Uhe3LPSX2St2L7VfRwjmDiXIjlku2fex7Vnypx/f 3xYQlq29ibqZrzN5JWEUA7/t222APywXOx9UhKMzMBLDfpjr5nk0wtuY5sSkwFBN blsSdaK+uZlFO+5P+aCxsawk+n0mBWpv5kmzZZPmBhgzSacxQzcQKpcSPgsVr0kR TqWFU/kjA2Db1NFHxzYVdqp3e/WW6la/eBt4jI9YUuYTJFPdQ8TVSmQKyL3PCMFF XfDBXKTEvQ/Iuf0Q9Sc+x90OFQIDAQABo4ICjDCCAogwHQYDVR0OBBYEFET+NPQH Q0OYX+ac5ajw5S9DrI9gMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNzQzQUJCNzI5 OTcwMTFFQUI1MEQ2OTM0QzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjAe BAIAATAYAwQAegLQAwQAfGoIAwQAfGqvAwQAyoq3MBgEAgACMBIDBwAgAURQAEAD BwAgAURXD/AwDQYJKoZIhvcNAQELBQADggEBABuXuXFEQQAE/i20FE5X09gVFrKg Eh+zffzbyLYTbtLWHdl1rMHvtBSbBvDTHdXdIhi2iJliUo1nmWnr0OJ8hIMtX0Or 5wv9u4fGz0XKd9Wz7HzZUjUkbaro8aAsLRLQwxAmgeuaDsSbRAGAufjdzSEP+Tu4 S4VT/Hdi0etMPg6e82BOMxCcQMmAXmp1n1l5l6cGK3En0QnkAbUOCQoQr2c2H/P/ +ot3F739yZxENgb6ChnJmhufump/9gMp1lwwcVLq/ag916oH/TvoWXRAMxCNO5HH 1z8/iPNJkhg47pr6UzVBDfzWKs0JcWuR066qQH/YzuacEc4y9AesEqPJb9U= -----END CERTIFICATE-----Generated at Sun Mar 8 03:26:27 2026 by rpki-client