$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa File: 29B9D5B8524111EABEF0A119C4F9AE02.roa (raw, json) Hash identifier: a6wavOgKoP5md5rS3aTV8AwOSfSYTGywa/u0ciPrNLg= Subject key identifier: D5:F8:C6:A7:5D:45:26:9D:8E:A4:4B:79:6E:DC:EE:A6:F0:A0:00:FE Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0B6C Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa Signing time: Wed 22 Apr 2026 19:24:10 +0000 ROA not before: Wed 22 Apr 2026 19:24:09 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 45495 IP address blocks: 202.4.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 May 2026 19:10:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2924 (0xb6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Apr 22 19:24:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69e92059-10c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:a2:a5:8d:6b:75:78:8e:8d:f0:8a:23:4e: 5f:60:71:c1:e9:fc:6b:49:c4:c2:6a:ca:0b:ba:10: e6:bd:0f:15:fa:44:8d:f8:70:89:68:36:36:21:f0: f5:20:ec:bf:0d:4a:96:2c:d5:8e:3d:0a:42:d3:5a: 8f:89:10:f4:ef:3a:1b:84:f5:aa:74:69:d5:49:54: 46:fd:03:b9:7c:ec:05:e1:b8:01:61:8b:32:f5:41: ce:d3:d7:bc:a5:e0:37:70:22:49:a3:ff:d3:67:81: fd:a3:ee:13:11:8e:16:5c:b6:4e:a2:68:4f:50:62: 41:0c:c7:10:0f:06:c2:a3:68:6c:39:9b:98:68:59: 80:e1:ec:04:f8:d4:2c:f0:1c:d7:91:78:d0:94:47: a1:d6:14:fa:17:5d:76:02:fc:14:56:85:3a:77:44: f2:3f:07:2c:ab:b9:bc:ba:f3:92:a9:da:c6:ab:a3: ec:b6:54:90:9e:be:01:67:92:54:71:a5:3e:01:4a: 07:f0:2a:5b:83:ed:a3:0d:4a:3e:7c:08:56:78:17: 7e:93:c3:f8:32:fd:a9:91:19:e4:e6:86:6a:a4:4e: 5b:8d:bb:0c:75:f4:f4:88:91:79:6f:bb:2e:da:96: cb:2f:6f:98:59:c3:d3:cb:91:ec:ed:52:a7:56:d7: 55:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F8:C6:A7:5D:45:26:9D:8E:A4:4B:79:6E:DC:EE:A6:F0:A0:00:FE X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.4.251.0/24 Signature Algorithm: sha256WithRSAEncryption 29:60:cf:82:fb:23:b6:ea:1e:38:63:0f:92:c2:aa:96:97:9e: 87:83:b4:38:da:00:bc:89:45:59:7f:1e:8f:9b:44:d4:a3:62: 79:ea:0d:91:8d:9e:97:4d:68:7d:22:2c:02:af:22:78:f9:51: d7:df:47:54:de:ba:d6:5c:bc:26:e3:32:cb:07:81:b5:10:3d: 90:34:1a:da:c2:4b:d3:05:66:31:c9:56:4f:81:e8:72:0a:85: eb:42:07:e9:05:84:89:8f:9f:d2:2c:04:26:d9:77:e7:ca:8e: ff:de:92:4b:82:a5:33:9a:df:21:7e:25:09:f1:dd:8e:2e:5a: 93:23:41:ec:47:1f:d1:07:a8:fe:c3:85:df:86:62:ee:e8:32: 03:95:c3:dc:7a:34:1e:35:64:f4:8d:e1:f5:24:08:26:d2:11: 93:db:93:0c:23:e9:94:5e:10:7c:b4:43:08:5f:c4:04:ac:87: 99:cb:20:b1:6f:78:1e:a4:cb:13:e1:0d:08:c4:dc:97:cf:9a: ec:3d:57:f0:70:ef:c7:e1:ae:75:7c:7e:09:72:f0:4b:53:fb: 10:a7:af:46:51:21:51:99:4e:af:ed:f0:bc:af:13:61:91:68: da:ea:f3:c6:53:99:5c:bf:ee:c8:3d:fd:db:05:5e:41:3b:42: 77:71:ed:0c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICC2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjYwNDIyMTkyNDA5WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWU5MjA1OS0xMGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvd+ipY1rdXiOjfCKI05fYHHB6fxrScTCasoLuhDmvQ8V+kSN+HCJaDY2IfD1 IOy/DUqWLNWOPQpC01qPiRD07zobhPWqdGnVSVRG/QO5fOwF4bgBYYsy9UHO09e8 peA3cCJJo//TZ4H9o+4TEY4WXLZOomhPUGJBDMcQDwbCo2hsOZuYaFmA4ewE+NQs 8BzXkXjQlEeh1hT6F112AvwUVoU6d0TyPwcsq7m8uvOSqdrGq6PstlSQnr4BZ5JU caU+AUoH8Cpbg+2jDUo+fAhWeBd+k8P4Mv2pkRnk5oZqpE5bjbsMdfT0iJF5b7su 2pbLL2+YWcPTy5Hs7VKnVtdV3QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNX4xqdd RSadjqRLeW7c7qbwoAD+MB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDQTEvNzA2M0U0MjQ1MjNGMTFFQThDOUNGMDE2QzRGOUFFMDIvMjlCOUQ1Qjg1 MjQxMTFFQUJFRjBBMTE5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAygT7MA0GCSqGSIb3DQEBCwUAA4IBAQApYM+C+yO26h44Yw+SwqqW l56Hg7Q42gC8iUVZfx6Pm0TUo2J56g2RjZ6XTWh9IiwCryJ4+VHX30dU3rrWXLwm 4zLLB4G1ED2QNBrawkvTBWYxyVZPgehyCoXrQgfpBYSJj5/SLAQm2Xfnyo7/3pJL gqUzmt8hfiUJ8d2OLlqTI0HsRx/RB6j+w4XfhmLu6DIDlcPcejQeNWT0jeH1JAgm 0hGT25MMI+mUXhB8tEMIX8QErIeZyyCxb3gepMsT4Q0IxNyXz5rsPVfwcO/H4a51 fH4JcvBLU/sQp69GUSFRmU6v7fC8rxNhkWja6vPGU5lcv+7IPf3bBV5BO0J3ce0M -----END CERTIFICATE-----Generated at Thu May 21 10:54:53 2026 by rpki-client