$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/29F2A6202EF711F08A285219C4F9AE02.roa File: 29F2A6202EF711F08A285219C4F9AE02.roa (raw, json) Hash identifier: awn/a9HwQ3B1FUC7V5AjVVUzjagHYyFp9omUalZtJ6g= Subject key identifier: 0F:0F:45:FE:DC:F7:18:56:6E:97:F5:1D:10:3C:C9:50:89:7B:F3:E9 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 03C0 Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/29F2A6202EF711F08A285219C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:55:52 +0000 ROA not before: Mon 04 Aug 2025 03:36:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149981 IP address blocks: 123.108.74.0/24 maxlen: 24 2407:2440:21::/48 maxlen: 48 2407:2440:24::/48 maxlen: 48 2407:2440:26::/48 maxlen: 48 2407:2440:29::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 00:56:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 960 (0x3c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Aug 4 03:36:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a588d8-558b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9f:56:39:d1:c2:2d:a2:4d:8e:95:d5:84:78: 5d:54:01:6f:e7:53:63:8c:c1:7e:17:15:18:6c:06: 02:34:b4:1f:f8:6b:32:02:72:85:a9:53:7f:92:be: af:d9:7f:62:a9:ca:dd:57:fe:78:fe:b9:72:39:08: 6e:fd:56:cb:68:3b:6c:bf:6b:48:e4:88:2b:6a:4d: 71:19:47:4c:6c:2a:a0:23:d0:e9:a1:15:0a:63:49: f7:10:5f:ee:56:36:94:4c:90:87:0d:f3:5e:20:21: d5:fb:73:50:ba:ec:6d:5b:cb:ed:0b:bc:05:c4:33: 06:c8:0e:d9:b8:1f:de:10:f2:58:d5:08:20:fd:83: 75:34:f2:c3:48:94:c4:4c:b0:15:6c:1a:2a:2d:28: 3f:19:64:5a:55:52:90:34:63:d7:14:73:9c:b6:c7: 56:aa:33:89:e3:92:2a:a3:45:93:c8:e1:5a:54:e8: 5b:83:40:d8:b3:77:ae:c1:2d:92:09:42:d5:62:bd: 39:71:4d:9e:50:28:a5:d5:17:1a:61:c7:ce:15:75: ed:32:e6:cf:77:61:80:4c:6c:d6:2d:ff:29:53:38: 25:84:21:de:a1:d4:d2:a5:2a:38:2c:2c:64:c9:fc: 84:02:b8:0c:8b:88:3b:f5:ac:58:ea:9a:ea:4e:45: 32:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:0F:45:FE:DC:F7:18:56:6E:97:F5:1D:10:3C:C9:50:89:7B:F3:E9 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/29F2A6202EF711F08A285219C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.108.74.0/24 IPv6: 2407:2440:21::/48 2407:2440:24::/48 2407:2440:26::/48 2407:2440:29::/48 Signature Algorithm: sha256WithRSAEncryption 2d:05:99:65:3b:3b:5c:d3:8d:ed:b2:e1:67:7d:e3:56:98:f1: 18:0c:30:ab:62:17:e5:39:e4:82:7f:2b:fb:d5:04:be:2a:88: 62:73:72:88:0e:e1:40:24:cc:f3:d5:23:8e:b8:00:93:7f:e1: 0b:78:6b:14:05:65:00:ea:2b:6f:cc:69:36:a6:99:06:59:04: 79:3e:1a:ca:e4:b0:c7:e5:70:a7:97:10:e2:2e:61:0d:86:89: ee:35:78:6a:66:6c:ff:06:13:f4:90:16:0f:88:8b:0c:83:d0: 29:62:e8:39:2f:e7:d1:a2:25:39:ee:80:39:cd:99:55:39:3f: f2:43:b6:d1:8f:94:32:74:aa:8a:38:5b:05:05:9f:6b:0e:96: 8e:ed:38:b1:20:10:7f:2f:91:8e:4f:6d:05:51:e8:f0:85:f5: 9c:c0:90:9c:31:2c:9b:47:a9:66:c9:cc:be:02:f6:86:b6:05: 01:11:2c:53:b6:70:a6:7c:b9:b1:8d:6d:73:d3:9a:3a:a8:2d: 03:64:90:78:30:41:e6:2e:49:1c:b6:66:9d:8c:26:37:13:7d: fd:ac:75:2b:b6:48:8a:ca:f5:f2:53:2f:0b:c5:f7:c9:86:df: 17:c1:fe:e6:c3:76:90:e2:ee:bf:d7:13:af:d3:5f:3b:7b:7b: 33:bc:83:2b -----BEGIN CERTIFICATE----- MIIFaDCCBFCgAwIBAgICA8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjUwODA0MDMzNjMyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODhkOC01NThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvp9WOdHCLaJNjpXVhHhdVAFv51NjjMF+FxUYbAYCNLQf+GsyAnKFqVN/kr6v 2X9iqcrdV/54/rlyOQhu/VbLaDtsv2tI5Igrak1xGUdMbCqgI9DpoRUKY0n3EF/u VjaUTJCHDfNeICHV+3NQuuxtW8vtC7wFxDMGyA7ZuB/eEPJY1Qgg/YN1NPLDSJTE TLAVbBoqLSg/GWRaVVKQNGPXFHOctsdWqjOJ45Iqo0WTyOFaVOhbg0DYs3euwS2S CULVYr05cU2eUCil1RcaYcfOFXXtMubPd2GATGzWLf8pUzglhCHeodTSpSo4LCxk yfyEArgMi4g79axY6prqTkUy5QIDAQABo4ICjDCCAogwHQYDVR0OBBYEFA8PRf7c 9xhWbpf1HRA8yVCJe/PpMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvMjlGMkE2MjAy RUY3MTFGMDhBMjg1MjE5QzRGOUFFMDIucm9hMEsGCCsGAQUFBwEHAQH/BDwwOjAM BAIAATAGAwQAe2xKMCoEAgACMCQDBwAkByRAACEDBwAkByRAACQDBwAkByRAACYD BwAkByRAACkwDQYJKoZIhvcNAQELBQADggEBAC0FmWU7O1zTje2y4Wd941aY8RgM MKtiF+U55IJ/K/vVBL4qiGJzcogO4UAkzPPVI464AJN/4Qt4axQFZQDqK2/MaTam mQZZBHk+GsrksMflcKeXEOIuYQ2Gie41eGpmbP8GE/SQFg+IiwyD0Cli6Dkv59Gi JTnugDnNmVU5P/JDttGPlDJ0qoo4WwUFn2sOlo7tOLEgEH8vkY5PbQVR6PCF9ZzA kJwxLJtHqWbJzL4C9oa2BQERLFO2cKZ8ubGNbXPTmjqoLQNkkHgwQeYuSRy2Zp2M JjcTff2sdSu2SIrK9fJTLwvF98mG3xfB/ubDdpDi7r/XE6/TXzt7ezO8gys= -----END CERTIFICATE-----Generated at Fri Mar 13 11:17:53 2026 by rpki-client