$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa File: 7EE93AAC893111EF824EA948C4F9AE02.roa (raw, json) Hash identifier: PJ438y1c6II0FXqv0r3FpWjrqzyZo7X27AzYDDSNdT8= Subject key identifier: 79:F2:65:24:E3:54:95:28:F6:4B:53:DE:74:E5:D4:F4:42:1A:8B:B9 Certificate issuer: /CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Certificate serial: 058A Authority key identifier: C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:59:17 +0000 ROA not before: Wed 04 Jun 2025 23:44:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 32787 IP address blocks: 202.49.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 22:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1418 (0x58a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED931, serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Validity Not Before: Jun 4 23:44:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42a15-dd08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:1a:c8:38:a1:4b:c7:49:b4:09:0a:b8:04: 13:d7:77:3d:d0:99:29:87:e7:1f:5a:aa:13:d1:b2: 2a:b1:33:2a:5e:fd:36:06:7b:f5:61:bb:23:16:1e: 4a:bf:42:82:71:86:16:43:dc:ab:6e:5f:21:e1:cb: 1b:42:5d:fd:1f:5e:e2:4b:82:12:d4:1e:6a:02:1e: ac:91:0d:28:1a:5e:3e:22:12:c3:24:c5:59:33:cb: c1:cb:4f:b1:3e:3f:ff:1b:3c:c3:2f:0c:78:91:56: 10:2a:d1:56:45:c8:68:59:c5:af:de:17:a9:05:c8: 3e:0d:3e:8b:ce:27:ed:90:06:32:50:1f:e1:5a:52: b4:cf:43:6f:8d:fc:8a:7e:58:38:e5:f1:41:2f:ff: c5:a3:d2:9a:58:48:c7:a2:d7:78:7e:b4:36:c8:08: fe:2a:44:ed:fc:de:d2:b4:41:c8:7b:9d:92:fc:aa: b4:d1:bc:4a:9e:17:8b:a9:98:aa:34:ce:93:16:5f: cb:ab:3b:bf:ef:4d:48:d4:48:ca:b2:25:b4:7c:f1: 41:ce:5c:50:f2:19:b7:06:dc:8a:55:62:a9:7d:70: 01:69:9a:cb:c1:89:7b:3a:64:c5:a6:fd:e8:0f:cb: 77:68:46:93:80:25:fb:c2:78:f0:39:d2:e4:e9:30: dd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F2:65:24:E3:54:95:28:F6:4B:53:DE:74:E5:D4:F4:42:1A:8B:B9 X509v3 Authority Key Identifier: keyid:C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.49.96.0/21 Signature Algorithm: sha256WithRSAEncryption 26:10:1b:04:43:b6:c8:67:d3:b4:12:5a:5c:dd:5a:0f:c5:ce: 41:cd:02:36:da:ab:e7:71:8d:24:74:06:e0:2a:6e:db:81:42: b3:d7:5d:b5:d5:01:22:59:4c:81:2e:a4:80:49:5b:fe:ab:c5: 58:77:ad:f2:74:f5:e9:83:40:4f:c7:58:29:77:e5:10:e9:3c: 36:aa:53:65:c7:03:dc:ea:e8:aa:46:ec:1c:3d:ff:c3:53:97: 30:37:11:a5:10:50:b4:3c:c5:ec:a8:5c:38:fb:f5:88:51:1b: 87:79:3c:b0:ab:84:00:e9:b1:18:8b:ab:59:23:f0:bc:88:f9: c2:52:69:02:54:bc:4f:67:43:a3:15:43:5f:96:26:7b:b9:4c: a6:b3:bb:7c:63:ab:d9:e9:30:6b:98:fb:59:7d:e0:19:5b:e6: 3c:19:d4:ab:ef:91:81:04:b1:b9:3b:32:c1:04:9f:27:4c:c9: ff:b7:c4:a7:b0:b7:a4:14:de:56:47:a6:78:37:6b:d6:5f:eb: 6d:47:4f:9a:04:2f:9d:a3:68:73:dc:2b:60:05:60:44:63:02: 5f:2d:53:6e:71:78:72:b9:6e:22:b5:15:05:61:0b:6b:3c:1d: 35:0d:65:31:d8:9d:04:6e:80:1a:b9:7a:ea:39:d8:ed:15:67: 71:0d:c7:4d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5MzExMTAvBgNVBAUTKEMwMzU0NTBCRDFBMkQ0NEIxNTFFRTM4QzA4OTg4OEE1 QUY0QjgwNTkwHhcNMjUwNjA0MjM0NDIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmExNS1kZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2YayDihS8dJtAkKuAQT13c90Jkph+cfWqoT0bIqsTMqXv02Bnv1YbsjFh5K v0KCcYYWQ9yrbl8h4csbQl39H17iS4IS1B5qAh6skQ0oGl4+IhLDJMVZM8vBy0+x Pj//GzzDLwx4kVYQKtFWRchoWcWv3hepBcg+DT6LziftkAYyUB/hWlK0z0NvjfyK flg45fFBL//Fo9KaWEjHotd4frQ2yAj+KkTt/N7StEHIe52S/Kq00bxKnheLqZiq NM6TFl/Lqzu/701I1EjKsiW0fPFBzlxQ8hm3BtyKVWKpfXABaZrLwYl7OmTFpv3o D8t3aEaTgCX7wnjwOdLk6TDd/QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHnyZSTj VJUo9ktT3nTl1PRCGou5MB8GA1UdIwQYMBaAFMA1RQvRotRLFR7jjAiYiKWvS4BZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDkzMS9EMUQzMkI2RTE5 QUYxMUVDQUY4NENENzZDNEY5QUUwMi93RFZGQzlHaTFFc1ZIdU9NQ0ppSXBhOUxn RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dEVkZDOUdpMUVzVkh1T01DSmlJcGE5TGdGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ5MzEvRDFEMzJCNkUxOUFGMTFFQ0FGODRDRDc2QzRGOUFFMDIvN0VFOTNBQUM4 OTMxMTFFRjgyNEVBOTQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDyjFgMA0GCSqGSIb3DQEBCwUAA4IBAQAmEBsEQ7bIZ9O0Elpc3VoP xc5BzQI22qvncY0kdAbgKm7bgUKz11211QEiWUyBLqSASVv+q8VYd63ydPXpg0BP x1gpd+UQ6Tw2qlNlxwPc6uiqRuwcPf/DU5cwNxGlEFC0PMXsqFw4+/WIURuHeTyw q4QA6bEYi6tZI/C8iPnCUmkCVLxPZ0OjFUNfliZ7uUyms7t8Y6vZ6TBrmPtZfeAZ W+Y8GdSr75GBBLG5OzLBBJ8nTMn/t8SnsLekFN5WR6Z4N2vWX+ttR0+aBC+do2hz 3CtgBWBEYwJfLVNucXhyuW4itRUFYQtrPB01DWUx2J0EboAauXrqOdjtFWdxDcdN -----END CERTIFICATE-----Generated at Sat Mar 7 13:22:29 2026 by rpki-client