$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa File: 395D655C7E7D11F09D59515FC4F9AE02.roa (raw, json) Hash identifier: g/g7DXG6Ubt8dKOM6X6VWHF4PzVg9zAkTugtS1fW6FU= Subject key identifier: 9D:C7:E9:89:2D:DD:C9:72:25:65:5F:EC:E8:74:09:B6:E9:56:AC:46 Certificate issuer: /CN=A91F3CB1/serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Certificate serial: D1 Authority key identifier: 7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:33:31 +0000 ROA not before: Thu 23 Oct 2025 20:55:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136501 IP address blocks: 202.60.228.0/22 maxlen: 22 202.60.228.0/24 maxlen: 24 202.60.229.0/24 maxlen: 24 202.60.230.0/24 maxlen: 24 202.60.231.0/24 maxlen: 24 202.60.232.0/22 maxlen: 22 202.60.232.0/24 maxlen: 24 202.60.233.0/24 maxlen: 24 202.60.234.0/24 maxlen: 24 202.60.235.0/24 maxlen: 24 202.60.236.0/23 maxlen: 23 202.60.236.0/24 maxlen: 24 202.60.237.0/24 maxlen: 24 202.60.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 06:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3CB1, serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Validity Not Before: Oct 23 20:55:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a591ab-2768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:2c:87:2e:56:fa:cd:b0:55:a4:2d:57:46: f5:7e:cf:29:09:2f:8f:d4:90:85:6c:7e:21:22:37: 20:5f:4a:52:7a:a3:da:8a:a8:9b:a8:da:fe:55:04: d4:b1:64:f8:65:e3:60:99:57:7a:1c:07:be:bf:1f: c8:e7:da:d1:4d:34:b1:18:22:ef:6a:ed:cd:08:e9: 5f:42:6b:e5:9c:d2:31:40:ae:6d:c6:1d:27:98:e8: 25:df:34:ca:9b:6e:10:5c:0a:96:1e:1e:a6:39:cf: 46:b1:8b:3c:27:95:4f:04:1d:63:25:3a:df:33:79: 47:97:ce:6e:1b:af:43:40:39:54:2c:f4:ee:28:e9: 60:ca:29:16:62:2d:fd:5f:17:27:20:8a:0a:08:bb: be:b4:af:ed:e4:f5:5c:ef:e0:ea:c9:91:c5:ba:af: 73:58:be:f6:b4:9f:0a:da:70:b3:0a:be:bd:de:9a: e2:92:d7:e5:07:49:02:ee:cb:a5:12:d1:58:c6:1d: d2:a0:20:7c:8c:e3:50:19:d9:15:63:0a:85:76:d4: d4:c3:31:07:0b:a3:0e:d5:21:c2:62:b1:2c:bd:13: 30:93:20:ba:af:08:ec:89:14:4f:d0:64:06:8b:f6: 1c:67:70:6c:d0:c7:d8:f6:f4:4e:7c:49:cf:59:2f: 55:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C7:E9:89:2D:DD:C9:72:25:65:5F:EC:E8:74:09:B6:E9:56:AC:46 X509v3 Authority Key Identifier: keyid:7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.60.228.0-202.60.238.255 Signature Algorithm: sha256WithRSAEncryption 9c:ff:89:76:79:05:f8:a8:ad:e8:46:77:cc:99:40:72:89:55: 63:42:0f:a2:1f:9a:a5:8c:a2:6f:52:00:28:52:cf:ad:fc:f2: cd:8c:f3:8c:61:8e:cd:a4:d9:99:a3:f0:80:50:8c:97:7a:6f: 5c:b4:58:51:ad:21:ff:6f:1e:97:f6:11:19:f9:63:0b:8b:48: 46:06:11:44:5b:1a:33:94:ea:13:bb:25:f8:0f:52:ef:2d:35: 80:a6:8f:4c:21:22:cc:6a:73:f8:d6:b0:91:68:9e:66:42:b7: 4d:d7:60:dc:ea:01:e3:2b:19:5c:54:a0:b3:52:c2:13:95:d5: a7:cf:e6:90:88:c1:82:97:7b:4e:4f:8c:1b:90:b5:c2:00:f3: 85:97:7b:a9:92:d3:cd:1e:f1:98:52:d7:2a:52:d9:a4:b2:dd: fa:0e:fd:33:3d:e5:82:a0:c5:aa:dc:3f:58:1c:cf:44:2e:2e: 26:3c:ef:6e:e9:a0:21:73:d8:7b:22:ec:1b:1c:54:ab:2d:95: 15:62:ed:e8:4f:99:e9:77:80:98:be:98:dd:ff:00:7c:55:fb: c5:c6:0f:40:5a:8c:fa:dc:9f:c6:0d:98:2f:a0:03:e2:b3:30: 29:a2:bd:f6:11:99:29:89:6e:8f:e0:ad:5d:a6:62:d1:c2:50: e3:e2:a8:fd -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDQjExMTAvBgNVBAUTKDdBRDc5RUVCM0I5MjgzNTREOTUwREM2RTRGOEJFQ0NC MjVDMkZDNEIwHhcNMjUxMDIzMjA1NTI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTFhYi0yNzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQcshy5W+s2wVaQtV0b1fs8pCS+P1JCFbH4hIjcgX0pSeqPaiqibqNr+VQTU sWT4ZeNgmVd6HAe+vx/I59rRTTSxGCLvau3NCOlfQmvlnNIxQK5txh0nmOgl3zTK m24QXAqWHh6mOc9GsYs8J5VPBB1jJTrfM3lHl85uG69DQDlULPTuKOlgyikWYi39 XxcnIIoKCLu+tK/t5PVc7+DqyZHFuq9zWL72tJ8K2nCzCr693priktflB0kC7sul EtFYxh3SoCB8jONQGdkVYwqFdtTUwzEHC6MO1SHCYrEsvRMwkyC6rwjsiRRP0GQG i/YcZ3Bs0MfY9vROfEnPWS9V8QIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFJ3H6Ykt 3clyJWVf7Oh0CbbpVqxGMB8GA1UdIwQYMBaAFHrXnus7koNU2VDcbk+L7MslwvxL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0NCMS8yRDg0MzY5ODE2 ODYxMUYwODkxNjk4NUJDNEY5QUUwMi9ldGVlNnp1U2cxVFpVTnh1VDR2c3l5WENf RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V0ZWU2enVTZzFUWlVOeHVUNHZzeXlYQ19Fcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDQjEvMkQ4NDM2OTgxNjg2MTFGMDg5MTY5ODVCQzRGOUFFMDIvMzk1RDY1NUM3 RTdEMTFGMDlENTk1MTVGQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBALKPOQDBADKPO4wDQYJKoZIhvcNAQELBQADggEBAJz/iXZ5Bfio rehGd8yZQHKJVWNCD6IfmqWMom9SAChSz6388s2M84xhjs2k2Zmj8IBQjJd6b1y0 WFGtIf9vHpf2ERn5YwuLSEYGEURbGjOU6hO7JfgPUu8tNYCmj0whIsxqc/jWsJFo nmZCt03XYNzqAeMrGVxUoLNSwhOV1afP5pCIwYKXe05PjBuQtcIA84WXe6mS080e 8ZhS1ypS2aSy3foO/TM95YKgxarcP1gcz0QuLiY8727poCFz2Hsi7BscVKstlRVi 7ehPmel3gJi+mN3/AHxV+8XGD0BajPrcn8YNmC+gA+KzMCmivfYRmSmJbo/grV2m YtHCUOPiqP0= -----END CERTIFICATE-----Generated at Fri Mar 6 10:26:40 2026 by rpki-client