$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa File: 9217B6681AA811F0B10C6412C4F9AE02.roa (raw, json) Hash identifier: Y942Edc3zkEm9fZtolJhfuXkLoHHfiwv6fjHDuYaXR0= Subject key identifier: A1:5F:C3:01:F0:76:67:12:A6:78:DB:E2:96:A8:26:7F:98:59:09:72 Certificate issuer: /CN=A91F3CB1/serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Certificate serial: D0 Authority key identifier: 7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:33:30 +0000 ROA not before: Thu 23 Oct 2025 20:55:04 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7468 IP address blocks: 202.60.224.0/24 maxlen: 24 202.60.225.0/24 maxlen: 24 202.60.226.0/24 maxlen: 24 202.60.227.0/24 maxlen: 24 202.60.228.0/22 maxlen: 22 202.60.228.0/24 maxlen: 24 202.60.229.0/24 maxlen: 24 202.60.230.0/24 maxlen: 24 202.60.231.0/24 maxlen: 24 202.60.232.0/22 maxlen: 22 202.60.232.0/24 maxlen: 24 202.60.233.0/24 maxlen: 24 202.60.234.0/24 maxlen: 24 202.60.235.0/24 maxlen: 24 202.60.236.0/23 maxlen: 23 202.60.236.0/24 maxlen: 24 202.60.237.0/24 maxlen: 24 202.60.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Mar 2026 06:05:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3CB1, serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Validity Not Before: Oct 23 20:55:04 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a591aa-23a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1c:da:cc:45:0e:47:bc:ef:dd:6b:f2:6b:44: e7:ee:f6:da:3b:17:10:81:35:77:4a:55:b4:89:98: 0a:17:39:c8:38:51:8f:e3:52:cb:3c:77:36:f6:01: e4:13:22:df:3d:2e:a7:5c:ec:5f:4c:57:83:64:8e: da:69:7a:3d:48:51:1b:7e:80:df:19:30:34:b1:93: 9e:68:5c:81:fe:10:9f:2d:e1:10:08:29:b0:2f:b4: 38:37:7a:ea:43:9a:c9:a8:04:1a:1c:1e:42:b8:3c: d8:11:b6:9b:7d:9b:ea:d2:f9:2c:5a:ca:d8:12:6a: 08:7b:81:c8:88:e4:83:e1:59:2b:25:a9:5e:65:f6: f0:4a:c0:4a:cf:23:ac:f8:74:f0:30:37:c1:4f:f5: 16:9e:c2:68:4d:ca:74:9d:a0:b1:d0:ac:b3:e6:1f: 2d:25:6d:45:dc:e1:43:a2:3a:41:05:04:de:30:73: f1:da:f7:40:ed:30:27:c2:8a:3a:83:be:c3:dc:91: ab:c3:fa:e3:37:52:33:90:ae:f8:62:ec:5c:b0:c5: f0:47:58:39:f9:95:59:16:8c:93:1c:5b:c7:40:89: ae:db:11:53:fc:04:5d:ea:54:ec:fd:29:e5:06:ae: 55:d3:55:50:82:04:c5:2a:e4:97:eb:e3:b4:9e:ae: dc:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:5F:C3:01:F0:76:67:12:A6:78:DB:E2:96:A8:26:7F:98:59:09:72 X509v3 Authority Key Identifier: keyid:7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.60.224.0-202.60.238.255 Signature Algorithm: sha256WithRSAEncryption 27:17:09:32:0b:7d:e4:f1:a6:ac:03:ca:b7:2e:ce:de:9a:01: c2:2a:0c:c0:40:2e:4e:b5:24:cb:51:26:42:3f:55:ef:66:a1: 6c:2e:3a:e2:b7:12:44:2a:b5:ea:8d:3d:a3:d0:7b:fd:05:e5: af:b5:a5:22:be:4b:ca:5b:ad:51:8a:0e:51:5b:56:3c:80:03: ca:22:44:23:f2:14:e4:94:33:5d:93:d5:b9:3a:dd:5a:13:42: b5:84:b2:07:d1:a1:f0:93:2e:70:cf:a5:e5:9b:a0:4e:11:0f: c1:29:78:64:bf:1e:46:ed:20:a6:66:1e:31:68:71:aa:fd:07: 1c:18:0e:a7:62:aa:86:f3:5d:74:31:d1:5f:f8:73:69:ff:67: 8d:c0:c1:79:32:b7:60:6a:2a:e1:10:b0:e1:89:68:c7:a8:de: 29:e5:bf:81:53:c9:de:f8:10:47:73:ab:62:b8:ec:94:01:4d: 34:96:33:5a:91:e8:34:8c:0d:8e:83:2d:ed:0a:a4:33:0c:bf: 4b:fc:8c:84:28:95:15:f1:f1:30:ca:6a:c7:07:50:67:c9:b6: aa:3d:c6:90:ce:52:cb:aa:e4:40:5b:2c:31:33:2a:07:be:94: 2a:d2:59:29:cb:a7:15:5d:49:6b:ea:ea:5e:c1:4b:db:10:ad: 41:25:13:64 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDQjExMTAvBgNVBAUTKDdBRDc5RUVCM0I5MjgzNTREOTUwREM2RTRGOEJFQ0NC MjVDMkZDNEIwHhcNMjUxMDIzMjA1NTA0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTFhYS0yM2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhzazEUOR7zv3Wvya0Tn7vbaOxcQgTV3SlW0iZgKFznIOFGP41LLPHc29gHk EyLfPS6nXOxfTFeDZI7aaXo9SFEbfoDfGTA0sZOeaFyB/hCfLeEQCCmwL7Q4N3rq Q5rJqAQaHB5CuDzYEbabfZvq0vksWsrYEmoIe4HIiOSD4VkrJaleZfbwSsBKzyOs +HTwMDfBT/UWnsJoTcp0naCx0Kyz5h8tJW1F3OFDojpBBQTeMHPx2vdA7TAnwoo6 g77D3JGrw/rjN1IzkK74YuxcsMXwR1g5+ZVZFoyTHFvHQImu2xFT/ARd6lTs/Snl Bq5V01VQggTFKuSX6+O0nq7cpwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFKFfwwHw dmcSpnjb4paoJn+YWQlyMB8GA1UdIwQYMBaAFHrXnus7koNU2VDcbk+L7MslwvxL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0NCMS8yRDg0MzY5ODE2 ODYxMUYwODkxNjk4NUJDNEY5QUUwMi9ldGVlNnp1U2cxVFpVTnh1VDR2c3l5WENf RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V0ZWU2enVTZzFUWlVOeHVUNHZzeXlYQ19Fcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDQjEvMkQ4NDM2OTgxNjg2MTFGMDg5MTY5ODVCQzRGOUFFMDIvOTIxN0I2Njgx QUE4MTFGMEIxMEM2NDEyQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAXKPOADBADKPO4wDQYJKoZIhvcNAQELBQADggEBACcXCTILfeTx pqwDyrcuzt6aAcIqDMBALk61JMtRJkI/Ve9moWwuOuK3EkQqteqNPaPQe/0F5a+1 pSK+S8pbrVGKDlFbVjyAA8oiRCPyFOSUM12T1bk63VoTQrWEsgfRofCTLnDPpeWb oE4RD8EpeGS/HkbtIKZmHjFocar9BxwYDqdiqobzXXQx0V/4c2n/Z43AwXkyt2Bq KuEQsOGJaMeo3inlv4FTyd74EEdzq2K47JQBTTSWM1qR6DSMDY6DLe0KpDMMv0v8 jIQolRXx8TDKascHUGfJtqo9xpDOUsuq5EBbLDEzKge+lCrSWSnLpxVdSWvq6l7B S9sQrUElE2Q= -----END CERTIFICATE-----Generated at Fri Mar 6 06:14:34 2026 by rpki-client