$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa File: AFDD7E16DA6011EC9A304C24C4F9AE02.roa (raw, json) Hash identifier: 9xagtFPDPDh7sP5RKvooGHMvmH3Edj6QzRlAg2sHVUo= Subject key identifier: 5F:EF:CD:32:17:F4:EA:92:A5:83:72:93:91:F6:A3:67:BF:3C:DB:B1 Certificate issuer: /CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Certificate serial: 0513 Authority key identifier: AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa Signing time: Mon 01 Jun 2026 00:28:59 +0000 ROA not before: Mon 01 Jun 2026 00:28:59 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 45947 IP address blocks: 202.43.84.0/24 maxlen: 24 202.43.85.0/24 maxlen: 24 202.43.86.0/24 maxlen: 24 202.43.87.0/24 maxlen: 24 203.22.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 23:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4BB3, serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Validity Not Before: Jun 1 00:28:59 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a1cd24b-7985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:82:f0:ce:1c:cb:c2:61:71:ee:25:5d:68:5d: 9b:1d:78:36:da:45:06:3c:03:90:d5:6a:d0:34:dc: fc:fc:f4:6f:93:67:2e:32:08:02:ac:24:e1:27:a0: 1d:37:1b:e4:4d:3c:3e:97:f5:be:db:b5:00:b2:18: e0:88:32:27:97:68:62:75:05:54:e3:38:1f:c4:9f: 71:c5:4d:e0:24:49:53:80:9f:0e:21:6e:4b:46:a6: 7e:3b:c0:09:6f:9f:62:39:ad:43:15:33:cd:95:09: 57:8a:17:41:0b:df:b2:9d:36:3a:75:b7:de:36:50: b2:be:ef:e4:4b:cc:7e:84:30:4a:0a:36:e6:52:b4: 89:4b:52:04:52:fe:7b:0d:e9:30:bc:82:67:94:d4: 4c:a6:d0:a9:e6:45:9d:cc:f2:a2:ea:42:58:e5:6f: 81:d5:c0:af:80:9c:f3:94:af:31:e4:4d:86:34:0a: 4e:d5:03:c0:47:0a:c4:db:82:7a:7c:2b:ad:b5:28: 10:da:60:38:e2:9a:6e:d8:45:92:d8:c1:21:d4:d9: 9c:4c:4a:10:81:57:cc:a5:54:88:44:16:9c:f2:e4: b9:65:0b:1e:1a:9b:66:35:e2:a2:f1:c0:42:df:fa: 78:4b:63:1b:9e:bc:b7:41:05:92:a4:0f:a6:64:df: 59:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EF:CD:32:17:F4:EA:92:A5:83:72:93:91:F6:A3:67:BF:3C:DB:B1 X509v3 Authority Key Identifier: keyid:AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.43.84.0/22 203.22.215.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:4f:e9:c5:ae:3d:2c:6f:fd:2b:20:99:a3:bc:4b:b6:cd:f1: 28:ba:66:01:2d:ae:a1:43:48:5e:c7:10:ed:d9:43:22:82:5d: bf:70:b6:78:d6:c5:3d:39:78:bd:be:f8:4a:04:79:95:8f:d6: 59:fa:a7:f7:14:7c:5e:81:b8:c1:2b:2c:85:38:75:3a:fc:dd: 97:90:b5:f6:84:44:e7:e8:f8:8e:f4:76:4a:d9:68:c0:d3:46: 6a:e2:86:26:41:f5:46:ee:41:8b:71:ec:32:50:f6:13:c0:4c: 41:b3:0b:2d:4c:c1:9a:6d:ef:08:0f:37:1e:d4:fc:cd:18:00: 47:d8:82:97:be:a3:78:e8:ab:1c:72:74:b9:66:95:6d:7f:7b: ff:9f:ff:9a:29:38:b3:cd:a6:be:8e:fd:c5:8c:5d:ed:63:e0: 64:dc:a4:50:05:e7:b8:fa:fc:0b:9e:21:49:87:27:7f:7a:1d: 70:49:35:77:29:6d:de:6c:f1:5e:ac:04:4c:f1:c7:94:2f:23: 16:04:c6:3c:cf:de:3e:1c:79:07:74:c0:29:c8:65:20:6d:cc: 81:0f:7d:c2:5f:5d:64:7b:8a:59:e6:2f:d9:e5:07:c5:f4:bd: ef:dc:9a:49:80:d0:9e:46:6f:4d:37:cc:ff:58:0e:27:64:ff: 4f:9f:28:dc -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCQjMxMTAvBgNVBAUTKEFDN0M5RTcxODIyQzA1NjE4NTE4NjQ1M0Y5NjBCMkMx RThDQTk0RTMwHhcNMjYwNjAxMDAyODU5WhcNMjcwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02YTFjZDI0Yi03OTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24LwzhzLwmFx7iVdaF2bHXg22kUGPAOQ1WrQNNz8/PRvk2cuMggCrCThJ6Ad NxvkTTw+l/W+27UAshjgiDInl2hidQVU4zgfxJ9xxU3gJElTgJ8OIW5LRqZ+O8AJ b59iOa1DFTPNlQlXihdBC9+ynTY6dbfeNlCyvu/kS8x+hDBKCjbmUrSJS1IEUv57 DekwvIJnlNRMptCp5kWdzPKi6kJY5W+B1cCvgJzzlK8x5E2GNApO1QPARwrE24J6 fCuttSgQ2mA44ppu2EWS2MEh1NmcTEoQgVfMpVSIRBac8uS5ZQseGptmNeKi8cBC 3/p4S2Mbnry3QQWSpA+mZN9ZtwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFF/vzTIX 9OqSpYNyk5H2o2e/PNuxMB8GA1UdIwQYMBaAFKx8nnGCLAVhhRhkU/lgssHoypTj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEJCMy9BRUE4NzNFQzVC QzcxMUVDQUQ1OEIwNUZDNEY5QUUwMi9ySHllY1lJc0JXR0ZHR1JULVdDeXdlakts T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIeWVjWUlzQldHRkdHUlQtV0N5d2VqS2xPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRCQjMvQUVBODczRUM1QkM3MTFFQ0FENThCMDVGQzRGOUFFMDIvQUZERDdFMTZE QTYwMTFFQzlBMzA0QzI0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCyitUAwQAyxbXMA0GCSqGSIb3DQEBCwUAA4IBAQCKT+nFrj0sb/0r IJmjvEu2zfEoumYBLa6hQ0hexxDt2UMigl2/cLZ41sU9OXi9vvhKBHmVj9ZZ+qf3 FHxegbjBKyyFOHU6/N2XkLX2hETn6PiO9HZK2WjA00Zq4oYmQfVG7kGLcewyUPYT wExBswstTMGabe8IDzce1PzNGABH2IKXvqN46KsccnS5ZpVtf3v/n/+aKTizzaa+ jv3FjF3tY+Bk3KRQBee4+vwLniFJhyd/eh1wSTV3KW3ebPFerARM8ceULyMWBMY8 z94+HHkHdMApyGUgbcyBD33CX11ke4pZ5i/Z5QfF9L3v3JpJgNCeRm9NN8z/WA4n ZP9Pnyjc -----END CERTIFICATE-----Generated at Wed Jun 24 12:26:47 2026 by rpki-client