$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/66476E182EAC11EFAAAF8E67C4F9AE02.roa File: 66476E182EAC11EFAAAF8E67C4F9AE02.roa (raw, json) Hash identifier: /tnWEO2C7/J5YS/vZWnJOnvgtrYevYzsvruplkJnMZU= Subject key identifier: D8:CD:E5:70:EC:1D:09:3B:14:82:48:54:91:DC:BB:58:C2:BB:81:F7 Certificate issuer: /CN=A91FA6FF/serialNumber=CAE3DB8ADEE7A16AB6CA537F2347B0205BDF4F76 Certificate serial: 0158 Authority key identifier: CA:E3:DB:8A:DE:E7:A1:6A:B6:CA:53:7F:23:47:B0:20:5B:DF:4F:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/66476E182EAC11EFAAAF8E67C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:33:00 +0000 ROA not before: Wed 09 Apr 2025 05:12:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 0 IP address blocks: 202.3.136.0/24 maxlen: 24 2001:dee:c000::/48 maxlen: 48 2001:dee:c000::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.crl rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 04:52:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA6FF, serialNumber=CAE3DB8ADEE7A16AB6CA537F2347B0205BDF4F76 Validity Not Before: Apr 9 05:12:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a5918c-16bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f8:c2:80:4b:48:7b:37:d7:f0:19:f1:4e:1d: a1:96:44:11:55:23:fe:db:d4:af:9c:c0:e5:17:68: c0:8f:73:e0:a2:1d:4b:d8:fe:a7:82:24:bc:97:d8: 46:54:bc:96:cb:49:e0:4a:83:76:e5:87:6e:37:58: 13:5c:fa:52:52:41:c2:57:c5:c3:b1:61:3f:76:b5: 80:1d:2f:aa:c3:83:ee:41:77:ff:47:29:61:68:3e: 56:6a:f2:b9:9f:e3:e1:bd:2f:9f:cb:c0:01:66:26: 9f:e6:b3:6a:a5:29:6e:e2:ba:04:ce:87:a4:a6:de: 8d:fb:1d:08:1e:c5:d7:b5:55:69:c7:6e:fd:aa:ad: 54:57:37:1f:00:db:ae:49:b7:db:dc:97:23:ba:4d: 88:b3:4e:f7:e7:13:3e:d2:26:6e:3d:6d:8f:55:92: c6:ed:0c:1c:42:46:ac:0c:a9:ad:c9:9c:8f:f0:d7: 54:59:13:9f:0f:5a:3f:69:eb:58:05:70:96:ad:a9: a6:d5:ec:b3:53:94:7c:16:d3:5d:b1:53:18:ee:83: 88:e4:b5:9a:4a:bf:80:83:d1:82:38:58:a7:9a:7c: 36:e6:16:59:61:e9:d4:e4:6c:86:93:44:e8:3f:51: ba:53:46:05:16:49:de:c9:95:20:54:6d:6d:99:72: 85:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:CD:E5:70:EC:1D:09:3B:14:82:48:54:91:DC:BB:58:C2:BB:81:F7 X509v3 Authority Key Identifier: keyid:CA:E3:DB:8A:DE:E7:A1:6A:B6:CA:53:7F:23:47:B0:20:5B:DF:4F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/yuPbit7noWq2ylN_I0ewIFvfT3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yuPbit7noWq2ylN_I0ewIFvfT3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA6FF/D281E7302E2911EFBAED6A1AC4F9AE02/66476E182EAC11EFAAAF8E67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.3.136.0/24 IPv6: 2001:dee:c000::/48 Signature Algorithm: sha256WithRSAEncryption 40:29:e5:22:b8:20:92:75:da:a5:fc:95:72:be:5a:ce:5f:89: 13:22:f7:e9:a2:ef:31:e4:0d:d6:aa:30:ff:0e:60:82:4e:a1: 47:7e:22:a7:72:5c:45:4f:ba:bf:67:28:9c:eb:c9:9f:c8:f1: 1d:38:42:75:67:c1:23:24:50:71:e3:64:81:bd:81:ec:f4:3d: 74:83:92:b8:58:4d:b6:28:b7:6d:60:f7:96:83:4d:68:1e:d7: dd:3e:ce:90:1a:85:e8:e3:75:b9:7c:d6:70:71:aa:24:86:27: e5:ac:f3:4e:3c:80:5f:78:47:72:27:5d:10:f1:c3:3c:49:5c: 26:70:0c:7e:c5:9f:15:97:c8:67:81:86:f3:41:4e:d8:b2:02: 20:9d:01:ed:c4:d0:74:44:5a:28:4c:91:18:6d:31:81:2b:d1: 79:16:73:7b:4e:f0:b4:17:47:eb:aa:bd:48:1c:b6:34:e1:50: 89:8b:e1:3e:3c:2b:8b:89:fd:e4:53:5f:25:6e:1b:f7:1d:d5: 42:13:99:d9:7b:d1:f6:58:48:19:f7:6e:00:ac:a9:60:c1:1a: 3a:df:2d:9a:cb:62:95:d9:21:b0:e1:51:da:c7:7d:e4:9f:86: 3d:00:51:af:00:d7:e7:4a:fb:56:b2:c7:2e:62:19:a8:cb:e1: 07:62:52:89 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2RkYxMTAvBgNVBAUTKENBRTNEQjhBREVFN0ExNkFCNkNBNTM3RjIzNDdCMDIw NUJERjRGNzYwHhcNMjUwNDA5MDUxMjM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTE4Yy0xNmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvjCgEtIezfX8BnxTh2hlkQRVSP+29SvnMDlF2jAj3Pgoh1L2P6ngiS8l9hG VLyWy0ngSoN25YduN1gTXPpSUkHCV8XDsWE/drWAHS+qw4PuQXf/RylhaD5WavK5 n+PhvS+fy8ABZiaf5rNqpSlu4roEzoekpt6N+x0IHsXXtVVpx279qq1UVzcfANuu Sbfb3Jcjuk2Is0735xM+0iZuPW2PVZLG7QwcQkasDKmtyZyP8NdUWROfD1o/aetY BXCWramm1eyzU5R8FtNdsVMY7oOI5LWaSr+Ag9GCOFinmnw25hZZYenU5GyGk0To P1G6U0YFFkneyZUgVG1tmXKFCQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFNjN5XDs HQk7FIJIVJHcu1jCu4H3MB8GA1UdIwQYMBaAFMrj24re56FqtspTfyNHsCBb3092 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTZGRi9EMjgxRTczMDJF MjkxMUVGQkFFRDZBMUFDNEY5QUUwMi95dVBiaXQ3bm9XcTJ5bE5fSTBld0lGdmZU M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l1UGJpdDdub1dxMnlsTl9JMGV3SUZ2ZlQzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkE2RkYvRDI4MUU3MzAyRTI5MTFFRkJBRUQ2QTFBQzRGOUFFMDIvNjY0NzZFMTgy RUFDMTFFRkFBQUY4RTY3QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAygOIMA8EAgACMAkDBwAgAQ3uwAAwDQYJKoZIhvcNAQELBQADggEB AEAp5SK4IJJ12qX8lXK+Ws5fiRMi9+mi7zHkDdaqMP8OYIJOoUd+IqdyXEVPur9n KJzryZ/I8R04QnVnwSMkUHHjZIG9gez0PXSDkrhYTbYot21g95aDTWge190+zpAa hejjdbl81nBxqiSGJ+Ws8048gF94R3InXRDxwzxJXCZwDH7FnxWXyGeBhvNBTtiy AiCdAe3E0HREWihMkRhtMYEr0XkWc3tO8LQXR+uqvUgctjThUImL4T48K4uJ/eRT XyVuG/cd1UITmdl70fZYSBn3bgCsqWDBGjrfLZrLYpXZIbDhUdrHfeSfhj0AUa8A 1+dK+1ayxy5iGajL4QdiUok= -----END CERTIFICATE-----Generated at Tue Mar 3 18:22:28 2026 by rpki-client