$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa File: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (raw, json) Hash identifier: /sj3JZ3p1665YJRvSUXz4i11ey7ZoPynVcwKSHS8SnQ= Subject key identifier: 3C:DA:10:F2:24:44:19:37:DD:7C:07:55:4E:5A:15:52:BD:1C:65:6D Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 026F Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa Signing time: Tue 03 Mar 2026 02:35:48 +0000 ROA not before: Tue 03 Mar 2026 02:35:48 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 132029 IP address blocks: 203.7.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Mar 3 02:35:48 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a64904-dc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:aa:75:1e:35:d3:a0:67:eb:e4:94:23:ad:c5: d3:06:d7:2e:ee:b6:cc:f6:fe:a7:37:69:0d:a4:39: ef:ac:68:19:e5:1d:73:f3:31:5e:53:a8:89:4a:e6: a6:49:03:4f:6f:58:f5:10:dc:52:73:af:71:f2:6e: 1d:c1:a7:c4:93:cc:92:7e:0b:1d:a5:59:24:37:98: 08:86:94:be:0f:96:03:4a:1f:f9:37:83:11:77:bf: bd:97:f1:53:7c:b2:30:04:dc:11:29:ee:f4:39:22: ee:fc:de:aa:cc:eb:39:2a:24:c5:f4:13:90:d0:cf: 58:bf:82:d0:95:46:1c:03:38:77:02:0b:90:50:d1: dc:99:ea:35:b2:83:79:d0:4e:65:4c:b6:b1:ba:a0: 7b:80:b6:8e:b9:11:a8:d1:1a:89:bb:81:97:15:71: 81:0b:97:e9:13:48:89:9c:55:37:4f:82:e6:12:f6: e4:b6:b0:48:d2:2f:16:28:8b:a7:a2:00:c0:9a:4d: 03:28:7c:b2:1a:52:19:73:9d:fd:64:7b:ac:88:3c: de:ae:77:38:9c:99:95:04:24:a1:40:a3:79:5b:fc: 29:53:8b:f4:33:a5:ac:e0:eb:44:35:f5:e2:8d:a8: 6b:e0:7a:c9:42:9d:d1:43:9c:e9:a2:d9:30:ba:2b: 0f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DA:10:F2:24:44:19:37:DD:7C:07:55:4E:5A:15:52:BD:1C:65:6D X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.7.140.0/22 Signature Algorithm: sha256WithRSAEncryption 28:af:e1:d7:d5:a5:24:a5:4d:ab:63:dd:ea:11:8b:30:c5:89: 80:f6:5c:58:41:e0:0b:45:93:6a:e0:70:27:e5:17:e1:1a:ed: 55:1b:75:2e:59:ea:01:31:56:b9:8b:87:25:53:e8:c2:26:23: f9:ad:db:d1:37:a1:1a:bb:40:fa:7a:5b:a0:cc:5e:da:1d:aa: b5:6f:f2:ac:68:19:7a:50:ee:aa:9c:de:e1:9e:25:60:e6:a4: 75:b2:92:83:0f:8b:c1:c4:37:18:38:21:58:57:3b:e6:57:de: 4a:f7:92:25:12:88:59:6c:b5:29:22:8d:0f:63:e3:b3:1d:f6: d7:75:2f:da:d7:93:9f:42:93:ab:ae:e9:1c:1e:84:74:08:05: 9d:23:82:67:91:e7:a8:53:bc:e6:79:b7:32:45:0c:81:75:c3: 3f:c1:38:7e:5f:f5:d7:37:33:1e:e5:d1:d8:03:e8:7f:d7:c6: 33:0c:f2:fc:69:6d:d8:74:ad:f0:21:d0:90:18:00:b7:3d:04: 9f:8a:71:c5:80:e7:4c:85:69:24:24:68:f2:71:98:b6:a4:37: dd:33:5a:97:87:62:13:ba:0b:ba:08:db:dd:da:14:7c:6b:3c: bc:fa:8d:31:bb:d8:ca:1c:2a:df:dc:e9:17:10:a1:08:fa:d0: df:56:ce:4a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjYwMzAzMDIzNTQ4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NDkwNC1kYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApap1HjXToGfr5JQjrcXTBtcu7rbM9v6nN2kNpDnvrGgZ5R1z8zFeU6iJSuam SQNPb1j1ENxSc69x8m4dwafEk8ySfgsdpVkkN5gIhpS+D5YDSh/5N4MRd7+9l/FT fLIwBNwRKe70OSLu/N6qzOs5KiTF9BOQ0M9Yv4LQlUYcAzh3AguQUNHcmeo1soN5 0E5lTLaxuqB7gLaOuRGo0RqJu4GXFXGBC5fpE0iJnFU3T4LmEvbktrBI0i8WKIun ogDAmk0DKHyyGlIZc539ZHusiDzernc4nJmVBCShQKN5W/wpU4v0M6Ws4OtENfXi jahr4HrJQp3RQ5zpotkwuisPJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDzaEPIk RBk33XwHVU5aFVK9HGVtMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUYzMTYvQTFERjE1MjA3NzRDMTFFREI4MjZCQzBCQzRGOUFFMDIvNTkwQTZBOUE3 OTJFMTFFRUE1QUFCODQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyweMMA0GCSqGSIb3DQEBCwUAA4IBAQAor+HX1aUkpU2rY93qEYsw xYmA9lxYQeALRZNq4HAn5RfhGu1VG3UuWeoBMVa5i4clU+jCJiP5rdvRN6Eau0D6 elugzF7aHaq1b/KsaBl6UO6qnN7hniVg5qR1spKDD4vBxDcYOCFYVzvmV95K95Il EohZbLUpIo0PY+OzHfbXdS/a15OfQpOrrukcHoR0CAWdI4JnkeeoU7zmebcyRQyB dcM/wTh+X/XXNzMe5dHYA+h/18YzDPL8aW3YdK3wIdCQGAC3PQSfinHFgOdMhWkk JGjycZi2pDfdM1qXh2ITugu6CNvd2hR8azy8+o0xu9jKHCrf3OkXEKEI+tDfVs5K -----END CERTIFICATE-----Generated at Thu Mar 26 02:41:42 2026 by rpki-client