$ rpki-client -vvf rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/8A88CCDC667911EE9D7DA167C4F9AE02.roa File: 8A88CCDC667911EE9D7DA167C4F9AE02.roa (raw, json) Hash identifier: VcPDZ+MjDxOrAucs/eNtjD49z2FRbuaZ3EQPIJQykws= Subject key identifier: 33:77:E8:27:E0:A0:A2:2E:68:C1:C3:BF:8E:78:01:98:F2:EB:8C:8D Certificate issuer: /CN=A91324D4/serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Certificate serial: 06CF Authority key identifier: BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/8A88CCDC667911EE9D7DA167C4F9AE02.roa Signing time: Sun 01 Mar 2026 17:05:09 +0000 ROA not before: Fri 30 Jan 2026 22:19:12 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 137561 IP address blocks: 203.215.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91324D4, serialNumber=BF74E7E614D4B22E4B7FE40B6BECEFD1705ACFC1 Validity Not Before: Jan 30 22:19:12 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a471c5-81a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:df:57:30:c1:02:db:a2:22:c1:84:62:df:fb: f9:6f:ef:22:cc:17:52:e8:1e:61:49:18:c5:36:f4: a9:17:3f:c3:07:82:6b:4e:68:ce:a1:44:4d:16:8c: a5:80:3f:3a:d6:50:44:27:73:59:13:c2:69:70:57: 25:92:5c:93:f8:78:df:eb:b6:ee:c5:44:ed:f9:d7: 29:b0:c0:13:be:6f:d6:5d:37:f5:82:8e:b6:aa:ca: 2f:98:b0:14:e4:c7:30:50:95:dc:ed:09:cf:14:e0: ed:d8:f4:63:00:fb:1b:4d:12:81:0f:67:14:4c:73: 8c:73:62:cc:e7:9e:de:44:e4:54:e7:bd:60:81:12: 41:02:bd:33:15:00:10:d3:57:30:82:29:57:10:96: 70:69:dc:13:69:fb:4a:7d:7a:67:1f:a8:3b:7a:ac: 23:e9:ab:01:e6:0e:fc:fb:c3:e0:0a:e5:de:1c:c2: 96:05:76:f2:19:78:70:5d:7d:9f:b1:66:a0:ec:a6: ca:0e:28:7c:ff:f7:1c:52:25:c7:11:23:6e:da:64: 8d:00:81:46:10:e2:b5:21:4b:a8:5a:6f:a2:9d:11: a0:bd:c6:3e:a8:d7:4c:c1:80:00:ce:8b:88:69:95: d1:58:e3:67:c2:78:fb:40:45:ee:c6:bd:c9:56:63: be:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:77:E8:27:E0:A0:A2:2E:68:C1:C3:BF:8E:78:01:98:F2:EB:8C:8D X509v3 Authority Key Identifier: keyid:BF:74:E7:E6:14:D4:B2:2E:4B:7F:E4:0B:6B:EC:EF:D1:70:5A:CF:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v3Tn5hTUsi5Lf-QLa-zv0XBaz8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91324D4/1A6E751CA71F11EB848AF030C4F9AE02/8A88CCDC667911EE9D7DA167C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.215.169.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:7a:cf:70:ec:9a:46:f5:4d:87:54:09:8a:75:05:d6:63:79: 05:3f:3e:fa:72:15:5c:cf:06:07:bb:8b:15:d6:bf:dc:b0:68: d1:4e:4d:d7:6f:25:8c:cf:d0:f9:22:3a:5e:13:6f:d7:53:9a: a9:a9:ca:f2:69:f0:e6:e6:b6:75:51:c2:88:20:19:a8:83:a1: 54:05:cf:d4:9f:83:6d:33:9f:d1:29:19:13:9f:49:37:12:da: 98:8a:7b:fb:d2:38:f0:1e:d9:38:a4:e9:b4:7a:17:9a:01:14: 99:81:bc:b7:cf:f3:c7:9e:69:c2:cc:b5:e3:eb:9a:7f:95:ae: 87:4b:3b:e9:c7:30:32:6d:bd:dd:4f:da:ab:f6:17:71:0b:95: a9:6c:ac:b1:09:76:2a:ce:69:93:da:ce:b3:af:ef:7f:8a:1b: b0:03:8f:54:fb:67:77:b5:71:e9:e1:ba:24:08:e5:2f:bd:82: 5b:75:c0:05:52:a8:43:7d:4b:70:f3:07:71:15:1a:38:23:5d: 49:40:95:85:b7:13:1a:33:ea:7d:7f:db:16:05:cf:df:f4:28: c1:70:89:3f:16:bd:b4:59:b5:83:16:14:7c:94:fb:6d:c2:49: a3:16:85:bf:95:00:6c:fe:c7:40:10:fd:e0:71:35:5b:65:c8: d4:85:ab:fe -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI0RDQxMTAvBgNVBAUTKEJGNzRFN0U2MTRENEIyMkU0QjdGRTQwQjZCRUNFRkQx NzA1QUNGQzEwHhcNMjYwMTMwMjIxOTEyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzFjNS04MWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN9XMMEC26IiwYRi3/v5b+8izBdS6B5hSRjFNvSpFz/DB4JrTmjOoURNFoyl gD861lBEJ3NZE8JpcFclklyT+Hjf67buxUTt+dcpsMATvm/WXTf1go62qsovmLAU 5McwUJXc7QnPFODt2PRjAPsbTRKBD2cUTHOMc2LM557eRORU571ggRJBAr0zFQAQ 01cwgilXEJZwadwTaftKfXpnH6g7eqwj6asB5g78+8PgCuXeHMKWBXbyGXhwXX2f sWag7KbKDih8//ccUiXHESNu2mSNAIFGEOK1IUuoWm+inRGgvcY+qNdMwYAAzouI aZXRWONnwnj7QEXuxr3JVmO+kQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDN36Cfg oKIuaMHDv454AZjy64yNMB8GA1UdIwQYMBaAFL905+YU1LIuS3/kC2vs79FwWs/B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjRENC8xQTZFNzUxQ0E3 MUYxMUVCODQ4QUYwMzBDNEY5QUUwMi92M1RuNWhUVXNpNUxmLVFMYS16djBYQmF6 OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YzVG41aFRVc2k1TGYtUUxhLXp2MFhCYXo4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzI0RDQvMUE2RTc1MUNBNzFGMTFFQjg0OEFGMDMwQzRGOUFFMDIvOEE4OENDREM2 Njc5MTFFRTlEN0RBMTY3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy9epMA0GCSqGSIb3DQEBCwUAA4IBAQBees9w7JpG9U2HVAmKdQXW Y3kFPz76chVczwYHu4sV1r/csGjRTk3XbyWMz9D5IjpeE2/XU5qpqcryafDm5rZ1 UcKIIBmog6FUBc/Un4NtM5/RKRkTn0k3EtqYinv70jjwHtk4pOm0eheaARSZgby3 z/PHnmnCzLXj65p/la6HSzvpxzAybb3dT9qr9hdxC5WpbKyxCXYqzmmT2s6zr+9/ ihuwA49U+2d3tXHp4bokCOUvvYJbdcAFUqhDfUtw8wdxFRo4I11JQJWFtxMaM+p9 f9sWBc/f9CjBcIk/Fr20WbWDFhR8lPttwkmjFoW/lQBs/sdAEP3gcTVbZcjUhav+ -----END CERTIFICATE-----Generated at Thu Mar 26 12:53:40 2026 by rpki-client