$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/F0F715D8D91811EFAD9B2462C4F9AE02.roa File: F0F715D8D91811EFAD9B2462C4F9AE02.roa (raw, json) Hash identifier: 6NxbPpiEJs2yazc4XE7t1GVxt2/LOGH3NcLS2N1ULdM= Subject key identifier: 97:AA:34:5F:74:B8:C4:9E:E3:06:07:27:23:E5:28:36:13:F0:7F:9F Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 05AE Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/F0F715D8D91811EFAD9B2462C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:00:11 +0000 ROA not before: Wed 25 Jun 2025 00:04:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 203.20.192.0/24 maxlen: 24 203.20.193.0/24 maxlen: 24 203.20.194.0/24 maxlen: 24 203.20.195.0/24 maxlen: 24 203.20.196.0/24 maxlen: 24 203.20.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 22:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1454 (0x5ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Jun 25 00:04:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4547b-8fd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:87:e1:7b:8e:51:71:a6:b0:0a:50:27:a9:5a: 1d:65:bf:4f:ed:06:71:ac:09:01:5c:63:a1:f7:7b: 83:83:4c:50:2c:72:79:82:b4:86:41:b4:44:3d:59: 46:b3:4b:7e:46:23:4a:84:0c:9e:51:3d:80:3a:5f: 97:2f:c4:ae:2e:57:05:8f:b4:6b:fb:16:3e:bd:d5: 15:36:f5:a2:8c:19:05:6c:b1:30:d5:65:93:76:fa: 98:cd:9b:cb:56:cb:68:9d:87:a3:0b:1d:4e:cc:0b: 61:20:26:39:dd:fd:17:24:8c:53:53:ca:ff:74:8e: 31:f9:92:f3:22:dd:42:3e:2e:d2:4f:18:18:4e:32: c1:6f:28:49:23:02:8f:98:68:03:20:ac:d2:36:47: 20:45:2d:10:61:6a:ed:76:63:09:fc:f1:ef:60:74: 3e:82:e7:f1:52:f5:a5:12:eb:9c:42:b5:ac:5f:87: df:b5:29:1b:01:fa:0c:2a:55:59:a7:9b:b3:96:ce: 53:82:de:32:e4:87:3d:2a:b5:a0:75:8c:b4:36:f7: 2c:1f:0d:c0:06:1e:56:1f:10:db:b4:13:16:3f:c9: 17:4d:44:74:02:2b:e7:63:44:40:4b:d0:fa:1b:3d: b9:5d:db:40:0a:41:e8:5f:1b:40:36:cb:3c:e9:be: 55:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:AA:34:5F:74:B8:C4:9E:E3:06:07:27:23:E5:28:36:13:F0:7F:9F X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/F0F715D8D91811EFAD9B2462C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.20.192.0-203.20.196.255 203.20.198.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:7d:41:2d:0e:98:c7:c8:58:4f:6b:af:f0:01:41:28:29:97: 2e:ee:1b:9b:97:b4:b7:5c:17:d1:90:40:cf:2c:44:ae:81:6e: bf:a4:20:67:68:c2:84:44:b8:d7:50:4d:78:f6:79:1f:82:38: f9:39:17:7b:48:87:da:8c:bc:33:27:50:74:78:e6:7a:03:3b: 1e:c6:b9:67:0a:2a:a8:dd:09:38:92:5d:66:39:4c:7d:f6:71: b8:20:31:6f:43:56:38:91:71:ca:95:60:27:5e:6b:22:82:9d: 90:c8:0f:5c:69:aa:2b:2f:36:f0:8c:50:bb:0c:22:03:d8:9d: 51:ed:ae:e4:5e:a1:28:48:f4:9a:c9:f1:ed:af:6e:d6:fc:c9: f5:8d:9e:b9:d2:4c:54:8b:2f:3c:53:be:aa:dd:75:4d:2d:69: 4c:9a:6f:33:1b:1b:61:4f:2e:45:f3:ef:09:a8:91:d7:37:fc: 7e:0e:58:02:78:a2:0e:30:6e:5f:4f:fc:2d:1f:2e:c9:4c:75: 70:36:73:45:ce:7c:be:96:32:6f:1d:b6:20:cd:77:67:e6:21: 33:e6:a5:ee:3b:1e:8f:44:77:18:a9:91:4c:0b:19:dc:49:cd: 00:5c:2a:fe:12:c6:c8:d4:26:81:0a:52:a6:de:d9:6c:29:91: 08:8c:bf:a1 -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICBa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjUwNjI1MDAwNDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTQ3Yi04ZmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ofhe45RcaawClAnqVodZb9P7QZxrAkBXGOh93uDg0xQLHJ5grSGQbREPVlG s0t+RiNKhAyeUT2AOl+XL8SuLlcFj7Rr+xY+vdUVNvWijBkFbLEw1WWTdvqYzZvL VstonYejCx1OzAthICY53f0XJIxTU8r/dI4x+ZLzIt1CPi7STxgYTjLBbyhJIwKP mGgDIKzSNkcgRS0QYWrtdmMJ/PHvYHQ+gufxUvWlEuucQrWsX4fftSkbAfoMKlVZ p5uzls5Tgt4y5Ic9KrWgdYy0NvcsHw3ABh5WHxDbtBMWP8kXTUR0AivnY0RAS9D6 Gz25XdtACkHoXxtANss86b5V3wIDAQABo4ICbjCCAmowHQYDVR0OBBYEFJeqNF90 uMSe4wYHJyPlKDYT8H+fMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU2QkIvNUNFQTU0OTQxNkQ1MTFFQ0E3RjNGNDZBQzRGOUFFMDIvRjBGNzE1RDhE OTE4MTFFRkFEOUIyNDYyQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUMAwDBAbLFMADBADLFMQDBADLFMYwDQYJKoZIhvcNAQELBQADggEBAE19 QS0OmMfIWE9rr/ABQSgply7uG5uXtLdcF9GQQM8sRK6Bbr+kIGdowoREuNdQTXj2 eR+COPk5F3tIh9qMvDMnUHR45noDOx7GuWcKKqjdCTiSXWY5TH32cbggMW9DVjiR ccqVYCdeayKCnZDID1xpqisvNvCMULsMIgPYnVHtruReoShI9JrJ8e2vbtb8yfWN nrnSTFSLLzxTvqrddU0taUyabzMbG2FPLkXz7wmokdc3/H4OWAJ4og4wbl9P/C0f LslMdXA2c0XOfL6WMm8dtiDNd2fmITPmpe47Ho9EdxipkUwLGdxJzQBcKv4SxsjU JoEKUqbe2WwpkQiMv6E= -----END CERTIFICATE-----Generated at Thu Mar 26 17:32:29 2026 by rpki-client