$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/206969823B9411EB9F059D7EC4F9AE02.roa File: 206969823B9411EB9F059D7EC4F9AE02.roa (raw, json) Hash identifier: lU4qj9qhMKsVAQxIlEtzz2s2LN2qpGRwvCOWleMDdN8= Subject key identifier: A5:FE:1A:56:05:42:DE:C9:1E:01:9F:F2:19:21:7B:91:9D:80:98:82 Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0CB7 Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/206969823B9411EB9F059D7EC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:27:41 +0000 ROA not before: Sat 16 Aug 2025 19:30:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 0 IP address blocks: 203.190.227.0/24 maxlen: 24 203.190.230.0/24 maxlen: 24 2001:de8:4::/64 maxlen: 64 2001:de8:5::/64 maxlen: 64 2001:de8:5:1::/64 maxlen: 64 2001:de8:6::/64 maxlen: 64 2001:de8:6:1::/64 maxlen: 64 2001:de8:6:2::/64 maxlen: 64 2001:de8:7::/64 maxlen: 64 2001:de8:7:1::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F, serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Validity Not Before: Aug 16 19:30:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5904d-4b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:4d:24:e0:fc:e5:eb:eb:f9:dc:73:cc:4a:32: ff:a3:5e:1a:ac:0b:d2:f0:ab:f7:ea:af:27:07:59: df:1d:cc:d3:34:85:fe:15:57:eb:7d:99:01:73:eb: e7:8b:d2:f3:7a:65:51:23:af:3f:46:33:2c:c0:a1: 32:81:df:99:35:87:be:3b:05:7b:fc:1a:4a:f6:ba: d0:39:a4:e9:d6:9e:0c:79:ed:bf:ec:3e:8a:e6:09: 7e:df:7a:fd:2c:87:ea:49:a8:bf:98:e9:0f:ee:68: c4:31:46:d7:5f:fa:d9:40:4d:84:28:4b:be:ad:29: 4c:e9:25:7a:01:93:3f:25:c5:c2:14:f9:12:18:2f: 23:80:17:2d:c2:85:3e:2f:12:7b:82:9b:0b:cd:be: 15:c8:7a:cb:ea:68:c2:d4:dc:a1:50:49:23:70:e7: ef:bd:26:0f:2e:78:9d:d6:84:19:6c:17:97:b1:f7: 18:a0:5c:c6:b8:02:c4:72:4c:df:0b:50:9f:42:f5: 21:6f:14:33:33:3f:3f:e6:02:b9:87:fd:9a:41:02: d8:86:dd:3a:20:cb:17:0b:a7:a1:40:f0:3f:b3:a2: 5b:be:91:d1:cc:aa:90:0f:68:42:c3:01:37:ea:ee: 95:65:f6:8d:2f:f5:5f:23:67:45:93:20:65:aa:b7: 4b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:FE:1A:56:05:42:DE:C9:1E:01:9F:F2:19:21:7B:91:9D:80:98:82 X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/206969823B9411EB9F059D7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.190.227.0/24 203.190.230.0/24 IPv6: 2001:de8:4::/64 2001:de8:5::/63 2001:de8:6::-2001:de8:6:2:ffff:ffff:ffff:ffff 2001:de8:7::/63 Signature Algorithm: sha256WithRSAEncryption 05:ca:52:1b:b9:48:af:17:c3:dc:ea:7a:a2:ae:54:70:88:c1: c3:cf:7d:d9:73:fa:e7:6b:df:36:95:b9:62:f0:51:b3:a9:e4: 36:07:9f:3f:27:1e:44:04:01:9c:a4:2a:b8:0e:1d:f7:a0:be: 8c:31:13:cb:3c:7a:e2:36:9e:e8:a8:68:85:a6:2a:d3:e0:1e: f2:b0:b8:f2:91:10:50:6e:1e:66:d8:d9:4a:f2:9c:e7:0a:83: de:3e:90:3f:f2:58:6a:ff:70:0c:8e:f2:35:68:0d:1d:17:b0: 33:ef:ef:a7:36:31:72:6f:db:70:37:b3:c4:b3:2f:8a:ba:5a: cf:f2:e8:74:8b:ff:25:2d:1a:e7:4e:a0:33:be:cf:7a:91:52: 1f:45:d5:a6:77:ef:f4:af:87:a8:dc:3a:19:91:9f:b5:4b:14: 10:77:0e:2e:8d:16:ad:19:6b:fa:45:c8:79:4e:82:c0:fd:17: 37:76:0e:77:60:ee:31:7d:e2:2d:6c:6f:23:1e:46:98:23:c6: db:9b:bc:e9:21:fe:54:8d:eb:c5:23:f8:03:c4:a0:d5:4f:b6: 74:64:71:a6:af:47:d6:18:a9:64:18:b5:b3:e3:6c:23:e2:d4: 14:57:b2:9c:53:d4:f6:95:96:10:57:f5:c5:11:90:85:87:55: f2:97:76:a5 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjUwODE2MTkzMDAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTA0ZC00YjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA900k4Pzl6+v53HPMSjL/o14arAvS8Kv36q8nB1nfHczTNIX+FVfrfZkBc+vn i9LzemVRI68/RjMswKEygd+ZNYe+OwV7/BpK9rrQOaTp1p4Mee2/7D6K5gl+33r9 LIfqSai/mOkP7mjEMUbXX/rZQE2EKEu+rSlM6SV6AZM/JcXCFPkSGC8jgBctwoU+ LxJ7gpsLzb4VyHrL6mjC1NyhUEkjcOfvvSYPLnid1oQZbBeXsfcYoFzGuALEckzf C1CfQvUhbxQzMz8/5gK5h/2aQQLYht06IMsXC6ehQPA/s6JbvpHRzKqQD2hCwwE3 6u6VZfaNL/VfI2dFkyBlqrdLVQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKX+GlYF Qt7JHgGf8hkhe5GdgJiCMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvMjA2OTY5ODIz Qjk0MTFFQjlGMDU5RDdFQzRGOUFFMDIucm9hMGQGCCsGAQUFBwEHAQH/BFUwUzAS BAIAATAMAwQAy77jAwQAy77mMD0EAgACMDcDCQAgAQ3oAAQAAAMJASABDegABQAA MBQDBwEgAQ3oAAYDCQAgAQ3oAAYAAgMJASABDegABwAAMA0GCSqGSIb3DQEBCwUA A4IBAQAFylIbuUivF8Pc6nqirlRwiMHDz33Zc/rna982lbli8FGzqeQ2B58/Jx5E BAGcpCq4Dh33oL6MMRPLPHriNp7oqGiFpirT4B7ysLjykRBQbh5m2NlK8pznCoPe PpA/8lhq/3AMjvI1aA0dF7Az7++nNjFyb9twN7PEsy+KulrP8uh0i/8lLRrnTqAz vs96kVIfRdWmd+/0r4eo3DoZkZ+1SxQQdw4ujRatGWv6Rch5ToLA/Rc3dg53YO4x feItbG8jHkaYI8bbm7zpIf5UjevFI/gDxKDVT7Z0ZHGmr0fWGKlkGLWz42wj4tQU V7KcU9T2lZYQV/XFEZCFh1Xyl3al -----END CERTIFICATE-----Generated at Thu Mar 26 03:31:57 2026 by rpki-client