$ rpki-client -vvf rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/88FD3F60EE7D11EE8868470EC4F9AE02.roa File: 88FD3F60EE7D11EE8868470EC4F9AE02.roa (raw, json) Hash identifier: XhN04AM2ixPyN1th7HJDdAiI6EaLVoSWkSawWRUqLfE= Subject key identifier: FF:B6:44:50:0A:51:95:1E:8C:DB:3A:DE:1B:E6:00:FF:40:C6:19:DF Certificate issuer: /CN=A9190CC3/serialNumber=F413F51D87BBFF4B0A41072187476EBE07D361BF Certificate serial: 016B Authority key identifier: F4:13:F5:1D:87:BB:FF:4B:0A:41:07:21:87:47:6E:BE:07:D3:61:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BP1HYe7_0sKQQchh0duvgfTYb8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/88FD3F60EE7D11EE8868470EC4F9AE02.roa Signing time: Mon 02 Mar 2026 12:38:40 +0000 ROA not before: Thu 01 May 2025 04:42:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152674 IP address blocks: 203.28.252.0/24 maxlen: 24 203.28.253.0/24 maxlen: 24 2001:df3:9fc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/9BP1HYe7_0sKQQchh0duvgfTYb8.crl rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/9BP1HYe7_0sKQQchh0duvgfTYb8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BP1HYe7_0sKQQchh0duvgfTYb8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 04:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190CC3, serialNumber=F413F51D87BBFF4B0A41072187476EBE07D361BF Validity Not Before: May 1 04:42:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a584d0-958b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ae:03:36:96:f0:4e:ef:ca:0c:e7:69:64:07: d1:3e:c7:9e:22:e3:1d:7e:e8:91:29:90:3a:57:99: 8f:b0:12:bb:8b:ce:83:73:4b:7d:3b:99:31:39:49: 13:2e:27:4e:d4:8e:e4:1d:8f:a8:2f:cf:df:ef:98: cd:58:42:ef:8c:45:46:c5:d1:5c:a1:3a:06:2d:32: 8e:d6:a5:7a:16:ff:93:85:e2:c7:fa:93:52:47:11: e1:bc:ff:9a:ef:64:78:09:af:ba:cc:c0:ae:14:1c: 6f:f1:6a:6f:96:40:a1:40:7e:05:56:c4:55:f0:1e: 07:8e:26:92:bd:77:6d:3b:42:b9:46:39:46:cc:71: ff:0c:81:50:23:8e:33:97:78:26:c7:bd:cc:23:b7: 47:b9:45:20:57:33:72:1c:a4:4b:5c:60:03:ef:18: bf:f2:2a:81:9a:c7:28:90:a1:ad:3d:23:94:89:3b: 44:b9:af:70:c7:c3:e4:7b:bf:51:6b:7f:30:9b:e3: af:5c:43:e7:f7:40:cc:07:2f:c6:2f:4f:2f:66:27: 4b:e3:38:68:50:ad:68:18:29:1b:44:40:74:6a:48: 7e:cb:d6:9d:b7:73:42:7e:80:5d:de:ff:c3:97:3c: 36:dc:57:33:91:f7:87:c4:d4:d1:8c:66:80:d7:43: 89:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B6:44:50:0A:51:95:1E:8C:DB:3A:DE:1B:E6:00:FF:40:C6:19:DF X509v3 Authority Key Identifier: keyid:F4:13:F5:1D:87:BB:FF:4B:0A:41:07:21:87:47:6E:BE:07:D3:61:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/9BP1HYe7_0sKQQchh0duvgfTYb8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BP1HYe7_0sKQQchh0duvgfTYb8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190CC3/24B8E258EE7C11EE9F290E80C4F9AE02/88FD3F60EE7D11EE8868470EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.28.252.0/23 IPv6: 2001:df3:9fc0::/48 Signature Algorithm: sha256WithRSAEncryption 26:0f:a6:32:ab:58:e0:76:c5:7d:d7:44:4b:2f:5b:3b:f9:26: bc:b9:93:ee:b3:12:3c:12:e8:bf:f9:31:ce:44:09:46:e9:9d: 3c:2d:b3:0c:c7:56:cf:37:c8:85:a0:8e:c6:80:d0:31:5b:a8: 75:75:b7:c3:11:25:89:b1:b8:e8:5e:bd:1e:9c:26:70:29:a1: 19:e3:ea:a4:28:a7:a2:78:44:d0:b5:0c:ca:2c:2c:b5:ed:c1: 8f:17:7d:0a:66:c8:7d:63:ec:42:63:21:75:f7:3a:98:1d:ff: bc:f5:b0:82:f3:1e:87:f6:62:7d:be:7d:58:49:06:f1:aa:a9: 62:aa:70:97:73:05:df:e7:6c:1a:d9:5c:32:a2:2c:5b:f3:bc: 4f:22:19:7c:59:31:c6:2c:28:74:5f:cc:4b:06:cb:2b:ab:13: c8:79:35:23:c4:94:59:32:57:69:8f:8a:6a:b8:80:99:ac:40: a4:bc:a0:89:be:4c:93:b1:68:81:bd:ec:8c:a2:d3:a5:9a:4f: 0a:12:35:16:0b:56:9d:ed:a6:c3:46:ea:87:b7:a1:b1:1e:21: 3e:09:b3:30:d2:2e:1f:88:03:d9:bf:b9:42:61:c9:05:b0:38: a5:74:6f:51:09:b8:65:69:71:b4:57:b3:42:03:90:14:23:c4: bb:a3:b2:ea -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBDQzMxMTAvBgNVBAUTKEY0MTNGNTFEODdCQkZGNEIwQTQxMDcyMTg3NDc2RUJF MDdEMzYxQkYwHhcNMjUwNTAxMDQ0MjA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODRkMC05NThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt64DNpbwTu/KDOdpZAfRPseeIuMdfuiRKZA6V5mPsBK7i86Dc0t9O5kxOUkT LidO1I7kHY+oL8/f75jNWELvjEVGxdFcoToGLTKO1qV6Fv+TheLH+pNSRxHhvP+a 72R4Ca+6zMCuFBxv8WpvlkChQH4FVsRV8B4HjiaSvXdtO0K5RjlGzHH/DIFQI44z l3gmx73MI7dHuUUgVzNyHKRLXGAD7xi/8iqBmscokKGtPSOUiTtEua9wx8Pke79R a38wm+OvXEPn90DMBy/GL08vZidL4zhoUK1oGCkbREB0akh+y9adt3NCfoBd3v/D lzw23FczkfeHxNTRjGaA10OJVwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFP+2RFAK UZUejNs63hvmAP9AxhnfMB8GA1UdIwQYMBaAFPQT9R2Hu/9LCkEHIYdHbr4H02G/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MENDMy8yNEI4RTI1OEVF N0MxMUVFOUYyOTBFODBDNEY5QUUwMi85QlAxSFllN18wc0tRUWNoaDBkdXZnZlRZ YjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlCUDFIWWU3XzBzS1FRY2hoMGR1dmdmVFliOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBDQzMvMjRCOEUyNThFRTdDMTFFRTlGMjkwRTgwQzRGOUFFMDIvODhGRDNGNjBF RTdEMTFFRTg4Njg0NzBFQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQByxz8MA8EAgACMAkDBwAgAQ3zn8AwDQYJKoZIhvcNAQELBQADggEB ACYPpjKrWOB2xX3XREsvWzv5Jry5k+6zEjwS6L/5Mc5ECUbpnTwtswzHVs83yIWg jsaA0DFbqHV1t8MRJYmxuOhevR6cJnApoRnj6qQop6J4RNC1DMosLLXtwY8XfQpm yH1j7EJjIXX3Opgd/7z1sILzHof2Yn2+fVhJBvGqqWKqcJdzBd/nbBrZXDKiLFvz vE8iGXxZMcYsKHRfzEsGyyurE8h5NSPElFkyV2mPimq4gJmsQKS8oIm+TJOxaIG9 7Iyi06WaTwoSNRYLVp3tpsNG6oe3obEeIT4JszDSLh+IA9m/uUJhyQWwOKV0b1EJ uGVpcbRXs0IDkBQjxLujsuo= -----END CERTIFICATE-----Generated at Sat Mar 28 12:08:53 2026 by rpki-client