$ rpki-client -vvf rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/4978358A70E011EF8CDC2330C4F9AE02.roa File: 4978358A70E011EF8CDC2330C4F9AE02.roa (raw, json) Hash identifier: cejRFVc4y83A1VT7ywB4hcjvKqoG46ZgbTYAxTBcrgI= Subject key identifier: C6:8E:CA:6F:C9:6A:89:97:0E:27:B6:1A:91:7E:2A:0D:4C:75:36:2F Certificate issuer: /CN=A91911EB/serialNumber=BE3F813B202FFB0A382F737968EE166598E0E8AB Certificate serial: 0142 Authority key identifier: BE:3F:81:3B:20:2F:FB:0A:38:2F:73:79:68:EE:16:65:98:E0:E8:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/4978358A70E011EF8CDC2330C4F9AE02.roa Signing time: Tue 03 Mar 2026 05:47:10 +0000 ROA not before: Tue 03 Mar 2026 05:47:10 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 136737 IP address blocks: 203.158.208.0/24 maxlen: 24 203.158.209.0/24 maxlen: 24 203.158.210.0/24 maxlen: 24 203.158.211.0/24 maxlen: 24 203.158.212.0/24 maxlen: 24 203.158.213.0/24 maxlen: 24 203.158.214.0/24 maxlen: 24 203.158.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.crl rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:53:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91911EB, serialNumber=BE3F813B202FFB0A382F737968EE166598E0E8AB Validity Not Before: Mar 3 05:47:10 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69a675de-7f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:9f:1f:5f:55:94:14:5f:7c:fb:ec:b6:6e: 22:02:cf:9d:73:96:09:bb:57:20:39:5d:1a:c1:e3: 11:a8:58:f1:51:6e:c5:c3:69:bb:94:2c:5b:67:2f: b1:8a:b8:aa:50:e1:01:90:b2:4c:cc:97:3e:63:9e: 63:0a:a4:56:c0:23:9c:d0:9f:a7:3b:40:de:f4:24: 3b:ca:3b:85:b7:2d:00:4f:10:a0:5e:f2:9b:88:53: 4f:60:9e:7b:b7:e1:b8:bd:49:1d:e3:74:b4:64:87: 16:e0:eb:41:a5:1a:3a:9c:3b:4e:f3:e6:dd:1e:a4: cc:d8:bd:0d:be:75:ce:90:3c:43:7f:68:14:f0:04: 91:c7:69:2c:7e:30:aa:54:c6:11:39:8f:b8:15:65: 5e:53:e9:47:ba:32:6f:23:3e:d4:1a:08:7e:f7:9c: ec:b6:4d:2f:9f:f5:1e:2b:d6:a5:48:47:16:28:18: 55:c1:9d:af:bb:5e:ec:cc:e9:7a:d9:a0:9b:f9:17: e4:7e:38:ff:82:4e:27:1d:68:e7:a5:1b:b1:0d:91: 5a:cb:b2:10:f9:55:e0:f1:73:36:31:69:13:d9:86: e5:d3:2a:53:ac:41:6e:89:41:8d:fe:3d:39:15:02: e3:4c:e1:45:84:ab:74:d0:7b:58:70:45:a9:2a:ed: 75:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8E:CA:6F:C9:6A:89:97:0E:27:B6:1A:91:7E:2A:0D:4C:75:36:2F X509v3 Authority Key Identifier: keyid:BE:3F:81:3B:20:2F:FB:0A:38:2F:73:79:68:EE:16:65:98:E0:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/4978358A70E011EF8CDC2330C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.158.208.0/21 Signature Algorithm: sha256WithRSAEncryption 49:fc:ab:1e:1f:b7:57:26:6f:5a:93:6f:4d:5b:f8:81:ba:21: 2b:9a:25:ea:52:c6:47:68:3c:db:e7:85:e4:87:e0:01:21:19: bb:46:e3:f4:36:4e:d5:ee:00:62:a6:aa:b3:04:66:08:ea:f6: 4a:bc:96:f2:14:16:1d:0a:8a:ec:3d:68:ee:e3:fb:0e:10:c1: 87:c2:83:80:d1:cc:10:c7:be:4d:22:4c:b9:bb:0e:12:d5:1a: 56:ea:9b:e3:28:4f:e3:78:9e:67:06:c2:44:25:57:62:46:61: 01:da:d7:54:61:f4:62:4f:e0:c0:f4:ef:3d:90:9f:bb:22:01: 49:7a:15:e8:9c:1d:5c:04:e6:d5:20:90:c3:85:e2:35:34:a7: a2:57:cc:41:9d:ae:25:4f:1f:39:19:17:95:2b:19:98:5c:9c: 34:fd:09:b3:61:1f:6a:14:54:50:43:6a:33:61:15:25:2e:73: f4:28:af:35:5e:9b:a5:12:b9:6a:15:cd:b1:b3:dd:cf:ce:0e: c4:77:f4:ce:24:b0:fa:7b:70:70:09:ad:da:b1:43:b6:9e:93: 98:07:86:05:19:33:8e:4c:41:68:f1:37:33:92:0f:54:d8:ac: 59:67:17:aa:c7:e9:b0:c2:5b:b1:6a:35:f5:27:2c:10:54:67: a2:27:fc:86 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTExRUIxMTAvBgNVBAUTKEJFM0Y4MTNCMjAyRkZCMEEzODJGNzM3OTY4RUUxNjY1 OThFMEU4QUIwHhcNMjYwMzAzMDU0NzEwWhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NzVkZS03ZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKWfH19VlBRffPvstm4iAs+dc5YJu1cgOV0aweMRqFjxUW7Fw2m7lCxbZy+x iriqUOEBkLJMzJc+Y55jCqRWwCOc0J+nO0De9CQ7yjuFty0ATxCgXvKbiFNPYJ57 t+G4vUkd43S0ZIcW4OtBpRo6nDtO8+bdHqTM2L0NvnXOkDxDf2gU8ASRx2ksfjCq VMYROY+4FWVeU+lHujJvIz7UGgh+95zstk0vn/UeK9alSEcWKBhVwZ2vu17szOl6 2aCb+Rfkfjj/gk4nHWjnpRuxDZFay7IQ+VXg8XM2MWkT2Ybl0ypTrEFuiUGN/j05 FQLjTOFFhKt00HtYcEWpKu11+wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMaOym/J aomXDie2GpF+Kg1MdTYvMB8GA1UdIwQYMBaAFL4/gTsgL/sKOC9zeWjuFmWY4Oir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTFFQi9FREE5NzJCMjY5 QTIxMUVGQUUzQUIzNUFDNEY5QUUwMi92ai1CT3lBdi13bzRMM041YU80V1paamc2 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZqLUJPeUF2LXdvNEwzTjVhTzRXWlpqZzZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTExRUIvRURBOTcyQjI2OUEyMTFFRkFFM0FCMzVBQzRGOUFFMDIvNDk3ODM1OEE3 MEUwMTFFRjhDREMyMzMwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDy57QMA0GCSqGSIb3DQEBCwUAA4IBAQBJ/KseH7dXJm9ak29NW/iB uiErmiXqUsZHaDzb54Xkh+ABIRm7RuP0Nk7V7gBipqqzBGYI6vZKvJbyFBYdCors PWju4/sOEMGHwoOA0cwQx75NIky5uw4S1RpW6pvjKE/jeJ5nBsJEJVdiRmEB2tdU YfRiT+DA9O89kJ+7IgFJehXonB1cBObVIJDDheI1NKeiV8xBna4lTx85GReVKxmY XJw0/QmzYR9qFFRQQ2ozYRUlLnP0KK81XpulErlqFc2xs93Pzg7Ed/TOJLD6e3Bw Ca3asUO2npOYB4YFGTOOTEFo8Tczkg9U2KxZZxeqx+mwwluxajX1JywQVGeiJ/yG -----END CERTIFICATE-----Generated at Thu Mar 26 20:36:42 2026 by rpki-client