$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3C2B/CFDCEFC6443811F18EB0AF7FC3833773/D041C5C644F711F1A94CB46CCC833773.roa File: D041C5C644F711F1A94CB46CCC833773.roa (raw, json) Hash identifier: ujAUvex6eehN8/9sST01/gQAgORLT9YZQ+hSBO6s3PM= Subject key identifier: F1:88:18:31:71:95:59:C1:7E:8C:51:9D:0C:A8:57:11:7C:7A:33:07 Certificate issuer: /CN=A91A3C2B/serialNumber=9DAC9B56CFA4375B10C899233D55F6071EF08321 Certificate serial: 05 Authority key identifier: 9D:AC:9B:56:CF:A4:37:5B:10:C8:99:23:3D:55:F6:07:1E:F0:83:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/naybVs-kN1sQyJkjPVX2Bx7wgyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3C2B/CFDCEFC6443811F18EB0AF7FC3833773/D041C5C644F711F1A94CB46CCC833773.roa Signing time: Fri 01 May 2026 00:50:57 +0000 ROA not before: Fri 01 May 2026 00:50:57 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 0 IP address blocks: 203.25.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3C2B/CFDCEFC6443811F18EB0AF7FC3833773/naybVs-kN1sQyJkjPVX2Bx7wgyE.crl rsync://rpki.apnic.net/member_repository/A91A3C2B/CFDCEFC6443811F18EB0AF7FC3833773/naybVs-kN1sQyJkjPVX2Bx7wgyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/naybVs-kN1sQyJkjPVX2Bx7wgyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 May 2026 09:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3C2B, serialNumber=9DAC9B56CFA4375B10C899233D55F6071EF08321 Validity Not Before: May 1 00:50:57 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69f3f8f1-0842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:70:c1:52:be:c8:25:91:40:2b:cf:cf:b2:5d: 8b:cf:2e:9e:50:6d:1a:11:3a:28:91:9b:2e:8a:e8: 81:ab:23:7a:37:f9:52:59:6e:2d:a0:c4:72:f8:33: 24:1c:5c:34:fc:5a:13:f8:ea:dc:61:a2:00:0c:c5: 3b:71:cc:f2:a3:db:c5:02:1f:c1:d5:ba:15:a2:2b: d3:b5:fa:b8:7d:9f:ca:c6:44:62:9a:21:23:b1:a8: 98:8c:10:71:01:0f:1f:e7:cb:56:e5:92:9e:16:66: 8c:a0:7f:6a:98:47:4c:5c:db:9b:5a:3e:59:b8:c4: be:0a:2e:4e:5a:62:d1:85:60:df:60:ea:0a:71:e3: 9c:7a:54:21:17:1a:50:89:6c:40:8c:50:be:41:15: 5a:f7:56:ed:fc:73:3c:0a:80:fe:6e:27:1c:d0:11: db:82:5c:52:2a:69:99:f2:03:29:12:7c:86:3b:48: b5:78:d8:28:f4:11:6b:60:ab:ab:3f:f8:b5:f7:10: e2:82:6f:f6:9e:df:8e:0f:21:90:ac:f7:25:82:cc: 56:93:08:11:46:52:0c:db:d8:f4:14:f1:a2:94:25: 9f:51:0f:1c:83:10:e0:ae:2a:33:16:08:79:89:f5: 12:e7:0d:31:71:75:f0:1b:e6:d5:2d:9d:d2:55:a8: 70:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:88:18:31:71:95:59:C1:7E:8C:51:9D:0C:A8:57:11:7C:7A:33:07 X509v3 Authority Key Identifier: keyid:9D:AC:9B:56:CF:A4:37:5B:10:C8:99:23:3D:55:F6:07:1E:F0:83:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3C2B/CFDCEFC6443811F18EB0AF7FC3833773/naybVs-kN1sQyJkjPVX2Bx7wgyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/naybVs-kN1sQyJkjPVX2Bx7wgyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3C2B/CFDCEFC6443811F18EB0AF7FC3833773/D041C5C644F711F1A94CB46CCC833773.roa sbgp-ipAddrBlock: critical IPv4: 203.25.96.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:74:70:de:68:22:b9:f0:a1:7e:fa:92:d9:c3:d7:e2:9a:87: 36:6f:d6:a0:14:86:9d:9f:d8:88:f4:3e:9b:f3:c3:8a:16:ad: b3:3b:bd:56:f4:fa:c0:32:7b:20:03:11:49:11:60:a5:ab:6a: 75:f3:a0:71:82:5b:07:72:bb:02:32:40:40:72:df:b2:14:a8: ef:71:76:c3:81:07:53:93:c4:ad:2a:82:63:e3:2b:70:cd:f9: 0f:66:1a:51:41:c6:89:25:ac:34:94:43:c2:eb:25:e9:1c:35: 3b:9d:fa:b4:84:96:3c:1a:76:73:8b:02:3a:a5:56:ed:a4:e9: d6:b8:6b:f9:e4:30:5b:c2:f4:0b:7b:4f:f1:fd:c0:68:e5:7e: 88:0f:0c:eb:73:d1:87:eb:40:81:0f:96:5f:fc:03:89:cf:57: 64:31:ab:1c:b4:19:c3:f8:0e:b8:b9:22:36:e5:37:44:38:19: 4c:be:95:30:04:57:1c:40:64:6b:51:bd:01:af:7a:8e:5c:e3: 4b:b8:5c:fc:21:8f:ae:78:34:41:9b:68:66:4c:90:dc:f6:7a: d4:18:b0:09:6a:3f:f0:8d:86:bc:77:43:cc:f0:36:20:0e:14: 4d:91:f4:50:c3:ad:44:f9:ea:31:f8:c8:82:53:c9:73:03:87: 01:a3:53:c7 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB M0MyQjExMC8GA1UEBRMoOURBQzlCNTZDRkE0Mzc1QjEwQzg5OTIzM0Q1NUY2MDcx RUYwODMyMTAeFw0yNjA1MDEwMDUwNTdaFw0yNzA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5ZjNmOGYxLTA4NDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8cMFSvsglkUArz8+yXYvPLp5QbRoROiiRmy6K6IGrI3o3+VJZbi2gxHL4MyQc XDT8WhP46txhogAMxTtxzPKj28UCH8HVuhWiK9O1+rh9n8rGRGKaISOxqJiMEHEB Dx/ny1blkp4WZoygf2qYR0xc25taPlm4xL4KLk5aYtGFYN9g6gpx45x6VCEXGlCJ bECMUL5BFVr3Vu38czwKgP5uJxzQEduCXFIqaZnyAykSfIY7SLV42Cj0EWtgq6s/ +LX3EOKCb/ae344PIZCs9yWCzFaTCBFGUgzb2PQU8aKUJZ9RDxyDEOCuKjMWCHmJ 9RLnDTFxdfAb5tUtndJVqHCrAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU8YgYMXGV WcF+jFGdDKhXEXx6MwcwHwYDVR0jBBgwFoAUnaybVs+kN1sQyJkjPVX2Bx7wgyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzQzJCL0NGRENFRkM2NDQz ODExRjE4RUIwQUY3RkMzODMzNzczL25heWJWcy1rTjFzUXlKa2pQVlgyQng3d2d5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmF5YlZzLWtOMXNReUpralBWWDJCeDd3Z3lFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0MyQi9DRkRDRUZDNjQ0MzgxMUYxOEVCMEFGN0ZDMzgzMzc3My9EMDQxQzVDNjQ0 RjcxMUYxQTk0Q0I0NkNDQzgzMzc3My5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLGWAwDQYJKoZIhvcNAQELBQADggEBADp0cN5oIrnwoX76ktnD1+Ka hzZv1qAUhp2f2Ij0Ppvzw4oWrbM7vVb0+sAyeyADEUkRYKWranXzoHGCWwdyuwIy QEBy37IUqO9xdsOBB1OTxK0qgmPjK3DN+Q9mGlFBxoklrDSUQ8LrJekcNTud+rSE ljwadnOLAjqlVu2k6da4a/nkMFvC9At7T/H9wGjlfogPDOtz0YfrQIEPll/8A4nP V2Qxqxy0GcP4Dri5IjblN0Q4GUy+lTAEVxxAZGtRvQGveo5c40u4XPwhj654NEGb aGZMkNz2etQYsAlqP/CNhrx3Q8zwNiAOFE2R9FDDrUT56jH4yIJTyXMDhwGjU8c= -----END CERTIFICATE-----Generated at Tue May 12 21:39:24 2026 by rpki-client