$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CF2E99C88C0911EAAFF6CD27C4F9AE02.roa File: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (raw, json) Hash identifier: 8uX/hlFjGe/V8LokTmcu8tEggMYCwiDilR7VyuWjQ5g= Subject key identifier: 97:F1:76:4F:E3:04:57:BE:63:28:A1:49:46:DC:68:BB:96:F2:F0:2E Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A63 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CF2E99C88C0911EAAFF6CD27C4F9AE02.roa Signing time: Mon 02 Mar 2026 13:29:58 +0000 ROA not before: Fri 10 Oct 2025 21:20:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.210.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:28:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Oct 10 21:20:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a590d6-0bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:dc:27:db:7f:78:94:36:f1:b3:4c:a9:c3:76: 14:79:ec:9a:a6:87:5f:54:f7:59:f5:6b:8e:48:31: 34:7b:57:96:92:73:d6:9d:77:22:46:54:20:64:1a: 41:21:67:7a:9c:08:a6:5e:22:0f:b5:a6:6c:f0:ff: a2:89:44:d9:f5:06:92:36:eb:05:70:fd:20:62:43: b7:48:cb:5d:42:1b:e4:24:2c:74:d2:79:40:cf:59: cd:bd:22:29:81:38:7b:79:dd:70:96:d2:97:70:0a: 9f:7b:af:64:17:e7:3c:58:8e:03:53:6d:5e:b7:ab: de:b1:63:62:7c:36:47:6b:a9:3c:77:f9:92:2d:24: 5d:89:7a:59:48:d1:20:b7:d2:eb:10:37:48:f0:55: 02:ff:bd:ca:31:a4:36:2b:d5:e5:0a:bc:4b:95:22: 4c:77:8e:42:d9:a3:7e:55:a9:70:95:e2:00:3b:06: 9b:0a:82:03:7c:9e:20:05:4f:a6:90:42:09:6d:19: ed:55:f7:b8:51:b5:ab:8b:3a:c7:77:14:a8:37:3d: 11:f6:37:e9:86:10:e6:6e:1c:f9:88:27:3f:4e:1b: 47:be:9d:a0:ee:70:3d:98:54:e3:5a:d8:1c:b3:b8: be:fd:d8:af:c2:24:9f:18:e0:27:6a:64:a8:fa:e5: f4:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F1:76:4F:E3:04:57:BE:63:28:A1:49:46:DC:68:BB:96:F2:F0:2E X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CF2E99C88C0911EAAFF6CD27C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.210.75.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:5e:86:26:2f:82:13:0e:78:8f:d5:5a:89:e0:d4:64:ec:bf: dc:69:af:a8:03:10:7f:92:70:0c:65:ae:16:c8:2e:f6:8c:47: b2:7d:7e:b4:5b:a9:c8:88:e8:bf:88:be:67:d2:17:e8:07:c9: 23:22:d1:e8:30:cd:14:e3:54:27:e6:58:a5:b0:23:df:09:f5: c2:a8:f1:9b:c5:1e:d8:cc:54:61:7a:79:97:e0:84:e0:65:18: 7d:a6:2f:44:cb:69:f3:60:c9:31:a7:64:cf:3a:c9:22:55:fb: 65:30:ca:5c:ef:bd:b3:cf:3c:9e:2a:8a:56:64:c8:dd:74:36: 01:5c:66:13:01:d7:ec:44:0b:18:63:bc:a8:24:85:aa:8c:67: 5a:41:c4:e5:d1:85:06:5a:17:85:c5:11:dd:84:0d:46:cc:3c: 43:2a:13:1b:41:a9:fa:fc:2d:60:3c:b3:46:95:06:d3:2f:96: de:f8:c2:3c:55:ce:7a:bb:f6:f5:b3:04:78:10:80:43:15:67: 2d:fd:6c:ea:be:69:b0:55:d4:d9:65:01:65:ca:bb:5b:fe:4f: b5:a7:db:ce:62:49:a6:ab:aa:0a:b4:e7:ff:7b:e2:2b:c6:e5: 2b:c1:44:a7:74:2a:58:fd:27:58:87:36:10:d1:58:98:33:b4: 49:f5:99:28 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUxMDEwMjEyMDM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OTBkNi0wYmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdwn2394lDbxs0ypw3YUeeyapodfVPdZ9WuOSDE0e1eWknPWnXciRlQgZBpB IWd6nAimXiIPtaZs8P+iiUTZ9QaSNusFcP0gYkO3SMtdQhvkJCx00nlAz1nNvSIp gTh7ed1wltKXcAqfe69kF+c8WI4DU21et6vesWNifDZHa6k8d/mSLSRdiXpZSNEg t9LrEDdI8FUC/73KMaQ2K9XlCrxLlSJMd45C2aN+ValwleIAOwabCoIDfJ4gBU+m kEIJbRntVfe4UbWrizrHdxSoNz0R9jfphhDmbhz5iCc/ThtHvp2g7nA9mFTjWtgc s7i+/divwiSfGOAnamSo+uX09wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJfxdk/j BFe+YyihSUbcaLuW8vAuMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NjYvNjIzQ0Q2RTQ4NEYzMTFFQUIxRkJCQjE4QzRGOUFFMDIvQ0YyRTk5Qzg4 QzA5MTFFQUFGRjZDRDI3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy9JLMA0GCSqGSIb3DQEBCwUAA4IBAQCdXoYmL4ITDniP1VqJ4NRk 7L/caa+oAxB/knAMZa4WyC72jEeyfX60W6nIiOi/iL5n0hfoB8kjItHoMM0U41Qn 5lilsCPfCfXCqPGbxR7YzFRhenmX4ITgZRh9pi9Ey2nzYMkxp2TPOskiVftlMMpc 772zzzyeKopWZMjddDYBXGYTAdfsRAsYY7yoJIWqjGdaQcTl0YUGWheFxRHdhA1G zDxDKhMbQan6/C1gPLNGlQbTL5be+MI8Vc56u/b1swR4EIBDFWct/WzqvmmwVdTZ ZQFlyrtb/k+1p9vOYkmmq6oKtOf/e+IrxuUrwUSndCpY/SdYhzYQ0ViYM7RJ9Zko -----END CERTIFICATE-----Generated at Thu Mar 26 01:55:12 2026 by rpki-client