$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa File: 0A956A80B48711EC83327546C4F9AE02.roa (raw, json) Hash identifier: DWDLfS9VFoRUspo4gPt0SLH/400cssY5io0TF9oRBK0= Subject key identifier: 7D:FE:E0:8B:BA:8E:92:92:0E:48:29:F5:C5:6A:D9:66:CA:DE:47:B7 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 352C Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:12:19 +0000 ROA not before: Mon 02 Mar 2026 15:12:19 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 55328 IP address blocks: 175.176.208.0/21 maxlen: 24 203.34.75.0/24 maxlen: 24 203.62.198.0/24 maxlen: 24 2401:7200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 15:05:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13612 (0x352c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Mar 2 15:12:19 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a5a8d3-18f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:71:04:85:1b:57:27:20:b1:c8:68:60:00:14: cf:90:e0:18:bc:43:ca:e0:30:b9:c5:0c:80:ed:56: bb:f6:ba:bd:b0:ce:ce:d4:24:5d:28:5e:30:ff:70: 01:d2:99:49:d3:08:3a:51:39:40:c7:49:3b:71:5e: 75:d1:64:92:6d:09:e9:05:8d:9a:d5:6e:68:e4:6d: 3d:9d:60:29:99:23:13:52:63:5a:e9:fa:2b:23:99: d2:8c:59:37:25:03:4f:68:7c:06:f1:7e:03:ff:a9: e8:8c:7d:35:09:20:2c:c0:75:f9:20:36:01:a7:ef: 2a:22:4a:b4:12:9a:ca:09:c4:42:50:8c:35:36:49: 43:43:2d:90:fe:02:a6:ab:c8:3b:40:52:f1:e5:32: e2:c3:ee:41:f5:7e:0c:5c:4a:d8:f7:ea:42:2a:11: 0e:1b:d0:88:f3:d8:b5:2d:ee:0c:cc:92:83:02:a8: 86:d2:98:47:49:48:be:b1:2e:93:7c:b3:d4:00:25: e3:86:ea:07:37:ca:1b:b0:b7:80:da:10:9e:a0:5e: d0:07:d5:13:73:96:54:bb:39:88:4d:78:ad:48:e3: a1:a9:8b:a0:34:6e:37:a6:70:f5:a2:3e:77:aa:45: 0e:84:b1:9f:e4:94:b9:c9:90:02:91:23:9e:cb:73: ea:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FE:E0:8B:BA:8E:92:92:0E:48:29:F5:C5:6A:D9:66:CA:DE:47:B7 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 175.176.208.0/21 203.34.75.0/24 203.62.198.0/24 IPv6: 2401:7200::/32 Signature Algorithm: sha256WithRSAEncryption 18:19:24:35:63:56:3e:ec:8d:cb:91:92:94:ff:a0:e1:63:16: e1:0f:0c:42:4b:6b:ff:46:8d:6f:86:1b:35:16:c8:ab:c8:6a: ff:66:33:11:7a:16:d9:e5:9f:47:f7:32:03:4c:74:ab:40:58: f5:72:1f:81:6a:60:a0:a7:46:49:e7:fc:ba:34:85:2a:68:1c: f3:06:a9:c1:d0:f6:14:30:c6:48:19:65:8f:71:20:d7:e7:0a: ef:be:7f:fe:ae:4c:44:5e:8a:e4:b7:4a:a0:65:39:e6:25:69: 6b:cd:8e:b4:b7:3b:c0:9a:dc:1c:ca:04:64:17:d3:f0:a9:a8: da:c1:79:65:70:23:2b:bc:4a:8c:b1:7b:bd:73:ed:a3:f9:83: ce:fb:f6:2c:c8:3a:f3:44:bd:ff:ff:a4:ca:3c:a6:cb:f4:7a: 0b:08:22:46:91:1d:fe:2c:23:2b:65:dc:f5:e2:fe:21:8b:69: 94:47:96:39:3c:ae:30:11:f6:17:23:f2:76:f2:da:44:ce:e7: 68:87:6b:c9:9c:cc:90:73:87:d8:fb:70:75:d7:4d:a5:8e:3d: f4:7d:76:ec:9e:0d:c6:3a:b1:91:ec:d4:27:10:74:61:d7:67: 67:6f:de:9c:e7:7e:92:40:df:04:67:c3:a8:bd:7f:87:fa:d0: 53:5f:f0:42 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICNSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjYwMzAyMTUxMjE5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YThkMy0xOGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3EEhRtXJyCxyGhgABTPkOAYvEPK4DC5xQyA7Va79rq9sM7O1CRdKF4w/3AB 0plJ0wg6UTlAx0k7cV510WSSbQnpBY2a1W5o5G09nWApmSMTUmNa6forI5nSjFk3 JQNPaHwG8X4D/6nojH01CSAswHX5IDYBp+8qIkq0EprKCcRCUIw1NklDQy2Q/gKm q8g7QFLx5TLiw+5B9X4MXErY9+pCKhEOG9CI89i1Le4MzJKDAqiG0phHSUi+sS6T fLPUACXjhuoHN8obsLeA2hCeoF7QB9UTc5ZUuzmITXitSOOhqYugNG43pnD1oj53 qkUOhLGf5JS5yZACkSOey3PqCQIDAQABo4ICezCCAncwHQYDVR0OBBYEFH3+4Iu6 jpKSDkgp9cVq2WbK3ke3MB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYwRTgvNDU3OTZBRDIxREEzMTFFMjlGRkI4Qzk4MDhCMDJDRDIvMEE5NTZBODBC NDg3MTFFQzgzMzI3NTQ2QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQDr7DQAwQAyyJLAwQAyz7GMA0EAgACMAcDBQAkAXIAMA0GCSqGSIb3 DQEBCwUAA4IBAQAYGSQ1Y1Y+7I3LkZKU/6DhYxbhDwxCS2v/Ro1vhhs1FsiryGr/ ZjMRehbZ5Z9H9zIDTHSrQFj1ch+BamCgp0ZJ5/y6NIUqaBzzBqnB0PYUMMZIGWWP cSDX5wrvvn/+rkxEXorkt0qgZTnmJWlrzY60tzvAmtwcygRkF9PwqajawXllcCMr vEqMsXu9c+2j+YPO+/YsyDrzRL3//6TKPKbL9HoLCCJGkR3+LCMrZdz14v4hi2mU R5Y5PK4wEfYXI/J28tpEzudoh2vJnMyQc4fY+3B1102ljj30fXbsng3GOrGR7NQn EHRh12dnb96c536SQN8EZ8OovX+H+tBTX/BC -----END CERTIFICATE-----Generated at Thu Mar 26 16:53:31 2026 by rpki-client