$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/095B5200A5B111F09CCCE85FC4F9AE02.roa File: 095B5200A5B111F09CCCE85FC4F9AE02.roa (raw, json) Hash identifier: ZfwhMy+pX5aCJlJ8qOMcY95LqfN6RcWNdworol/4Bvs= Subject key identifier: 04:B6:F2:DA:F1:AF:CA:67:15:EC:A5:B8:C4:9A:FA:64:CA:6C:8A:90 Certificate issuer: /CN=A91B3247/serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Certificate serial: 81 Authority key identifier: 0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/095B5200A5B111F09CCCE85FC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:24:21 +0000 ROA not before: Fri 10 Oct 2025 08:13:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154112 IP address blocks: 203.9.215.0/24 maxlen: 24 2001:df5:f241::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3247, serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Validity Not Before: Oct 10 08:13:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58f85-a710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f1:4f:4f:66:f9:4a:2b:34:4e:83:d0:0c:40: 9c:eb:6e:05:c9:19:4a:06:0c:26:3d:bd:44:ba:6b: 7e:0c:84:05:fe:0d:2c:f9:4d:48:34:28:43:3d:78: 72:77:ae:b8:96:94:96:5b:a8:0f:91:0b:bb:06:42: 36:cd:3b:75:05:43:38:fc:5d:2b:ab:92:ee:6a:fd: 5b:0b:8e:67:e8:04:52:87:12:a8:c0:3e:54:e8:73: ce:22:42:f8:3f:5a:d1:ff:21:0c:41:bf:52:d7:c0: a7:06:3c:9a:48:9a:20:e3:ef:2f:29:7b:e6:11:e5: 08:e6:08:51:0f:5e:85:1a:49:1f:a5:53:6c:af:73: ea:34:1c:b2:6f:43:2e:a1:bb:57:c5:8a:37:78:0b: 89:b2:88:ec:57:2d:d7:7b:b7:5a:2e:e5:cb:bb:db: 84:7b:fe:79:68:b8:38:26:b5:1f:9f:f1:c0:77:35: d3:ae:e2:0d:68:8a:48:6b:a0:63:81:b0:40:a9:9d: 73:39:9a:4a:ed:e4:d3:5e:30:01:b4:1b:c0:5d:0e: 44:98:2c:7a:cf:f6:12:9e:e2:c6:de:4d:5d:86:cd: 70:1a:40:28:81:c2:bc:fc:04:2e:af:97:28:01:51: 1d:26:70:be:0c:76:fa:98:31:cc:34:c3:23:0f:2b: 65:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:B6:F2:DA:F1:AF:CA:67:15:EC:A5:B8:C4:9A:FA:64:CA:6C:8A:90 X509v3 Authority Key Identifier: keyid:0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/095B5200A5B111F09CCCE85FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.9.215.0/24 IPv6: 2001:df5:f241::/48 Signature Algorithm: sha256WithRSAEncryption 8d:b3:af:03:a3:9e:ae:be:a4:f4:87:18:94:c5:a8:15:2a:b2: e8:25:83:e5:f4:75:08:da:2e:8c:1c:90:2d:bc:02:2d:64:fa: 3a:12:78:dc:e6:07:12:ce:90:20:38:48:37:46:58:60:a6:94: 99:c3:5f:b5:5b:53:70:23:22:da:86:78:2e:4b:6a:62:eb:96: 01:96:a8:c2:63:7c:62:cf:d9:58:3c:86:29:ea:18:cf:c6:36: 71:d7:51:95:b2:b0:c7:ed:bd:b2:a5:0d:55:bf:b3:2f:0f:96: 9e:d0:91:8c:53:fe:ca:da:29:24:b1:b4:ce:f8:68:5d:b5:83: e5:30:86:3a:6d:83:27:36:3f:44:9d:b5:9e:5d:39:c7:17:bb: 5c:ec:af:3d:e2:96:3f:38:ef:aa:9c:20:48:92:13:eb:78:a0: ad:91:5a:ea:e7:7b:66:2d:5c:9c:00:0e:d0:cb:36:d4:85:5d: eb:9e:52:e0:90:07:a5:d9:db:dd:8f:d9:18:4b:27:ad:6f:2b: ce:62:14:ba:25:7e:14:3b:fc:df:d2:74:bf:02:2d:6c:fa:cd: 24:fe:a0:3b:e4:23:77:bc:33:ac:a2:99:f6:f6:0b:ce:30:ab: a8:e6:f9:32:91:1f:53:81:70:2d:67:8a:40:7a:d2:37:63:7d: ca:37:7b:51 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMyNDcxMTAvBgNVBAUTKDBEREFCQkYzMUVFQzY4NzY2RUY2NjlBRjk3MzUyNDBD Mzg5OTM0NTkwHhcNMjUxMDEwMDgxMzQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGY4NS1hNzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PFPT2b5Sis0ToPQDECc624FyRlKBgwmPb1Eumt+DIQF/g0s+U1INChDPXhy d664lpSWW6gPkQu7BkI2zTt1BUM4/F0rq5Luav1bC45n6ARShxKowD5U6HPOIkL4 P1rR/yEMQb9S18CnBjyaSJog4+8vKXvmEeUI5ghRD16FGkkfpVNsr3PqNByyb0Mu obtXxYo3eAuJsojsVy3Xe7daLuXLu9uEe/55aLg4JrUfn/HAdzXTruINaIpIa6Bj gbBAqZ1zOZpK7eTTXjABtBvAXQ5EmCx6z/YSnuLG3k1dhs1wGkAogcK8/AQur5co AVEdJnC+DHb6mDHMNMMjDytl0wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAS28trx r8pnFeyluMSa+mTKbIqQMB8GA1UdIwQYMBaAFA3au/Me7Gh2bvZpr5c1JAw4mTRZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzI0Ny8zMjA0NEJGRTcx RUUxMUYwOTNDMjJFMThDNEY5QUUwMi9EZHE3OHg3c2FIWnU5bW12bHpVa0REaVpO RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RkcTc4eDdzYUhadTltbXZselVrRERpWk5Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjMyNDcvMzIwNDRCRkU3MUVFMTFGMDkzQzIyRTE4QzRGOUFFMDIvMDk1QjUyMDBB NUIxMTFGMDlDQ0NFODVGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAywnXMA8EAgACMAkDBwAgAQ318kEwDQYJKoZIhvcNAQELBQADggEB AI2zrwOjnq6+pPSHGJTFqBUqsuglg+X0dQjaLowckC28Ai1k+joSeNzmBxLOkCA4 SDdGWGCmlJnDX7VbU3AjItqGeC5LamLrlgGWqMJjfGLP2Vg8hinqGM/GNnHXUZWy sMftvbKlDVW/sy8Plp7QkYxT/sraKSSxtM74aF21g+Uwhjptgyc2P0SdtZ5dOccX u1zsrz3ilj8476qcIEiSE+t4oK2RWurne2YtXJwADtDLNtSFXeueUuCQB6XZ292P 2RhLJ61vK85iFLolfhQ7/N/SdL8CLWz6zST+oDvkI3e8M6yimfb2C84wq6jm+TKR H1OBcC1nikB60jdjfco3e1E= -----END CERTIFICATE-----Generated at Thu Mar 26 07:13:12 2026 by rpki-client