$ rpki-client -vvf rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa File: F9B10D46ADAA11ED810C6C45C4F9AE02.roa (raw, json) Hash identifier: I6Sbyec9ZcJ6A7q7pEgIDEKokkMMztzY/bH/OFuVx6g= Subject key identifier: 1A:4F:48:13:C1:5C:05:0A:B0:E5:9D:85:12:93:1C:41:23:D0:D5:F1 Certificate issuer: /CN=A91B834D/serialNumber=D0E54405B03D3D123459DE01BB400F4D7A8329D0 Certificate serial: 024E Authority key identifier: D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:58:31 +0000 ROA not before: Wed 11 Feb 2026 02:22:07 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 9438 IP address blocks: 203.13.33.0/24 maxlen: 24 203.17.122.0/24 maxlen: 24 203.18.16.0/24 maxlen: 24 203.18.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B834D, serialNumber=D0E54405B03D3D123459DE01BB400F4D7A8329D0 Validity Not Before: Feb 11 02:22:07 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a437f6-825c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:81:43:50:ee:88:f3:1b:e9:c1:99:02:af:52: c0:d0:79:ff:90:bf:56:57:c3:a8:1f:ae:1c:d7:4d: 74:65:a9:d2:58:b6:dc:ed:fd:2c:06:bb:77:89:10: 9d:02:58:97:8a:30:ba:f3:d1:e1:76:99:66:c5:e2: 56:03:21:05:08:39:15:a6:6d:84:be:20:68:87:80: 90:e0:07:74:49:7b:79:57:0b:ee:ab:7e:7f:d1:22: d9:33:5d:4b:c2:2c:a6:3d:af:8f:87:8f:5f:5a:39: 10:0c:d7:9e:30:03:50:3c:d4:0a:69:0c:10:73:b5: 6a:d6:69:25:43:95:98:4e:45:ca:23:9e:0e:44:2f: 59:a7:32:63:c7:85:7f:35:3f:ae:2f:fa:c0:2d:ea: c7:21:e9:85:24:56:ca:b6:bc:ea:b9:10:a1:45:0a: 66:e0:17:59:f9:7b:59:70:02:e6:b5:54:28:75:61: 74:ad:96:8f:87:ec:95:8c:c7:56:8c:39:4b:b4:50: c9:fa:10:a4:5f:a0:df:b7:db:1a:3b:22:73:b6:46: 22:00:65:42:c8:c1:9c:9b:1d:b0:78:b0:21:1f:c6: 90:bc:80:9c:10:c1:be:e7:e9:92:91:3f:f0:a2:3f: 6e:8d:04:e9:55:09:04:69:3a:08:e2:7c:c5:d8:09: 02:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4F:48:13:C1:5C:05:0A:B0:E5:9D:85:12:93:1C:41:23:D0:D5:F1 X509v3 Authority Key Identifier: keyid:D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.13.33.0/24 203.17.122.0/24 203.18.16.0/23 Signature Algorithm: sha256WithRSAEncryption bd:c0:82:17:aa:2f:51:93:1e:cb:4d:32:0f:89:03:4f:55:7c: e0:81:d7:19:90:00:b0:10:62:fb:2a:c1:42:d3:16:df:fd:71: 4e:1b:15:f7:8c:81:04:91:fe:00:92:28:9e:76:4a:79:c7:8e: 27:8f:87:cf:3d:33:14:b3:34:f0:0d:c4:cc:e0:e0:a8:93:55: 7a:35:8f:89:15:c7:2b:3c:35:59:35:81:90:40:c9:24:50:fb: e1:09:7b:9f:3d:6c:65:3d:85:48:55:f3:b3:56:36:ba:50:8e: 23:9e:ba:06:55:a7:fa:08:d9:68:7a:6e:62:c6:99:2d:56:cf: 59:b4:8d:95:9e:57:03:03:bf:90:fe:26:77:2d:16:5c:26:0c: 34:49:5b:22:cd:8f:75:f3:42:fe:fc:26:86:b2:4d:8f:b7:d5: a8:51:48:bf:12:78:29:3b:ea:d6:6e:d7:7b:3a:46:d8:c9:8b: ff:ec:74:87:5a:06:30:d0:67:47:52:0e:1e:66:07:36:53:22: e9:5d:46:80:bf:c6:a4:d3:7b:35:b3:f4:dd:7c:39:2f:80:51: b0:80:c1:89:a9:bb:4d:ae:3f:21:9b:60:58:94:4b:8c:01:33: 76:d7:0f:78:8d:e5:19:01:07:32:f0:b0:5c:ba:40:5a:7b:f1: 26:d6:ec:07 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgzNEQxMTAvBgNVBAUTKEQwRTU0NDA1QjAzRDNEMTIzNDU5REUwMUJCNDAwRjRE N0E4MzI5RDAwHhcNMjYwMjExMDIyMjA3WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzdmNi04MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YFDUO6I8xvpwZkCr1LA0Hn/kL9WV8OoH64c1010ZanSWLbc7f0sBrt3iRCd AliXijC689HhdplmxeJWAyEFCDkVpm2EviBoh4CQ4Ad0SXt5Vwvuq35/0SLZM11L wiymPa+Ph49fWjkQDNeeMANQPNQKaQwQc7Vq1mklQ5WYTkXKI54ORC9ZpzJjx4V/ NT+uL/rALerHIemFJFbKtrzquRChRQpm4BdZ+XtZcALmtVQodWF0rZaPh+yVjMdW jDlLtFDJ+hCkX6Dft9saOyJztkYiAGVCyMGcmx2weLAhH8aQvICcEMG+5+mSkT/w oj9ujQTpVQkEaToI4nzF2AkC+wIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFBpPSBPB XAUKsOWdhRKTHEEj0NXxMB8GA1UdIwQYMBaAFNDlRAWwPT0SNFneAbtAD016gynQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODM0RC8zQTJDNTE5NkFE QTExMUVEQUI2REY0MkRDNEY5QUUwMi8wT1ZFQmJBOVBSSTBXZDRCdTBBUFRYcURL ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBPVkVCYkE5UFJJMFdkNEJ1MEFQVFhxREtkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgzNEQvM0EyQzUxOTZBREExMTFFREFCNkRGNDJEQzRGOUFFMDIvRjlCMTBENDZB REFBMTFFRDgxMEM2QzQ1QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAyw0hAwQAyxF6AwQByxIQMA0GCSqGSIb3DQEBCwUAA4IBAQC9wIIX qi9Rkx7LTTIPiQNPVXzggdcZkACwEGL7KsFC0xbf/XFOGxX3jIEEkf4Akiiedkp5 x44nj4fPPTMUszTwDcTM4OCok1V6NY+JFccrPDVZNYGQQMkkUPvhCXufPWxlPYVI VfOzVja6UI4jnroGVaf6CNloem5ixpktVs9ZtI2VnlcDA7+Q/iZ3LRZcJgw0SVsi zY9180L+/CaGsk2Pt9WoUUi/EngpO+rWbtd7OkbYyYv/7HSHWgYw0GdHUg4eZgc2 UyLpXUaAv8ak03s1s/TdfDkvgFGwgMGJqbtNrj8hm2BYlEuMATN21w94jeUZAQcy 8LBcukBae/Em1uwH -----END CERTIFICATE-----Generated at Thu Mar 26 11:24:28 2026 by rpki-client