$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa File: 25414F2653C111EFAFCEBF4BC4F9AE02.roa (raw, json) Hash identifier: rQPLuDedWDyQSG967e0npTQmvnHAr1Plxeiiz+JB7Bc= Subject key identifier: 87:7B:C8:1C:46:29:2D:1E:FB:D0:B6:13:40:C8:C5:12:48:00:7E:B1 Certificate issuer: /CN=A91BD6D4/serialNumber=6528A61459599C060197EB59A9FC78E665849755 Certificate serial: 0133 Authority key identifier: 65:28:A6:14:59:59:9C:06:01:97:EB:59:A9:FC:78:E6:65:84:97:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:23:45 +0000 ROA not before: Tue 23 Sep 2025 06:25:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58713 IP address blocks: 203.28.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.crl rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD6D4, serialNumber=6528A61459599C060197EB59A9FC78E665849755 Validity Not Before: Sep 23 06:25:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58f61-3848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1a:66:5f:3b:4e:11:a8:1a:bc:f7:2f:83:59: 4b:bf:5d:d9:e6:b1:af:a2:25:11:bc:c8:4e:8e:bd: 1d:96:44:9a:3f:07:29:48:44:8d:9c:8d:3e:3a:7c: 1b:34:fe:bd:8e:1f:39:6c:82:8a:76:18:ea:7b:16: 28:bb:ce:7d:7e:69:13:ca:55:39:fb:7f:b8:e0:97: 92:95:3c:0b:2e:09:6b:70:4d:cf:1e:ff:a2:8d:fa: 89:b9:20:30:79:be:53:a2:25:ab:b8:88:3b:37:6a: df:6d:66:bf:50:54:c1:a7:2e:6e:30:b7:0a:24:9b: d9:71:0b:3f:89:31:45:fc:25:60:5f:54:15:67:40: 43:b7:6e:8f:2d:e8:d4:40:bf:32:89:db:a3:b2:c2: db:01:98:6d:94:37:b5:5a:a3:b9:1c:04:2b:e4:96: 3c:80:7b:ae:ea:fb:f7:b7:8e:aa:f0:aa:c3:05:56: 71:d4:b7:35:42:71:3a:2a:73:e9:dd:9b:89:80:b6: 92:2f:40:2c:fb:b5:cd:5a:80:a3:8b:7b:61:a2:dd: 6e:e8:44:d4:73:94:a4:13:77:50:02:90:a8:02:d4: 5f:32:79:94:a4:35:c5:2d:1a:7b:7c:9e:81:01:77: 0a:70:e7:3f:34:57:94:d3:02:89:05:20:b9:c4:79: ca:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7B:C8:1C:46:29:2D:1E:FB:D0:B6:13:40:C8:C5:12:48:00:7E:B1 X509v3 Authority Key Identifier: keyid:65:28:A6:14:59:59:9C:06:01:97:EB:59:A9:FC:78:E6:65:84:97:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.28.22.0/24 Signature Algorithm: sha256WithRSAEncryption 37:77:23:16:72:92:37:79:4f:37:d8:10:f0:86:9c:df:5d:6c: 8f:f7:a7:cb:67:a4:56:13:72:75:f1:1b:1f:f0:03:ad:f8:4f: 4d:84:95:53:32:52:28:d2:a3:6a:6a:c9:ef:4a:8e:07:30:8a: 1f:94:92:60:40:6c:c9:f9:aa:9a:1e:0a:3a:dd:c0:c6:69:9c: da:f7:b4:f0:46:3c:f7:d7:8d:8b:1a:a5:00:e6:b3:d0:25:54: 5d:8a:9b:18:27:3e:62:78:e8:67:36:18:2b:5d:11:1c:a9:7a: 78:dd:aa:70:14:82:de:15:11:58:80:42:03:08:0e:4c:9b:c4: ca:01:c2:6a:a4:46:1b:3e:75:ea:51:46:95:f0:a0:57:a2:9f: cb:4a:46:3e:18:56:2c:c7:85:89:a5:14:6e:21:84:2d:29:9b: 2b:e5:58:c4:ea:ff:3c:96:67:6f:db:e5:04:11:62:1b:33:29: 65:af:da:e1:13:29:aa:49:6f:a7:8a:f5:a1:2f:2d:e5:51:b2: 6f:42:43:9c:61:cb:01:f5:b0:ce:60:39:8a:9e:a8:25:ad:96: 55:00:e2:a2:db:50:02:fe:b1:d1:ff:05:40:38:80:9d:b2:cd: 97:5e:75:ba:35:dc:ff:43:d5:f1:85:71:d8:09:fc:f4:f3:3c: c7:db:48:71 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ2RDQxMTAvBgNVBAUTKDY1MjhBNjE0NTk1OTlDMDYwMTk3RUI1OUE5RkM3OEU2 NjU4NDk3NTUwHhcNMjUwOTIzMDYyNTMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGY2MS0zODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BpmXztOEagavPcvg1lLv13Z5rGvoiURvMhOjr0dlkSaPwcpSESNnI0+Onwb NP69jh85bIKKdhjqexYou859fmkTylU5+3+44JeSlTwLLglrcE3PHv+ijfqJuSAw eb5ToiWruIg7N2rfbWa/UFTBpy5uMLcKJJvZcQs/iTFF/CVgX1QVZ0BDt26PLejU QL8yidujssLbAZhtlDe1WqO5HAQr5JY8gHuu6vv3t46q8KrDBVZx1Lc1QnE6KnPp 3ZuJgLaSL0As+7XNWoCji3thot1u6ETUc5SkE3dQApCoAtRfMnmUpDXFLRp7fJ6B AXcKcOc/NFeU0wKJBSC5xHnK9QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFId7yBxG KS0e+9C2E0DIxRJIAH6xMB8GA1UdIwQYMBaAFGUophRZWZwGAZfrWan8eOZlhJdV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDZENC9CMzQxRTAzMDUz OEQxMUVGODI0MDBCMUNDNEY5QUUwMi9aU2ltRkZsWm5BWUJsLXRacWZ4NDVtV0Vs MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pTaW1GRmxabkFZQmwtdFpxZng0NW1XRWwxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ2RDQvQjM0MUUwMzA1MzhEMTFFRjgyNDAwQjFDQzRGOUFFMDIvMjU0MTRGMjY1 M0MxMTFFRkFGQ0VCRjRCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxwWMA0GCSqGSIb3DQEBCwUAA4IBAQA3dyMWcpI3eU832BDwhpzf XWyP96fLZ6RWE3J18Rsf8AOt+E9NhJVTMlIo0qNqasnvSo4HMIoflJJgQGzJ+aqa Hgo63cDGaZza97TwRjz3142LGqUA5rPQJVRdipsYJz5ieOhnNhgrXREcqXp43apw FILeFRFYgEIDCA5Mm8TKAcJqpEYbPnXqUUaV8KBXop/LSkY+GFYsx4WJpRRuIYQt KZsr5VjE6v88lmdv2+UEEWIbMyllr9rhEymqSW+nivWhLy3lUbJvQkOcYcsB9bDO YDmKnqglrZZVAOKi21AC/rHR/wVAOICdss2XXnW6Ndz/Q9XxhXHYCfz08zzH20hx -----END CERTIFICATE-----Generated at Thu Mar 26 06:07:27 2026 by rpki-client