$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/9EA7B7D8A63911ED874E6630C4F9AE02.roa File: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (raw, json) Hash identifier: DHZLT6kRWzcG3+2PiBnd4pNnMfMfwzitkH/VyFmiyhk= Subject key identifier: 4B:FA:82:85:2A:6B:2C:80:71:35:05:95:D9:E7:04:EA:0E:B0:AE:96 Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 025D Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/9EA7B7D8A63911ED874E6630C4F9AE02.roa Signing time: Tue 03 Mar 2026 02:36:20 +0000 ROA not before: Tue 03 Mar 2026 02:36:20 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 400496 IP address blocks: 203.23.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 605 (0x25d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Mar 3 02:36:20 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a64924-4f6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ba:92:c2:e6:d1:30:d9:76:87:f7:aa:a3:c0: 4d:98:45:f4:25:a6:a0:f9:37:84:ab:6d:33:c4:eb: 95:23:a3:3b:9e:d8:d1:af:9e:8a:20:0d:a2:d7:5f: a6:02:19:81:64:ff:b7:37:bb:b4:e1:8a:97:d6:74: 91:1a:2e:7d:ec:74:70:66:b4:53:97:fd:1c:d6:cb: e6:9e:98:c5:bc:96:27:2b:a8:55:f4:42:de:b6:42: e9:5f:fe:49:c6:73:9a:16:52:a7:b6:d5:04:b0:9e: fc:cc:00:ae:05:bc:ee:74:76:13:b0:6d:53:08:eb: c3:f2:ec:2c:76:ec:dc:67:99:01:35:9f:20:8e:f5: ff:df:f3:a4:1c:e8:9e:e6:97:8b:c1:ee:bc:bf:85: 78:7e:cb:fe:17:0b:33:d7:16:93:01:3d:08:11:d9: 25:b6:5b:6d:89:93:83:a7:53:5e:37:47:5d:c1:94: 01:37:84:24:48:9a:30:ab:dc:2d:c9:4b:d8:bf:36: 2d:36:0f:3d:c9:28:49:32:bc:24:70:de:6a:46:85: 4a:ef:3b:6e:8d:14:a2:7f:9e:80:25:1a:7b:b4:d3: 81:f1:37:83:40:68:13:d7:32:22:dd:e8:51:fb:53: 4d:2b:0e:75:e6:d0:f6:d7:8e:64:a1:4a:0b:01:cc: 41:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:FA:82:85:2A:6B:2C:80:71:35:05:95:D9:E7:04:EA:0E:B0:AE:96 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/9EA7B7D8A63911ED874E6630C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.23.161.0/24 Signature Algorithm: sha256WithRSAEncryption c2:31:e5:de:bb:21:ed:2b:2d:b4:c3:86:ce:28:1e:1d:a1:12: cf:a2:29:39:73:15:90:38:08:c1:a5:1a:ca:8f:09:cd:82:7a: 9f:3f:1d:f8:41:77:a7:39:d4:ba:ce:b8:36:ad:a5:ea:2e:d7: 19:9f:55:00:98:fe:c5:35:61:0e:cc:00:a9:bf:99:97:8e:a5: cc:03:0e:f8:09:7b:ba:06:84:b4:39:32:f7:66:f0:a3:0b:58: 29:c9:dd:55:39:bb:e5:48:14:83:ac:30:d1:9a:e4:6e:78:66: 50:bb:97:74:c0:eb:63:10:ed:64:20:c6:65:9a:b5:f7:58:15: ca:08:5c:c6:2f:12:29:0c:85:28:aa:b0:43:b1:ee:a9:7f:a4: 6b:a2:4b:d1:14:4d:48:e4:68:7b:59:39:19:df:96:c8:85:b5: 17:1b:5e:4d:ee:3a:e6:13:85:4a:aa:f1:76:f0:ac:0c:81:cd: 2d:d7:d7:1a:8c:69:6b:cc:06:26:c0:95:e7:f5:46:39:7c:3d: 02:aa:6b:22:5e:4e:a5:66:77:be:84:6d:4b:5c:2a:60:3f:7b: a5:85:7f:9c:4e:9d:65:35:17:a6:b3:22:06:06:3b:67:0b:83: 93:3c:0b:3d:2a:0d:3c:c7:18:5f:b3:02:4a:30:a7:cc:ec:1f: cc:ed:b6:85 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwMzAzMDIzNjIwWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NDkyNC00ZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybqSwubRMNl2h/eqo8BNmEX0Jaag+TeEq20zxOuVI6M7ntjRr56KIA2i11+m AhmBZP+3N7u04YqX1nSRGi597HRwZrRTl/0c1svmnpjFvJYnK6hV9ELetkLpX/5J xnOaFlKnttUEsJ78zACuBbzudHYTsG1TCOvD8uwsduzcZ5kBNZ8gjvX/3/OkHOie 5peLwe68v4V4fsv+Fwsz1xaTAT0IEdkltlttiZODp1NeN0ddwZQBN4QkSJowq9wt yUvYvzYtNg89yShJMrwkcN5qRoVK7ztujRSif56AJRp7tNOB8TeDQGgT1zIi3ehR +1NNKw515tD2145koUoLAcxBJQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFEv6goUq ayyAcTUFldnnBOoOsK6WMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUyNDAvMjdEREU3RDg5QjdEMTFFREIzQzMzRjVEQzRGOUFFMDIvOUVBN0I3RDhB NjM5MTFFRDg3NEU2NjMwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxehMA0GCSqGSIb3DQEBCwUAA4IBAQDCMeXeuyHtKy20w4bOKB4d oRLPoik5cxWQOAjBpRrKjwnNgnqfPx34QXenOdS6zrg2raXqLtcZn1UAmP7FNWEO zACpv5mXjqXMAw74CXu6BoS0OTL3ZvCjC1gpyd1VObvlSBSDrDDRmuRueGZQu5d0 wOtjEO1kIMZlmrX3WBXKCFzGLxIpDIUoqrBDse6pf6RrokvRFE1I5Gh7WTkZ35bI hbUXG15N7jrmE4VKqvF28KwMgc0t19cajGlrzAYmwJXn9UY5fD0CqmsiXk6lZne+ hG1LXCpgP3ulhX+cTp1lNRemsyIGBjtnC4OTPAs9Kg08xxhfswJKMKfM7B/M7baF -----END CERTIFICATE-----Generated at Fri Mar 27 04:47:34 2026 by rpki-client