$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/9FBA5FCCA63911ED874E6630C4F9AE02.roa File: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (raw, json) Hash identifier: ClwvMUH1LVLekjvPCckwoGuRynW5TD4w0EqiLo6Abj0= Subject key identifier: 97:C3:CF:A5:D8:CF:CE:81:A9:9A:5F:75:0C:8B:32:DA:00:C4:25:07 Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 025B Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/9FBA5FCCA63911ED874E6630C4F9AE02.roa Signing time: Tue 03 Mar 2026 02:36:16 +0000 ROA not before: Tue 03 Mar 2026 02:36:16 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 19625 IP address blocks: 203.11.220.0/24 maxlen: 24 203.23.160.0/24 maxlen: 24 203.23.162.0/24 maxlen: 24 203.23.163.0/24 maxlen: 24 203.23.165.0/24 maxlen: 24 203.23.166.0/24 maxlen: 24 203.23.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 01:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Mar 3 02:36:16 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a64920-c4d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c3:4f:13:68:eb:6c:72:ec:b4:38:30:58:55: a0:1f:b5:a9:1c:39:74:83:69:02:cc:8e:41:fc:6b: 81:f0:a2:5a:72:4c:6c:78:40:97:ad:57:8e:20:bc: 6d:c1:f9:a0:e8:83:4d:f2:37:91:8a:13:c6:40:61: 3b:7f:c9:16:fb:01:03:f8:c7:17:2f:51:e2:90:1e: 70:17:90:84:1e:7c:4f:67:c3:07:97:94:86:59:6f: 19:e3:b1:96:b1:6e:5e:4e:49:0a:f7:3e:fe:83:bf: 01:3b:2d:94:14:b9:61:65:d3:2c:48:38:3a:e7:f0: be:36:50:a2:2d:8a:b4:c2:e0:cf:6b:fb:a7:f0:ac: d8:6f:d3:66:e3:af:5a:9d:2c:cd:71:72:14:af:46: e5:20:17:b4:28:cc:de:84:63:63:56:80:d4:08:d6: 17:c9:e4:e3:df:cb:0a:06:6c:f8:26:1b:1c:73:a6: c0:f3:86:7c:24:76:42:1a:8a:98:99:32:23:3c:1b: 98:94:c6:12:ba:ec:7f:d8:e5:7c:81:c1:79:d5:0d: 27:5e:63:d8:18:a4:43:ef:49:bd:93:ef:e0:fb:f3: 17:37:bb:25:a2:dd:dc:f0:33:35:63:10:cf:41:bc: 49:2c:29:0d:7b:7c:d8:9e:74:88:2d:97:75:a4:39: 32:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C3:CF:A5:D8:CF:CE:81:A9:9A:5F:75:0C:8B:32:DA:00:C4:25:07 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/9FBA5FCCA63911ED874E6630C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.11.220.0/24 203.23.160.0/24 203.23.162.0/23 203.23.165.0-203.23.167.255 Signature Algorithm: sha256WithRSAEncryption 4d:fc:b3:f4:53:1e:19:9e:6e:33:9f:a6:63:a3:53:fd:30:0f: 6e:6c:0e:6c:6f:a5:fa:be:46:1b:97:6a:29:41:24:72:6a:38: c5:bb:8e:55:f5:bb:8a:1a:15:38:95:b0:2d:1b:74:40:e7:ae: 2f:76:2b:81:9f:bb:6f:48:b6:9d:19:8b:25:5a:8e:2a:5d:33: b6:10:f7:3f:53:6e:8e:67:00:79:36:2a:da:aa:87:84:64:51: 54:b8:b9:eb:88:38:28:6b:0a:93:6c:6d:3f:9d:4f:fb:a1:f2: 67:2f:34:68:59:ec:ef:07:2b:ad:6f:28:a5:e8:96:01:b7:4e: 46:fd:f0:b9:2d:08:13:e3:39:c0:0c:6a:dd:c2:81:3b:24:80: 01:5d:9a:67:94:24:ac:dc:fd:d0:29:8d:d0:77:8f:b4:31:cb: 90:fd:13:18:57:21:1a:b7:70:f0:57:39:05:76:ff:c8:70:28: df:f3:6b:26:ae:58:4f:e1:bd:df:af:16:80:62:0a:6b:0e:f3: 3f:65:79:1b:a9:d5:45:05:2f:de:35:45:2d:b6:82:78:e2:fb: 9e:75:e8:1f:87:01:32:b8:ea:c5:4b:eb:c8:2b:dc:cc:6c:7a: 9c:3c:1f:bd:58:10:e5:c9:06:fe:43:1d:ec:c1:89:71:f6:20: 5f:1d:0a:9a -----BEGIN CERTIFICATE----- MIIFVjCCBD6gAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwMzAzMDIzNjE2WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NDkyMC1jNGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsNPE2jrbHLstDgwWFWgH7WpHDl0g2kCzI5B/GuB8KJackxseECXrVeOILxt wfmg6INN8jeRihPGQGE7f8kW+wED+McXL1HikB5wF5CEHnxPZ8MHl5SGWW8Z47GW sW5eTkkK9z7+g78BOy2UFLlhZdMsSDg65/C+NlCiLYq0wuDPa/un8KzYb9Nm469a nSzNcXIUr0blIBe0KMzehGNjVoDUCNYXyeTj38sKBmz4Jhscc6bA84Z8JHZCGoqY mTIjPBuYlMYSuux/2OV8gcF51Q0nXmPYGKRD70m9k+/g+/MXN7slot3c8DM1YxDP QbxJLCkNe3zYnnSILZd1pDkyyQIDAQABo4ICejCCAnYwHQYDVR0OBBYEFJfDz6XY z86BqZpfdQyLMtoAxCUHMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUyNDAvMjdEREU3RDg5QjdEMTFFREIzQzMzRjVEQzRGOUFFMDIvOUZCQTVGQ0NB NjM5MTFFRDg3NEU2NjMwQzRGOUFFMDIucm9hMDkGCCsGAQUFBwEHAQH/BCowKDAm BAIAATAgAwQAywvcAwQAyxegAwQByxeiMAwDBADLF6UDBAPLF6AwDQYJKoZIhvcN AQELBQADggEBAE38s/RTHhmebjOfpmOjU/0wD25sDmxvpfq+RhuXailBJHJqOMW7 jlX1u4oaFTiVsC0bdEDnri92K4Gfu29Itp0ZiyVajipdM7YQ9z9Tbo5nAHk2Ktqq h4RkUVS4ueuIOChrCpNsbT+dT/uh8mcvNGhZ7O8HK61vKKXolgG3Tkb98LktCBPj OcAMat3CgTskgAFdmmeUJKzc/dApjdB3j7Qxy5D9ExhXIRq3cPBXOQV2/8hwKN/z ayauWE/hvd+vFoBiCmsO8z9leRup1UUFL941RS22gnji+5516B+HATK46sVL68gr 3Mxsepw8H71YEOXJBv5DHezBiXH2IF8dCpo= -----END CERTIFICATE-----Generated at Thu Mar 26 20:26:27 2026 by rpki-client