$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/DF277BF6108811F191FBC4DC323D8C67.roa File: DF277BF6108811F191FBC4DC323D8C67.roa (raw, json) Hash identifier: kvVPZoMA2NCQIEL7Qt23JRtXW0EGzPWXpSZ3FwVtIdw= Subject key identifier: E0:8C:26:A3:E0:84:D5:61:0A:E8:4E:94:78:1C:79:38:C0:1A:79:84 Certificate issuer: /CN=A91D6C43/serialNumber=D2C467BC3C626BC5E6AE1B2A4D235711D819CAE4 Certificate serial: 12 Authority key identifier: D2:C4:67:BC:3C:62:6B:C5:E6:AE:1B:2A:4D:23:57:11:D8:19:CA:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0sRnvDxia8XmrhsqTSNXEdgZyuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/DF277BF6108811F191FBC4DC323D8C67.roa Signing time: Wed 11 Mar 2026 08:44:39 +0000 ROA not before: Wed 11 Mar 2026 08:44:39 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 38578 IP address blocks: 203.153.4.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/0sRnvDxia8XmrhsqTSNXEdgZyuQ.crl rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/0sRnvDxia8XmrhsqTSNXEdgZyuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0sRnvDxia8XmrhsqTSNXEdgZyuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:13:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6C43, serialNumber=D2C467BC3C626BC5E6AE1B2A4D235711D819CAE4 Validity Not Before: Mar 11 08:44:39 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=69b12b77-5efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:70:33:99:f9:33:9b:b6:84:b9:7e:d4:5a:96: ac:7f:7c:7f:51:1c:2f:ec:8b:de:5c:07:f8:37:64: af:5a:11:e8:59:ca:0e:cc:69:e9:d9:35:88:2f:8d: db:0e:33:fc:86:b0:9a:0c:9d:15:f6:c0:57:14:cf: df:8e:79:cf:9b:2d:15:f7:13:a2:9f:7e:05:be:9b: f5:bc:21:0e:24:a4:86:d2:e5:98:b6:24:ce:d2:94: a5:df:45:04:f3:39:75:bf:2f:d6:29:05:59:cd:6b: ab:3c:5d:f3:72:71:aa:13:6d:f4:ba:b1:55:b1:82: 8a:2f:4e:4f:73:93:2f:55:51:b0:2f:ac:2c:20:1c: 3d:e8:40:b1:bd:7b:1e:12:7f:a9:39:1f:e5:e7:c4: 28:c6:e9:b4:bd:7e:00:1e:20:3b:8a:22:7f:cc:85: dc:b7:41:fd:42:53:d3:da:84:e7:ab:35:5f:6e:d2: f4:55:30:eb:42:6e:28:7f:a1:43:0f:6a:63:0e:a5: 17:71:ca:aa:45:94:b2:9e:4e:5b:69:4d:a6:fb:44: 13:38:cd:c2:a8:8a:d1:81:ec:cc:d9:2c:4b:61:33: 31:d0:b7:60:d5:c0:d0:a2:9d:fe:ca:95:d0:9b:32: f0:15:e3:2b:a7:9e:e2:77:77:8b:35:ee:1f:c8:07: 40:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:8C:26:A3:E0:84:D5:61:0A:E8:4E:94:78:1C:79:38:C0:1A:79:84 X509v3 Authority Key Identifier: keyid:D2:C4:67:BC:3C:62:6B:C5:E6:AE:1B:2A:4D:23:57:11:D8:19:CA:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/0sRnvDxia8XmrhsqTSNXEdgZyuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0sRnvDxia8XmrhsqTSNXEdgZyuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6C43/C809B8F0108611F1A1947F72313D8C67/DF277BF6108811F191FBC4DC323D8C67.roa sbgp-ipAddrBlock: critical IPv4: 203.153.4.0/23 Signature Algorithm: sha256WithRSAEncryption af:66:9e:b3:b1:41:af:43:91:5c:b1:ee:e4:90:9b:ec:6b:ba: 88:96:73:9e:96:60:6b:07:77:23:c6:27:47:a6:1d:bd:ea:65: 6c:5a:9f:63:73:33:65:28:43:0e:8d:31:e1:24:21:5c:1c:c5: 91:3c:34:cd:30:b3:10:39:57:6c:4d:18:4c:b7:fa:21:76:8f: b7:dd:15:f8:b4:22:f5:eb:e6:36:a7:de:0a:25:94:04:c9:33: 73:49:0b:8f:fd:13:4e:f7:62:8b:72:3a:d6:37:5e:d5:68:ed: 20:4a:00:f5:a2:43:7f:89:37:64:35:33:df:15:7c:aa:41:48: 9f:15:c1:dd:22:a4:35:5d:aa:22:a2:d7:df:4f:3d:a9:13:4a: c4:c2:40:28:61:9c:c3:e7:07:e1:8c:26:cb:c0:de:c1:2e:a6: 64:ab:22:e6:64:e2:e4:13:38:65:1c:cf:df:24:75:0e:fc:d0: bf:c3:51:c5:77:e9:31:40:0e:23:e0:79:b1:9d:67:61:05:de: 10:e3:26:fd:d4:22:5a:a3:a1:a4:6f:c7:3a:ed:6d:0c:53:e3: 01:33:98:40:8f:e5:fd:c1:a1:d2:99:1a:76:91:e6:f3:39:d8: 27:12:5f:6c:92:46:37:e6:60:1a:58:9a:45:50:83:35:cf:b3: 8c:7c:fa:b1 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkM0MzExMC8GA1UEBRMoRDJDNDY3QkMzQzYyNkJDNUU2QUUxQjJBNEQyMzU3MTFE ODE5Q0FFNDAeFw0yNjAzMTEwODQ0MzlaFw0yNzA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjEyYjc3LTVlZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKcDOZ+TObtoS5ftRalqx/fH9RHC/si95cB/g3ZK9aEehZyg7MaenZNYgvjdsO M/yGsJoMnRX2wFcUz9+Oec+bLRX3E6KffgW+m/W8IQ4kpIbS5Zi2JM7SlKXfRQTz OXW/L9YpBVnNa6s8XfNycaoTbfS6sVWxgoovTk9zky9VUbAvrCwgHD3oQLG9ex4S f6k5H+XnxCjG6bS9fgAeIDuKIn/Mhdy3Qf1CU9PahOerNV9u0vRVMOtCbih/oUMP amMOpRdxyqpFlLKeTltpTab7RBM4zcKoitGB7MzZLEthMzHQt2DVwNCinf7KldCb MvAV4yunnuJ3d4s17h/IB0DdAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQU4Iwmo+CE 1WEK6E6UeBx5OMAaeYQwHwYDVR0jBBgwFoAU0sRnvDxia8XmrhsqTSNXEdgZyuQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2QzQzL0M4MDlCOEYwMTA4 NjExRjFBMTk0N0Y3MjMxM0Q4QzY3LzBzUm52RHhpYThYbXJoc3FUU05YRWRnWnl1 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHNSbnZEeGlhOFhtcmhzcVRTTlhFZGdaeXVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkM0My9DODA5QjhGMDEwODYxMUYxQTE5NDdGNzIzMTNEOEM2Ny9ERjI3N0JGNjEw ODgxMUYxOTFGQkM0REMzMjNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAHLmQQwDQYJKoZIhvcNAQELBQADggEBAK9mnrOxQa9DkVyx7uSQm+xr uoiWc56WYGsHdyPGJ0emHb3qZWxan2NzM2UoQw6NMeEkIVwcxZE8NM0wsxA5V2xN GEy3+iF2j7fdFfi0IvXr5jan3gollATJM3NJC4/9E073YotyOtY3XtVo7SBKAPWi Q3+JN2Q1M98VfKpBSJ8Vwd0ipDVdqiKi199PPakTSsTCQChhnMPnB+GMJsvA3sEu pmSrIuZk4uQTOGUcz98kdQ780L/DUcV36TFADiPgebGdZ2EF3hDjJv3UIlqjoaRv xzrtbQxT4wEzmECP5f3BodKZGnaR5vM52CcSX2ySRjfmYBpYmkVQgzXPs4x8+rE= -----END CERTIFICATE-----Generated at Thu Mar 26 08:22:31 2026 by rpki-client