$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/BC75F7EEB69511EEA0196A79C4F9AE02.roa File: BC75F7EEB69511EEA0196A79C4F9AE02.roa (raw, json) Hash identifier: L566NxP+3p3aC7B54xorALA9UMPolemlhI+9jyVSM/I= Subject key identifier: EC:FF:19:07:AA:69:D6:1B:A8:45:44:93:37:AF:4D:0A:93:EF:50:D7 Certificate issuer: /CN=A91DFFB0/serialNumber=17A66E6EFDED105E812190990536A5DF603BA80E Certificate serial: 0195 Authority key identifier: 17:A6:6E:6E:FD:ED:10:5E:81:21:90:99:05:36:A5:DF:60:3B:A8:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6Zubv3tEF6BIZCZBTal32A7qA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/BC75F7EEB69511EEA0196A79C4F9AE02.roa Signing time: Tue 03 Mar 2026 04:39:09 +0000 ROA not before: Tue 03 Mar 2026 04:39:09 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 17667 IP address blocks: 110.238.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/F6Zubv3tEF6BIZCZBTal32A7qA4.crl rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/F6Zubv3tEF6BIZCZBTal32A7qA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6Zubv3tEF6BIZCZBTal32A7qA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFFB0, serialNumber=17A66E6EFDED105E812190990536A5DF603BA80E Validity Not Before: Mar 3 04:39:09 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a665ed-d734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0f:a1:50:a4:99:9a:94:f4:c0:55:11:c0:a7: 41:ef:67:28:71:a5:38:55:05:8a:f2:59:d1:12:63: 19:5c:ba:7a:46:af:e4:4b:e1:a1:2c:2a:ef:79:8a: c2:2f:9d:f7:73:c0:8b:0f:7c:68:b7:d1:a6:32:10: b4:48:f4:99:e5:74:a6:9c:a3:a4:fb:41:99:43:54: 0b:77:97:4b:00:64:93:a4:d9:df:ff:15:13:57:45: 06:ea:f0:6c:79:a2:0e:99:04:c5:11:0f:e0:bd:b9: e6:21:cd:c1:17:ee:d3:27:0e:e2:7a:a6:60:50:d1: da:d5:8f:05:f4:18:f7:1c:70:65:2b:b5:7b:37:a7: bc:bd:5e:48:3d:cc:7c:3f:5d:6d:c9:d8:c3:39:2e: de:bb:42:03:61:c9:4d:d5:ac:a2:1c:32:b2:c1:a5: d5:f0:ef:b1:1f:98:26:57:79:03:cf:55:51:94:65: c3:e4:1f:11:46:03:8b:7d:11:ae:cb:ba:f1:e8:df: 3b:85:68:5d:2e:f4:f4:5c:3f:89:a2:7c:62:e5:bb: 80:24:de:e3:1b:7a:8f:d9:7f:f0:75:ac:3f:ff:b1: 1e:f1:f5:7a:18:a6:91:c4:89:f5:ad:63:c4:3e:cf: 04:17:f2:a0:ff:f1:76:d7:0d:3c:4f:8a:3e:23:57: 7d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:FF:19:07:AA:69:D6:1B:A8:45:44:93:37:AF:4D:0A:93:EF:50:D7 X509v3 Authority Key Identifier: keyid:17:A6:6E:6E:FD:ED:10:5E:81:21:90:99:05:36:A5:DF:60:3B:A8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/F6Zubv3tEF6BIZCZBTal32A7qA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F6Zubv3tEF6BIZCZBTal32A7qA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFFB0/D00C5F88B68F11EEA56BAE11C4F9AE02/BC75F7EEB69511EEA0196A79C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 110.238.0.0/23 Signature Algorithm: sha256WithRSAEncryption 12:49:08:4e:99:5b:d1:ba:9f:e1:43:e8:3e:bf:d9:71:95:d7: c4:77:a5:f0:e4:5f:25:fd:79:1e:51:2f:86:73:15:b8:38:f6: b0:ef:f5:c4:28:34:31:54:12:9c:54:9e:10:36:a9:a5:a1:3d: 69:c3:ee:43:2c:d3:1c:82:e1:28:84:3d:04:bf:c3:fa:2c:b0: 53:d7:99:7d:69:f2:2b:ca:00:93:a6:47:6b:55:f7:73:e8:ef: 30:ac:a7:e5:f2:aa:db:df:14:1a:03:2a:0e:b9:15:7f:d4:83: 69:aa:27:00:56:17:ea:b1:25:46:76:21:6e:78:7d:f6:5b:5a: e5:b6:be:64:38:e8:a8:1b:69:53:68:0d:8a:66:8e:d5:de:97: 5c:8d:cc:fa:4e:3c:15:7a:31:c1:51:f0:9b:a0:6b:54:6b:1f: 92:bb:73:0f:00:c5:ad:f9:27:ce:db:a5:88:a3:3b:fe:fa:42: 42:53:e9:20:73:91:c2:93:cc:b5:42:7e:8f:4f:60:ca:31:13: e4:d7:c8:09:52:79:32:bc:e5:8d:b9:c3:85:8d:80:50:55:ca: 11:51:c4:c3:82:fe:46:15:33:6c:9b:58:47:ad:07:02:da:13: ea:75:d9:4a:af:fc:f8:c8:cf:cb:33:a2:4a:47:b5:15:dd:33: 22:9d:6f:9d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZGQjAxMTAvBgNVBAUTKDE3QTY2RTZFRkRFRDEwNUU4MTIxOTA5OTA1MzZBNURG NjAzQkE4MEUwHhcNMjYwMzAzMDQzOTA5WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NjVlZC1kNzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmg+hUKSZmpT0wFURwKdB72cocaU4VQWK8lnREmMZXLp6Rq/kS+GhLCrveYrC L533c8CLD3xot9GmMhC0SPSZ5XSmnKOk+0GZQ1QLd5dLAGSTpNnf/xUTV0UG6vBs eaIOmQTFEQ/gvbnmIc3BF+7TJw7ieqZgUNHa1Y8F9Bj3HHBlK7V7N6e8vV5IPcx8 P11tydjDOS7eu0IDYclN1ayiHDKywaXV8O+xH5gmV3kDz1VRlGXD5B8RRgOLfRGu y7rx6N87hWhdLvT0XD+Jonxi5buAJN7jG3qP2X/wdaw//7Ee8fV6GKaRxIn1rWPE Ps8EF/Kg//F21w08T4o+I1d9XwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOz/GQeq adYbqEVEkzevTQqT71DXMB8GA1UdIwQYMBaAFBembm797RBegSGQmQU2pd9gO6gO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkZCMC9EMDBDNUY4OEI2 OEYxMUVFQTU2QkFFMTFDNEY5QUUwMi9GNlp1YnYzdEVGNkJJWkNaQlRhbDMyQTdx QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y2WnVidjN0RUY2QklaQ1pCVGFsMzJBN3FBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZGQjAvRDAwQzVGODhCNjhGMTFFRUE1NkJBRTExQzRGOUFFMDIvQkM3NUY3RUVC Njk1MTFFRUEwMTk2QTc5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBbu4AMA0GCSqGSIb3DQEBCwUAA4IBAQASSQhOmVvRup/hQ+g+v9lx ldfEd6Xw5F8l/XkeUS+GcxW4OPaw7/XEKDQxVBKcVJ4QNqmloT1pw+5DLNMcguEo hD0Ev8P6LLBT15l9afIrygCTpkdrVfdz6O8wrKfl8qrb3xQaAyoOuRV/1INpqicA VhfqsSVGdiFueH32W1rltr5kOOioG2lTaA2KZo7V3pdcjcz6TjwVejHBUfCboGtU ax+Su3MPAMWt+SfO26WIozv++kJCU+kgc5HCk8y1Qn6PT2DKMRPk18gJUnkyvOWN ucOFjYBQVcoRUcTDgv5GFTNsm1hHrQcC2hPqddlKr/z4yM/LM6JKR7UV3TMinW+d -----END CERTIFICATE-----Generated at Thu Mar 26 08:48:30 2026 by rpki-client