$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa File: 8367C13A6CA411ED9DD6425CC4F9AE02.roa (raw, json) Hash identifier: 2V1RNdcikOtSa6XJr4FTxq5Y+/ocM1dKeWBzdjvqhEs= Subject key identifier: 40:04:AC:A8:7C:57:1C:36:C0:94:BF:7C:6E:7C:AB:1D:1F:43:24:F8 Certificate issuer: /CN=A91E6EFE/serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Certificate serial: 026F Authority key identifier: E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:35:18 +0000 ROA not before: Wed 07 May 2025 02:39:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9509 IP address blocks: 203.22.222.0/24 maxlen: 24 221.121.64.0/19 maxlen: 19 2406:4c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Apr 2026 01:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 623 (0x26f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6EFE, serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Validity Not Before: May 7 02:39:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a5a025-aa6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6a:39:64:8b:98:f6:49:06:de:fa:2f:fc:eb: 09:ee:66:73:6f:28:26:69:7d:b6:9f:6b:f9:39:2e: ec:00:39:8b:40:e0:0d:3d:83:56:08:90:fb:f8:50: 44:1f:d0:ea:67:ab:75:13:af:32:f5:d3:1b:c3:ae: 15:a6:4b:fa:93:e2:30:19:cb:79:64:de:3b:9c:6f: b2:aa:11:f3:b8:a0:d5:47:94:21:a0:c9:98:4f:41: b0:3e:c8:c3:2e:a9:70:ae:1d:44:af:dd:0d:77:64: 1c:a9:72:06:e5:a0:79:b0:92:e3:46:02:bd:1b:c1: a1:0b:e5:69:83:1d:e0:e0:ef:37:95:25:b4:31:6a: f4:6c:db:5e:2a:1a:ba:1d:d3:7a:b1:ee:c4:c9:c1: 71:5a:c3:e9:ea:d0:be:62:03:63:55:39:f1:f4:29: 36:36:50:59:c7:1c:e9:c4:8f:af:20:1e:5e:24:10: 4a:cc:c3:ff:30:35:d5:c8:ea:2c:8b:29:0d:ab:2e: 8d:0d:04:5d:6c:90:93:9b:cc:21:44:ae:45:fb:5d: 62:f9:39:d6:c3:92:c8:db:54:e8:4a:aa:1b:56:01: 2d:ef:68:ab:c7:46:85:e1:34:b0:d2:8b:8f:57:c4: f8:5a:6e:85:26:2d:2e:f1:4a:a9:0d:23:7f:d9:8a: 6f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:04:AC:A8:7C:57:1C:36:C0:94:BF:7C:6E:7C:AB:1D:1F:43:24:F8 X509v3 Authority Key Identifier: keyid:E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.22.222.0/24 221.121.64.0/19 IPv6: 2406:4c00::/32 Signature Algorithm: sha256WithRSAEncryption 9b:77:25:e5:84:65:0f:d2:16:37:23:37:08:93:71:f4:ba:6a: f0:fd:67:32:74:fe:72:00:c4:d5:79:b0:83:8d:da:e9:3f:6a: 12:47:55:e9:47:e8:64:ff:a5:0e:57:7f:5b:d4:2a:61:8a:8e: dc:61:f4:99:87:03:7b:a2:a9:b1:25:5c:9f:22:fb:0d:1a:11: 4b:1a:2a:0e:74:fd:73:9f:f9:15:fc:40:9c:59:15:ab:6d:76: 43:de:99:70:aa:9b:55:fb:6f:77:56:3f:4b:88:98:67:12:b6: ca:3f:21:14:86:25:5e:1b:dd:9f:7f:a7:c2:8e:df:87:22:85: bb:69:0d:48:cd:e5:0b:34:ff:19:9c:bd:71:7d:66:77:b5:8e: a9:1b:61:59:77:6c:ab:ff:70:31:0e:50:1e:c2:2b:a2:6c:76: ff:6d:fe:49:d1:fb:9f:e9:f7:01:6d:f5:a4:9d:06:ec:e9:0a: f9:64:8d:3c:1b:b2:a5:b3:21:ac:1e:aa:57:5e:a2:66:c2:ed: 3b:6e:58:9d:59:8a:6e:bf:fe:70:e5:15:e7:00:89:30:f4:36: ca:1a:0a:f1:c4:a5:ef:a5:b4:68:a7:8e:d1:a2:0c:46:15:bb: 12:7b:da:0d:50:21:f1:e4:b5:be:78:f8:af:09:1f:28:3a:f0: 17:b8:6a:02 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICAm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFRkUxMTAvBgNVBAUTKEU4NzE3MjhDM0EyQzI2RDBFNjA4MDA0QkE3RDFFNUEz NTgzMDk1NkMwHhcNMjUwNTA3MDIzOTM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTAyNS1hYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWo5ZIuY9kkG3vov/OsJ7mZzbygmaX22n2v5OS7sADmLQOANPYNWCJD7+FBE H9DqZ6t1E68y9dMbw64Vpkv6k+IwGct5ZN47nG+yqhHzuKDVR5QhoMmYT0GwPsjD Lqlwrh1Er90Nd2QcqXIG5aB5sJLjRgK9G8GhC+Vpgx3g4O83lSW0MWr0bNteKhq6 HdN6se7EycFxWsPp6tC+YgNjVTnx9Ck2NlBZxxzpxI+vIB5eJBBKzMP/MDXVyOos iykNqy6NDQRdbJCTm8whRK5F+11i+TnWw5LI21ToSqobVgEt72irx0aF4TSw0ouP V8T4Wm6FJi0u8UqpDSN/2YpvNwIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFEAErKh8 Vxw2wJS/fG58qx0fQyT4MB8GA1UdIwQYMBaAFOhxcow6LCbQ5ggAS6fR5aNYMJVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkVGRS9FNEMwMEQzQzZD QTExMUVEQjQ0RTc2NUJDNEY5QUUwMi82SEZ5akRvc0p0RG1DQUJMcDlIbG8xZ3ds V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZIRnlqRG9zSnREbUNBQkxwOUhsbzFnd2xXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZFRkUvRTRDMDBEM0M2Q0ExMTFFREI0NEU3NjVCQzRGOUFFMDIvODM2N0MxM0E2 Q0E0MTFFRDlERDY0MjVDQzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQAyxbeAwQF3XlAMA0EAgACMAcDBQAkBkwAMA0GCSqGSIb3DQEBCwUA A4IBAQCbdyXlhGUP0hY3IzcIk3H0umrw/WcydP5yAMTVebCDjdrpP2oSR1XpR+hk /6UOV39b1Cphio7cYfSZhwN7oqmxJVyfIvsNGhFLGioOdP1zn/kV/ECcWRWrbXZD 3plwqptV+293Vj9LiJhnErbKPyEUhiVeG92ff6fCjt+HIoW7aQ1IzeULNP8ZnL1x fWZ3tY6pG2FZd2yr/3AxDlAewiuibHb/bf5J0fuf6fcBbfWknQbs6Qr5ZI08G7Kl syGsHqpXXqJmwu07blidWYpuv/5w5RXnAIkw9DbKGgrxxKXvpbRop47RogxGFbsS e9oNUCHx5LW+ePivCR8oOvAXuGoC -----END CERTIFICATE-----Generated at Fri Mar 27 07:48:13 2026 by rpki-client