$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9ECB0CF0275211F09DB11A29C4F9AE02.roa File: 9ECB0CF0275211F09DB11A29C4F9AE02.roa (raw, json) Hash identifier: Y4qwxaTzBbepUcepj1TzyNCXLYcrH5BJ3fuylUVojPQ= Subject key identifier: D1:46:36:40:54:81:CB:8C:86:E0:2A:BE:DB:68:7C:B2:BB:F4:4D:F9 Certificate issuer: /CN=A91E7A75/serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Certificate serial: AE Authority key identifier: 97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9ECB0CF0275211F09DB11A29C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:43:46 +0000 ROA not before: Fri 02 May 2025 12:40:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153305 IP address blocks: 203.123.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 06:25:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7A75, serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Validity Not Before: May 2 12:40:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5a222-5933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:93:de:5f:0a:04:2d:66:1e:d0:3e:cc:34:ae: 91:9c:89:ac:31:c2:22:44:95:fe:a8:ab:1e:1d:72: 8c:97:13:2f:56:2a:69:ab:99:fb:44:fe:53:d3:59: 82:2b:65:6c:3c:2c:95:e2:49:8e:4e:0d:0c:bd:cd: 85:3d:50:d2:4c:a1:23:ae:55:6c:07:ba:4a:29:ef: e8:6a:f6:10:4f:d5:03:7c:8c:61:1e:37:c1:f8:fa: 4a:19:1e:8f:6e:8c:12:43:86:66:f9:81:ef:d7:3f: 12:f6:fc:93:f4:a7:19:53:93:b6:27:c0:04:95:37: 6d:ae:68:bf:ff:81:8a:51:0d:39:e9:c2:1e:06:37: df:1f:b1:5a:64:c7:ab:4d:fc:34:97:01:ac:e5:d9: c7:22:47:fe:53:3d:19:81:23:6a:a4:47:3e:1c:93: a2:82:8a:42:43:5f:33:79:8a:55:66:35:53:c0:88: e0:9d:4c:97:56:08:c5:fc:b1:02:05:2d:8d:27:4c: 0b:42:29:59:4f:be:8c:b6:bf:99:30:18:a8:43:fa: 73:17:cd:e2:70:44:de:e4:8c:26:11:e9:8a:69:d5: 1b:4b:7c:dd:25:33:9a:13:64:b1:98:e8:0d:63:d3: 91:8e:16:1b:58:d7:84:4b:fd:8e:4c:6d:72:2a:ab: bb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:46:36:40:54:81:CB:8C:86:E0:2A:BE:DB:68:7C:B2:BB:F4:4D:F9 X509v3 Authority Key Identifier: keyid:97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9ECB0CF0275211F09DB11A29C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.123.53.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:21:bd:b0:8a:70:9b:40:01:74:c8:61:23:4d:de:80:76:5d: 5f:90:c7:0d:d7:3f:50:7b:a9:1f:cc:13:b2:7e:ed:e0:8b:06: bd:d5:17:06:eb:7b:85:fb:a9:c8:d2:6c:32:3e:54:cf:90:b1: be:9c:cf:52:07:e6:4b:e6:47:dc:7c:8d:93:03:e4:b9:bb:e1: 31:ed:66:4f:99:11:1e:eb:19:82:dc:de:36:4c:8a:7e:10:66: 5a:13:60:8a:05:94:e6:24:dd:f9:2a:d1:7b:13:8a:ac:03:b4: 35:97:aa:e8:21:b4:c7:e8:7d:a4:fb:cc:d7:9e:88:62:ba:21: b2:0a:09:06:d4:03:83:90:bb:e0:cc:c2:77:71:52:8f:23:60: 84:e6:45:bf:ab:0a:54:6e:68:f0:7d:1e:38:f2:bb:f2:44:b8: af:91:a2:9c:69:a8:64:ff:01:94:48:3d:f2:dd:35:7d:10:8c: 4a:2d:8c:a6:9a:bb:92:f7:ad:24:6a:af:30:d0:b6:83:2c:bb: 8f:66:59:d0:3c:99:e2:32:25:92:5b:be:eb:72:41:49:40:07: dc:6d:7d:f4:5f:19:a2:27:ff:b9:53:6a:bd:eb:21:1c:2b:29: ce:8d:15:f7:84:28:9d:44:cd:7a:65:47:7b:6a:8f:15:e0:aa: 10:4f:ad:97 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdBNzUxMTAvBgNVBAUTKDk3QUNEREUyOTExQTA5RjM5MzVGMTg2MERCMDU3RDRD RkY0NkIyQzUwHhcNMjUwNTAyMTI0MDI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTIyMi01OTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpPeXwoELWYe0D7MNK6RnImsMcIiRJX+qKseHXKMlxMvVippq5n7RP5T01mC K2VsPCyV4kmOTg0Mvc2FPVDSTKEjrlVsB7pKKe/oavYQT9UDfIxhHjfB+PpKGR6P bowSQ4Zm+YHv1z8S9vyT9KcZU5O2J8AElTdtrmi//4GKUQ056cIeBjffH7FaZMer Tfw0lwGs5dnHIkf+Uz0ZgSNqpEc+HJOigopCQ18zeYpVZjVTwIjgnUyXVgjF/LEC BS2NJ0wLQilZT76Mtr+ZMBioQ/pzF83icETe5IwmEemKadUbS3zdJTOaE2SxmOgN Y9ORjhYbWNeES/2OTG1yKqu7+QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNFGNkBU gcuMhuAqvttofLK79E35MB8GA1UdIwQYMBaAFJes3eKRGgnzk18YYNsFfUz/RrLF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0E3NS9FNkY0QjZEQTI3 NTExMUYwQUNGMEFGMjRDNEY5QUUwMi9sNnpkNHBFYUNmT1RYeGhnMndWOVRQOUdz c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w2emQ0cEVhQ2ZPVFh4aGcyd1Y5VFA5R3NzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdBNzUvRTZGNEI2REEyNzUxMTFGMEFDRjBBRjI0QzRGOUFFMDIvOUVDQjBDRjAy NzUyMTFGMDlEQjExQTI5QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy3s1MA0GCSqGSIb3DQEBCwUAA4IBAQBqIb2winCbQAF0yGEjTd6A dl1fkMcN1z9Qe6kfzBOyfu3giwa91RcG63uF+6nI0mwyPlTPkLG+nM9SB+ZL5kfc fI2TA+S5u+Ex7WZPmREe6xmC3N42TIp+EGZaE2CKBZTmJN35KtF7E4qsA7Q1l6ro IbTH6H2k+8zXnohiuiGyCgkG1AODkLvgzMJ3cVKPI2CE5kW/qwpUbmjwfR448rvy RLivkaKcaahk/wGUSD3y3TV9EIxKLYymmruS960kaq8w0LaDLLuPZlnQPJniMiWS W77rckFJQAfcbX30XxmiJ/+5U2q96yEcKynOjRX3hCidRM16ZUd7ao8V4KoQT62X -----END CERTIFICATE-----Generated at Thu Mar 26 08:46:15 2026 by rpki-client