$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa File: 8D52A23871A611EF8F5B9755C4F9AE02.roa (raw, json) Hash identifier: Y4eMPkfyTXrtKvA+X6u1unLZ0mgOp+sFenl0Spk8Log= Subject key identifier: D5:6C:EF:71:2E:B9:6B:85:B5:34:F4:DB:B9:38:A8:62:CD:DC:12:7C Certificate issuer: /CN=A91EA54A/serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Certificate serial: 011B Authority key identifier: F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa Signing time: Mon 02 Mar 2026 15:04:03 +0000 ROA not before: Tue 05 Aug 2025 06:44:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7310 IP address blocks: 203.5.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA54A, serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Validity Not Before: Aug 5 06:44:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a5a6e3-e2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1c:a4:53:87:07:e9:b0:bf:33:4e:50:99:7e: 0e:1d:06:0a:08:ae:f1:73:ea:54:ac:2a:83:44:94: 1c:44:17:ec:c3:64:ad:c7:5e:a7:d5:34:f4:ff:c0: 09:d9:99:09:95:3d:df:1a:e3:93:c9:e6:72:95:fd: b7:ee:6e:32:00:13:e0:50:e6:f8:1d:9d:73:e3:99: 99:50:3f:f9:32:47:ef:76:0b:dd:74:6a:6a:00:01: 89:7c:1d:f2:89:1b:d4:8b:19:77:b7:ec:70:98:97: cc:93:0c:bf:62:3c:51:5d:bf:03:c4:78:fb:7a:6c: eb:ba:c9:2e:34:2d:e9:be:e3:a1:10:53:1e:49:05: 7e:c2:2c:6c:a2:7b:ae:11:f5:38:cf:18:57:c9:73: 58:e8:1a:b1:9c:86:18:04:89:35:6a:4f:a1:b4:2f: 3d:d8:9b:78:cb:e8:2e:87:3d:b4:dc:9a:28:64:f7: 60:65:6f:1a:90:e5:29:eb:16:ff:20:25:bc:ee:bf: 66:e7:ef:d9:13:c6:bb:da:c6:c6:9d:5b:d0:28:5c: b1:a5:cd:bd:23:17:4a:ef:07:45:55:e7:09:af:7a: 51:0a:41:6d:fb:87:43:2f:d6:1a:3d:9c:b3:d7:0d: c4:1d:68:da:ad:99:1a:ca:c6:88:f6:c8:40:f0:dd: a6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6C:EF:71:2E:B9:6B:85:B5:34:F4:DB:B9:38:A8:62:CD:DC:12:7C X509v3 Authority Key Identifier: keyid:F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.5.212.0/24 Signature Algorithm: sha256WithRSAEncryption 69:2d:95:27:03:d0:d9:f1:46:cc:17:90:81:54:b9:60:3b:89: b9:ee:0c:24:f2:46:43:67:8c:b0:59:88:43:24:96:91:1c:ef: 03:67:18:e4:ca:bb:a8:5d:c9:56:3b:ad:2a:02:e2:8d:a6:86: 6a:24:79:41:0e:7c:b3:dc:29:2e:c9:8e:ae:45:e3:be:1e:c5: 8b:a7:d8:21:97:24:95:e5:20:7f:69:a3:bb:4f:5b:76:a2:dd: 9d:cc:1f:0f:27:00:13:20:80:97:49:ee:ef:de:af:ce:8c:2e: 1f:d1:c9:92:63:61:b6:d9:6b:75:75:40:83:6e:5e:e3:f4:20: 0b:95:4b:77:f6:40:a9:fb:55:29:56:89:28:0e:8d:0a:bc:63: a5:c9:ae:23:b9:14:f2:c8:d6:cc:4d:d6:fa:73:3d:a1:2a:a4: cb:4e:14:23:cb:2e:18:02:e4:28:4c:ff:39:88:e6:4a:99:47: 39:64:52:29:db:55:44:64:46:bc:47:2d:77:f5:ba:df:02:84: a9:0d:cd:b8:98:3b:23:95:be:bf:34:af:84:af:29:85:08:53: 85:0a:ce:e5:6b:85:10:d6:c8:f1:4e:f1:50:fc:56:83:b8:6a: 26:f2:b1:2f:04:c0:da:d4:51:21:8d:a1:c6:a5:1d:52:5c:63: 5e:94:fa:dc -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1NEExMTAvBgNVBAUTKEY0MDE1NzFGNEUwRkU4RjgwRDU3Q0QwMjdDRDlFRTE1 RDczODhGMjQwHhcNMjUwODA1MDY0NDU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTZlMy1lMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxykU4cH6bC/M05QmX4OHQYKCK7xc+pUrCqDRJQcRBfsw2Stx16n1TT0/8AJ 2ZkJlT3fGuOTyeZylf237m4yABPgUOb4HZ1z45mZUD/5MkfvdgvddGpqAAGJfB3y iRvUixl3t+xwmJfMkwy/YjxRXb8DxHj7emzruskuNC3pvuOhEFMeSQV+wixsonuu EfU4zxhXyXNY6BqxnIYYBIk1ak+htC892Jt4y+guhz203JooZPdgZW8akOUp6xb/ ICW87r9m5+/ZE8a72sbGnVvQKFyxpc29IxdK7wdFVecJr3pRCkFt+4dDL9YaPZyz 1w3EHWjarZkaysaI9shA8N2mJwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNVs73Eu uWuFtTT027k4qGLN3BJ8MB8GA1UdIwQYMBaAFPQBVx9OD+j4DVfNAnzZ7hXXOI8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU0QS9CRTg0QTgyMDcx QTUxMUVGOEQ4MDVDNzhDNEY5QUUwMi85QUZYSDA0UDZQZ05WODBDZk5udUZkYzRq eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlBRlhIMDRQNlBnTlY4MENmTm51RmRjNGp5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE1NEEvQkU4NEE4MjA3MUE1MTFFRjhEODA1Qzc4QzRGOUFFMDIvOEQ1MkEyMzg3 MUE2MTFFRjhGNUI5NzU1QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAywXUMA0GCSqGSIb3DQEBCwUAA4IBAQBpLZUnA9DZ8UbMF5CBVLlg O4m57gwk8kZDZ4ywWYhDJJaRHO8DZxjkyruoXclWO60qAuKNpoZqJHlBDnyz3Cku yY6uReO+HsWLp9ghlySV5SB/aaO7T1t2ot2dzB8PJwATIICXSe7v3q/OjC4f0cmS Y2G22Wt1dUCDbl7j9CALlUt39kCp+1UpVokoDo0KvGOlya4juRTyyNbMTdb6cz2h KqTLThQjyy4YAuQoTP85iOZKmUc5ZFIp21VEZEa8Ry139brfAoSpDc24mDsjlb6/ NK+ErymFCFOFCs7la4UQ1sjxTvFQ/FaDuGom8rEvBMDa1FEhjaHGpR1SXGNelPrc -----END CERTIFICATE-----Generated at Thu Mar 26 15:04:15 2026 by rpki-client