$ rpki-client -vvf rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa File: 590A6A9A792E11EEA5AAB840C4F9AE02.roa (raw, json) Hash identifier: kSXzzPQgHazJsKhnA8GrKCmksOR+G1I0f9AOncKt3l4= Subject key identifier: EA:81:9A:FD:18:9F:73:87:83:EA:8A:34:BE:48:FF:63:45:A3:B2:E5 Certificate issuer: /CN=A911F316/serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Certificate serial: 0268 Authority key identifier: D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:05:20 +0000 ROA not before: Sun 09 Feb 2025 02:24:53 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132029 IP address blocks: 203.7.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F316, serialNumber=D9641945D5B4CF7D63FC9131AFCF727AE36D9020 Validity Not Before: Feb 9 02:24:53 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a40f60-f791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c4:34:6f:f3:9a:b5:ca:01:9f:32:9d:12:6f: 3c:b6:80:c4:1f:d0:04:0d:52:9e:72:8f:8a:11:03: 61:7d:bb:26:94:47:7a:49:00:20:82:2a:89:e4:09: f1:dc:1c:77:0b:e4:6a:21:19:27:37:ce:fc:84:13: 53:b4:a5:7e:4e:25:69:6f:25:81:27:85:3e:e1:55: a5:fe:99:e0:30:3a:0e:f1:e4:51:d1:12:86:ef:e1: be:f3:94:13:f6:17:ad:d5:de:88:d1:10:a7:82:30: c5:7c:d4:56:4c:72:6a:bc:8c:41:1b:6e:d0:e3:7a: 48:cf:ef:5a:26:54:61:b9:02:65:43:3b:49:dd:d1: 35:1e:96:74:0b:1c:67:51:09:36:a5:7b:b6:07:03: bb:1e:39:a4:ea:2d:b6:66:e0:85:bf:13:96:33:3f: 14:4b:fc:fd:cb:8d:87:b6:58:eb:c5:3c:d8:21:26: 3b:9f:e6:97:73:70:ff:02:9d:ce:02:0e:b1:1a:ff: 31:74:2f:d9:69:b0:06:90:40:d9:a9:a2:2d:4f:c8: 9a:ee:1e:57:a2:98:2f:46:ec:81:9b:15:2b:b1:0e: 4f:47:9f:0d:10:4b:13:2b:c9:46:a4:5e:79:b4:20: fa:06:ff:92:61:be:2f:3a:16:7b:43:bf:f2:0d:e4: 03:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:81:9A:FD:18:9F:73:87:83:EA:8A:34:BE:48:FF:63:45:A3:B2:E5 X509v3 Authority Key Identifier: keyid:D9:64:19:45:D5:B4:CF:7D:63:FC:91:31:AF:CF:72:7A:E3:6D:90:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/2WQZRdW0z31j_JExr89yeuNtkCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2WQZRdW0z31j_JExr89yeuNtkCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F316/A1DF1520774C11EDB826BC0BC4F9AE02/590A6A9A792E11EEA5AAB840C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.7.140.0/22 Signature Algorithm: sha256WithRSAEncryption 79:34:7e:6b:9e:c4:35:f7:2e:fa:40:e4:51:f6:fc:5c:ff:d7: 00:6e:17:16:f1:71:74:2e:a3:fd:47:64:fa:0d:99:1f:61:56: c3:f2:f7:c1:93:80:79:ce:bc:49:72:e6:2b:69:32:09:f0:00: 27:11:3a:30:af:98:92:9d:c2:3c:10:6f:2d:40:cd:f7:9e:62: 3f:50:e3:c0:9a:b3:e5:f5:e5:55:d5:66:11:8b:a8:44:82:a8: 62:b6:d0:e1:ae:62:15:d7:e1:95:94:41:df:c6:51:27:af:82: 96:e8:bf:fc:f7:7a:c0:37:c7:af:40:a3:31:3d:98:1b:98:17: 46:e1:c4:77:26:7e:cd:b4:67:30:e7:27:2a:3a:7a:38:00:35: 58:33:89:97:f5:e7:19:a4:c4:56:3b:00:0e:6a:85:10:6d:cb: 4c:b5:a3:23:89:6a:99:c5:16:ee:90:f3:7f:7a:91:fa:9a:f7: 50:84:d3:87:00:bc:5c:d9:76:19:ab:e7:99:7b:51:b7:29:6e: a3:c9:33:a8:ec:61:43:ac:5c:76:98:7a:28:85:29:77:a1:25: 3f:91:10:d5:a9:ec:57:3d:f4:60:61:75:50:c6:31:26:f7:0f: 82:67:00:9b:5a:25:58:12:38:5d:1e:05:10:eb:d1:c9:b0:01: ed:f3:be:69 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYzMTYxMTAvBgNVBAUTKEQ5NjQxOTQ1RDVCNENGN0Q2M0ZDOTEzMUFGQ0Y3MjdB RTM2RDkwMjAwHhcNMjUwMjA5MDIyNDUzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGY2MC1mNzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMQ0b/OatcoBnzKdEm88toDEH9AEDVKeco+KEQNhfbsmlEd6SQAggiqJ5Anx 3Bx3C+RqIRknN878hBNTtKV+TiVpbyWBJ4U+4VWl/pngMDoO8eRR0RKG7+G+85QT 9het1d6I0RCngjDFfNRWTHJqvIxBG27Q43pIz+9aJlRhuQJlQztJ3dE1HpZ0Cxxn UQk2pXu2BwO7Hjmk6i22ZuCFvxOWMz8US/z9y42HtljrxTzYISY7n+aXc3D/Ap3O Ag6xGv8xdC/ZabAGkEDZqaItT8ia7h5XopgvRuyBmxUrsQ5PR58NEEsTK8lGpF55 tCD6Bv+SYb4vOhZ7Q7/yDeQDxQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOqBmv0Y n3OHg+qKNL5I/2NFo7LlMB8GA1UdIwQYMBaAFNlkGUXVtM99Y/yRMa/PcnrjbZAg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjMxNi9BMURGMTUyMDc3 NEMxMUVEQjgyNkJDMEJDNEY5QUUwMi8yV1FaUmRXMHozMWpfSkV4cjg5eWV1TnRr Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJXUVpSZFcwejMxal9KRXhyODl5ZXVOdGtDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUYzMTYvQTFERjE1MjA3NzRDMTFFREI4MjZCQzBCQzRGOUFFMDIvNTkwQTZBOUE3 OTJFMTFFRUE1QUFCODQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCyweMMA0GCSqGSIb3DQEBCwUAA4IBAQB5NH5rnsQ19y76QORR9vxc /9cAbhcW8XF0LqP9R2T6DZkfYVbD8vfBk4B5zrxJcuYraTIJ8AAnETowr5iSncI8 EG8tQM33nmI/UOPAmrPl9eVV1WYRi6hEgqhittDhrmIV1+GVlEHfxlEnr4KW6L/8 93rAN8evQKMxPZgbmBdG4cR3Jn7NtGcw5ycqOno4ADVYM4mX9ecZpMRWOwAOaoUQ bctMtaMjiWqZxRbukPN/epH6mvdQhNOHALxc2XYZq+eZe1G3KW6jyTOo7GFDrFx2 mHoohSl3oSU/kRDVqexXPfRgYXVQxjEm9w+CZwCbWiVYEjhdHgUQ69HJsAHt875p -----END CERTIFICATE-----Generated at Mon Mar 2 20:39:23 2026 by rpki-client