$ rpki-client -vvf rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/5B39EBD693B511EF8AEA6810C4F9AE02.roa File: 5B39EBD693B511EF8AEA6810C4F9AE02.roa (raw, json) Hash identifier: yGKrGrha2kCV2lgqPYgRrMzRC6pO0Rv10XuxGhmx1oA= Subject key identifier: A7:08:A3:40:FE:8C:00:9E:50:11:59:20:4A:08:9C:81:0F:10:39:BC Certificate issuer: /CN=A91338F0/serialNumber=8317FC7A82B0EE86520DF18FFD57295116DA5DF2 Certificate serial: 0107 Authority key identifier: 83:17:FC:7A:82:B0:EE:86:52:0D:F1:8F:FD:57:29:51:16:DA:5D:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/5B39EBD693B511EF8AEA6810C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:00:42 +0000 ROA not before: Tue 19 Aug 2025 07:14:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 59241 IP address blocks: 203.56.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.crl rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 07:16:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91338F0, serialNumber=8317FC7A82B0EE86520DF18FFD57295116DA5DF2 Validity Not Before: Aug 19 07:14:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a3e41a-0644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6c:6e:cb:4c:a0:d1:1e:b9:94:36:2f:6c:87: 25:10:ae:64:f2:7c:d5:fb:5b:20:96:40:d3:fc:0b: ea:24:d9:4f:74:3e:9c:3a:d1:ca:eb:89:5c:77:d2: f7:ba:fe:46:5b:9e:0f:e9:0a:86:4b:2f:44:36:6d: 6a:89:50:30:88:f8:ab:25:52:83:1b:7a:57:55:3a: fb:44:23:c1:8f:52:27:0d:0e:bb:10:5c:51:5a:c0: 0b:12:c5:3a:c1:80:b4:90:86:04:9d:d2:de:a1:f1: 91:06:05:33:ad:ca:5c:16:22:bf:7d:45:b3:3a:ed: 60:8a:9b:05:98:6a:a3:00:09:26:39:44:b4:a9:3d: cb:2a:cb:4f:b8:d6:2d:c7:91:6b:1f:46:f9:fa:77: db:3e:12:b5:6e:e5:31:20:94:07:6c:e6:6e:ce:4b: 25:5d:09:60:1b:02:55:bd:9e:99:24:d6:81:cf:ff: 73:dc:53:8a:32:b2:9f:3e:46:4c:38:09:b6:38:ab: ec:b7:a1:ee:aa:db:fe:b3:ef:32:52:b6:0e:79:f5: 21:ed:ac:29:7a:ba:e1:b4:b1:7a:28:0c:c0:a3:2e: 99:09:60:ef:7a:15:8a:54:bb:b3:53:e4:23:f1:2e: 9c:95:40:30:5e:48:5a:fb:2c:6d:15:15:0e:11:10: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:08:A3:40:FE:8C:00:9E:50:11:59:20:4A:08:9C:81:0F:10:39:BC X509v3 Authority Key Identifier: keyid:83:17:FC:7A:82:B0:EE:86:52:0D:F1:8F:FD:57:29:51:16:DA:5D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/5B39EBD693B511EF8AEA6810C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.56.90.0/23 Signature Algorithm: sha256WithRSAEncryption ad:9d:8e:f5:7d:f4:c7:44:96:b6:e6:ef:c3:c3:df:4c:28:4a: dd:0b:00:4c:34:03:3f:4d:f1:06:49:7a:6c:70:6f:73:66:6c: 6c:93:4c:50:3f:aa:12:35:ed:5e:59:7f:e8:0a:69:ed:f5:4a: 44:37:63:3e:45:fd:69:a3:00:f1:17:bb:36:ea:bf:04:de:95: bf:c0:74:be:ba:e8:03:61:50:e9:d9:26:69:f4:9e:d1:db:2c: 87:a9:87:f2:5a:49:dd:fb:0d:52:ca:4c:2b:3a:14:54:20:f1: 5d:ba:54:24:17:84:c1:35:25:81:43:09:e7:de:29:f3:42:6f: 32:6f:28:37:96:a3:a9:01:00:1a:a7:b8:db:63:65:c9:cf:de: 8a:7a:87:6b:eb:04:82:80:3e:3f:da:1f:e5:9f:65:44:56:48: 83:05:cd:5b:4c:d9:2d:bd:21:bc:c2:e8:f1:eb:ba:b3:df:3a: 92:e7:77:ce:8b:ba:24:45:d6:64:8d:18:5b:de:00:f8:4a:06: 16:3b:c8:4f:bc:6f:7c:dc:a1:ac:f0:9b:c7:dd:85:b6:a0:c6: 84:4a:59:ac:e4:f6:0c:cf:f0:5e:59:a2:dc:9b:38:b4:27:35: 43:cf:75:4e:7b:6d:31:15:5c:30:a3:40:44:8a:c7:62:f0:ce: 29:f7:f4:84 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4RjAxMTAvBgNVBAUTKDgzMTdGQzdBODJCMEVFODY1MjBERjE4RkZENTcyOTUx MTZEQTVERjIwHhcNMjUwODE5MDcxNDU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTQxYS0wNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmxuy0yg0R65lDYvbIclEK5k8nzV+1sglkDT/AvqJNlPdD6cOtHK64lcd9L3 uv5GW54P6QqGSy9ENm1qiVAwiPirJVKDG3pXVTr7RCPBj1InDQ67EFxRWsALEsU6 wYC0kIYEndLeofGRBgUzrcpcFiK/fUWzOu1gipsFmGqjAAkmOUS0qT3LKstPuNYt x5FrH0b5+nfbPhK1buUxIJQHbOZuzkslXQlgGwJVvZ6ZJNaBz/9z3FOKMrKfPkZM OAm2OKvst6Huqtv+s+8yUrYOefUh7awperrhtLF6KAzAoy6ZCWDvehWKVLuzU+Qj 8S6clUAwXkha+yxtFRUOERDxQQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFKcIo0D+ jACeUBFZIEoInIEPEDm8MB8GA1UdIwQYMBaAFIMX/HqCsO6GUg3xj/1XKVEW2l3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzhGMC8wQTc3MUEzNjkz QUUxMUVGOEY0OEFCNDNDNEY5QUUwMi9neGY4ZW9LdzdvWlNEZkdQX1ZjcFVSYmFY ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d4Zjhlb0t3N29aU0RmR1BfVmNwVVJiYVhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM4RjAvMEE3NzFBMzY5M0FFMTFFRjhGNDhBQjQzQzRGOUFFMDIvNUIzOUVCRDY5 M0I1MTFFRjhBRUE2ODEwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByzhaMA0GCSqGSIb3DQEBCwUAA4IBAQCtnY71ffTHRJa25u/Dw99M KErdCwBMNAM/TfEGSXpscG9zZmxsk0xQP6oSNe1eWX/oCmnt9UpEN2M+Rf1powDx F7s26r8E3pW/wHS+uugDYVDp2SZp9J7R2yyHqYfyWknd+w1SykwrOhRUIPFdulQk F4TBNSWBQwnn3inzQm8ybyg3lqOpAQAap7jbY2XJz96Keodr6wSCgD4/2h/ln2VE VkiDBc1bTNktvSG8wujx67qz3zqS53fOi7okRdZkjRhb3gD4SgYWO8hPvG983KGs 8JvH3YW2oMaESlms5PYMz/BeWaLcmzi0JzVDz3VOe20xFVwwo0BEisdi8M4p9/SE -----END CERTIFICATE-----Generated at Sun Mar 1 23:16:11 2026 by rpki-client