$ rpki-client -vvf rpki.apnic.net/member_repository/A91509B3/7570014283AC11F0AD540D1BC4F9AE02/FD5873EC83BA11F089D8E166C4F9AE02.roa File: FD5873EC83BA11F089D8E166C4F9AE02.roa (raw, json) Hash identifier: pgcMYTWRFf4gkxcC+wpc0bSO3rwahz7ouBwd4bk4x64= Subject key identifier: 89:F3:F8:B7:D5:DA:D5:90:27:FC:23:C4:07:EF:5C:8E:E5:5A:C8:CF Certificate issuer: /CN=A91509B3/serialNumber=E57261FFC81071407934B6504A22BBA3C150E173 Certificate serial: 71 Authority key identifier: E5:72:61:FF:C8:10:71:40:79:34:B6:50:4A:22:BB:A3:C1:50:E1:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5XJh_8gQcUB5NLZQSiK7o8FQ4XM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91509B3/7570014283AC11F0AD540D1BC4F9AE02/FD5873EC83BA11F089D8E166C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:29:39 +0000 ROA not before: Wed 03 Dec 2025 06:05:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38263 IP address blocks: 203.1.208.0/24 maxlen: 24 203.1.209.0/24 maxlen: 24 203.1.210.0/24 maxlen: 24 203.1.211.0/24 maxlen: 24 203.1.212.0/24 maxlen: 24 203.1.213.0/24 maxlen: 24 203.1.214.0/24 maxlen: 24 203.1.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91509B3/7570014283AC11F0AD540D1BC4F9AE02/5XJh_8gQcUB5NLZQSiK7o8FQ4XM.crl rsync://rpki.apnic.net/member_repository/A91509B3/7570014283AC11F0AD540D1BC4F9AE02/5XJh_8gQcUB5NLZQSiK7o8FQ4XM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5XJh_8gQcUB5NLZQSiK7o8FQ4XM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91509B3, serialNumber=E57261FFC81071407934B6504A22BBA3C150E173 Validity Not Before: Dec 3 06:05:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a3f8f2-fe37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:49:0f:cb:42:a5:e2:0d:06:13:67:82:51:9c: 72:30:5b:0c:1d:af:dc:07:38:04:f3:c4:c6:ed:96: 98:09:a9:75:1b:68:01:8e:92:63:90:95:46:9b:d6: 8c:fc:da:f2:7f:01:ff:a7:13:62:21:8f:3e:f9:91: eb:da:ed:41:e5:76:cd:ae:b1:ff:c4:ed:a3:90:a9: 0a:2a:c6:a2:e5:b7:91:8b:91:bc:5f:a2:91:67:ca: 28:f9:19:17:57:98:18:f0:b6:10:37:06:6e:14:50: f0:82:cf:9c:db:41:87:63:f6:51:db:5c:9c:71:8b: 74:cd:f0:19:7c:0a:01:98:1b:35:b2:0e:cd:ad:fd: d6:c4:ac:98:1d:07:d0:2a:bd:1a:32:16:c5:88:19: 89:15:e4:1e:82:e3:b0:3e:96:08:d8:a8:7c:b0:cb: 0f:2e:50:86:9e:d9:ef:6e:f8:41:71:dd:0d:6f:55: 90:0a:ff:92:f9:dc:43:45:7c:e5:49:9e:15:47:26: 6e:de:73:bd:0f:48:72:b5:6d:5f:9a:19:f1:5f:f7: e8:c0:7c:bf:0a:c4:58:68:e5:0e:6a:89:d6:9b:02: cf:e7:3d:47:ee:38:33:e7:ae:16:84:17:75:32:ee: 2a:2a:55:13:11:50:c3:6e:da:53:a5:a7:f0:5a:c2: c1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F3:F8:B7:D5:DA:D5:90:27:FC:23:C4:07:EF:5C:8E:E5:5A:C8:CF X509v3 Authority Key Identifier: keyid:E5:72:61:FF:C8:10:71:40:79:34:B6:50:4A:22:BB:A3:C1:50:E1:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91509B3/7570014283AC11F0AD540D1BC4F9AE02/5XJh_8gQcUB5NLZQSiK7o8FQ4XM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5XJh_8gQcUB5NLZQSiK7o8FQ4XM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91509B3/7570014283AC11F0AD540D1BC4F9AE02/FD5873EC83BA11F089D8E166C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.1.208.0/21 Signature Algorithm: sha256WithRSAEncryption 03:46:55:b5:cd:f5:87:6a:43:d3:ab:a5:63:36:84:ad:15:4b: c7:f5:a1:ee:10:14:a9:e5:88:3f:2d:2f:27:36:36:34:7b:d6: d3:ae:6c:e9:a6:fd:be:d5:fb:3b:09:94:b9:30:c6:c6:00:fa: 76:65:7d:f0:bd:98:19:1f:d1:09:08:fa:df:e1:b4:a1:5e:eb: 6e:81:40:2c:62:b3:9e:35:f3:ba:0a:dc:b9:30:f5:bb:9e:69: 77:4c:ae:fa:22:90:83:0e:68:51:e1:df:99:c0:54:5b:c0:a4: cf:bd:12:70:67:97:34:2f:f5:75:df:85:22:d2:42:b8:10:68: 08:be:6f:b0:7f:20:0d:05:5b:77:f6:80:cd:54:48:97:4f:a8: 65:dd:43:2f:ea:2e:e9:9f:b9:dc:09:34:e0:17:31:de:9d:1d: 20:6d:a5:bf:16:99:8b:8f:c7:a7:f1:fe:e0:31:eb:02:84:36: 8b:df:69:6b:78:e3:ff:dd:89:32:7b:3f:8d:65:6f:f4:dd:70: 77:41:68:5f:ab:99:75:a0:c1:47:b9:2b:2b:f8:0f:07:d4:5e: 43:41:fa:61:ef:15:e0:85:89:67:32:8d:ce:db:4f:f4:0f:b1: 5a:28:33:de:2d:da:a3:f5:c9:76:89:b5:e3:95:d4:9c:5b:aa: 79:ba:88:20 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MDlCMzExMC8GA1UEBRMoRTU3MjYxRkZDODEwNzE0MDc5MzRCNjUwNEEyMkJCQTND MTUwRTE3MzAeFw0yNTEyMDMwNjA1MDZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNmOGYyLWZlMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+SQ/LQqXiDQYTZ4JRnHIwWwwdr9wHOATzxMbtlpgJqXUbaAGOkmOQlUab1oz8 2vJ/Af+nE2Ihjz75keva7UHlds2usf/E7aOQqQoqxqLlt5GLkbxfopFnyij5GRdX mBjwthA3Bm4UUPCCz5zbQYdj9lHbXJxxi3TN8Bl8CgGYGzWyDs2t/dbErJgdB9Aq vRoyFsWIGYkV5B6C47A+lgjYqHywyw8uUIae2e9u+EFx3Q1vVZAK/5L53ENFfOVJ nhVHJm7ec70PSHK1bV+aGfFf9+jAfL8KxFho5Q5qidabAs/nPUfuODPnrhaEF3Uy 7ioqVRMRUMNu2lOlp/BawsFlAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUifP4t9Xa 1ZAn/CPEB+9cjuVayM8wHwYDVR0jBBgwFoAU5XJh/8gQcUB5NLZQSiK7o8FQ4XMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUwOUIzLzc1NzAwMTQyODNB QzExRjBBRDU0MEQxQkM0RjlBRTAyLzVYSmhfOGdRY1VCNU5MWlFTaUs3bzhGUTRY TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNVhKaF84Z1FjVUI1TkxaUVNpSzdvOEZRNFhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDlCMy83NTcwMDE0MjgzQUMxMUYwQUQ1NDBEMUJDNEY5QUUwMi9GRDU4NzNFQzgz QkExMUYwODlEOEUxNjZDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBAPLAdAwDQYJKoZIhvcNAQELBQADggEBAANGVbXN9YdqQ9OrpWM2hK0V S8f1oe4QFKnliD8tLyc2NjR71tOubOmm/b7V+zsJlLkwxsYA+nZlffC9mBkf0QkI +t/htKFe626BQCxis54187oK3Lkw9bueaXdMrvoikIMOaFHh35nAVFvApM+9EnBn lzQv9XXfhSLSQrgQaAi+b7B/IA0FW3f2gM1USJdPqGXdQy/qLumfudwJNOAXMd6d HSBtpb8WmYuPx6fx/uAx6wKENovfaWt44//diTJ7P41lb/TdcHdBaF+rmXWgwUe5 Kyv4DwfUXkNB+mHvFeCFiWcyjc7bT/QPsVooM94t2qP1yXaJteOV1Jxbqnm6iCA= -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:20 2026 by rpki-client