$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3F780E2A179211ECB303FF58C4F9AE02.roa File: 3F780E2A179211ECB303FF58C4F9AE02.roa (raw, json) Hash identifier: mSIvH4Gi+T1y6gFOjB4Y+pWqnrIDj+Mx9XwrmpuQ8qw= Subject key identifier: E6:B2:4C:83:3F:5B:FD:85:3E:5A:8A:71:28:47:2A:F5:D5:26:3C:DC Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0698 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3F780E2A179211ECB303FF58C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:37:18 +0000 ROA not before: Sun 03 Aug 2025 00:06:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56307 IP address blocks: 203.202.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4875e-058d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:59:c1:de:41:84:b4:2f:f2:e1:fd:19:8a:48: 14:1e:53:78:7b:76:e8:19:4d:14:e5:d1:69:83:a6: c4:f6:8f:ff:42:68:e1:38:0f:69:0a:45:07:21:85: ec:fd:db:3d:6a:55:ce:7f:87:7d:33:13:7e:10:51: 31:b2:4c:87:80:9b:d6:bf:07:7e:e2:f0:a4:ed:89: af:de:d2:68:64:3e:ab:4c:86:a0:56:15:a1:53:cb: 75:56:ee:63:cf:af:9c:51:df:a3:d0:53:fa:b3:3c: 53:3d:85:59:58:f1:73:f1:66:6d:92:1e:76:d8:7d: e7:36:00:39:62:cd:24:6e:a8:be:59:79:6f:13:16: 7d:76:31:35:31:22:d2:43:91:6a:df:e0:b6:8c:13: 9a:af:38:7f:8f:80:e9:5d:4e:3d:94:55:dd:33:46: 50:0f:92:73:b8:b0:c1:d8:48:f7:d4:a2:7d:8a:9e: 6f:4e:a4:ae:d3:dc:55:2a:8b:c8:03:66:a1:c0:8e: d5:cb:55:dd:bc:56:9e:77:6d:2b:54:85:b2:fd:11: 21:e9:8d:ee:77:d0:e2:e4:b3:dd:ad:5a:ed:75:e7: 00:b1:1c:6a:fb:ab:ea:1f:53:44:c2:9d:df:5e:60: 1e:b5:31:68:7c:d8:0b:d2:16:98:c8:2a:cb:04:e4: bb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:B2:4C:83:3F:5B:FD:85:3E:5A:8A:71:28:47:2A:F5:D5:26:3C:DC X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3F780E2A179211ECB303FF58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.202.0.0/24 Signature Algorithm: sha256WithRSAEncryption 27:b8:6a:70:00:d6:79:28:cb:85:5c:55:d3:85:5a:67:25:38: 0c:69:c2:1f:87:33:8e:96:73:fb:fa:40:1a:d1:ca:fd:9e:be: f1:e5:40:6d:14:b7:3e:e6:da:2b:6b:81:f5:2d:da:f0:83:37: be:c2:5c:f0:22:13:e6:56:a0:f9:5e:f6:0a:6d:3f:84:2c:20: f1:92:da:5d:fa:df:23:1d:39:71:dd:c8:37:3b:1a:cc:3d:ff: 78:ed:e9:f7:8d:24:ab:05:a8:c7:22:06:e5:2e:60:a7:03:ed: ee:df:27:6d:31:ce:6d:af:06:1a:13:97:fa:5a:52:54:06:fc: 47:76:51:42:81:d4:0c:f1:b7:c7:71:f6:81:b0:d1:28:c1:fa: 11:30:f4:19:c8:37:a6:b1:8c:b7:20:92:88:50:4d:c6:6d:27: d6:9a:fa:f5:a3:fe:e6:a9:2d:00:de:3d:97:bf:b6:69:3f:3f: 4d:5e:bc:be:0b:fe:0a:0a:f1:2b:ce:28:79:d0:1c:c9:43:34: 5a:72:f5:df:5c:de:c4:90:57:31:4d:3c:21:3e:d2:c0:b1:63: 87:88:0d:ef:4c:04:69:cd:7d:ce:47:68:bc:f7:54:a1:fb:25: d6:ca:3e:ed:86:36:5e:5a:8d:40:7c:8e:98:6c:87:42:19:bf: c8:b2:99:a0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODc1ZS0wNThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAklnB3kGEtC/y4f0ZikgUHlN4e3boGU0U5dFpg6bE9o//QmjhOA9pCkUHIYXs /ds9alXOf4d9MxN+EFExskyHgJvWvwd+4vCk7Ymv3tJoZD6rTIagVhWhU8t1Vu5j z6+cUd+j0FP6szxTPYVZWPFz8WZtkh522H3nNgA5Ys0kbqi+WXlvExZ9djE1MSLS Q5Fq3+C2jBOarzh/j4DpXU49lFXdM0ZQD5JzuLDB2Ej31KJ9ip5vTqSu09xVKovI A2ahwI7Vy1XdvFaed20rVIWy/REh6Y3ud9Di5LPdrVrtdecAsRxq+6vqH1NEwp3f XmAetTFofNgL0haYyCrLBOS7AQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOayTIM/ W/2FPlqKcShHKvXVJjzcMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvM0Y3ODBFMkEx NzkyMTFFQ0IzMDNGRjU4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy8oAMA0GCSqGSIb3DQEBCwUAA4IBAQAnuGpwANZ5KMuFXFXThVpn JTgMacIfhzOOlnP7+kAa0cr9nr7x5UBtFLc+5tora4H1Ldrwgze+wlzwIhPmVqD5 XvYKbT+ELCDxktpd+t8jHTlx3cg3OxrMPf947en3jSSrBajHIgblLmCnA+3u3ydt Mc5trwYaE5f6WlJUBvxHdlFCgdQM8bfHcfaBsNEowfoRMPQZyDemsYy3IJKIUE3G bSfWmvr1o/7mqS0A3j2Xv7ZpPz9NXry+C/4KCvErzih50BzJQzRacvXfXN7EkFcx TTwhPtLAsWOHiA3vTARpzX3OR2i891Sh+yXWyj7thjZeWo1AfI6YbIdCGb/Ispmg -----END CERTIFICATE-----Generated at Mon Mar 2 18:26:08 2026 by rpki-client