$ rpki-client -vvf rpki.apnic.net/member_repository/A915A803/546ED73A533411E8B4FC6B19C4F9AE02/4967F6B8533511E8A678701BC4F9AE02.roa File: 4967F6B8533511E8A678701BC4F9AE02.roa (raw, json) Hash identifier: Qn+0huqeBwXglwQJRxVRLR40yUlrfMuqSCsx/03VN8g= Subject key identifier: FF:D6:2A:9D:0A:C9:6C:49:20:3A:06:B1:CD:3E:91:E0:B9:C5:86:46 Certificate issuer: /CN=A915A803/serialNumber=3DDADB0126025050F5E8566C461D9AB73E49E54A Certificate serial: 1590 Authority key identifier: 3D:DA:DB:01:26:02:50:50:F5:E8:56:6C:46:1D:9A:B7:3E:49:E5:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdrbASYCUFD16FZsRh2atz5J5Uo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A803/546ED73A533411E8B4FC6B19C4F9AE02/4967F6B8533511E8A678701BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:02:02 +0000 ROA not before: Thu 26 Feb 2026 07:18:29 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133787 IP address blocks: 203.0.228.0/22 maxlen: 22 203.0.228.0/23 maxlen: 23 203.0.228.0/24 maxlen: 24 203.0.229.0/24 maxlen: 24 203.0.230.0/23 maxlen: 23 203.0.230.0/24 maxlen: 24 203.0.231.0/24 maxlen: 24 203.1.216.0/22 maxlen: 22 203.1.216.0/23 maxlen: 23 203.1.216.0/24 maxlen: 24 203.1.217.0/24 maxlen: 24 203.1.218.0/23 maxlen: 23 203.1.218.0/24 maxlen: 24 203.1.219.0/24 maxlen: 24 203.1.220.0/23 maxlen: 23 203.1.220.0/24 maxlen: 24 203.1.221.0/24 maxlen: 24 203.1.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A803/546ED73A533411E8B4FC6B19C4F9AE02/PdrbASYCUFD16FZsRh2atz5J5Uo.crl rsync://rpki.apnic.net/member_repository/A915A803/546ED73A533411E8B4FC6B19C4F9AE02/PdrbASYCUFD16FZsRh2atz5J5Uo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdrbASYCUFD16FZsRh2atz5J5Uo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5520 (0x1590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A803, serialNumber=3DDADB0126025050F5E8566C461D9AB73E49E54A Validity Not Before: Feb 26 07:18:29 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a47f1a-bf78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c6:3f:e4:39:f0:73:9b:a4:e2:96:ac:69:2b: 94:e6:51:ef:0f:5b:e4:64:aa:46:6a:ef:81:fc:17: 18:f4:25:7a:e5:4a:11:7d:aa:cb:8e:e1:50:60:df: ea:47:57:b4:5c:76:e2:14:a5:b6:8c:0a:39:7b:49: 42:c5:e0:80:ab:d2:0c:97:96:d6:fc:73:21:57:3e: 88:7e:13:28:32:c3:de:5a:df:a2:09:91:82:a7:34: ff:ed:7e:2b:91:57:98:70:82:e2:6f:fd:56:2b:32: 6c:0b:73:27:4b:16:09:11:93:47:3f:65:b6:82:65: 86:ff:07:00:6a:6b:50:f5:ed:43:a1:b0:a8:12:89: 40:7e:70:ab:66:e2:f7:b3:37:17:f2:9c:b8:34:5f: b7:14:12:51:e7:cf:5d:b8:ed:49:3a:6c:e5:d6:e4: e9:24:74:77:ad:02:b0:df:40:b4:0b:c2:97:99:56: 6a:17:1f:54:0a:80:fd:5c:ee:15:11:bc:d9:6a:8f: aa:a2:14:dd:96:27:e7:4e:0f:b9:78:97:f1:ca:a8: 05:0f:5c:55:d2:2f:a1:0e:46:e4:7b:99:83:4c:a8: d3:f3:42:ed:0f:8a:8f:56:6e:17:f9:95:60:5f:e7: 4c:10:a8:25:60:bc:42:56:46:c9:89:d8:67:fb:38: fe:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D6:2A:9D:0A:C9:6C:49:20:3A:06:B1:CD:3E:91:E0:B9:C5:86:46 X509v3 Authority Key Identifier: keyid:3D:DA:DB:01:26:02:50:50:F5:E8:56:6C:46:1D:9A:B7:3E:49:E5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A803/546ED73A533411E8B4FC6B19C4F9AE02/PdrbASYCUFD16FZsRh2atz5J5Uo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PdrbASYCUFD16FZsRh2atz5J5Uo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A803/546ED73A533411E8B4FC6B19C4F9AE02/4967F6B8533511E8A678701BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.0.228.0/22 203.1.216.0-203.1.222.255 Signature Algorithm: sha256WithRSAEncryption 79:ff:15:48:d7:e2:97:e0:f1:96:57:81:af:3e:da:26:51:e3: e4:c3:c6:6d:9a:e3:99:e3:c7:cd:e5:a5:fb:92:b4:3b:f7:d3: 7d:c6:67:d6:d4:1a:f3:d1:49:1b:f8:07:27:94:a2:ed:cd:9b: fa:10:ac:93:9c:28:cf:43:2b:5b:61:6b:9b:02:79:5f:c1:8f: e0:4e:0f:b5:36:fa:a7:2c:fe:8a:8d:08:b7:6f:69:80:79:9b: 02:d0:dd:22:e6:92:87:07:1b:7c:5a:88:4f:83:67:08:90:9e: 90:7e:26:fc:c1:5f:86:22:b1:04:67:50:e5:d1:d6:0f:2c:ee: 38:39:10:ef:31:ba:fd:77:bd:03:3c:0e:93:1d:0f:07:57:3c: 10:7e:64:58:44:c2:ce:7f:09:89:05:ef:b1:ff:ad:47:c5:65: b9:e7:1d:a4:d7:7c:ae:d6:d6:8e:84:fb:93:7b:05:7d:0d:cc: c9:80:3f:a2:ec:2f:28:9a:ec:6a:e8:e1:0e:ae:b2:ba:64:44: 3a:e5:74:8b:5c:63:9d:dc:25:6a:0e:a0:26:d8:a2:6d:eb:c1: 74:08:6c:23:20:57:ae:2b:6c:ce:53:fd:4b:ff:6e:09:52:85: 7a:d5:ec:d6:f8:9e:00:f6:47:47:a1:81:c8:6e:c4:47:45:08: ee:bf:56:1d -----BEGIN CERTIFICATE----- MIIFSjCCBDKgAwIBAgICFZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE4MDMxMTAvBgNVBAUTKDNEREFEQjAxMjYwMjUwNTBGNUU4NTY2QzQ2MUQ5QUI3 M0U0OUU1NEEwHhcNMjYwMjI2MDcxODI5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0N2YxYS1iZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsY/5Dnwc5uk4pasaSuU5lHvD1vkZKpGau+B/BcY9CV65UoRfarLjuFQYN/q R1e0XHbiFKW2jAo5e0lCxeCAq9IMl5bW/HMhVz6IfhMoMsPeWt+iCZGCpzT/7X4r kVeYcILib/1WKzJsC3MnSxYJEZNHP2W2gmWG/wcAamtQ9e1DobCoEolAfnCrZuL3 szcX8py4NF+3FBJR589duO1JOmzl1uTpJHR3rQKw30C0C8KXmVZqFx9UCoD9XO4V EbzZao+qohTdlifnTg+5eJfxyqgFD1xV0i+hDkbke5mDTKjT80LtD4qPVm4X+ZVg X+dMEKglYLxCVkbJidhn+zj+vQIDAQABo4ICbjCCAmowHQYDVR0OBBYEFP/WKp0K yWxJIDoGsc0+keC5xYZGMB8GA1UdIwQYMBaAFD3a2wEmAlBQ9ehWbEYdmrc+SeVK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTgwMy81NDZFRDczQTUz MzQxMUU4QjRGQzZCMTlDNEY5QUUwMi9QZHJiQVNZQ1VGRDE2RlpzUmgyYXR6NUo1 VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BkcmJBU1lDVUZEMTZGWnNSaDJhdHo1SjVVby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUE4MDMvNTQ2RUQ3M0E1MzM0MTFFOEI0RkM2QjE5QzRGOUFFMDIvNDk2N0Y2Qjg1 MzM1MTFFOEE2Nzg3MDFCQzRGOUFFMDIucm9hMC0GCCsGAQUFBwEHAQH/BB4wHDAa BAIAATAUAwQCywDkMAwDBAPLAdgDBADLAd4wDQYJKoZIhvcNAQELBQADggEBAHn/ FUjX4pfg8ZZXga8+2iZR4+TDxm2a45njx83lpfuStDv3033GZ9bUGvPRSRv4ByeU ou3Nm/oQrJOcKM9DK1tha5sCeV/Bj+BOD7U2+qcs/oqNCLdvaYB5mwLQ3SLmkocH G3xaiE+DZwiQnpB+JvzBX4YisQRnUOXR1g8s7jg5EO8xuv13vQM8DpMdDwdXPBB+ ZFhEws5/CYkF77H/rUfFZbnnHaTXfK7W1o6E+5N7BX0NzMmAP6LsLyia7Gro4Q6u srpkRDrldItcY53cJWoOoCbYom3rwXQIbCMgV64rbM5T/Uv/bglShXrV7Nb4ngD2 R0ehgchuxEdFCO6/Vh0= -----END CERTIFICATE-----Generated at Mon Mar 2 11:24:38 2026 by rpki-client