$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa File: 3ED152FE82A411EE87690C58C4F9AE02.roa (raw, json) Hash identifier: gEpkbZAOCiAGZqrCOuhhWC5OkOPHde0fYqgs1m5gseY= Subject key identifier: 76:BB:DE:F4:BB:87:58:D2:50:D5:34:15:94:5B:1A:4E:9A:B9:94:F4 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 01B2 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:25:46 +0000 ROA not before: Wed 03 Dec 2025 02:33:25 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152097 IP address blocks: 203.99.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Dec 3 02:33:25 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a4142a-b262 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e8:47:df:4b:98:fc:aa:41:e9:f6:42:45:83: e4:a7:91:7b:2e:fb:0d:80:4b:d9:3d:e3:1a:e2:a4: b7:a1:72:f8:75:18:09:be:b6:73:b1:71:35:e2:3f: 9f:1a:d5:fa:9d:d6:3d:10:03:ab:3c:4d:9a:6a:39: 9a:6f:47:e6:7f:e6:b9:6a:97:c6:c4:6d:1f:82:d0: 68:ad:5c:68:3e:5a:c7:e4:91:5d:50:d3:bd:b0:33: ef:6e:56:74:7a:e4:a7:59:2c:f7:19:b3:4e:31:0c: 3e:ea:a3:55:7e:d3:6d:74:3b:43:b3:90:30:27:d9: e6:63:9a:48:71:60:4f:5e:be:2e:09:8b:54:a4:78: 8e:31:6b:8c:71:67:00:b1:78:71:69:33:60:05:fb: b7:1c:24:6b:ad:49:c9:ab:75:78:d4:01:83:5c:89: 61:c3:ee:7a:ac:2b:ae:66:da:d8:14:a4:e2:96:d3: a2:4a:d2:02:b6:df:81:ff:4f:57:4a:30:c3:c1:e6: b9:a4:d4:f2:4e:7d:59:9a:78:f9:a4:5a:f8:ce:4e: f5:23:11:c1:62:e5:f7:08:b8:05:9f:8d:73:3b:a5: 5a:20:5b:d7:96:38:8b:01:98:70:ea:e5:fc:b1:26: d0:b9:fa:65:bd:c5:be:50:32:fe:d8:d0:83:60:e9: 03:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:BB:DE:F4:BB:87:58:D2:50:D5:34:15:94:5B:1A:4E:9A:B9:94:F4 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/3ED152FE82A411EE87690C58C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.99.150.0/23 Signature Algorithm: sha256WithRSAEncryption 09:df:0d:21:95:e6:0f:b9:11:da:ce:7f:96:87:e2:85:59:98: 10:6a:50:75:00:60:f2:e3:74:79:89:ef:ca:d1:eb:cc:0e:1e: 64:2d:99:3f:d3:33:c3:ea:45:a2:b7:24:4c:30:9f:9d:88:87: da:4a:ee:3f:a4:be:67:2c:c9:ce:a5:9b:d9:fe:ae:c0:f3:14: 9f:89:34:88:41:03:e1:f3:ea:d9:92:0d:53:c3:91:78:95:27: 9a:b0:21:a4:7e:00:b1:4f:5c:d2:cc:b9:f6:f5:ea:ca:4e:26: 46:15:2f:f4:a6:da:3e:dc:57:22:02:25:58:c3:cb:41:52:be: 57:aa:5e:0d:0a:83:b9:63:ed:f2:7d:5c:b2:ad:f0:cb:38:34: 08:a7:f9:28:5e:be:8c:e6:a0:0b:d3:43:7c:b9:c4:1b:b2:60: 76:0c:b8:c2:8e:66:8b:48:83:9e:e2:ae:c7:aa:ad:12:35:e8: fc:fb:a2:64:44:21:3a:c9:e8:9a:c2:3e:5a:57:1b:90:e3:f4: 56:2c:ae:f6:d8:57:51:e4:ff:41:6a:d3:91:8c:29:a2:8f:79: 96:d3:a4:56:28:f1:97:94:2e:b6:1a:ac:0d:48:6c:a2:c5:bb: 1e:d5:27:5c:8a:57:8a:cb:e1:34:83:fb:a7:c7:5b:5c:41:d6: 98:bf:0b:23 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUxMjAzMDIzMzI1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MTQyYS1iMjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6OhH30uY/KpB6fZCRYPkp5F7LvsNgEvZPeMa4qS3oXL4dRgJvrZzsXE14j+f GtX6ndY9EAOrPE2aajmab0fmf+a5apfGxG0fgtBorVxoPlrH5JFdUNO9sDPvblZ0 euSnWSz3GbNOMQw+6qNVftNtdDtDs5AwJ9nmY5pIcWBPXr4uCYtUpHiOMWuMcWcA sXhxaTNgBfu3HCRrrUnJq3V41AGDXIlhw+56rCuuZtrYFKTiltOiStICtt+B/09X SjDDwea5pNTyTn1Zmnj5pFr4zk71IxHBYuX3CLgFn41zO6VaIFvXljiLAZhw6uX8 sSbQufplvcW+UDL+2NCDYOkDAwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHa73vS7 h1jSUNU0FZRbGk6auZT0MB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI3QjEvOEZBRjJCREU4MkEzMTFFRUFDNjlGNDU2QzRGOUFFMDIvM0VEMTUyRkU4 MkE0MTFFRTg3NjkwQzU4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBy2OWMA0GCSqGSIb3DQEBCwUAA4IBAQAJ3w0hleYPuRHazn+Wh+KF WZgQalB1AGDy43R5ie/K0evMDh5kLZk/0zPD6kWityRMMJ+diIfaSu4/pL5nLMnO pZvZ/q7A8xSfiTSIQQPh8+rZkg1Tw5F4lSeasCGkfgCxT1zSzLn29erKTiZGFS/0 pto+3FciAiVYw8tBUr5Xql4NCoO5Y+3yfVyyrfDLODQIp/koXr6M5qAL00N8ucQb smB2DLjCjmaLSIOe4q7Hqq0SNej8+6JkRCE6yeiawj5aVxuQ4/RWLK722FdR5P9B atORjCmij3mW06RWKPGXlC62GqwNSGyixbse1SdcileKy+E0g/unx1tcQdaYvwsj -----END CERTIFICATE-----Generated at Mon Mar 2 20:01:54 2026 by rpki-client