$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa File: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (raw, json) Hash identifier: 411MyxEd4SUlAxnDC0f/mu2L3C2aQqpG7IJEEqtjBBs= Subject key identifier: 0E:6C:7F:01:95:EE:E7:C8:F2:33:9A:7A:64:F1:14:99:5B:32:0B:63 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 070D Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:43:50 +0000 ROA not before: Thu 22 May 2025 22:22:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9790 IP address blocks: 202.3.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:46:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: May 22 22:22:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a40a56-ae85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1c:b3:49:36:03:62:83:10:ff:e8:d8:7a:14: b0:1f:a6:86:1a:0c:ab:05:55:81:84:66:3a:56:a6: 30:e7:ec:62:4d:eb:4e:5f:5e:90:5a:93:db:7c:0f: eb:2b:e1:11:ae:b9:a5:8d:13:c9:3a:47:26:66:f6: 7d:fb:da:f5:69:e1:cd:01:c0:89:1e:bc:ba:04:0e: a7:f9:89:c2:72:61:7c:e4:13:32:3e:9d:cb:ec:e4: f1:7f:da:71:04:78:96:f7:48:79:b6:7b:f3:8b:66: 29:79:a7:b6:e9:76:b3:87:55:df:31:cb:bc:eb:8f: 6c:87:7c:92:73:1c:cb:08:61:f5:e9:01:57:fd:cc: d8:17:96:cd:1d:ef:ad:46:1b:1d:be:fb:52:8c:1a: 07:15:4f:db:89:82:c6:c9:8d:fd:18:0c:d5:61:b6: b9:cc:7e:79:33:0d:8d:85:8b:ba:d2:d1:2f:f5:97: d3:15:9b:14:3b:9c:01:19:60:74:ab:3c:af:84:16: 46:06:fa:09:70:69:3c:ca:c6:71:2a:bb:4c:30:1a: 2a:79:89:a3:11:b0:2a:46:4e:4a:51:5c:7c:7f:c0: d1:42:ff:2c:af:51:a4:e4:9d:a8:4c:67:ed:ec:18: ed:14:1b:e8:7e:12:97:ff:f8:9e:0e:6a:1e:44:bf: b3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:6C:7F:01:95:EE:E7:C8:F2:33:9A:7A:64:F1:14:99:5B:32:0B:63 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.3.88.0/21 Signature Algorithm: sha256WithRSAEncryption 76:ff:cf:37:c5:68:79:32:f5:45:1b:30:20:77:67:c9:d1:25: c1:c9:6c:d5:94:05:f5:0e:4a:97:de:18:4c:6a:bd:98:f9:09: 94:81:c5:3f:79:16:51:30:f1:3b:b1:0a:3a:5a:eb:17:d1:8d: 15:4b:df:42:0d:bb:c4:8b:3b:24:8a:4c:7d:74:cb:e0:6f:06: b2:c9:06:41:25:67:c2:77:a4:dc:6e:bc:8e:06:da:0e:7e:86: e6:65:fd:30:ad:b6:04:9e:c1:ab:4d:80:33:c8:f9:dc:0a:b0: 44:b8:9b:09:c8:a2:f5:b4:94:ac:7e:51:55:59:b6:61:b1:be: 48:b6:1c:ea:e2:75:19:da:c1:0b:c4:c0:92:6c:df:33:0d:b7: 5b:53:d4:1c:06:79:f3:69:83:da:d9:9d:d0:e2:73:f9:d8:47: 54:76:28:ce:82:6d:8f:73:ad:da:e4:01:d8:6f:10:7a:6d:a6: d3:9c:6f:12:57:e5:93:9a:6e:aa:40:1f:23:22:4f:dc:5a:f6: 27:8e:5d:2e:99:e6:ca:2c:d3:72:e4:6b:14:08:ac:6d:75:6f: 48:1e:11:4e:68:6b:21:7e:62:10:ed:47:74:44:a7:a2:83:57: 2e:dc:2b:06:2e:46:79:2a:bd:9e:90:e8:c0:a8:08:2f:bf:2f: 19:65:3c:05 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjUwNTIyMjIyMjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGE1Ni1hZTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnRyzSTYDYoMQ/+jYehSwH6aGGgyrBVWBhGY6VqYw5+xiTetOX16QWpPbfA/r K+ERrrmljRPJOkcmZvZ9+9r1aeHNAcCJHry6BA6n+YnCcmF85BMyPp3L7OTxf9px BHiW90h5tnvzi2Ypeae26Xazh1XfMcu8649sh3yScxzLCGH16QFX/czYF5bNHe+t RhsdvvtSjBoHFU/biYLGyY39GAzVYba5zH55Mw2NhYu60tEv9ZfTFZsUO5wBGWB0 qzyvhBZGBvoJcGk8ysZxKrtMMBoqeYmjEbAqRk5KUVx8f8DRQv8sr1Gk5J2oTGft 7BjtFBvofhKX//ieDmoeRL+zaQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFA5sfwGV 7ufI8jOaemTxFJlbMgtjMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjczRUQvNEQ4RkEyMEU3RDQ5MTFFQkExNjU3MzdCQzRGOUFFMDIvQkRCRkZCODY3 RDU0MTFFQjhDQkU1QjU3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDygNYMA0GCSqGSIb3DQEBCwUAA4IBAQB2/883xWh5MvVFGzAgd2fJ 0SXByWzVlAX1DkqX3hhMar2Y+QmUgcU/eRZRMPE7sQo6WusX0Y0VS99CDbvEizsk ikx9dMvgbwayyQZBJWfCd6TcbryOBtoOfobmZf0wrbYEnsGrTYAzyPncCrBEuJsJ yKL1tJSsflFVWbZhsb5Ithzq4nUZ2sELxMCSbN8zDbdbU9QcBnnzaYPa2Z3Q4nP5 2EdUdijOgm2Pc63a5AHYbxB6babTnG8SV+WTmm6qQB8jIk/cWvYnjl0umebKLNNy 5GsUCKxtdW9IHhFOaGshfmIQ7Ud0RKeig1cu3CsGLkZ5Kr2ekOjAqAgvvy8ZZTwF -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:50 2026 by rpki-client