$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa File: A3601D70C2A511EBB2025B36C4F9AE02.roa (raw, json) Hash identifier: bMXbbXDj5RaZ0Ee7YCwgs/7Vdo6yL1uCa/jY5e4Qep0= Subject key identifier: 52:58:FD:71:10:1B:B1:5E:47:AB:2D:F6:A9:CB:A7:48:B0:2C:30:1E Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 3691 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:48:15 +0000 ROA not before: Thu 24 Jul 2025 14:50:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55760 IP address blocks: 203.188.16.0/20 maxlen: 21 203.188.48.0/20 maxlen: 22 203.209.48.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13969 (0x3691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jul 24 14:50:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a489ee-cca8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:84:6e:6d:ac:2b:a0:aa:2d:5b:a9:52:cd:18: a3:91:6c:9e:1b:5e:48:a6:eb:30:f7:62:0f:85:5c: 2b:08:2f:80:1d:35:e0:29:cb:7f:d5:a2:d8:87:c2: bc:46:d5:3d:27:f9:43:4a:72:59:d7:c0:8e:98:58: 37:c1:f3:36:71:43:98:e3:4e:aa:42:30:9b:ca:2a: 8e:42:a7:46:dd:b6:d0:50:58:39:34:99:e4:8f:a1: f9:d4:41:aa:68:54:aa:7c:fa:09:4b:6b:06:68:70: 46:30:c5:10:90:73:fa:7d:c3:13:43:05:b2:06:7b: b5:f7:15:30:a3:de:26:a9:56:ee:4c:1e:6b:a7:b1: ce:a6:01:39:59:a4:80:51:e1:54:56:d6:ba:b2:ac: c4:3a:07:7c:7a:45:7d:6d:10:6f:66:ea:23:51:c2: eb:ab:e3:90:b0:84:74:6f:3a:ff:75:59:ed:6f:96: a8:dc:9c:a5:9d:3a:0d:7f:83:e9:3d:2c:b9:6b:e5: a4:54:03:ef:30:8e:eb:8c:d0:41:f9:eb:94:df:fb: 97:f0:32:fe:6d:b5:51:28:29:ce:91:40:72:c9:1c: 55:48:4b:f2:6b:f3:5c:f2:c0:f2:75:82:90:99:0e: b1:a1:cb:86:fa:16:54:7b:06:f1:d5:6d:a0:8f:04: 50:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:58:FD:71:10:1B:B1:5E:47:AB:2D:F6:A9:CB:A7:48:B0:2C:30:1E X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.188.16.0/20 203.188.48.0/20 203.209.48.0/21 Signature Algorithm: sha256WithRSAEncryption 33:ae:76:50:d0:07:b1:f2:13:3b:38:c8:9d:0a:8c:5c:89:04: d1:6f:aa:9f:10:71:59:95:5b:22:fa:ce:a3:82:61:3a:52:fe: 14:b9:9e:d7:a0:a9:a7:7d:fb:96:96:62:9f:cc:cd:e6:f3:2e: 6c:dd:40:c3:92:59:40:91:3e:e7:bf:14:48:2d:be:c4:e6:6c: 67:8a:a2:ea:0f:06:c5:ae:15:62:b8:9e:a2:44:9e:48:c4:5e: c1:e6:ff:75:a9:34:0d:6d:b1:8e:b7:e6:33:b2:b6:66:71:2c: 71:2b:e0:dc:f4:75:da:52:bb:c6:c6:aa:dc:f0:47:c3:cc:ad: e3:ee:6c:a6:3c:0d:34:4d:e2:f4:46:14:01:2b:73:de:f0:c5: 51:d0:ae:d5:48:e2:d5:8d:92:7c:6a:20:a7:b8:ba:d4:73:8d: 38:44:7e:fc:de:36:f2:c8:65:2d:31:34:27:be:6e:c3:33:cc: 92:75:f0:2f:89:47:1d:cf:37:5d:00:d6:a0:51:26:a4:c1:4c: 06:9a:35:c5:ec:17:4f:57:da:87:2c:5a:30:1c:27:06:a4:21: 30:65:86:82:e6:92:ac:74:55:1f:79:d5:ed:49:54:1d:13:80: fd:72:ef:6a:b2:6d:d2:2c:5a:0c:e5:cb:fb:96:5b:fa:c5:d1: 0a:08:ce:13 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICNpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNzI0MTQ1MDQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODllZS1jY2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4RubawroKotW6lSzRijkWyeG15Ipusw92IPhVwrCC+AHTXgKct/1aLYh8K8 RtU9J/lDSnJZ18COmFg3wfM2cUOY406qQjCbyiqOQqdG3bbQUFg5NJnkj6H51EGq aFSqfPoJS2sGaHBGMMUQkHP6fcMTQwWyBnu19xUwo94mqVbuTB5rp7HOpgE5WaSA UeFUVta6sqzEOgd8ekV9bRBvZuojUcLrq+OQsIR0bzr/dVntb5ao3JylnToNf4Pp PSy5a+WkVAPvMI7rjNBB+euU3/uX8DL+bbVRKCnOkUByyRxVSEvya/Nc8sDydYKQ mQ6xocuG+hZUewbx1W2gjwRQAQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFFJY/XEQ G7FeR6st9qnLp0iwLDAeMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvQTM2MDFENzBD MkE1MTFFQkIyMDI1QjM2QzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQEy7wQAwQEy7wwAwQDy9EwMA0GCSqGSIb3DQEBCwUAA4IBAQAzrnZQ 0Aex8hM7OMidCoxciQTRb6qfEHFZlVsi+s6jgmE6Uv4UuZ7XoKmnffuWlmKfzM3m 8y5s3UDDkllAkT7nvxRILb7E5mxniqLqDwbFrhViuJ6iRJ5IxF7B5v91qTQNbbGO t+YzsrZmcSxxK+Dc9HXaUrvGxqrc8EfDzK3j7mymPA00TeL0RhQBK3Pe8MVR0K7V SOLVjZJ8aiCnuLrUc404RH783jbyyGUtMTQnvm7DM8ySdfAviUcdzzddANagUSak wUwGmjXF7BdPV9qHLFowHCcGpCEwZYaC5pKsdFUfedXtSVQdE4D9cu9qsm3SLFoM 5cv7llv6xdEKCM4T -----END CERTIFICATE-----Generated at Mon Mar 2 18:12:29 2026 by rpki-client