$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa File: 4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa (raw, json) Hash identifier: eF0JoYd4QG4K9nohGzvY2j58rhPoqXhqJ1BoOLPw/9o= Subject key identifier: 56:49:AF:4D:89:C1:13:70:2E:A6:3D:1B:77:38:F3:8A:60:94:34:91 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 1088 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:32:02 +0000 ROA not before: Fri 28 Feb 2025 19:30:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 399151 IP address blocks: 203.17.72.0/24 maxlen: 24 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4232 (0x1088) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a48622-80be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d1:d4:b3:a7:e7:40:62:58:19:d2:e1:85:96: 57:fd:d8:ef:67:26:d1:3f:04:1d:71:5d:2c:47:54: e0:b1:5d:d8:9b:d0:bf:b5:4f:d0:43:51:6e:f9:5a: ed:42:e3:8a:39:ce:ec:dd:dc:c3:f8:af:b1:31:6f: 30:94:cb:60:91:ff:38:69:d0:9f:8f:c1:52:06:c0: 1a:73:68:b0:bf:d0:9c:a6:bd:ad:36:26:4c:88:18: 73:09:e5:f1:dd:a5:a0:2e:de:59:ad:a6:ca:c1:db: 93:b2:28:21:08:7e:de:28:13:75:ed:63:64:76:3f: 90:5f:ba:3c:89:76:79:f6:cc:3d:42:c6:c2:e7:6a: 67:76:00:20:9f:47:5a:19:28:56:1f:50:20:d6:aa: b1:2c:dd:a5:01:7b:34:34:8e:42:1e:b0:63:ee:80: 86:0d:40:f5:5c:53:b0:e3:0a:55:7e:bf:8e:74:c6: 48:6a:78:bf:82:2b:97:ae:3c:48:03:66:9f:10:3f: 47:c4:5d:67:e5:30:0f:80:c8:4a:78:09:57:91:df: 7f:bd:e5:c8:84:98:3f:8c:82:19:e4:65:97:5f:c1: b6:43:b4:0a:e1:2f:b1:46:66:5f:40:a7:51:2f:86: a7:2b:ac:c0:af:ca:8c:71:65:bd:34:22:74:a6:0f: 35:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:49:AF:4D:89:C1:13:70:2E:A6:3D:1B:77:38:F3:8A:60:94:34:91 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.17.72.0/24 IPv6: 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 05:d9:b2:ab:4f:62:7d:3e:6f:bf:72:c6:2f:18:ab:9a:3f:bf: 54:25:f0:22:ce:4e:53:b2:1a:a9:27:f0:19:e1:8d:f6:16:cf: d7:d6:17:56:df:67:38:3b:ae:1e:17:c3:b4:4c:de:af:25:56: af:ed:4c:be:45:76:a2:3d:62:5f:32:82:92:f8:36:05:3e:11: c4:7d:7c:35:94:74:6b:3a:3b:3b:3a:65:56:a6:a4:c9:c6:22: cb:7a:27:65:c5:9a:2e:2b:bb:90:01:59:e6:18:08:75:89:5f: 05:0a:6a:59:56:7b:6b:b1:da:2e:73:94:a3:c2:cc:8c:0f:41: d8:03:9c:dc:4a:69:ea:d5:02:26:68:58:49:40:5a:64:ec:d4: ea:b4:70:e6:7e:1b:65:3d:03:8c:3b:a0:dc:13:75:7a:1c:3e: 0f:31:da:76:76:52:4a:0c:e0:eb:4f:53:b8:f9:de:6c:5b:1a: 2c:8a:57:19:38:f6:2f:2c:d1:f1:d6:db:c0:e2:70:38:a3:d7: 24:9b:58:e4:db:1c:7a:99:1c:7d:b9:69:5d:0f:65:60:68:ba: a0:d0:69:d6:72:67:91:24:b6:4f:85:71:c1:c1:e7:c2:0b:d5: b3:87:02:34:b4:0d:12:74:39:9c:9f:ed:07:4c:b1:36:e7:8b: 68:a9:d7:06 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICEIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODYyMi04MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApdHUs6fnQGJYGdLhhZZX/djvZybRPwQdcV0sR1TgsV3Ym9C/tU/QQ1Fu+Vrt QuOKOc7s3dzD+K+xMW8wlMtgkf84adCfj8FSBsAac2iwv9Ccpr2tNiZMiBhzCeXx 3aWgLt5ZrabKwduTsighCH7eKBN17WNkdj+QX7o8iXZ59sw9QsbC52pndgAgn0da GShWH1Ag1qqxLN2lAXs0NI5CHrBj7oCGDUD1XFOw4wpVfr+OdMZIani/giuXrjxI A2afED9HxF1n5TAPgMhKeAlXkd9/veXIhJg/jIIZ5GWXX8G2Q7QK4S+xRmZfQKdR L4anK6zAr8qMcWW9NCJ0pg819wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFFZJr02J wRNwLqY9G3c484pglDSRMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNEI1RTE0RkM5 NkFEMTFFQkE0QUM5RjdGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAyxFIMA8EAgACMAkDBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEB AAXZsqtPYn0+b79yxi8Yq5o/v1Ql8CLOTlOyGqkn8BnhjfYWz9fWF1bfZzg7rh4X w7RM3q8lVq/tTL5FdqI9Yl8ygpL4NgU+EcR9fDWUdGs6Ozs6ZVampMnGIst6J2XF mi4ru5ABWeYYCHWJXwUKallWe2ux2i5zlKPCzIwPQdgDnNxKaerVAiZoWElAWmTs 1Oq0cOZ+G2U9A4w7oNwTdXocPg8x2nZ2UkoM4OtPU7j53mxbGiyKVxk49i8s0fHW 28DicDij1ySbWOTbHHqZHH25aV0PZWBouqDQadZyZ5Ektk+FccHB58IL1bOHAjS0 DRJ0OZyf7QdMsTbni2ip1wY= -----END CERTIFICATE-----Generated at Mon Mar 2 16:47:19 2026 by rpki-client