$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/FD57EA90508511EEBA4C0E2BC4F9AE02.roa File: FD57EA90508511EEBA4C0E2BC4F9AE02.roa (raw, json) Hash identifier: Hlrpuim6i7fHk0KlEnhldHqMP2jG8T1/tqWjQFLYvbs= Subject key identifier: FF:8E:F7:3B:20:08:4D:58:74:C7:41:A8:20:4E:7D:AF:B3:0F:75:6E Certificate issuer: /CN=A91A2265/serialNumber=BBEC210E7529FD397F1338FFAC1DDD783C0FAA32 Certificate serial: 01DC Authority key identifier: BB:EC:21:0E:75:29:FD:39:7F:13:38:FF:AC:1D:DD:78:3C:0F:AA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-whDnUp_Tl_Ezj_rB3deDwPqjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/FD57EA90508511EEBA4C0E2BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:02:35 +0000 ROA not before: Thu 31 Jul 2025 04:42:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 9334 IP address blocks: 203.167.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/u-whDnUp_Tl_Ezj_rB3deDwPqjI.crl rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/u-whDnUp_Tl_Ezj_rB3deDwPqjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-whDnUp_Tl_Ezj_rB3deDwPqjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:17:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2265, serialNumber=BBEC210E7529FD397F1338FFAC1DDD783C0FAA32 Validity Not Before: Jul 31 04:42:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a438eb-82e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:76:77:31:cc:7b:1c:25:22:10:eb:b2:64:98: f4:8c:f5:16:e4:4a:d9:8b:8a:15:08:0f:39:a0:21: dd:4b:72:b6:6a:30:79:df:66:c8:33:d8:c2:2a:11: ec:92:cc:e8:da:ab:90:f0:e3:43:51:25:ba:e3:f2: 4b:eb:9e:66:bc:46:a7:dd:05:ee:98:dd:63:4a:53: 0f:ce:68:54:64:04:ae:8f:6c:0b:94:ec:49:bd:25: 04:38:48:4c:42:24:81:7d:7b:dd:6a:d9:20:86:0e: cb:5e:70:47:c3:dc:47:fe:4c:57:81:07:5b:d2:08: 6e:62:49:4a:fb:e5:0a:3b:ef:1e:1e:c5:5a:99:1b: 7c:a3:aa:98:27:6f:f4:f4:d0:c5:55:88:c9:9d:72: ea:a6:80:24:08:82:3d:da:9f:1b:31:aa:68:0d:ed: a6:d8:a3:46:b3:52:22:07:3b:31:bb:60:0d:21:f4: 40:93:07:61:46:1b:92:1e:db:63:be:dc:45:9c:8f: cf:2d:ca:68:bb:9e:e7:a9:3e:15:38:05:37:cf:5c: 3a:6e:d6:9c:d0:3b:31:b1:0d:3c:19:1c:e3:58:7e: d6:71:ed:2d:ad:a5:b2:d6:df:8c:1f:fb:a6:ae:2a: e8:e5:ee:78:06:89:1f:58:0c:d7:d3:0d:d3:7c:aa: 84:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:8E:F7:3B:20:08:4D:58:74:C7:41:A8:20:4E:7D:AF:B3:0F:75:6E X509v3 Authority Key Identifier: keyid:BB:EC:21:0E:75:29:FD:39:7F:13:38:FF:AC:1D:DD:78:3C:0F:AA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/u-whDnUp_Tl_Ezj_rB3deDwPqjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-whDnUp_Tl_Ezj_rB3deDwPqjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2265/9A66AADE508511EEBA3EFC11C4F9AE02/FD57EA90508511EEBA4C0E2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.167.0.0/21 Signature Algorithm: sha256WithRSAEncryption b7:c2:3d:f9:8c:25:27:5e:3b:e0:c6:54:25:c6:1e:e2:f3:0b: c3:b9:ec:64:f6:dc:c4:15:5a:c0:87:f1:ef:da:5a:14:82:66: 85:f3:a5:a5:95:15:b7:3e:e3:09:1f:61:cd:af:5a:88:3f:f8: f6:01:ca:da:eb:76:e4:0c:14:22:02:25:d0:f0:3d:56:ee:68: f6:0f:a6:3c:56:ba:22:d2:bb:4c:93:4c:e6:a2:1e:34:21:fa: 5c:9c:fb:4f:10:ed:df:8d:4e:2e:ed:d7:a4:be:29:96:5d:db: 6c:15:38:f4:e0:22:b0:59:0f:d3:7a:de:07:14:87:64:74:f7: 22:80:df:ff:88:ff:d3:74:8e:c9:0d:05:a2:87:d3:ef:36:80: 65:30:43:3f:9d:00:87:81:28:dd:e0:73:dc:fd:93:2e:3f:4f: fc:4a:a4:07:b8:97:a6:46:4d:5f:9b:51:51:60:a2:7d:7c:86: f2:b7:eb:5f:e5:30:a6:ce:cf:be:6a:b1:3f:2d:55:95:00:46: 7e:b2:0b:e3:9d:a6:99:05:7c:4a:f9:84:41:ca:71:9f:cd:24: fa:1a:1e:04:ce:7e:5b:75:7c:ea:21:3e:0d:4c:be:53:61:44: 36:24:db:f7:b6:95:5a:fc:bd:51:ec:45:f7:2f:ba:dd:98:d5: 35:88:be:f6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIyNjUxMTAvBgNVBAUTKEJCRUMyMTBFNzUyOUZEMzk3RjEzMzhGRkFDMURERDc4 M0MwRkFBMzIwHhcNMjUwNzMxMDQ0MjAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzhlYi04MmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnZ3Mcx7HCUiEOuyZJj0jPUW5ErZi4oVCA85oCHdS3K2ajB532bIM9jCKhHs kszo2quQ8ONDUSW64/JL655mvEan3QXumN1jSlMPzmhUZASuj2wLlOxJvSUEOEhM QiSBfXvdatkghg7LXnBHw9xH/kxXgQdb0ghuYklK++UKO+8eHsVamRt8o6qYJ2/0 9NDFVYjJnXLqpoAkCII92p8bMapoDe2m2KNGs1IiBzsxu2ANIfRAkwdhRhuSHttj vtxFnI/PLcpou57nqT4VOAU3z1w6btac0DsxsQ08GRzjWH7Wce0traWy1t+MH/um riro5e54BokfWAzX0w3TfKqERQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP+O9zsg CE1YdMdBqCBOfa+zD3VuMB8GA1UdIwQYMBaAFLvsIQ51Kf05fxM4/6wd3Xg8D6oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjI2NS85QTY2QUFERTUw ODUxMUVFQkEzRUZDMTFDNEY5QUUwMi91LXdoRG5VcF9UbF9FempfckIzZGVEd1Bx akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Utd2hEblVwX1RsX0V6al9yQjNkZUR3UHFqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTIyNjUvOUE2NkFBREU1MDg1MTFFRUJBM0VGQzExQzRGOUFFMDIvRkQ1N0VBOTA1 MDg1MTFFRUJBNEMwRTJCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQDy6cAMA0GCSqGSIb3DQEBCwUAA4IBAQC3wj35jCUnXjvgxlQlxh7i 8wvDuexk9tzEFVrAh/Hv2loUgmaF86WllRW3PuMJH2HNr1qIP/j2Acra63bkDBQi AiXQ8D1W7mj2D6Y8Vroi0rtMk0zmoh40IfpcnPtPEO3fjU4u7dekvimWXdtsFTj0 4CKwWQ/Tet4HFIdkdPcigN//iP/TdI7JDQWih9PvNoBlMEM/nQCHgSjd4HPc/ZMu P0/8SqQHuJemRk1fm1FRYKJ9fIbyt+tf5TCmzs++arE/LVWVAEZ+sgvjnaaZBXxK +YRBynGfzST6Gh4Ezn5bdXzqIT4NTL5TYUQ2JNv3tpVa/L1R7EX3L7rdmNU1iL72 -----END CERTIFICATE-----Generated at Mon Mar 2 11:16:52 2026 by rpki-client