$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa File: 2A40C41C6EC511ED9672CB40C4F9AE02.roa (raw, json) Hash identifier: Unh6vvgI1wlU5PdNLje9/sZrH6mvqXrjcdflctfvmwM= Subject key identifier: E9:52:87:F1:0E:AB:27:04:EB:87:E6:8A:E7:09:B1:46:91:AF:B3:A8 Certificate issuer: /CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Certificate serial: 0276 Authority key identifier: 8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa Signing time: Sun 01 Mar 2026 10:58:03 +0000 ROA not before: Sat 05 Jul 2025 03:10:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17765 IP address blocks: 203.4.188.0/23 maxlen: 24 203.4.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 630 (0x276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC4FA, serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Validity Not Before: Jul 5 03:10:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a41bbb-dc89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:76:02:2d:49:27:a5:42:e4:d4:ea:38:98:b6: ca:e1:85:52:e5:50:71:05:63:df:a4:be:9f:e8:0f: 97:e5:48:cc:d9:0c:40:22:6e:2b:3d:78:d3:a3:dc: e5:01:ef:15:b2:2b:42:19:9c:eb:7e:e6:91:e8:d7: e5:b6:ab:b6:22:10:c5:74:3e:fa:a4:98:37:4a:d4: 4c:3c:97:07:5a:73:d1:57:23:9a:c6:55:c9:71:43: 62:dc:ef:7e:b1:cb:11:06:fa:aa:53:ce:21:80:e7: df:aa:78:11:4b:08:75:17:c2:1c:5d:27:16:f9:3a: 71:95:70:3d:3f:e2:ea:16:35:15:65:92:e7:20:f9: b4:f0:87:41:ba:93:e6:50:1a:9b:b1:f7:0c:7e:43: c2:1c:4d:97:9b:e1:10:8d:da:52:ae:fe:28:ba:ee: a0:35:54:40:5f:21:9c:6a:cd:48:66:fa:fa:51:f8: 51:6b:61:be:5f:da:bc:98:35:16:23:70:18:19:16: dd:63:99:9d:59:d7:56:22:1c:53:f4:bd:51:8c:28: 8c:ba:54:20:9a:f5:82:ca:0f:c4:38:8c:d3:68:e0: 72:7a:ce:7b:6c:63:46:70:52:35:19:78:19:dd:44: b8:22:29:97:ab:ef:f4:d9:4d:c3:cb:3a:b4:5c:b0: 31:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:52:87:F1:0E:AB:27:04:EB:87:E6:8A:E7:09:B1:46:91:AF:B3:A8 X509v3 Authority Key Identifier: keyid:8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.4.188.0/22 Signature Algorithm: sha256WithRSAEncryption 12:6f:09:a4:5b:cb:a1:ab:24:0c:9f:91:cd:26:ae:b8:9c:fd: f3:ee:c4:0b:2b:8f:9c:c1:c1:e9:5c:e7:7f:e4:46:eb:80:b1: fb:be:05:d0:e6:7c:33:5f:82:c4:30:39:a1:18:65:65:35:39: 18:76:cc:a5:ce:ac:41:d4:be:d9:98:bc:97:e3:6a:92:9d:b3: 6b:bb:80:dc:22:cb:cb:14:1f:a3:59:85:3a:c4:55:29:a2:c6: 44:da:66:de:07:cd:85:b6:c3:42:a8:98:26:a0:d0:4f:2a:1c: 91:70:ea:32:5e:81:66:01:46:94:3e:ee:69:b5:35:e2:da:fc: 40:e6:da:c2:93:77:a0:7c:0a:54:13:f7:8a:fd:54:2b:98:f2: 0e:3f:da:56:7b:24:21:98:de:8e:ef:fe:36:44:91:84:3f:38: 8e:dd:6e:11:c9:88:ae:a8:0c:46:40:2e:77:5f:f3:02:74:ef: 0f:76:97:7e:55:a6:96:48:ea:36:00:0c:e1:02:7e:c0:85:db: 49:d6:5a:a5:0e:ab:e2:b3:7b:35:5b:a1:d7:96:de:41:9f:47: 0b:ec:a4:e7:78:3e:ea:a8:10:77:eb:d0:43:62:73:79:8e:4f: fe:3a:c1:8c:83:df:45:6d:cf:5a:ee:e1:4e:1e:cb:55:1d:78: 35:65:11:db -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM0RkExMTAvBgNVBAUTKDhBRjdEOEI4NjRGRDkwNDUyRkZENkRFOTNCNTE0NTZD NzlFRkIzQzcwHhcNMjUwNzA1MDMxMDE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWJiYi1kYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlXYCLUknpULk1Oo4mLbK4YVS5VBxBWPfpL6f6A+X5UjM2QxAIm4rPXjTo9zl Ae8VsitCGZzrfuaR6Nfltqu2IhDFdD76pJg3StRMPJcHWnPRVyOaxlXJcUNi3O9+ scsRBvqqU84hgOffqngRSwh1F8IcXScW+TpxlXA9P+LqFjUVZZLnIPm08IdBupPm UBqbsfcMfkPCHE2Xm+EQjdpSrv4ouu6gNVRAXyGcas1IZvr6UfhRa2G+X9q8mDUW I3AYGRbdY5mdWddWIhxT9L1RjCiMulQgmvWCyg/EOIzTaOByes57bGNGcFI1GXgZ 3US4IimXq+/02U3Dyzq0XLAxUwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFOlSh/EO qycE64fmiucJsUaRr7OoMB8GA1UdIwQYMBaAFIr32Lhk/ZBFL/1t6TtRRWx577PH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzRGQS8zN0NCODc5ODZD OEIxMUVEODdBRkY1NzFDNEY5QUUwMi9pdmZZdUdUOWtFVXZfVzNwTzFGRmJIbnZz OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l2Zll1R1Q5a0VVdl9XM3BPMUZGYkhudnM4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM0RkEvMzdDQjg3OTg2QzhCMTFFRDg3QUZGNTcxQzRGOUFFMDIvMkE0MEM0MUM2 RUM1MTFFRDk2NzJDQjQwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCywS8MA0GCSqGSIb3DQEBCwUAA4IBAQASbwmkW8uhqyQMn5HNJq64 nP3z7sQLK4+cwcHpXOd/5EbrgLH7vgXQ5nwzX4LEMDmhGGVlNTkYdsylzqxB1L7Z mLyX42qSnbNru4DcIsvLFB+jWYU6xFUposZE2mbeB82FtsNCqJgmoNBPKhyRcOoy XoFmAUaUPu5ptTXi2vxA5trCk3egfApUE/eK/VQrmPIOP9pWeyQhmN6O7/42RJGE PziO3W4RyYiuqAxGQC53X/MCdO8Pdpd+VaaWSOo2AAzhAn7AhdtJ1lqlDqvis3s1 W6HXlt5Bn0cL7KTneD7qqBB369BDYnN5jk/+OsGMg99Fbc9a7uFOHstVHXg1ZRHb -----END CERTIFICATE-----Generated at Mon Mar 2 10:50:41 2026 by rpki-client