$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa File: 2D478AFED02011ECB021972BC4F9AE02.roa (raw, json) Hash identifier: i3VI+hPyZ8V1KISvzGj6cfXZDtS8YJ3qbqOTakeWd8Y= Subject key identifier: 99:B8:EC:67:24:14:05:3A:99:81:BE:A7:86:FC:A9:71:CC:A0:34:CD Certificate issuer: /CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Certificate serial: 03B7 Authority key identifier: 02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:50:58 +0000 ROA not before: Wed 07 May 2025 01:08:07 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38549 IP address blocks: 203.21.76.0/24 maxlen: 24 203.21.77.0/24 maxlen: 24 2001:df0:20b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 951 (0x3b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE108, serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Validity Not Before: May 7 01:08:07 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a46e71-a77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:99:59:d3:88:bd:06:f7:2b:c3:d2:99:36:ad: 6b:17:77:97:a5:9c:b0:e8:91:82:64:15:e6:30:e0: fb:58:67:20:0e:d1:be:71:75:d8:1d:52:10:13:16: 68:23:8d:65:cb:08:26:3d:d1:2a:b5:af:5c:97:c1: 55:51:c5:38:88:a5:d7:cb:e4:d0:52:a9:12:ea:71: 70:84:80:48:c2:b6:f7:98:a0:2e:47:08:b5:66:a3: b9:bc:ce:0f:b4:17:7a:c8:f8:38:e9:00:09:cc:20: 11:9c:b2:80:10:44:4b:63:88:8a:70:a2:8b:f5:70: 46:60:90:56:4c:a6:e6:57:cd:35:d0:75:60:3f:c6: 5a:2d:d2:66:58:cc:7a:22:f4:ac:bf:a4:fc:f4:de: 47:93:c3:f1:c1:e3:59:45:13:df:f0:bb:bf:a4:df: 6e:3b:e9:b6:56:bb:a0:1b:70:de:3c:91:b9:e5:0a: 0a:45:bc:a3:4a:06:64:82:cd:a5:5c:4d:9e:55:f5: 3b:81:53:87:91:30:a9:fb:51:ab:6d:93:f0:fa:c7: 88:e6:cc:20:fd:4e:bb:e4:40:8c:18:f7:1e:99:d9: c7:94:d6:8e:f0:14:c1:7a:8a:ac:21:01:cf:d9:28: 61:0f:c8:02:10:2c:f6:7d:22:b1:4d:c2:72:10:01: a5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B8:EC:67:24:14:05:3A:99:81:BE:A7:86:FC:A9:71:CC:A0:34:CD X509v3 Authority Key Identifier: keyid:02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.21.76.0/23 IPv6: 2001:df0:20b::/48 Signature Algorithm: sha256WithRSAEncryption 87:e5:76:8c:4b:67:d8:d9:34:4a:72:82:2e:09:49:c9:e6:7e: b7:af:b2:d8:4a:21:17:8f:55:97:54:6d:76:b8:e1:be:bc:31: 89:e3:af:b1:a8:29:6d:92:2c:98:64:94:e5:93:a2:3a:5a:36: 56:01:7e:6c:58:f8:a8:57:ed:c0:58:b8:99:71:ff:1c:49:50: c3:90:ce:07:e7:ae:7b:46:60:3d:84:b2:0d:b4:74:36:68:ca: f7:45:93:9f:54:6e:fa:9f:93:a0:d5:68:90:a9:b3:8c:56:1e: 31:43:20:77:d6:fb:d0:c5:ae:a8:c5:04:aa:20:35:63:71:03: ba:50:56:75:71:45:76:e7:fc:fd:18:e8:1a:55:12:63:28:54: be:28:ba:9b:1e:bc:18:12:f2:c6:54:07:16:e5:61:41:af:62: 85:be:b9:bf:6e:40:eb:c7:9b:3a:3b:dc:70:5a:e8:d8:f9:aa: 0a:03:74:d1:eb:39:2c:32:f4:7e:3c:79:f0:cf:6a:75:7c:20: 54:b5:24:02:88:a8:8f:87:3a:28:dc:e6:5b:f5:35:47:78:6d: 6b:45:e6:35:78:44:c5:94:9b:ab:66:79:0a:71:21:15:24:88: 37:86:2f:6d:3a:a4:51:20:3e:f7:e3:0d:fc:e4:64:d4:df:e8: 9e:59:ef:d0 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICA7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxMDgxMTAvBgNVBAUTKDAyQkI5N0ZEOEIxRjYyMEUwMkExRTJDQURCNTlENjU2 RjAxQURBNDUwHhcNMjUwNTA3MDEwODA3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NmU3MS1hNzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApplZ04i9Bvcrw9KZNq1rF3eXpZyw6JGCZBXmMOD7WGcgDtG+cXXYHVIQExZo I41lywgmPdEqta9cl8FVUcU4iKXXy+TQUqkS6nFwhIBIwrb3mKAuRwi1ZqO5vM4P tBd6yPg46QAJzCARnLKAEERLY4iKcKKL9XBGYJBWTKbmV8010HVgP8ZaLdJmWMx6 IvSsv6T89N5Hk8PxweNZRRPf8Lu/pN9uO+m2VrugG3DePJG55QoKRbyjSgZkgs2l XE2eVfU7gVOHkTCp+1GrbZPw+seI5swg/U675ECMGPcemdnHlNaO8BTBeoqsIQHP 2ShhD8gCECz2fSKxTcJyEAGlVwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFJm47Gck FAU6mYG+p4b8qXHMoDTNMB8GA1UdIwQYMBaAFAK7l/2LH2IOAqHiyttZ1lbwGtpF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTEwOC9FM0IwNDZDQ0Qw MUMxMUVDQjM1NEFGMjRDNEY5QUUwMi9BcnVYX1lzZllnNENvZUxLMjFuV1Z2QWEy a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FydVhfWXNmWWc0Q29lTEsyMW5XVnZBYTJrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUxMDgvRTNCMDQ2Q0NEMDFDMTFFQ0IzNTRBRjI0QzRGOUFFMDIvMkQ0NzhBRkVE MDIwMTFFQ0IwMjE5NzJCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQByxVMMA8EAgACMAkDBwAgAQ3wAgswDQYJKoZIhvcNAQELBQADggEB AIfldoxLZ9jZNEpygi4JScnmfrevsthKIRePVZdUbXa44b68MYnjr7GoKW2SLJhk lOWTojpaNlYBfmxY+KhX7cBYuJlx/xxJUMOQzgfnrntGYD2Esg20dDZoyvdFk59U bvqfk6DVaJCps4xWHjFDIHfW+9DFrqjFBKogNWNxA7pQVnVxRXbn/P0Y6BpVEmMo VL4oupsevBgS8sZUBxblYUGvYoW+ub9uQOvHmzo73HBa6Nj5qgoDdNHrOSwy9H48 efDPanV8IFS1JAKIqI+HOijc5lv1NUd4bWtF5jV4RMWUm6tmeQpxIRUkiDeGL206 pFEgPvfjDfzkZNTf6J5Z79A= -----END CERTIFICATE-----Generated at Mon Mar 2 11:36:04 2026 by rpki-client