$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa File: 0A956A80B48711EC83327546C4F9AE02.roa (raw, json) Hash identifier: GPyqF4lcwtD6AdIeBU1ABlfe+75GnU6EPreFafng/Eo= Subject key identifier: C5:68:B0:11:30:9D:0D:04:43:6C:4C:A6:A7:65:9D:CC:3A:52:3C:E6 Certificate issuer: /CN=A91AF0E8/serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Certificate serial: 3527 Authority key identifier: FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:11:28 +0000 ROA not before: Tue 04 Mar 2025 15:31:27 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55328 IP address blocks: 175.176.208.0/21 maxlen: 24 203.34.75.0/24 maxlen: 24 203.62.198.0/24 maxlen: 24 2401:7200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13607 (0x3527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0E8, serialNumber=FAA20A1AFB2091CB7F51147883F364A453094131 Validity Not Before: Mar 4 15:31:27 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a402c0-2067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:64:7a:3d:1c:c2:e8:08:4e:09:35:9f:f0:a6: 39:ad:ef:ce:a8:61:54:e8:7b:ca:c9:1a:58:83:4b: b6:da:62:27:49:5e:85:46:d2:86:57:f5:c0:3c:40: cb:02:81:71:17:b0:fe:77:87:f3:1d:50:04:22:3b: 64:6d:36:ea:89:fb:9d:6e:f3:a8:c4:d0:a0:cf:f7: de:e8:3c:e8:93:40:c6:4e:f3:f8:b1:85:68:64:57: 5c:2a:5b:d4:ad:fa:5e:79:60:a7:4a:8b:d5:6c:50: cd:cd:8b:c7:b2:8c:76:bf:fc:16:cf:1e:e4:f3:a8: aa:91:e6:e3:36:74:65:66:dc:11:be:f0:28:ed:da: cb:9d:05:1f:80:24:ea:5f:54:49:bd:13:95:34:31: 30:24:43:48:3c:8e:8c:7e:d3:54:31:12:f9:91:f9: a1:87:20:01:68:f8:2d:15:4b:fc:51:c1:75:54:8f: c2:ab:8c:91:fc:87:0c:05:f8:9e:91:02:1f:27:f0: d6:b4:ad:eb:b0:78:5e:c2:3d:c4:21:e5:63:d7:54: a2:5c:70:a1:14:be:82:2d:85:14:5e:dc:7e:fb:9c: 8b:13:fa:15:fd:0d:a4:95:19:23:b8:de:99:b6:9b: 3f:83:5a:22:33:11:8d:59:22:83:e8:f0:c7:6c:11: c4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:68:B0:11:30:9D:0D:04:43:6C:4C:A6:A7:65:9D:CC:3A:52:3C:E6 X509v3 Authority Key Identifier: keyid:FA:A2:0A:1A:FB:20:91:CB:7F:51:14:78:83:F3:64:A4:53:09:41:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/-qIKGvsgkct_URR4g_NkpFMJQTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-qIKGvsgkct_URR4g_NkpFMJQTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0E8/45796AD21DA311E29FFB8C9808B02CD2/0A956A80B48711EC83327546C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 175.176.208.0/21 203.34.75.0/24 203.62.198.0/24 IPv6: 2401:7200::/32 Signature Algorithm: sha256WithRSAEncryption 26:3f:1d:c6:04:e9:b0:35:41:81:d8:26:2d:4a:ca:f9:a0:53: 74:a8:d3:bd:55:b1:59:9b:73:d0:f4:f9:0f:27:24:27:43:1b: 88:f6:b3:40:52:51:f3:db:a4:8c:4b:9c:fd:6e:7a:d7:0b:6c: 6d:ef:98:8c:bd:16:53:4b:ff:b0:58:8f:4c:e9:cb:e9:9c:80: af:c3:45:24:7a:a2:d5:8f:f1:aa:20:dc:8b:ff:55:7a:23:41: a8:8a:f8:fe:d3:7a:2c:82:5c:f7:ed:f5:c5:23:f2:70:ae:e8: a2:3f:97:75:4f:a8:28:0e:22:e0:25:36:0d:1b:df:5e:99:5f: 52:ec:4f:65:b0:65:71:2b:f4:7a:ca:54:b8:94:63:b4:c0:a8: d2:7d:01:92:1e:ae:5f:fa:03:06:84:21:1d:3a:92:62:b5:46: 80:71:42:96:1e:46:b8:af:b0:01:9d:fe:d2:f7:a4:68:82:1a: e1:9a:fb:27:25:9f:29:56:96:d4:18:e4:2b:a1:42:90:f9:14: 3f:55:67:e2:e9:b5:a7:fa:0b:d1:d3:6d:a4:17:67:db:a9:7f: cd:86:2f:cc:38:ae:ff:e9:b5:5e:75:48:d6:eb:5e:df:49:54: 6d:f0:79:8d:9a:aa:44:f2:97:ff:df:1c:64:ec:51:0f:d1:b2: 35:8f:8b:ae -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICNScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwRTgxMTAvBgNVBAUTKEZBQTIwQTFBRkIyMDkxQ0I3RjUxMTQ3ODgzRjM2NEE0 NTMwOTQxMzEwHhcNMjUwMzA0MTUzMTI3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDJjMC0yMDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWR6PRzC6AhOCTWf8KY5re/OqGFU6HvKyRpYg0u22mInSV6FRtKGV/XAPEDL AoFxF7D+d4fzHVAEIjtkbTbqifudbvOoxNCgz/fe6Dzok0DGTvP4sYVoZFdcKlvU rfpeeWCnSovVbFDNzYvHsox2v/wWzx7k86iqkebjNnRlZtwRvvAo7drLnQUfgCTq X1RJvROVNDEwJENIPI6MftNUMRL5kfmhhyABaPgtFUv8UcF1VI/Cq4yR/IcMBfie kQIfJ/DWtK3rsHhewj3EIeVj11SiXHChFL6CLYUUXtx++5yLE/oV/Q2klRkjuN6Z tps/g1oiMxGNWSKD6PDHbBHEAwIDAQABo4ICezCCAncwHQYDVR0OBBYEFMVosBEw nQ0EQ2xMpqdlncw6UjzmMB8GA1UdIwQYMBaAFPqiChr7IJHLf1EUeIPzZKRTCUEx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBFOC80NTc5NkFEMjFE QTMxMUUyOUZGQjhDOTgwOEIwMkNEMi8tcUlLR3ZzZ2tjdF9VUlI0Z19Oa3BGTUpR VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1xSUtHdnNna2N0X1VSUjRnX05rcEZNSlFURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYwRTgvNDU3OTZBRDIxREEzMTFFMjlGRkI4Qzk4MDhCMDJDRDIvMEE5NTZBODBC NDg3MTFFQzgzMzI3NTQ2QzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQDr7DQAwQAyyJLAwQAyz7GMA0EAgACMAcDBQAkAXIAMA0GCSqGSIb3 DQEBCwUAA4IBAQAmPx3GBOmwNUGB2CYtSsr5oFN0qNO9VbFZm3PQ9PkPJyQnQxuI 9rNAUlHz26SMS5z9bnrXC2xt75iMvRZTS/+wWI9M6cvpnICvw0UkeqLVj/GqINyL /1V6I0Goivj+03osglz37fXFI/JwruiiP5d1T6goDiLgJTYNG99emV9S7E9lsGVx K/R6ylS4lGO0wKjSfQGSHq5f+gMGhCEdOpJitUaAcUKWHka4r7ABnf7S96Roghrh mvsnJZ8pVpbUGOQroUKQ+RQ/VWfi6bWn+gvR022kF2fbqX/Nhi/MOK7/6bVedUjW 617fSVRt8HmNmqpE8pf/3xxk7FEP0bI1j4uu -----END CERTIFICATE-----Generated at Mon Mar 2 13:48:49 2026 by rpki-client