$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa File: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (raw, json) Hash identifier: xa2rzU8DhuvzABu0PhpiCxb/OU68RG+lrUJHazRYpJk= Subject key identifier: 73:11:11:3D:E3:8D:4C:1E:82:2E:1C:53:42:4F:08:E6:73:F0:A6:92 Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 0234 Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:28:03 +0000 ROA not before: Sun 27 Jul 2025 03:38:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9738 IP address blocks: 203.9.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Jul 27 03:38:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3ea83-f111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f0:e9:f5:77:bf:b9:56:f1:c9:4e:d4:b4:eb: b8:cf:15:26:80:f3:78:62:9a:75:6e:01:df:38:6a: 6d:d3:73:69:85:45:82:a2:82:34:3b:d4:d8:98:0e: dd:8c:ee:41:ed:a5:33:61:00:bf:f9:8b:67:9e:84: dd:05:d4:d3:84:67:2d:68:18:d0:6b:02:9f:37:c7: 03:2d:a8:bd:4c:75:16:3d:a2:43:bc:b2:2f:f1:bb: ca:ce:fa:13:74:19:94:8d:bc:ef:2f:d4:06:32:ff: 52:fc:85:14:d2:60:09:71:3d:2e:82:0c:99:6f:e3: 29:6b:64:ac:f9:ea:e0:b0:14:61:35:ed:79:76:04: 04:40:de:8a:46:6b:4b:5e:a3:d8:20:77:6a:aa:aa: c4:5e:03:fc:b2:75:19:7e:e4:42:64:76:39:b7:91: 53:9a:45:3f:40:48:9e:43:00:c3:f4:3f:e5:cd:f9: bb:ce:6d:be:fc:4b:f9:2e:f8:5c:0b:12:00:dd:40: 0c:60:18:c4:6d:4a:83:d2:26:89:07:69:b1:f8:af: 0e:b2:02:ab:97:a3:6f:67:c2:38:80:ab:bf:36:28: 71:ef:de:a7:b5:92:94:de:e6:b7:68:2c:48:a6:ab: 31:2b:b0:59:55:be:e6:2f:c7:d7:09:94:97:9d:70: 0d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:11:11:3D:E3:8D:4C:1E:82:2E:1C:53:42:4F:08:E6:73:F0:A6:92 X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.9.64.0/24 Signature Algorithm: sha256WithRSAEncryption 78:ce:f2:10:0c:a1:27:a3:ff:62:48:14:1e:db:65:9e:3a:9a: da:53:02:41:22:c7:33:e2:59:40:66:a4:db:0c:7c:15:85:fe: 8b:ec:f7:24:ab:7a:3d:6f:73:02:c0:f9:2c:3c:65:7e:e2:d9: 01:c2:37:b9:89:02:e8:30:e8:f8:1f:08:c6:fd:c6:3c:47:50: d3:e1:33:94:21:1a:b0:cc:b5:03:c4:bb:81:9f:24:b0:8a:4e: 9c:45:e0:7e:21:81:d3:7d:8e:f5:e1:b9:43:c8:fc:79:d8:02: e6:27:25:bf:04:b9:16:9f:d4:4f:92:c0:de:e3:be:4e:01:a2: 27:26:bb:75:f9:98:7d:8d:d4:bc:0a:ee:7a:2c:ad:2b:3f:ef: 1b:fc:60:b6:9c:dd:e9:52:14:fb:30:50:ae:de:67:38:52:16: 06:0d:ce:aa:50:41:47:ff:ad:6c:0c:b7:f6:0f:30:13:99:13: 36:7d:53:c9:4f:d8:c2:e1:ac:fd:b0:38:00:6a:71:1f:80:57: de:f9:04:0a:5b:33:32:28:17:6a:93:f0:e9:f5:8a:9e:6c:6e: a2:33:6c:2b:f1:f7:46:37:c3:55:52:72:f5:9c:4c:e6:06:32: 54:f2:7d:cb:66:c8:97:d1:81:0b:99:63:93:81:be:24:40:be: 87:1f:f2:55 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjUwNzI3MDMzODM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZWE4My1mMTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vDp9Xe/uVbxyU7UtOu4zxUmgPN4Ypp1bgHfOGpt03NphUWCooI0O9TYmA7d jO5B7aUzYQC/+YtnnoTdBdTThGctaBjQawKfN8cDLai9THUWPaJDvLIv8bvKzvoT dBmUjbzvL9QGMv9S/IUU0mAJcT0uggyZb+Mpa2Ss+ergsBRhNe15dgQEQN6KRmtL XqPYIHdqqqrEXgP8snUZfuRCZHY5t5FTmkU/QEieQwDD9D/lzfm7zm2+/Ev5Lvhc CxIA3UAMYBjEbUqD0iaJB2mx+K8OsgKrl6NvZ8I4gKu/Nihx796ntZKU3ua3aCxI pqsxK7BZVb7mL8fXCZSXnXANVQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHMRET3j jUwegi4cU0JPCOZz8KaSMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE5RjgvQ0FFNkI0Q0VCQ0ExMTFFREEzNzA3ODBEQzRGOUFFMDIvNUU1REYyMDZC Q0E0MTFFREJEMzk3MzBFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAywlAMA0GCSqGSIb3DQEBCwUAA4IBAQB4zvIQDKEno/9iSBQe22We OpraUwJBIscz4llAZqTbDHwVhf6L7Pckq3o9b3MCwPksPGV+4tkBwje5iQLoMOj4 HwjG/cY8R1DT4TOUIRqwzLUDxLuBnySwik6cReB+IYHTfY714blDyPx52ALmJyW/ BLkWn9RPksDe475OAaInJrt1+Zh9jdS8Cu56LK0rP+8b/GC2nN3pUhT7MFCu3mc4 UhYGDc6qUEFH/61sDLf2DzATmRM2fVPJT9jC4az9sDgAanEfgFfe+QQKWzMyKBdq k/Dp9YqebG6iM2wr8fdGN8NVUnL1nEzmBjJU8n3LZsiX0YELmWOTgb4kQL6HH/JV -----END CERTIFICATE-----Generated at Mon Mar 2 07:59:15 2026 by rpki-client