$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/095B5200A5B111F09CCCE85FC4F9AE02.roa File: 095B5200A5B111F09CCCE85FC4F9AE02.roa (raw, json) Hash identifier: TNUwtV0t4ai+a9xbPAIji0Ma5LkcWxhYEVa6y6wNlPw= Subject key identifier: 2F:EE:E1:04:71:85:13:FF:0B:AB:DC:E0:86:43:EB:B8:57:05:B3:3D Certificate issuer: /CN=A91B3247/serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Certificate serial: BB Authority key identifier: 0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/095B5200A5B111F09CCCE85FC4F9AE02.roa Signing time: Tue 09 Jun 2026 12:25:07 +0000 ROA not before: Tue 09 Jun 2026 12:25:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154112 IP address blocks: 203.9.214.0/24 maxlen: 24 203.9.215.0/24 maxlen: 24 2001:df5:f240::/48 maxlen: 48 2001:df5:f241::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 09:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3247, serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Validity Not Before: Jun 9 12:25:07 2026 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6a280623-b587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5d:1d:7c:69:eb:50:d2:e7:13:d9:77:99:36: 31:b1:65:7c:06:38:9e:a8:b3:ff:5e:84:49:c6:ff: b3:53:a8:d6:29:cb:f8:94:40:f0:e2:8c:86:18:39: 3b:2d:2b:66:1e:4f:dc:f9:67:9d:c8:8b:0c:d1:58: d8:fc:dd:14:70:79:eb:07:3d:c7:c6:4a:d6:f6:a4: bd:1b:4f:b1:ee:dc:99:67:da:53:ef:ef:c6:de:74: 34:39:ff:1d:b2:1c:29:fb:25:e8:7d:22:e3:48:62: bb:b9:47:53:c6:94:b4:c4:9e:b6:6e:58:ac:e3:3a: f0:ea:f7:9c:dc:81:cb:5e:b7:e3:e5:c5:fa:e1:35: 2a:30:b8:fd:57:9a:b0:94:6b:dc:45:ea:ef:22:23: 50:40:ea:7e:36:34:95:b9:96:6d:99:24:24:a3:49: 00:2f:09:6b:28:3a:61:cf:60:e4:52:7a:9c:be:84: e2:32:c7:da:6f:17:8d:aa:e8:e2:68:17:2a:f1:10: 79:e8:63:65:e0:2a:62:e1:e2:9e:c9:f7:e7:55:19: ba:98:00:f2:ff:85:62:50:48:fb:ee:65:a5:fe:39: df:85:58:36:04:ee:c3:07:b2:8d:4e:37:3a:c3:79: 81:2a:ed:1c:c0:33:77:4b:72:fa:7a:b2:13:04:78: 5c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:EE:E1:04:71:85:13:FF:0B:AB:DC:E0:86:43:EB:B8:57:05:B3:3D X509v3 Authority Key Identifier: keyid:0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/095B5200A5B111F09CCCE85FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.9.214.0/23 IPv6: 2001:df5:f240::/47 Signature Algorithm: sha256WithRSAEncryption 20:5b:a6:b3:c7:6c:63:b5:c1:80:b6:9f:3e:1e:d0:ed:36:ef: 39:47:18:bf:63:b3:15:27:8a:4d:83:e2:7e:d2:09:72:14:01: 4a:a1:10:8c:3c:03:9c:4b:30:93:ac:23:94:bc:07:ee:61:bf: 54:b5:9d:f8:1a:dc:3b:c5:4f:6c:03:f3:6e:c1:d4:62:44:d9: 3f:9d:6d:de:2c:1c:96:a4:a1:9b:52:5e:26:be:93:3a:e6:85: 00:63:6a:27:47:33:71:ac:a8:ce:ef:7a:72:da:69:d0:0e:10: 88:40:23:75:37:e1:f1:b6:14:a1:c8:48:d0:65:cf:54:f5:af: 52:8d:db:b9:32:d8:79:8e:36:3c:41:63:7d:b9:e4:19:3d:b3: ea:a4:1e:6b:2f:76:eb:2c:af:72:55:b8:02:fb:02:9d:9f:5c: 7d:1f:a9:a5:a9:2f:89:48:9d:b4:9c:85:9b:1b:f9:88:59:4e: 88:3c:e1:95:9e:c2:9f:1c:7c:42:49:29:4b:07:2d:e8:37:fc: cb:07:62:3b:1e:d8:27:0e:08:fa:2e:0f:6c:cf:8a:3d:6e:a4: 48:62:6e:28:9c:38:17:c5:23:24:c7:56:d0:a8:3a:5a:ca:d5: af:59:32:a1:21:00:5d:a7:8c:13:16:c6:7a:f1:d7:1d:57:aa: f0:fb:67:33 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMyNDcxMTAvBgNVBAUTKDBEREFCQkYzMUVFQzY4NzY2RUY2NjlBRjk3MzUyNDBD Mzg5OTM0NTkwHhcNMjYwNjA5MTIyNTA3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTI4MDYyMy1iNTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4F0dfGnrUNLnE9l3mTYxsWV8BjieqLP/XoRJxv+zU6jWKcv4lEDw4oyGGDk7 LStmHk/c+WedyIsM0VjY/N0UcHnrBz3HxkrW9qS9G0+x7tyZZ9pT7+/G3nQ0Of8d shwp+yXofSLjSGK7uUdTxpS0xJ62blis4zrw6vec3IHLXrfj5cX64TUqMLj9V5qw lGvcRervIiNQQOp+NjSVuZZtmSQko0kALwlrKDphz2DkUnqcvoTiMsfabxeNquji aBcq8RB56GNl4Cpi4eKeyffnVRm6mADy/4ViUEj77mWl/jnfhVg2BO7DB7KNTjc6 w3mBKu0cwDN3S3L6erITBHhcWwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFC/u4QRx hRP/C6vc4IZD67hXBbM9MB8GA1UdIwQYMBaAFA3au/Me7Gh2bvZpr5c1JAw4mTRZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzI0Ny8zMjA0NEJGRTcx RUUxMUYwOTNDMjJFMThDNEY5QUUwMi9EZHE3OHg3c2FIWnU5bW12bHpVa0REaVpO RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RkcTc4eDdzYUhadTltbXZselVrRERpWk5Gay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjMyNDcvMzIwNDRCRkU3MUVFMTFGMDkzQzIyRTE4QzRGOUFFMDIvMDk1QjUyMDBB NUIxMTFGMDlDQ0NFODVGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBywnWMA8EAgACMAkDBwEgAQ318kAwDQYJKoZIhvcNAQELBQADggEB ACBbprPHbGO1wYC2nz4e0O027zlHGL9jsxUnik2D4n7SCXIUAUqhEIw8A5xLMJOs I5S8B+5hv1S1nfga3DvFT2wD827B1GJE2T+dbd4sHJakoZtSXia+kzrmhQBjaidH M3GsqM7venLaadAOEIhAI3U34fG2FKHISNBlz1T1r1KN27ky2HmONjxBY3255Bk9 s+qkHmsvdussr3JVuAL7Ap2fXH0fqaWpL4lInbSchZsb+YhZTog84ZWewp8cfEJJ KUsHLeg3/MsHYjse2CcOCPouD2zPij1upEhibiicOBfFIyTHVtCoOlrK1a9ZMqEh AF2njBMWxnrx1x1XqvD7ZzM= -----END CERTIFICATE-----Generated at Sat Jun 13 08:43:17 2026 by rpki-client