$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8CE1/6790BE5C77CE11F0B557404CC4F9AE02/5C2EA0E477D111F0940AFF7AC4F9AE02.roa File: 5C2EA0E477D111F0940AFF7AC4F9AE02.roa (raw, json) Hash identifier: 7VkR0jxdN8QIzGOfhHVazXSronFqNfxz53QUAITrcL0= Subject key identifier: 45:9A:35:AB:0B:76:87:34:B7:DA:25:A5:E2:35:D6:90:26:35:7C:78 Certificate issuer: /CN=A91B8CE1/serialNumber=F34C521591FB2CD02DC67BDD72DCF28B07A42FF6 Certificate serial: 68 Authority key identifier: F3:4C:52:15:91:FB:2C:D0:2D:C6:7B:DD:72:DC:F2:8B:07:A4:2F:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/80xSFZH7LNAtxnvdctzyiwekL_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8CE1/6790BE5C77CE11F0B557404CC4F9AE02/5C2EA0E477D111F0940AFF7AC4F9AE02.roa Signing time: Sun 01 Mar 2026 07:13:44 +0000 ROA not before: Tue 12 Aug 2025 23:09:13 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.34.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8CE1/6790BE5C77CE11F0B557404CC4F9AE02/80xSFZH7LNAtxnvdctzyiwekL_Y.crl rsync://rpki.apnic.net/member_repository/A91B8CE1/6790BE5C77CE11F0B557404CC4F9AE02/80xSFZH7LNAtxnvdctzyiwekL_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/80xSFZH7LNAtxnvdctzyiwekL_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:18:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8CE1, serialNumber=F34C521591FB2CD02DC67BDD72DCF28B07A42FF6 Validity Not Before: Aug 12 23:09:13 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3e728-a77c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c0:a0:1b:aa:31:25:79:19:84:a8:5d:f7:be: f9:34:7b:82:62:b5:d9:dc:92:5d:8e:f1:18:9b:af: ab:67:3f:c1:45:76:43:f0:2f:86:fe:57:8a:6c:7b: 46:95:a2:2d:27:a8:7b:6b:52:1a:06:ab:a9:66:25: c5:97:8a:a1:cf:d6:f3:7c:19:7b:83:64:f5:74:49: ba:38:99:23:6d:d3:e5:ed:45:c7:23:dc:47:7c:dd: d2:5a:0a:db:52:06:30:22:8c:3f:f6:9d:a5:4a:ea: ba:b8:0c:78:1d:ca:1b:7c:d4:f2:bb:54:08:22:9e: d3:ea:6a:af:96:01:f0:df:31:26:45:7b:ad:f4:e9: d9:dd:87:6f:e9:17:f9:b3:71:14:66:2a:41:64:7e: 19:ba:cb:be:10:2e:d4:08:a4:c4:30:33:e8:6e:13: c4:d1:59:38:62:4f:3a:d7:9c:6e:02:2e:31:90:af: 24:38:51:49:7c:ef:be:b1:f8:ba:f2:7a:a1:f6:fc: e8:97:9b:b3:31:0c:13:5d:6c:e9:e9:8e:73:27:51: 58:aa:4c:52:82:4b:39:41:81:b5:d1:bb:1e:83:d3: 11:ff:88:a2:92:c7:54:06:54:b0:29:92:29:05:c9: 19:1b:8f:1b:2b:4d:71:92:bc:c9:83:33:49:25:46: 3e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:9A:35:AB:0B:76:87:34:B7:DA:25:A5:E2:35:D6:90:26:35:7C:78 X509v3 Authority Key Identifier: keyid:F3:4C:52:15:91:FB:2C:D0:2D:C6:7B:DD:72:DC:F2:8B:07:A4:2F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8CE1/6790BE5C77CE11F0B557404CC4F9AE02/80xSFZH7LNAtxnvdctzyiwekL_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/80xSFZH7LNAtxnvdctzyiwekL_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8CE1/6790BE5C77CE11F0B557404CC4F9AE02/5C2EA0E477D111F0940AFF7AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.34.41.0/24 Signature Algorithm: sha256WithRSAEncryption b3:eb:26:6c:25:07:ce:92:b4:ff:2d:c1:93:05:5c:18:fb:20: b4:2e:be:02:c1:42:c0:42:7a:7a:99:ef:2f:d2:9a:4d:36:91: 84:d1:ad:2a:73:87:71:7e:2a:28:85:bd:47:77:01:0b:53:34: 7a:42:19:f5:1d:61:a6:1a:c0:52:2d:94:a5:d7:4a:2b:9a:20: b2:56:b0:66:0f:4a:8b:78:5a:82:c4:af:5c:89:73:ba:15:92: 58:73:75:62:78:05:4b:23:37:a8:94:f2:45:d4:65:70:69:8d: 41:77:c7:38:4a:19:0e:91:09:5b:09:ae:24:c5:8e:7d:ee:fb: b7:ac:ba:f8:f9:90:44:a8:24:91:1b:dd:d5:3c:56:ae:46:8c: 0b:82:25:ed:c2:38:cb:e7:b4:ba:30:20:65:2c:7c:d5:0b:33: 07:96:3b:b0:6a:6d:6f:eb:b4:a1:c9:fb:ba:ea:5e:ab:89:5a: b5:fb:c3:b0:b7:01:82:8c:3e:01:c3:5b:3c:7c:5e:7c:90:2b: e5:b2:42:3c:c8:3b:47:52:24:39:97:28:cb:98:66:95:c5:e4: 6c:2d:8f:23:2e:1f:cd:f5:e6:a2:51:66:30:a5:82:52:a0:28: 87:43:e7:de:a5:64:ac:2a:06:bb:16:6f:c5:0e:ef:fc:5f:3b: 85:38:90:32 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OENFMTExMC8GA1UEBRMoRjM0QzUyMTU5MUZCMkNEMDJEQzY3QkRENzJEQ0YyOEIw N0E0MkZGNjAeFw0yNTA4MTIyMzA5MTNaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNlNzI4LWE3N2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAwKAbqjEleRmEqF33vvk0e4Jitdnckl2O8Ribr6tnP8FFdkPwL4b+V4pse0aV oi0nqHtrUhoGq6lmJcWXiqHP1vN8GXuDZPV0Sbo4mSNt0+XtRccj3Ed83dJaCttS BjAijD/2naVK6rq4DHgdyht81PK7VAgintPqaq+WAfDfMSZFe6306dndh2/pF/mz cRRmKkFkfhm6y74QLtQIpMQwM+huE8TRWThiTzrXnG4CLjGQryQ4UUl8776x+Lry eqH2/OiXm7MxDBNdbOnpjnMnUViqTFKCSzlBgbXRux6D0xH/iKKSx1QGVLApkikF yRkbjxsrTXGSvMmDM0klRj5fAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQURZo1qwt2 hzS32iWl4jXWkCY1fHgwHwYDVR0jBBgwFoAU80xSFZH7LNAtxnvdctzyiwekL/Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4Q0UxLzY3OTBCRTVDNzdD RTExRjBCNTU3NDA0Q0M0RjlBRTAyLzgweFNGWkg3TE5BdHhudmRjdHp5aXdla0xf WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODB4U0ZaSDdMTkF0eG52ZGN0enlpd2VrTF9ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OENFMS82NzkwQkU1Qzc3Q0UxMUYwQjU1NzQwNENDNEY5QUUwMi81QzJFQTBFNDc3 RDExMUYwOTQwQUZGN0FDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLIikwDQYJKoZIhvcNAQELBQADggEBALPrJmwlB86StP8twZMFXBj7 ILQuvgLBQsBCenqZ7y/Smk02kYTRrSpzh3F+KiiFvUd3AQtTNHpCGfUdYaYawFIt lKXXSiuaILJWsGYPSot4WoLEr1yJc7oVklhzdWJ4BUsjN6iU8kXUZXBpjUF3xzhK GQ6RCVsJriTFjn3u+7esuvj5kESoJJEb3dU8Vq5GjAuCJe3COMvntLowIGUsfNUL MweWO7BqbW/rtKHJ+7rqXquJWrX7w7C3AYKMPgHDWzx8XnyQK+WyQjzIO0dSJDmX KMuYZpXF5GwtjyMuH8315qJRZjClglKgKIdD596lZKwqBrsWb8UO7/xfO4U4kDI= -----END CERTIFICATE-----Generated at Mon Mar 2 00:16:39 2026 by rpki-client