$ rpki-client -vvf rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/0235D930AE5011F0927AE62BC4F9AE02.roa File: 0235D930AE5011F0927AE62BC4F9AE02.roa (raw, json) Hash identifier: cUM/YRlGCUalihANb69w5cZ0Y6p6DB5jdCl/LBiwJeM= Subject key identifier: 34:9A:4A:0D:06:F8:54:7D:DD:E9:0A:5E:F4:DD:29:17:AF:A7:CA:99 Certificate issuer: /CN=A91C002D/serialNumber=654E020125C1B7507826F05FDDA924B5287408F9 Certificate serial: 47 Authority key identifier: 65:4E:02:01:25:C1:B7:50:78:26:F0:5F:DD:A9:24:B5:28:74:08:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZU4CASXBt1B4JvBf3akktSh0CPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/0235D930AE5011F0927AE62BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:11:32 +0000 ROA not before: Tue 21 Oct 2025 07:31:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154227 IP address blocks: 203.9.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/ZU4CASXBt1B4JvBf3akktSh0CPk.crl rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/ZU4CASXBt1B4JvBf3akktSh0CPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZU4CASXBt1B4JvBf3akktSh0CPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 09:45:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C002D, serialNumber=654E020125C1B7507826F05FDDA924B5287408F9 Validity Not Before: Oct 21 07:31:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a3d894-4c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4c:d3:17:99:e1:a0:25:1f:a9:3d:07:6f:b6: 7c:b3:59:80:6a:f4:7c:44:d7:f3:80:87:24:1c:8b: a1:3a:34:b9:61:78:81:87:00:11:0f:96:7c:d1:f7: 42:74:46:0c:41:a7:79:fd:cf:40:99:4a:14:6f:ba: 68:2e:7b:be:88:ac:cc:00:67:c1:09:6d:1f:64:2a: cd:ea:3e:7c:ae:7f:d4:19:ce:3e:84:dc:68:33:a3: 5a:03:c5:13:fa:8e:0a:d0:fa:1d:f8:cd:07:a4:63: a3:0b:0e:51:7a:bf:81:01:b4:e7:f3:f4:93:36:ed: 7f:08:8a:ef:06:eb:90:c6:ec:53:e7:3f:0b:ee:12: 6e:e3:b3:47:14:57:36:04:28:f6:ee:be:23:f4:a2: 35:e5:be:e5:6f:ab:e8:ed:0b:07:ae:04:78:fe:6f: 30:06:b8:2a:27:f3:89:f4:a5:d9:73:85:59:05:32: 1d:7f:15:ec:cd:83:7a:64:e8:89:28:73:fd:91:16: a5:4b:ba:83:40:14:96:d1:bf:80:2e:a6:cb:d8:13: 01:2e:2a:fb:95:4a:ca:c9:09:63:f4:41:01:14:50: ba:46:9a:aa:0b:20:d2:7e:e3:a7:9d:3f:69:bd:c0: 4c:a4:d1:51:2d:d6:64:40:7f:65:2d:93:5e:22:be: fe:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:9A:4A:0D:06:F8:54:7D:DD:E9:0A:5E:F4:DD:29:17:AF:A7:CA:99 X509v3 Authority Key Identifier: keyid:65:4E:02:01:25:C1:B7:50:78:26:F0:5F:DD:A9:24:B5:28:74:08:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/ZU4CASXBt1B4JvBf3akktSh0CPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZU4CASXBt1B4JvBf3akktSh0CPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C002D/149D5B52ADA611F09C4F6B4FC4F9AE02/0235D930AE5011F0927AE62BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.9.195.0/24 Signature Algorithm: sha256WithRSAEncryption 43:d2:a4:22:7b:7b:ef:0c:60:41:46:69:4b:c4:d5:85:c9:39: 24:06:e5:f7:06:71:2b:8f:a3:e0:3d:b4:c1:03:8a:11:71:51: ba:54:4a:58:a5:ff:ef:b8:23:06:e7:07:b9:4c:33:d8:29:ed: ca:52:9c:d4:bb:fa:e3:64:15:b6:1b:b5:59:50:c0:46:53:b0: 3c:87:07:7f:a6:70:da:64:98:3d:22:3b:e6:02:16:5f:a5:57: 1e:94:a1:cd:23:4c:c5:bf:4d:4d:63:ea:db:18:4a:ad:23:7d: 0d:c6:a7:bb:f1:94:0f:b8:63:3d:2f:85:aa:c0:35:f5:c4:cb: 43:bd:14:de:02:6e:8c:c1:56:60:6c:92:ec:e1:b4:67:83:e7: ff:52:2f:90:b0:c9:d6:b9:3e:41:24:65:a9:01:20:98:f2:7a: 8e:8a:81:8a:f9:27:7e:9d:82:aa:57:f5:d7:b5:5d:ad:55:19: 47:8b:90:84:1a:60:ae:97:42:ee:96:45:d2:0a:ef:62:4f:fb: ee:ff:d0:43:a4:66:9e:29:8e:cc:96:a1:dd:fa:95:de:1b:36: fa:6f:d6:c7:a4:b0:a7:db:e8:90:96:66:ba:08:60:d2:7f:c8: 9a:e6:3c:ec:1c:73:ab:09:ae:02:6f:a5:56:85:da:6d:55:c1: 42:7d:15:56 -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDAyRDExMC8GA1UEBRMoNjU0RTAyMDEyNUMxQjc1MDc4MjZGMDVGRERBOTI0QjUy ODc0MDhGOTAeFw0yNTEwMjEwNzMxNTFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YTNkODk0LTRjNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGTNMXmeGgJR+pPQdvtnyzWYBq9HxE1/OAhyQci6E6NLlheIGHABEPlnzR90J0 RgxBp3n9z0CZShRvumgue76IrMwAZ8EJbR9kKs3qPnyuf9QZzj6E3Ggzo1oDxRP6 jgrQ+h34zQekY6MLDlF6v4EBtOfz9JM27X8Iiu8G65DG7FPnPwvuEm7js0cUVzYE KPbuviP0ojXlvuVvq+jtCweuBHj+bzAGuCon84n0pdlzhVkFMh1/FezNg3pk6Iko c/2RFqVLuoNAFJbRv4AupsvYEwEuKvuVSsrJCWP0QQEUULpGmqoLINJ+46edP2m9 wEyk0VEt1mRAf2Utk14ivv5RAgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUNJpKDQb4 VH3d6Qpe9N0pF6+nypkwHwYDVR0jBBgwFoAUZU4CASXBt1B4JvBf3akktSh0CPkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwMDJELzE0OUQ1QjUyQURB NjExRjA5QzRGNkI0RkM0RjlBRTAyL1pVNENBU1hCdDFCNEp2QmYzYWtrdFNoMENQ ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWlU0Q0FTWEJ0MUI0SnZCZjNha2t0U2gwQ1BrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDAyRC8xNDlENUI1MkFEQTYxMUYwOUM0RjZCNEZDNEY5QUUwMi8wMjM1RDkzMEFF NTAxMUYwOTI3QUU2MkJDNEY5QUUwMi5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLCcMwDQYJKoZIhvcNAQELBQADggEBAEPSpCJ7e+8MYEFGaUvE1YXJ OSQG5fcGcSuPo+A9tMEDihFxUbpUSlil/++4IwbnB7lMM9gp7cpSnNS7+uNkFbYb tVlQwEZTsDyHB3+mcNpkmD0iO+YCFl+lVx6Uoc0jTMW/TU1j6tsYSq0jfQ3Gp7vx lA+4Yz0vharANfXEy0O9FN4CbozBVmBskuzhtGeD5/9SL5Cwyda5PkEkZakBIJjy eo6KgYr5J36dgqpX9de1Xa1VGUeLkIQaYK6XQu6WRdIK72JP++7/0EOkZp4pjsyW od36ld4bNvpv1seksKfb6JCWZroIYNJ/yJrmPOwcc6sJrgJvpVaF2m1VwUJ9FVY= -----END CERTIFICATE-----Generated at Mon Mar 2 12:38:38 2026 by rpki-client