$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa File: 2E7B4F0CD45811EF908AFE44C4F9AE02.roa (raw, json) Hash identifier: Nqf4hrafumWk1QomT3Eyu5REn5mnaQ8v2Ft+DiTAP7Q= Subject key identifier: A5:DA:2E:CA:13:13:F4:CA:F7:DF:18:4C:29:91:5D:88:F1:F3:88:56 Certificate issuer: /CN=A91C6BB9/serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE Certificate serial: 07C5 Authority key identifier: C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:41:49 +0000 ROA not before: Tue 10 Jun 2025 22:09:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17763 IP address blocks: 203.12.28.0/24 maxlen: 24 203.28.70.0/24 maxlen: 24 203.28.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1989 (0x7c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB9, serialNumber=C79112C7C5AC36583221D1F94675196C2136EABE Validity Not Before: Jun 10 22:09:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a409dd-fc04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7a:cd:d9:71:51:80:89:21:e6:59:81:5a:ff: 15:96:ab:2a:e7:89:39:52:7d:f3:36:d5:29:dd:7c: c9:3d:c8:cf:5a:30:84:71:fc:f4:07:cd:29:b5:67: 27:aa:93:f7:13:c6:f7:14:46:ce:6f:58:e7:54:6d: 81:a1:d7:ac:a8:25:3b:2a:09:c0:8e:38:85:cf:78: 63:07:8e:9b:88:04:5a:ae:74:3b:47:38:7d:d4:bd: bf:bb:54:75:27:bb:23:b3:27:c8:72:c3:d6:44:44: b4:e1:02:6f:97:d0:4f:91:91:b0:b7:9b:66:90:ea: 06:6e:0d:cf:97:65:10:5b:14:7d:af:e3:d8:49:60: b9:50:02:c4:33:94:62:d2:2b:bc:e1:07:70:22:fa: 26:a6:10:68:2f:70:84:94:2f:50:c3:63:42:9e:2d: ac:e7:c5:a9:10:bb:0c:b7:51:48:31:79:55:fb:c3: eb:08:10:3b:d1:4a:90:1f:1d:6f:23:f6:3e:0a:59: 83:1a:a2:01:15:33:6d:9a:a8:a7:b8:4c:3f:ff:74: f4:3c:94:a9:50:4c:d3:04:e2:b7:9e:b8:54:e2:83: 8a:b9:90:50:22:a3:e4:71:24:a4:9a:33:c4:7e:89: 18:7b:b2:fb:e6:1b:ea:4b:12:fd:d6:65:c9:8c:4d: 2b:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:DA:2E:CA:13:13:F4:CA:F7:DF:18:4C:29:91:5D:88:F1:F3:88:56 X509v3 Authority Key Identifier: keyid:C7:91:12:C7:C5:AC:36:58:32:21:D1:F9:46:75:19:6C:21:36:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/x5ESx8WsNlgyIdH5RnUZbCE26r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5ESx8WsNlgyIdH5RnUZbCE26r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB9/6BDEAA7E390C11EBB2181D63C4F9AE02/2E7B4F0CD45811EF908AFE44C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.12.28.0/24 203.28.70.0/23 Signature Algorithm: sha256WithRSAEncryption 31:a4:ff:99:2c:b5:a0:82:63:f5:a8:f5:bd:b8:b5:f8:e6:9a: 06:6d:68:5d:56:fb:7f:6a:21:3e:90:56:c3:c6:1a:97:19:dc: 7d:0c:5d:ec:12:24:4f:2f:9f:b5:09:09:01:50:8a:47:f1:42: 79:cc:e5:bc:e4:fb:09:95:31:15:ef:e6:d6:c0:b4:f3:b6:df: 41:36:19:d6:62:6b:eb:36:1a:3d:2a:b7:b9:09:5b:2f:cc:8f: a3:0f:e7:07:b7:c2:8b:48:45:19:88:ed:29:f7:78:fd:57:8e: 0f:2c:9a:76:dd:46:1e:5e:cc:32:52:0d:45:de:02:71:2a:59: e5:76:b5:c7:94:1d:19:e2:73:4a:54:4d:a6:d0:59:a5:63:26: 18:02:bc:9b:eb:19:9c:f5:79:76:eb:0d:49:a9:f8:9f:1d:25: 47:da:24:5c:25:04:6b:50:d0:e7:cd:ce:fb:5c:e5:4a:f9:be: 23:7a:f7:a2:e5:6f:05:ab:df:dd:1e:48:80:1e:70:d4:fa:f9: d1:fe:6a:04:34:42:23:b1:2f:cd:f9:87:f8:57:a5:4e:c1:3b: f8:bf:19:63:5a:ae:fa:a4:41:a3:e5:fa:f7:01:20:9c:55:a3: 29:8b:c6:b5:10:bc:e4:d5:4c:0a:c6:1c:7a:2f:f5:b7:91:9d: 95:68:c0:4d -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICB8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjkxMTAvBgNVBAUTKEM3OTExMkM3QzVBQzM2NTgzMjIxRDFGOTQ2NzUxOTZD MjEzNkVBQkUwHhcNMjUwNjEwMjIwOTM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MDlkZC1mYzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nrN2XFRgIkh5lmBWv8Vlqsq54k5Un3zNtUp3XzJPcjPWjCEcfz0B80ptWcn qpP3E8b3FEbOb1jnVG2BodesqCU7KgnAjjiFz3hjB46biARarnQ7Rzh91L2/u1R1 J7sjsyfIcsPWRES04QJvl9BPkZGwt5tmkOoGbg3Pl2UQWxR9r+PYSWC5UALEM5Ri 0iu84QdwIvomphBoL3CElC9Qw2NCni2s58WpELsMt1FIMXlV+8PrCBA70UqQHx1v I/Y+ClmDGqIBFTNtmqinuEw//3T0PJSpUEzTBOK3nrhU4oOKuZBQIqPkcSSkmjPE fokYe7L75hvqSxL91mXJjE0r5QIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFKXaLsoT E/TK998YTCmRXYjx84hWMB8GA1UdIwQYMBaAFMeREsfFrDZYMiHR+UZ1GWwhNuq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCOS82QkRFQUE3RTM5 MEMxMUVCQjIxODFENjNDNEY5QUUwMi94NUVTeDhXc05sZ3lJZEg1Um5VWmJDRTI2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1RVN4OFdzTmxneUlkSDVSblVaYkNFMjZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjkvNkJERUFBN0UzOTBDMTFFQkIyMTgxRDYzQzRGOUFFMDIvMkU3QjRGMENE NDU4MTFFRjkwOEFGRTQ0QzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAywwcAwQByxxGMA0GCSqGSIb3DQEBCwUAA4IBAQAxpP+ZLLWggmP1 qPW9uLX45poGbWhdVvt/aiE+kFbDxhqXGdx9DF3sEiRPL5+1CQkBUIpH8UJ5zOW8 5PsJlTEV7+bWwLTztt9BNhnWYmvrNho9Kre5CVsvzI+jD+cHt8KLSEUZiO0p93j9 V44PLJp23UYeXswyUg1F3gJxKlnldrXHlB0Z4nNKVE2m0FmlYyYYAryb6xmc9Xl2 6w1JqfifHSVH2iRcJQRrUNDnzc77XOVK+b4jevei5W8Fq9/dHkiAHnDU+vnR/moE NEIjsS/N+Yf4V6VOwTv4vxljWq76pEGj5fr3ASCcVaMpi8a1ELzk1UwKxhx6L/W3 kZ2VaMBN -----END CERTIFICATE-----Generated at Mon Mar 2 17:14:38 2026 by rpki-client