$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/0AC13D943C5711F0BFBB572EC4F9AE02.roa File: 0AC13D943C5711F0BFBB572EC4F9AE02.roa (raw, json) Hash identifier: 7IPdyrB8hldu0/eD1JF7CKYpSU0HFM1oIZi+GkIqvMI= Subject key identifier: EF:65:88:A1:3E:72:17:09:64:BD:CA:60:75:C7:F2:CD:7F:E7:22:DC Certificate issuer: /CN=A91C7AA5/serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Certificate serial: DD Authority key identifier: F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/0AC13D943C5711F0BFBB572EC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:27:48 +0000 ROA not before: Wed 30 Jul 2025 10:49:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 8075 IP address blocks: 203.2.220.0/24 maxlen: 24 203.2.221.0/24 maxlen: 24 203.2.222.0/24 maxlen: 24 203.2.223.0/24 maxlen: 24 203.28.214.0/24 maxlen: 24 203.28.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AA5, serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Validity Not Before: Jul 30 10:49:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a3f883-2a57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b3:a9:e1:06:0f:f7:58:15:cb:c5:ce:0d:47: 84:f7:88:83:ef:f5:1e:bc:eb:a6:93:fd:91:84:4e: 51:28:02:c9:dd:f7:29:8f:71:ad:eb:b6:6e:f3:23: 2c:fd:54:a1:10:42:d0:5d:59:5c:26:f2:3d:d3:75: 2a:49:4b:30:e4:87:cb:c3:1c:bd:a6:28:24:8e:bb: 14:cb:9e:85:f2:cb:3e:46:e5:51:ea:5c:68:15:81: f4:2c:a9:c7:17:e8:3b:c1:c3:39:09:7f:60:28:5a: ce:6f:4c:cf:b2:cd:09:ea:15:51:4a:f1:d0:ad:3e: 51:8a:2f:a9:52:89:62:c3:50:9e:54:c1:36:10:3f: 96:bd:65:b7:f6:46:bb:de:52:64:a9:f6:23:c9:65: 92:04:0d:3f:72:93:55:50:4b:01:41:26:15:fb:8e: e8:b1:79:29:00:26:5a:26:58:0e:35:00:10:a6:f0: 4c:b6:2c:9f:d1:ad:b0:45:db:51:83:b6:9d:4a:3b: c7:75:29:65:8c:f1:6f:57:37:0e:49:dc:68:c6:38: 3a:c5:ed:00:13:c4:36:73:2a:96:79:69:07:db:1c: 47:88:60:2c:68:b7:2e:4e:2c:34:96:4e:7c:ec:fb: e0:62:32:40:e3:ee:27:ba:a4:5e:7c:86:92:0d:22: 6e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:65:88:A1:3E:72:17:09:64:BD:CA:60:75:C7:F2:CD:7F:E7:22:DC X509v3 Authority Key Identifier: keyid:F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/0AC13D943C5711F0BFBB572EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.2.220.0/22 203.28.214.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:3b:9b:04:e4:4f:5f:8b:a8:c4:70:72:03:70:d3:83:28:2c: 7e:42:ea:06:9b:f3:3d:e4:cb:ad:e2:03:60:d4:f6:02:c5:c2: 1a:78:4f:79:ea:57:d1:e2:76:cb:6b:84:e0:e3:cd:80:49:40: ea:37:ad:84:4e:1a:94:56:e7:cd:27:9f:9b:84:3a:55:fd:5b: 67:78:51:07:c5:50:ec:12:4c:db:e2:0b:df:9a:ba:e2:85:26: 20:88:71:87:d5:69:f1:46:ae:b7:95:cd:0f:89:dc:48:3c:8c: 94:b0:26:3e:4c:a1:ff:dc:77:2d:fb:ea:50:55:a9:f4:52:e2: 8c:e1:06:7a:03:7d:7b:d1:58:f8:6e:78:97:ec:91:44:56:a2: 98:0c:6a:86:09:18:f5:1e:d4:b6:a6:1e:08:f0:f1:38:7a:2e: 06:16:58:ca:96:30:cb:c0:bf:dd:fd:94:a8:28:f6:ec:df:62: 4e:54:7c:67:ff:e2:2c:ef:f9:c2:21:0c:aa:ff:02:3a:65:21: 42:a7:c7:e5:44:e7:da:45:b1:61:4e:ae:87:7a:c5:50:7b:20: 1b:06:45:0a:88:e9:50:41:74:5a:14:b3:6e:1e:0d:c6:aa:2e: 80:03:73:7c:e7:83:a2:5a:e0:7f:f3:5b:1d:0a:10:52:a9:74: a8:fd:d7:0a -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQTUxMTAvBgNVBAUTKEY3MjY3RTgwQkU4MTdGMDQzRDI4RkI3RTczMDVGNEM0 ODhBODM5MUEwHhcNMjUwNzMwMTA0OTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZjg4My0yYTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6rOp4QYP91gVy8XODUeE94iD7/UevOumk/2RhE5RKALJ3fcpj3Gt67Zu8yMs /VShEELQXVlcJvI903UqSUsw5IfLwxy9pigkjrsUy56F8ss+RuVR6lxoFYH0LKnH F+g7wcM5CX9gKFrOb0zPss0J6hVRSvHQrT5Rii+pUoliw1CeVME2ED+WvWW39ka7 3lJkqfYjyWWSBA0/cpNVUEsBQSYV+47osXkpACZaJlgONQAQpvBMtiyf0a2wRdtR g7adSjvHdSlljPFvVzcOSdxoxjg6xe0AE8Q2cyqWeWkH2xxHiGAsaLcuTiw0lk58 7PvgYjJA4+4nuqRefIaSDSJupwIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFO9liKE+ chcJZL3KYHXH8s1/5yLcMB8GA1UdIwQYMBaAFPcmfoC+gX8EPSj7fnMF9MSIqDka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FBNS9CQUZCMzU3NDE1 QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3UTlLUHQtY3dYMHhJaW9P Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5Wi1nTDZCZndROUtQdC1jd1gweElpb09Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdBQTUvQkFGQjM1NzQxNUJCMTFGMEJGRDU0ODgxQzRGOUFFMDIvMEFDMTNEOTQz QzU3MTFGMEJGQkI1NzJFQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQCywLcAwQByxzWMA0GCSqGSIb3DQEBCwUAA4IBAQBdO5sE5E9fi6jE cHIDcNODKCx+QuoGm/M95Mut4gNg1PYCxcIaeE956lfR4nbLa4Tg482ASUDqN62E ThqUVufNJ5+bhDpV/VtneFEHxVDsEkzb4gvfmrrihSYgiHGH1WnxRq63lc0PidxI PIyUsCY+TKH/3Hct++pQVan0UuKM4QZ6A3170Vj4bniX7JFEVqKYDGqGCRj1HtS2 ph4I8PE4ei4GFljKljDLwL/d/ZSoKPbs32JOVHxn/+Is7/nCIQyq/wI6ZSFCp8fl ROfaRbFhTq6HesVQeyAbBkUKiOlQQXRaFLNuHg3Gqi6AA3N854OiWuB/81sdChBS qXSo/dcK -----END CERTIFICATE-----Generated at Mon Mar 2 02:52:08 2026 by rpki-client