$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/89FFAC1AF26B11F092350A59636F56BC.roa File: 89FFAC1AF26B11F092350A59636F56BC.roa (raw, json) Hash identifier: NFihz5oOFEQ/L/IatISrvLAQXRyCguKHk6tM5p6j0/M= Subject key identifier: 79:90:CC:A0:83:B4:16:C7:6D:A1:37:BC:86:4B:8B:D4:09:7D:F8:F2 Certificate issuer: /CN=A91D4786/serialNumber=578C8D02AEF0B43E29FECEA1895DCC9D10663535 Certificate serial: 010B Authority key identifier: 57:8C:8D:02:AE:F0:B4:3E:29:FE:CE:A1:89:5D:CC:9D:10:66:35:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/89FFAC1AF26B11F092350A59636F56BC.roa Signing time: Tue 31 Mar 2026 06:39:25 +0000 ROA not before: Tue 31 Mar 2026 06:39:25 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 2764 IP address blocks: 203.22.108.0/23 maxlen: 23 203.22.108.0/24 maxlen: 24 203.22.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.crl rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 05:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4786, serialNumber=578C8D02AEF0B43E29FECEA1895DCC9D10663535 Validity Not Before: Mar 31 06:39:25 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cb6c1d-a053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2a:05:fb:17:48:cf:39:5e:92:ce:c6:1b:f8: 49:28:7c:03:e8:56:b8:f2:a7:b2:11:b6:3a:bd:44: 37:16:37:e3:8d:10:a8:4f:3b:3d:32:9b:e1:2e:55: 8c:54:7f:59:69:ec:9b:a2:7f:e6:50:2e:1f:11:06: e7:34:d7:06:e0:cf:da:88:37:c7:33:45:7f:5b:03: a4:67:8a:64:9f:7a:32:66:78:81:a5:eb:9d:54:a7: 88:a5:69:14:5b:12:fb:01:c8:2c:9f:ef:90:22:46: df:44:8b:7d:97:92:30:83:e0:81:71:09:31:d5:12: e4:7c:c1:43:6d:79:15:03:6b:9e:7c:ce:15:e0:55: 9a:c6:47:e1:97:35:1a:85:0f:9c:bd:fc:68:e9:f1: e1:84:ea:59:19:50:01:2d:9b:7f:f8:76:cd:f1:c9: ae:b6:fe:e6:51:cb:5d:99:68:2f:e7:0f:0c:2c:ed: 8e:50:1e:68:1b:9f:0e:fe:55:e4:ca:6b:f0:36:4e: 86:5c:8b:47:e8:5a:d9:ce:3e:e8:e6:21:c7:c6:ca: 7b:10:13:37:52:4f:be:cd:8d:1f:af:7f:bd:b4:73: 10:c3:5d:f9:f8:b0:79:1f:67:b1:77:12:a1:c8:76: 83:42:16:ea:36:fc:88:96:c1:7b:47:8b:05:cc:21: ad:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:90:CC:A0:83:B4:16:C7:6D:A1:37:BC:86:4B:8B:D4:09:7D:F8:F2 X509v3 Authority Key Identifier: keyid:57:8C:8D:02:AE:F0:B4:3E:29:FE:CE:A1:89:5D:CC:9D:10:66:35:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/89FFAC1AF26B11F092350A59636F56BC.roa sbgp-ipAddrBlock: critical IPv4: 203.22.108.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:f4:4a:b8:c1:f7:50:fa:38:e3:26:ca:c8:2c:2b:14:92:b3: eb:ee:c6:a3:68:8e:85:3b:68:9c:d9:fe:2a:a2:f5:40:8a:bd: 86:c4:55:48:3b:bf:c0:76:21:1d:62:e2:4f:15:24:47:8a:97: a5:51:26:97:f4:10:6c:d1:6f:c5:b3:08:3f:b6:30:8b:09:b3: e4:00:a3:ee:08:b8:11:0b:60:43:ea:b0:6b:b9:59:12:b0:08: 07:d2:97:81:93:65:ee:0f:34:98:86:1c:bb:d5:0a:8f:70:a0: bb:f4:f6:e4:1f:7e:df:78:82:72:49:be:e1:d2:f6:86:e3:e4: e7:d7:f0:10:31:51:62:c5:91:21:82:8f:b7:8f:38:56:13:d1: f2:f4:87:1b:a0:65:55:1a:46:a2:7d:08:58:f3:ff:39:0f:e2: e0:25:7e:4a:89:ac:e8:d5:f3:03:ca:00:a6:9b:ae:d0:9d:7e: 5d:85:62:2e:53:ba:73:9d:d8:b5:cd:b2:40:96:ac:4b:e2:3b: a5:07:26:f4:f6:81:c2:c9:57:09:40:6a:32:62:4a:79:14:c7: 72:5c:98:b3:e5:57:5f:8d:d0:38:54:d1:0a:ff:3c:50:cf:11: 11:72:1e:66:ca:b3:31:02:46:95:3b:7c:59:26:fb:da:a5:25: 6e:51:7c:54 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ3ODYxMTAvBgNVBAUTKDU3OEM4RDAyQUVGMEI0M0UyOUZFQ0VBMTg5NURDQzlE MTA2NjM1MzUwHhcNMjYwMzMxMDYzOTI1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiNmMxZC1hMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzioF+xdIzzleks7GG/hJKHwD6Fa48qeyEbY6vUQ3FjfjjRCoTzs9MpvhLlWM VH9Zaeybon/mUC4fEQbnNNcG4M/aiDfHM0V/WwOkZ4pkn3oyZniBpeudVKeIpWkU WxL7Acgsn++QIkbfRIt9l5Iwg+CBcQkx1RLkfMFDbXkVA2uefM4V4FWaxkfhlzUa hQ+cvfxo6fHhhOpZGVABLZt/+HbN8cmutv7mUctdmWgv5w8MLO2OUB5oG58O/lXk ymvwNk6GXItH6FrZzj7o5iHHxsp7EBM3Uk++zY0fr3+9tHMQw135+LB5H2exdxKh yHaDQhbqNvyIlsF7R4sFzCGteQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHmQzKCD tBbHbaE3vIZLi9QJffjyMB8GA1UdIwQYMBaAFFeMjQKu8LQ+Kf7OoYldzJ0QZjU1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDc4Ni8zNDU5OEM3MEE3 QzMxMUVGQjUxMUUwNTNDNEY5QUUwMi9WNHlOQXE3d3RENHBfczZoaVYzTW5SQm1O VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0eU5BcTd3dEQ0cF9zNmhpVjNNblJCbU5UVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ3ODYvMzQ1OThDNzBBN0MzMTFFRkI1MTFFMDUzQzRGOUFFMDIvODlGRkFDMUFG MjZCMTFGMDkyMzUwQTU5NjM2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByxZsMA0GCSqGSIb3DQEBCwUAA4IBAQBM9Eq4wfdQ+jjjJsrILCsU krPr7sajaI6FO2ic2f4qovVAir2GxFVIO7/AdiEdYuJPFSRHipelUSaX9BBs0W/F swg/tjCLCbPkAKPuCLgRC2BD6rBruVkSsAgH0peBk2XuDzSYhhy71QqPcKC79Pbk H37feIJySb7h0vaG4+Tn1/AQMVFixZEhgo+3jzhWE9Hy9IcboGVVGkaifQhY8/85 D+LgJX5Kiazo1fMDygCmm67QnX5dhWIuU7pzndi1zbJAlqxL4julByb09oHCyVcJ QGoyYkp5FMdyXJiz5VdfjdA4VNEK/zxQzxERch5myrMxAkaVO3xZJvvapSVuUXxU -----END CERTIFICATE-----Generated at Fri Apr 17 13:57:10 2026 by rpki-client