$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/89FFAC1AF26B11F092350A59636F56BC.roa File: 89FFAC1AF26B11F092350A59636F56BC.roa (raw, json) Hash identifier: GktjzTnaS2jVEU4E0L4jhJZ+0kYhshKaQ+y+Uwli+hY= Subject key identifier: FC:45:98:52:E3:89:48:19:6B:26:72:F1:D5:30:72:34:0E:33:83:37 Certificate issuer: /CN=A91D4786/serialNumber=578C8D02AEF0B43E29FECEA1895DCC9D10663535 Certificate serial: F8 Authority key identifier: 57:8C:8D:02:AE:F0:B4:3E:29:FE:CE:A1:89:5D:CC:9D:10:66:35:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/89FFAC1AF26B11F092350A59636F56BC.roa Signing time: Sun 01 Mar 2026 11:12:08 +0000 ROA not before: Thu 15 Jan 2026 23:40:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 2764 IP address blocks: 203.22.108.0/23 maxlen: 23 203.22.108.0/24 maxlen: 24 203.22.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.crl rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4786, serialNumber=578C8D02AEF0B43E29FECEA1895DCC9D10663535 Validity Not Before: Jan 15 23:40:14 2026 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a41f08-7a18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d9:5f:c2:a1:30:f5:5c:67:98:98:85:7d:b5: 32:c0:02:b2:c4:7e:d5:ab:9c:aa:2f:40:36:eb:44: 35:5c:7f:b3:c7:f2:8a:25:ec:4b:25:33:55:59:37: 73:f0:b6:28:3a:65:78:33:47:50:c7:38:66:d9:5a: 1d:18:36:8b:08:0d:71:02:86:8a:bd:0c:88:44:b5: f5:60:a9:0b:8a:4d:2a:e8:a4:cc:8b:5e:cc:32:54: 77:da:14:ac:f6:42:60:9f:b4:0d:72:be:8d:86:46: 75:97:f6:f8:94:82:41:a5:ec:51:d4:74:31:25:17: c3:f1:96:67:3d:c8:e1:28:ca:61:17:e7:20:3d:2b: b5:fd:d2:45:37:5a:89:78:84:1f:82:e5:c7:fd:11: 5a:2e:7c:3c:02:0d:64:73:83:1a:6f:85:da:3e:c1: c7:a9:6c:f6:ed:99:ec:63:ab:0b:9a:66:15:dd:73: ed:b3:32:87:2a:e7:2e:e2:c9:6b:a7:a2:30:6b:1c: c4:9a:5a:e1:e7:70:cb:93:7a:a0:cd:6b:de:12:f9: e0:29:9b:49:ad:31:0c:f8:31:81:7f:e9:25:ca:b0: af:c7:0b:ce:84:b7:6f:87:ff:75:fe:bf:20:08:06: 06:33:f1:1b:1b:b7:ca:4e:10:75:ef:24:1c:f0:0e: 6e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:45:98:52:E3:89:48:19:6B:26:72:F1:D5:30:72:34:0E:33:83:37 X509v3 Authority Key Identifier: keyid:57:8C:8D:02:AE:F0:B4:3E:29:FE:CE:A1:89:5D:CC:9D:10:66:35:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/V4yNAq7wtD4p_s6hiV3MnRBmNTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4yNAq7wtD4p_s6hiV3MnRBmNTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4786/34598C70A7C311EFB511E053C4F9AE02/89FFAC1AF26B11F092350A59636F56BC.roa sbgp-ipAddrBlock: critical IPv4: 203.22.108.0/23 Signature Algorithm: sha256WithRSAEncryption 81:de:5c:69:2d:9f:42:87:4f:3c:55:a3:a0:db:0f:67:81:d9: fd:c5:01:3c:30:01:c2:62:88:80:01:5b:39:7e:01:a0:1b:39: b1:4c:46:23:fd:21:9c:33:2f:a2:97:78:62:f1:db:d5:86:46: 87:a1:5b:c1:07:ea:f4:a2:33:5a:7a:cc:10:ed:66:f1:5a:5d: ed:f5:75:24:25:17:3e:fd:26:bb:98:cf:96:c1:0d:ba:fd:05: 60:fc:cf:67:08:ca:91:e0:be:ce:82:29:80:b9:bd:ff:67:f4: a2:4f:8e:ac:9f:d3:ba:c9:c2:5b:fa:6f:2c:86:3a:08:0e:c0: 15:25:12:6b:0c:a6:bc:be:14:5e:87:01:31:41:b6:c3:c1:f5: f2:9c:f4:3b:44:1a:69:e3:06:ea:de:41:c8:51:89:b6:65:ac: d5:41:d3:5f:33:96:13:11:77:a1:c3:ab:d9:a0:d4:c5:94:29: ec:32:d4:1d:2a:a4:8b:36:98:6a:7f:23:05:20:c0:1a:42:e7: 1c:a0:6a:25:05:63:0e:80:06:96:9f:8e:02:de:79:de:9f:e1: 3b:cf:32:d5:81:9e:f4:fc:49:fd:9e:2b:f4:7a:e2:05:16:85: c2:9e:a9:c1:82:3a:6d:3e:d6:af:86:7e:6b:93:ad:7b:23:0d: 82:20:d1:76 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ3ODYxMTAvBgNVBAUTKDU3OEM4RDAyQUVGMEI0M0UyOUZFQ0VBMTg5NURDQzlE MTA2NjM1MzUwHhcNMjYwMTE1MjM0MDE0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWYwOC03YTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9lfwqEw9VxnmJiFfbUywAKyxH7Vq5yqL0A260Q1XH+zx/KKJexLJTNVWTdz 8LYoOmV4M0dQxzhm2VodGDaLCA1xAoaKvQyIRLX1YKkLik0q6KTMi17MMlR32hSs 9kJgn7QNcr6NhkZ1l/b4lIJBpexR1HQxJRfD8ZZnPcjhKMphF+cgPSu1/dJFN1qJ eIQfguXH/RFaLnw8Ag1kc4Mab4XaPsHHqWz27ZnsY6sLmmYV3XPtszKHKucu4slr p6IwaxzEmlrh53DLk3qgzWveEvngKZtJrTEM+DGBf+klyrCvxwvOhLdvh/91/r8g CAYGM/EbG7fKThB17yQc8A5u0QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPxFmFLj iUgZayZy8dUwcjQOM4M3MB8GA1UdIwQYMBaAFFeMjQKu8LQ+Kf7OoYldzJ0QZjU1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDc4Ni8zNDU5OEM3MEE3 QzMxMUVGQjUxMUUwNTNDNEY5QUUwMi9WNHlOQXE3d3RENHBfczZoaVYzTW5SQm1O VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0eU5BcTd3dEQ0cF9zNmhpVjNNblJCbU5UVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQ3ODYvMzQ1OThDNzBBN0MzMTFFRkI1MTFFMDUzQzRGOUFFMDIvODlGRkFDMUFG MjZCMTFGMDkyMzUwQTU5NjM2RjU2QkMucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQByxZsMA0GCSqGSIb3DQEBCwUAA4IBAQCB3lxpLZ9Ch088VaOg2w9n gdn9xQE8MAHCYoiAAVs5fgGgGzmxTEYj/SGcMy+il3hi8dvVhkaHoVvBB+r0ojNa eswQ7WbxWl3t9XUkJRc+/Sa7mM+WwQ26/QVg/M9nCMqR4L7OgimAub3/Z/SiT46s n9O6ycJb+m8shjoIDsAVJRJrDKa8vhRehwExQbbDwfXynPQ7RBpp4wbq3kHIUYm2 ZazVQdNfM5YTEXehw6vZoNTFlCnsMtQdKqSLNphqfyMFIMAaQuccoGolBWMOgAaW n44C3nnen+E7zzLVgZ70/En9niv0euIFFoXCnqnBgjptPtavhn5rk617Iw2CINF2 -----END CERTIFICATE-----Generated at Mon Mar 2 05:32:01 2026 by rpki-client