$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/834D7D565BAA11EFBAF22B7FC4F9AE02.roa File: 834D7D565BAA11EFBAF22B7FC4F9AE02.roa (raw, json) Hash identifier: D3M6wzI4okhGRiWpslBcCzchggkeDwBoIQLL3NU2Nsk= Subject key identifier: 30:3E:CC:12:E4:02:95:6F:67:EC:B1:14:7C:9C:FA:2D:96:F0:61:41 Certificate issuer: /CN=A91DF863/serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Certificate serial: 33C6 Authority key identifier: 39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/834D7D565BAA11EFBAF22B7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 17:07:57 +0000 ROA not before: Wed 24 Dec 2025 16:12:47 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 135437 IP address blocks: 203.175.160.0/20 maxlen: 23 203.175.160.0/21 maxlen: 24 203.175.168.0/22 maxlen: 24 203.175.172.0/23 maxlen: 24 203.175.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:07:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13254 (0x33c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF863, serialNumber=39CE15DB36739A22CAEE64E0CF8BA31F5A6B9348 Validity Not Before: Dec 24 16:12:47 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a4726d-80c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:75:9b:30:83:c7:b4:cf:67:22:62:30:16:33: f6:cb:a8:52:36:ce:dd:09:12:cf:65:fb:c1:cc:f5: 68:8c:80:24:7b:23:63:f3:6d:e2:ed:7d:b3:d0:0f: 96:aa:6c:27:30:46:ab:e1:ba:e7:f8:83:34:96:53: 77:52:71:e9:12:89:b4:c2:a4:ac:f3:2a:19:ff:f7: 56:a4:9b:73:f1:4d:ba:49:9b:2c:eb:c4:50:0a:6c: 41:7b:d2:c1:a4:c9:b9:a8:8b:4f:e6:0f:54:8d:87: 0c:20:d3:8f:14:11:41:11:e9:bd:a9:cd:c3:9f:16: 7f:f4:1d:20:0c:cc:f5:19:4e:1f:fd:cf:18:9c:8e: af:2f:42:34:94:55:55:5a:39:78:ec:60:f8:69:5d: 5e:79:0f:d0:c4:9e:14:de:c4:93:69:69:04:be:b0: 88:b5:7b:ad:e6:69:d4:54:08:08:5d:1c:df:33:f2: ba:7f:bf:f6:e1:ff:e2:05:6f:d7:12:ed:cc:fd:9d: cf:2b:93:33:06:df:08:ef:d5:3b:b4:c5:e8:28:b3: a1:ca:46:92:ad:a5:1a:7a:bc:0e:b8:34:a7:85:47: c8:7a:f6:db:c0:c9:8c:16:11:05:ed:dc:3c:ff:f2: d0:6a:ab:63:ea:d1:d5:b5:74:75:37:87:d8:8f:1c: 07:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3E:CC:12:E4:02:95:6F:67:EC:B1:14:7C:9C:FA:2D:96:F0:61:41 X509v3 Authority Key Identifier: keyid:39:CE:15:DB:36:73:9A:22:CA:EE:64:E0:CF:8B:A3:1F:5A:6B:93:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/Oc4V2zZzmiLK7mTgz4ujH1prk0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Oc4V2zZzmiLK7mTgz4ujH1prk0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF863/BFE54A68815B11E29B58A73B3292B5E8/834D7D565BAA11EFBAF22B7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.175.160.0/20 Signature Algorithm: sha256WithRSAEncryption 20:f9:e4:55:43:ba:84:79:3f:6b:6c:02:36:97:3d:30:26:29: 10:b5:04:05:e8:e7:23:87:fc:26:58:0a:aa:4d:2b:d2:03:b8: d5:a2:93:27:de:05:93:9a:e7:0d:26:6e:d0:bd:c4:55:bb:66: 1d:d9:4a:0a:99:fc:da:02:8b:b5:fd:88:06:15:56:a6:e5:8f: 24:a3:21:66:47:97:a8:65:ac:74:2a:5f:bf:0e:71:2d:00:b6: c7:d8:96:18:19:3c:1b:96:c7:9b:de:92:c0:11:0e:30:cf:18: bb:b7:40:08:dd:2c:0b:5b:eb:e0:6b:0b:06:86:ac:79:92:7b: a5:d1:c3:13:b4:26:1e:51:91:6d:d4:43:3c:f0:86:fa:04:27: 36:ff:55:37:15:a1:47:a4:3b:6f:e8:d9:36:b8:93:13:2f:1d: be:95:21:d6:6e:d1:48:b4:8b:ff:30:98:9e:12:0b:d8:01:b2: 5b:c6:a7:a7:23:74:cb:eb:8c:c2:93:bb:9a:f6:12:d0:2a:e7: f7:46:eb:e4:ff:f4:49:f4:a9:53:be:00:af:86:e1:ce:f6:85: 92:bb:8c:46:26:d0:67:3c:64:17:30:6c:29:20:f7:e3:27:19: c7:2b:bc:5b:9a:b1:ba:7f:42:a9:92:f1:dd:64:9f:32:ce:a8: 07:42:b1:6a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICM8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NjMxMTAvBgNVBAUTKDM5Q0UxNURCMzY3MzlBMjJDQUVFNjRFMENGOEJBMzFG NUE2QjkzNDgwHhcNMjUxMjI0MTYxMjQ3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NzI2ZC04MGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnWbMIPHtM9nImIwFjP2y6hSNs7dCRLPZfvBzPVojIAkeyNj823i7X2z0A+W qmwnMEar4brn+IM0llN3UnHpEom0wqSs8yoZ//dWpJtz8U26SZss68RQCmxBe9LB pMm5qItP5g9UjYcMINOPFBFBEem9qc3DnxZ/9B0gDMz1GU4f/c8YnI6vL0I0lFVV Wjl47GD4aV1eeQ/QxJ4U3sSTaWkEvrCItXut5mnUVAgIXRzfM/K6f7/24f/iBW/X Eu3M/Z3PK5MzBt8I79U7tMXoKLOhykaSraUaerwOuDSnhUfIevbbwMmMFhEF7dw8 //LQaqtj6tHVtXR1N4fYjxwH1wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFDA+zBLk ApVvZ+yxFHyc+i2W8GFBMB8GA1UdIwQYMBaAFDnOFds2c5oiyu5k4M+Lox9aa5NI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg2My9CRkU1NEE2ODgx NUIxMUUyOUI1OEE3M0IzMjkyQjVFOC9PYzRWMnpaem1pTEs3bVRnejR1akgxcHJr MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09jNFYyelp6bWlMSzdtVGd6NHVqSDFwcmswZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY4NjMvQkZFNTRBNjg4MTVCMTFFMjlCNThBNzNCMzI5MkI1RTgvODM0RDdENTY1 QkFBMTFFRkJBRjIyQjdGQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQEy6+gMA0GCSqGSIb3DQEBCwUAA4IBAQAg+eRVQ7qEeT9rbAI2lz0w JikQtQQF6Ocjh/wmWAqqTSvSA7jVopMn3gWTmucNJm7QvcRVu2Yd2UoKmfzaAou1 /YgGFVam5Y8koyFmR5eoZax0Kl+/DnEtALbH2JYYGTwblseb3pLAEQ4wzxi7t0AI 3SwLW+vgawsGhqx5knul0cMTtCYeUZFt1EM88Ib6BCc2/1U3FaFHpDtv6Nk2uJMT Lx2+lSHWbtFItIv/MJieEgvYAbJbxqenI3TL64zCk7ua9hLQKuf3Ruvk//RJ9KlT vgCvhuHO9oWSu4xGJtBnPGQXMGwpIPfjJxnHK7xbmrG6f0KpkvHdZJ8yzqgHQrFq -----END CERTIFICATE-----Generated at Mon Mar 2 14:37:09 2026 by rpki-client