$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7BFDDDB8D42E11EB8E13801EC4F9AE02.roa File: 7BFDDDB8D42E11EB8E13801EC4F9AE02.roa (raw, json) Hash identifier: VtV1xShyMh9sjenS152zbiOl5v/xr19d8+vqjj03D0M= Subject key identifier: DC:3D:8B:A6:95:39:65:69:E4:15:AB:49:88:11:C7:42:B0:7A:45:D0 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 289B Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7BFDDDB8D42E11EB8E13801EC4F9AE02.roa Signing time: Tue 31 Mar 2026 16:19:48 +0000 ROA not before: Tue 31 Mar 2026 16:19:48 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 141238 IP address blocks: 203.213.192.0/24 maxlen: 24 203.213.193.0/24 maxlen: 24 203.213.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10395 (0x289b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Mar 31 16:19:48 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cbf424-bd0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:70:5a:18:17:34:c7:e2:d7:c2:18:5d:bc:db: 8f:42:31:8f:b4:eb:66:c6:46:ee:11:0f:35:44:df: af:ee:e3:71:83:3b:96:46:cf:c7:e0:e3:ea:54:45: 39:fc:07:97:09:76:df:e6:8f:77:8f:24:91:d8:c8: fc:36:b5:70:45:a2:f1:b2:c4:45:17:23:ba:ca:0f: 73:1e:f6:de:40:37:6a:40:05:7b:1d:84:7e:b2:7f: 56:99:57:1f:30:21:3c:02:18:0d:79:ec:02:91:ee: 74:38:fe:f6:d4:52:d5:f8:5c:2a:1d:26:a2:0c:bb: 93:f6:55:0b:0b:0c:27:29:99:18:b3:87:8c:14:66: e3:39:40:9a:70:74:22:bb:cc:0b:6d:a1:c8:b0:c4: 3f:60:bc:e1:9f:e0:3d:52:f5:dd:e1:9b:27:43:b9: 11:b3:b9:e0:9a:13:32:5e:1b:9c:04:e9:23:b7:ec: 46:65:d1:1c:c6:8f:a9:25:52:7b:e1:f8:81:ea:51: 85:b6:44:9c:f3:56:96:86:e1:03:02:ab:44:ad:62: 08:1d:d4:10:4a:12:e8:45:2a:cb:96:8c:d2:8a:72: 72:78:1e:22:b7:bc:c5:60:28:01:51:cd:2f:f7:d1: 4c:6d:72:47:67:a1:bd:be:e6:f8:a1:c9:77:02:1e: 99:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3D:8B:A6:95:39:65:69:E4:15:AB:49:88:11:C7:42:B0:7A:45:D0 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7BFDDDB8D42E11EB8E13801EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.213.192.0-203.213.194.255 Signature Algorithm: sha256WithRSAEncryption b4:e9:e7:1b:14:af:0f:dc:3d:83:aa:61:ea:bf:c3:5f:e0:31: 10:bd:86:f5:28:79:a7:78:09:f0:ba:d0:47:f6:a2:a5:48:b5: 9a:d8:5f:49:b1:b7:81:49:46:da:f1:08:88:60:a6:24:cc:30: 44:2e:c8:cd:aa:53:da:3c:4c:b8:66:7f:62:d6:34:1d:cc:79: 26:dd:56:b1:23:b9:6f:01:c1:54:41:03:99:53:00:13:fe:d1: 31:73:43:19:b3:00:54:2e:1b:63:fb:11:0b:8b:b2:47:4f:ef: 8e:a8:8b:27:14:95:ed:0f:26:53:0f:98:32:52:ab:6f:13:6b: 8a:00:a0:47:17:b9:ea:6c:5f:15:a6:59:9a:ce:f7:e2:11:02: b1:59:dd:cd:6e:e9:13:3e:88:c4:0b:0a:83:f5:16:18:b4:a3: 56:62:cd:22:8b:08:62:fe:f9:fd:10:6b:07:69:7d:ba:af:7d: b6:c1:7f:4b:71:ca:dd:55:af:5f:79:8a:77:76:fa:e6:52:fa: df:9b:c8:86:bb:db:70:9f:24:49:d5:a5:4d:c7:cb:31:bd:27: 27:05:64:53:b8:30:15:65:3e:fe:00:87:39:d2:af:f9:83:cf: e3:a9:9d:33:3e:cb:19:b2:22:6e:cd:1b:82:9d:9e:29:9d:54: ec:78:33:c6 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICKJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwMzMxMTYxOTQ4WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiZjQyNC1iZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3BaGBc0x+LXwhhdvNuPQjGPtOtmxkbuEQ81RN+v7uNxgzuWRs/H4OPqVEU5 /AeXCXbf5o93jySR2Mj8NrVwRaLxssRFFyO6yg9zHvbeQDdqQAV7HYR+sn9WmVcf MCE8AhgNeewCke50OP721FLV+FwqHSaiDLuT9lULCwwnKZkYs4eMFGbjOUCacHQi u8wLbaHIsMQ/YLzhn+A9UvXd4ZsnQ7kRs7ngmhMyXhucBOkjt+xGZdEcxo+pJVJ7 4fiB6lGFtkSc81aWhuEDAqtErWIIHdQQShLoRSrLlozSinJyeB4it7zFYCgBUc0v 99FMbXJHZ6G9vub4ocl3Ah6ZtwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFNw9i6aV OWVp5BWrSYgRx0KwekXQMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvN0JGREREQjhE NDJFMTFFQjhFMTM4MDFFQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAbL1cADBADL1cIwDQYJKoZIhvcNAQELBQADggEBALTp5xsUrw/c PYOqYeq/w1/gMRC9hvUoead4CfC60Ef2oqVItZrYX0mxt4FJRtrxCIhgpiTMMEQu yM2qU9o8TLhmf2LWNB3MeSbdVrEjuW8BwVRBA5lTABP+0TFzQxmzAFQuG2P7EQuL skdP746oiycUle0PJlMPmDJSq28Ta4oAoEcXuepsXxWmWZrO9+IRArFZ3c1u6RM+ iMQLCoP1Fhi0o1ZizSKLCGL++f0QawdpfbqvfbbBf0txyt1Vr195ind2+uZS+t+b yIa723CfJEnVpU3HyzG9JycFZFO4MBVlPv4AhznSr/mDz+OpnTM+yxmyIm7NG4Kd nimdVOx4M8Y= -----END CERTIFICATE-----Generated at Fri Apr 17 16:39:15 2026 by rpki-client