$ rpki-client -vvf rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa File: 5E7BBD38259A11ECB37EA938C4F9AE02.roa (raw, json) Hash identifier: tfKQ4nSLaTty6qCyZ5NjOxlg8bhWRggP9dvKa4ut5Ms= Subject key identifier: C7:AB:31:2D:34:1D:FE:7E:B3:7D:60:3F:90:43:01:BB:4B:A8:D2:F6 Certificate issuer: /CN=A91E237A/serialNumber=A9232012F2FC05426C0688358CFE6FB9154786BC Certificate serial: 0757 Authority key identifier: A9:23:20:12:F2:FC:05:42:6C:06:88:35:8C:FE:6F:B9:15:47:86:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:42:52 +0000 ROA not before: Tue 10 Jun 2025 22:10:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45355 IP address blocks: 203.202.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.crl rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1879 (0x757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E237A, serialNumber=A9232012F2FC05426C0688358CFE6FB9154786BC Validity Not Before: Jun 10 22:10:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a40a1c-f41e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:b3:14:bd:ae:8b:dd:1f:9d:9c:8b:ea:49: e9:57:a6:67:b2:97:b2:27:13:1f:3a:04:45:32:11: bd:04:e8:e7:4f:0d:56:a5:70:89:2c:ea:07:19:b3: 58:a3:1e:31:b1:2a:42:82:f1:37:9f:ef:cf:24:9f: 7a:bf:d7:db:cb:83:2a:37:b8:81:ac:47:86:aa:a9: c7:0e:8b:47:cd:b3:30:3a:f2:76:be:96:1f:7e:c1: ad:81:10:b1:e9:44:11:40:6b:80:32:e9:f8:91:8c: 92:9b:54:8f:5b:90:82:06:48:fa:0d:cb:48:8b:90: 0e:7e:61:06:21:63:5b:16:b6:ce:13:79:28:7a:5f: e4:f1:e0:b1:a5:fd:f9:12:cd:df:4f:55:1a:d5:12: b9:98:c3:9b:7e:1e:71:c7:f5:a5:7f:fe:e8:38:1e: 00:4b:51:f7:b7:e9:97:33:b9:90:7a:d2:76:6f:78: cb:c2:a6:45:7f:03:23:49:d9:8d:b0:fb:64:9e:6c: d4:7f:dc:f2:35:02:89:44:ae:eb:e9:1f:18:b3:d7: b9:80:5e:e2:b7:df:98:51:ea:ba:80:6b:22:a2:db: a8:92:a6:16:4a:9b:11:96:22:fe:39:f9:63:97:fc: e5:de:86:2c:c2:e9:4a:76:8c:7e:73:71:50:f0:87: b7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:AB:31:2D:34:1D:FE:7E:B3:7D:60:3F:90:43:01:BB:4B:A8:D2:F6 X509v3 Authority Key Identifier: keyid:A9:23:20:12:F2:FC:05:42:6C:06:88:35:8C:FE:6F:B9:15:47:86:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.202.235.0/24 Signature Algorithm: sha256WithRSAEncryption 38:0c:70:a7:88:df:b6:f9:d8:94:5e:4f:2b:c1:1c:84:0e:94: 83:8d:55:bf:91:d1:f7:11:9b:80:f1:c4:0a:34:79:d3:bf:77: 15:73:03:b9:e6:16:7d:d4:7f:0f:24:b6:72:59:03:ae:18:68: fe:10:9e:66:51:ad:3b:af:7d:5b:65:bf:6a:3d:c6:d5:3c:f8: da:ef:59:26:b4:d4:ef:c9:15:0d:96:14:bd:52:2c:42:f2:70: 2f:31:70:a7:d1:72:6f:27:b1:3e:90:f4:c1:db:8a:16:fc:ce: 5f:32:7d:46:6f:b7:a5:a7:dc:f5:3e:ee:7c:79:67:a4:3c:45: 7e:73:c3:1b:94:d6:94:03:3e:8f:cf:ea:85:43:9c:aa:40:f1: 3f:14:1d:94:26:da:a2:f6:87:2b:5b:a0:f9:46:e0:a7:01:a9: f1:36:8a:fa:c9:03:a4:3d:74:06:ea:1e:ad:78:38:89:26:50: 5b:6c:ca:f9:cc:b6:d5:fa:28:89:75:9e:32:8a:31:4d:02:c3: a2:69:41:7b:4d:dc:6e:c1:72:8c:ca:ba:5a:8a:8a:d5:c2:4e: 24:0d:72:23:27:bf:1f:06:b3:9a:20:a2:29:4c:77:8b:e2:14: 47:64:05:5d:e5:64:d9:9b:30:97:14:1b:f2:d3:46:fa:00:2f: 3d:f2:1e:8c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIzN0ExMTAvBgNVBAUTKEE5MjMyMDEyRjJGQzA1NDI2QzA2ODgzNThDRkU2RkI5 MTU0Nzg2QkMwHhcNMjUwNjEwMjIxMDQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGExYy1mNDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZKzFL2ui90fnZyL6knpV6ZnspeyJxMfOgRFMhG9BOjnTw1WpXCJLOoHGbNY ox4xsSpCgvE3n+/PJJ96v9fby4MqN7iBrEeGqqnHDotHzbMwOvJ2vpYffsGtgRCx 6UQRQGuAMun4kYySm1SPW5CCBkj6DctIi5AOfmEGIWNbFrbOE3koel/k8eCxpf35 Es3fT1Ua1RK5mMObfh5xx/Wlf/7oOB4AS1H3t+mXM7mQetJ2b3jLwqZFfwMjSdmN sPtknmzUf9zyNQKJRK7r6R8Ys9e5gF7it9+YUeq6gGsiotuokqYWSpsRliL+Oflj l/zl3oYswulKdox+c3FQ8Ie3ZQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMerMS00 Hf5+s31gP5BDAbtLqNL2MB8GA1UdIwQYMBaAFKkjIBLy/AVCbAaINYz+b7kVR4a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjM3QS9FODgyRTQ2QzVC QTAxMUVCQUVCRTUzMjlDNEY5QUUwMi9xU01nRXZMOEJVSnNCb2cxalA1dnVSVkho cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTTWdFdkw4QlVKc0JvZzFqUDV2dVJWSGhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIzN0EvRTg4MkU0NkM1QkEwMTFFQkFFQkU1MzI5QzRGOUFFMDIvNUU3QkJEMzgy NTlBMTFFQ0IzN0VBOTM4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy8rrMA0GCSqGSIb3DQEBCwUAA4IBAQA4DHCniN+2+diUXk8rwRyE DpSDjVW/kdH3EZuA8cQKNHnTv3cVcwO55hZ91H8PJLZyWQOuGGj+EJ5mUa07r31b Zb9qPcbVPPja71kmtNTvyRUNlhS9UixC8nAvMXCn0XJvJ7E+kPTB24oW/M5fMn1G b7elp9z1Pu58eWekPEV+c8MblNaUAz6Pz+qFQ5yqQPE/FB2UJtqi9ocrW6D5RuCn AanxNor6yQOkPXQG6h6teDiJJlBbbMr5zLbV+iiJdZ4yijFNAsOiaUF7TdxuwXKM yrpaiorVwk4kDXIjJ78fBrOaIKIpTHeL4hRHZAVd5WTZmzCXFBvy00b6AC898h6M -----END CERTIFICATE-----Generated at Mon Mar 2 08:07:13 2026 by rpki-client