$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa File: 95BD9D90A56A11EFA5ABDC46C4F9AE02.roa (raw, json) Hash identifier: IQXJ/zZYazuLQWFRwreE4BzQ1bNBMvMkkYkVzqwMVR0= Subject key identifier: E0:9E:FA:32:E4:14:A9:65:99:D4:88:73:5E:FC:7B:1D:1C:20:BE:6A Certificate issuer: /CN=A91E3E27/serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Certificate serial: 0B41 Authority key identifier: A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:19:51 +0000 ROA not before: Wed 04 Jun 2025 20:05:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4913 IP address blocks: 203.88.86.0/24 maxlen: 24 203.88.87.0/24 maxlen: 24 203.88.88.0/24 maxlen: 24 203.88.89.0/24 maxlen: 24 203.88.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E27, serialNumber=A272ACAFE8FAA4F2A9700A6FC11425908C743D4B Validity Not Before: Jun 4 20:05:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a42ee6-d06e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:57:1b:ef:75:cc:41:5e:ea:52:8b:13:fe:5d: cb:76:f6:b5:f9:d8:47:f9:e3:15:dd:72:7f:14:e4: b5:ba:b0:4a:4d:fd:d8:54:f4:55:ce:d4:5e:5b:f8: c6:d9:12:26:d8:2c:85:48:12:b7:d0:f4:fb:e1:6e: fe:6f:f3:35:cc:12:e5:77:25:11:f6:97:e1:7b:d8: 62:4e:65:f1:b8:8c:1b:ec:71:6f:b9:71:a3:14:07: 06:b1:c0:9d:e6:5f:63:5b:41:94:4e:58:77:35:0b: dd:42:f9:7d:f0:fc:5b:61:71:17:3d:8d:84:67:69: c5:53:4c:af:46:48:5e:c2:c0:53:19:9f:f2:e3:a9: e3:6d:4d:32:59:26:17:a2:50:06:57:c7:7a:6b:9d: 15:d4:f5:97:31:3f:ee:85:18:f6:87:79:a6:c8:19: be:62:37:1b:96:aa:72:32:93:d3:50:41:48:5d:36: ad:69:a9:15:7c:04:9e:14:1c:20:be:99:6c:1b:30: b9:c4:eb:6f:3d:21:6c:b0:5e:bf:ce:ce:7b:a5:2f: a8:dc:6a:6b:48:37:ee:ac:c8:74:fd:2b:46:66:16: 12:6f:42:a9:aa:c3:3a:98:41:2d:d1:53:60:b3:7d: ca:c0:69:7c:0c:2e:91:c9:a9:2e:9e:12:50:0d:db: a4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9E:FA:32:E4:14:A9:65:99:D4:88:73:5E:FC:7B:1D:1C:20:BE:6A X509v3 Authority Key Identifier: keyid:A2:72:AC:AF:E8:FA:A4:F2:A9:70:0A:6F:C1:14:25:90:8C:74:3D:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/onKsr-j6pPKpcApvwRQlkIx0PUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/onKsr-j6pPKpcApvwRQlkIx0PUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E27/F38887666F3A11EA9840133DC4F9AE02/95BD9D90A56A11EFA5ABDC46C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.88.86.0-203.88.90.255 Signature Algorithm: sha256WithRSAEncryption 19:c0:4c:f4:21:24:80:20:78:9e:d3:db:40:32:18:09:ba:f3: 0c:26:c9:89:2f:93:19:f3:f8:96:24:99:77:aa:79:42:04:d0: 5b:42:ce:56:78:c0:40:5d:02:d3:01:2e:05:dd:9c:64:2b:80: bf:c0:71:fe:50:d7:14:4f:aa:4f:98:e6:14:54:52:42:16:ca: 1a:9f:33:d7:8b:e6:93:28:73:4c:c7:aa:a8:11:20:a0:5d:28: d6:bf:69:07:ac:02:26:4e:a5:48:f0:ec:9e:8b:ee:a9:70:63: 4f:56:27:3a:dd:ab:bc:82:01:87:60:9f:fd:67:12:c8:13:d7: f1:a6:b5:4e:93:e6:05:7d:8b:e4:fc:ce:8a:97:8d:da:07:10: b1:2d:8b:23:48:e4:f6:fb:b7:8f:a2:6b:22:85:6c:c2:00:fb: bb:de:e7:3d:f6:19:df:6c:0e:b2:bd:67:00:50:14:66:55:ec: f0:b7:bd:4a:5b:02:a9:df:62:c0:be:ad:75:5e:8d:04:3c:59: bc:61:85:54:4b:62:16:87:e2:51:d5:3d:db:71:3a:4e:3e:1e: 49:c0:ff:e0:08:5b:c5:89:09:c9:d2:e6:c3:f5:3c:4f:a6:95: dd:0d:2f:d6:e7:b4:43:ff:57:29:d6:e7:75:ab:7e:dc:a9:d2: 0f:33:c4:a4 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMjcxMTAvBgNVBAUTKEEyNzJBQ0FGRThGQUE0RjJBOTcwMEE2RkMxMTQyNTkw OEM3NDNENEIwHhcNMjUwNjA0MjAwNTA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmVlNi1kMDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlcb73XMQV7qUosT/l3Ldva1+dhH+eMV3XJ/FOS1urBKTf3YVPRVztReW/jG 2RIm2CyFSBK30PT74W7+b/M1zBLldyUR9pfhe9hiTmXxuIwb7HFvuXGjFAcGscCd 5l9jW0GUTlh3NQvdQvl98PxbYXEXPY2EZ2nFU0yvRkhewsBTGZ/y46njbU0yWSYX olAGV8d6a50V1PWXMT/uhRj2h3mmyBm+YjcblqpyMpPTUEFIXTataakVfASeFBwg vplsGzC5xOtvPSFssF6/zs57pS+o3GprSDfurMh0/StGZhYSb0KpqsM6mEEt0VNg s33KwGl8DC6RyakunhJQDdukBwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFOCe+jLk FKllmdSIc178ex0cIL5qMB8GA1UdIwQYMBaAFKJyrK/o+qTyqXAKb8EUJZCMdD1L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UyNy9GMzg4ODc2NjZG M0ExMUVBOTg0MDEzM0RDNEY5QUUwMi9vbktzci1qNnBQS3BjQXB2d1JRbGtJeDBQ VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29uS3NyLWo2cFBLcGNBcHZ3UlFsa0l4MFBVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNFMjcvRjM4ODg3NjY2RjNBMTFFQTk4NDAxMzNEQzRGOUFFMDIvOTVCRDlEOTBB NTZBMTFFRkE1QUJEQzQ2QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAHLWFYDBADLWFowDQYJKoZIhvcNAQELBQADggEBABnATPQhJIAg eJ7T20AyGAm68wwmyYkvkxnz+JYkmXeqeUIE0FtCzlZ4wEBdAtMBLgXdnGQrgL/A cf5Q1xRPqk+Y5hRUUkIWyhqfM9eL5pMoc0zHqqgRIKBdKNa/aQesAiZOpUjw7J6L 7qlwY09WJzrdq7yCAYdgn/1nEsgT1/GmtU6T5gV9i+T8zoqXjdoHELEtiyNI5Pb7 t4+iayKFbMIA+7ve5z32Gd9sDrK9ZwBQFGZV7PC3vUpbAqnfYsC+rXVejQQ8Wbxh hVRLYhaH4lHVPdtxOk4+HknA/+AIW8WJCcnS5sP1PE+mld0NL9bntEP/VynW53Wr ftyp0g8zxKQ= -----END CERTIFICATE-----Generated at Mon Mar 2 09:25:56 2026 by rpki-client