$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa File: C2B5BE908CAF11EBBADF6F60C4F9AE02.roa (raw, json) Hash identifier: ijSV+mhVk5b804odBPIGeZbSGWGhBbi5tJ52nZMLB/E= Subject key identifier: DD:0A:D9:E1:C8:2D:04:2C:67:3B:E8:A1:67:6B:1A:2F:9C:69:09:E6 Certificate issuer: /CN=A91E4519/serialNumber=A9A75555ED70672F71D52F6593B91B4420BAA70B Certificate serial: 06D8 Authority key identifier: A9:A7:55:55:ED:70:67:2F:71:D5:2F:65:93:B9:1B:44:20:BA:A7:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa Signing time: Sun 01 Mar 2026 08:44:44 +0000 ROA not before: Wed 02 Apr 2025 22:54:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142011 IP address blocks: 203.89.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.crl rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:17:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4519, serialNumber=A9A75555ED70672F71D52F6593B91B4420BAA70B Validity Not Before: Apr 2 22:54:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a3fc7c-5872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d0:b6:97:58:72:1e:cd:8d:48:68:f8:67:a0: a9:be:f5:3a:e1:3e:c8:d6:9f:57:45:89:c6:ba:62: d1:7a:8c:80:08:6a:e6:9e:fe:bb:e4:e0:00:d5:0e: e2:e6:43:de:8f:77:2f:e0:15:21:f8:f8:e3:03:37: 97:14:88:71:66:fd:58:9b:23:eb:83:b1:ee:45:dd: eb:ea:93:89:74:e4:a1:5a:06:8e:a2:91:b3:da:3c: 6f:e9:cb:63:6d:09:af:d5:be:32:41:d8:51:b5:fa: bd:0a:ce:85:b0:8d:ff:ed:e7:e8:9d:9f:e9:ff:98: 3f:4d:42:24:bf:22:88:92:c3:36:f8:f8:de:9e:fe: de:80:2d:bd:a7:5c:31:cf:7a:47:d2:20:6f:32:e4: 50:c3:f3:f7:25:a2:3b:a8:c1:de:37:e9:a0:be:03: 7e:88:6d:e3:be:a9:48:92:1d:b7:b1:14:31:4c:36: b6:12:be:31:7b:35:2e:42:26:32:73:16:6f:a4:d8: ed:72:61:93:e6:ab:53:a9:04:2c:97:2b:f9:38:e4: 2b:59:4c:b0:17:33:60:57:2c:a9:c6:13:fd:13:ba: ea:9c:6d:1f:e8:5c:5f:44:40:e9:b1:d4:ed:7a:45: 34:91:82:43:fa:8f:e6:3e:1e:26:dd:d6:e1:c5:1f: 3a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:0A:D9:E1:C8:2D:04:2C:67:3B:E8:A1:67:6B:1A:2F:9C:69:09:E6 X509v3 Authority Key Identifier: keyid:A9:A7:55:55:ED:70:67:2F:71:D5:2F:65:93:B9:1B:44:20:BA:A7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.89.151.0/24 Signature Algorithm: sha256WithRSAEncryption a7:d1:a9:2e:f3:13:fa:9a:bf:89:4e:1e:5d:6f:2b:c8:de:7b: 25:9d:f5:2d:28:6a:d8:92:8f:7a:67:1d:38:46:bb:f7:0f:c5: fd:9a:50:e3:8f:d9:59:6b:56:72:f8:a5:dc:84:55:01:8c:03: 00:43:60:52:ab:26:03:a6:48:b0:f9:94:7c:65:bf:b3:5e:08: 21:cd:d9:87:35:3f:75:a2:43:89:b7:4d:ec:bf:81:97:2d:78: 56:6a:29:3d:61:82:fd:2b:fc:dd:8a:ec:1f:4f:b4:42:76:5f: 00:c7:aa:4a:a3:b9:35:6b:22:54:ca:27:13:c0:4c:0a:9a:0e: 52:cd:02:10:87:4c:26:3a:18:b6:f0:28:67:fa:db:67:53:cc: f2:2c:47:12:0d:84:b2:75:6e:1d:9b:b1:39:dd:33:9f:6e:90: dd:bf:78:8f:c6:b6:05:25:98:c6:28:3c:7c:1a:5c:eb:61:5d: 9c:a2:45:78:ac:c2:3c:03:ff:24:fe:04:dc:bf:fb:aa:16:e4: 24:c6:8e:8e:cd:55:0e:a8:60:33:a0:5c:98:f2:15:c1:df:d0: 76:25:50:4e:ea:f8:0e:14:ba:19:9b:16:73:53:18:43:25:61: eb:59:22:14:49:81:e8:85:93:d1:af:26:2d:4a:ee:86:5f:85: 54:88:fb:fe -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ1MTkxMTAvBgNVBAUTKEE5QTc1NTU1RUQ3MDY3MkY3MUQ1MkY2NTkzQjkxQjQ0 MjBCQUE3MEIwHhcNMjUwNDAyMjI1NDIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmM3Yy01ODcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNC2l1hyHs2NSGj4Z6CpvvU64T7I1p9XRYnGumLReoyACGrmnv675OAA1Q7i 5kPej3cv4BUh+PjjAzeXFIhxZv1YmyPrg7HuRd3r6pOJdOShWgaOopGz2jxv6ctj bQmv1b4yQdhRtfq9Cs6FsI3/7efonZ/p/5g/TUIkvyKIksM2+Pjenv7egC29p1wx z3pH0iBvMuRQw/P3JaI7qMHeN+mgvgN+iG3jvqlIkh23sRQxTDa2Er4xezUuQiYy cxZvpNjtcmGT5qtTqQQslyv5OOQrWUywFzNgVyypxhP9E7rqnG0f6FxfREDpsdTt ekU0kYJD+o/mPh4m3dbhxR86iwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFN0K2eHI LQQsZzvooWdrGi+caQnmMB8GA1UdIwQYMBaAFKmnVVXtcGcvcdUvZZO5G0QguqcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDUxOS8wNDI2NDkxRThD QUUxMUVCQUExQjFGNUVDNEY5QUUwMi9xYWRWVmUxd1p5OXgxUzlsazdrYlJDQzZw d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZFZWZTF3Wnk5eDFTOWxrN2tiUkNDNnB3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ1MTkvMDQyNjQ5MUU4Q0FFMTFFQkFBMUIxRjVFQzRGOUFFMDIvQzJCNUJFOTA4 Q0FGMTFFQkJBREY2RjYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy1mXMA0GCSqGSIb3DQEBCwUAA4IBAQCn0aku8xP6mr+JTh5dbyvI 3nslnfUtKGrYko96Zx04Rrv3D8X9mlDjj9lZa1Zy+KXchFUBjAMAQ2BSqyYDpkiw +ZR8Zb+zXgghzdmHNT91okOJt03sv4GXLXhWaik9YYL9K/zdiuwfT7RCdl8Ax6pK o7k1ayJUyicTwEwKmg5SzQIQh0wmOhi28Chn+ttnU8zyLEcSDYSydW4dm7E53TOf bpDdv3iPxrYFJZjGKDx8GlzrYV2cokV4rMI8A/8k/gTcv/uqFuQkxo6OzVUOqGAz oFyY8hXB39B2JVBO6vgOFLoZmxZzUxhDJWHrWSIUSYHohZPRryYtSu6GX4VUiPv+ -----END CERTIFICATE-----Generated at Mon Mar 2 13:30:17 2026 by rpki-client