$ rpki-client -vvf rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa File: 3773AC0C8B6111EFA3A49037C4F9AE02.roa (raw, json) Hash identifier: Te4mjLd0tS0Pp8TK/M4FDw7bPNKLJP9S5lFxUos08I4= Subject key identifier: 94:5B:6F:C4:CF:47:35:BA:9E:B0:62:9D:E4:2D:1A:B5:BD:37:C4:54 Certificate issuer: /CN=A91E689D/serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Certificate serial: 351D Authority key identifier: 40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa Signing time: Sun 01 Mar 2026 11:24:25 +0000 ROA not before: Mon 16 Jun 2025 15:10:55 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45810 IP address blocks: 203.217.128.0/22 maxlen: 22 203.217.128.0/23 maxlen: 23 203.217.130.0/24 maxlen: 24 203.217.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13597 (0x351d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E689D, serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Validity Not Before: Jun 16 15:10:55 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a421e9-1b12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0d:56:92:7a:d7:e1:c0:ed:79:b0:c0:77:bd: 7b:b0:b8:3a:3f:be:d2:1d:5b:6e:13:fb:67:4c:59: 54:b4:2c:b4:42:f8:f9:49:f3:4c:c6:98:dc:72:1b: 0c:f0:0b:0c:f9:8f:03:0b:81:82:13:dd:f9:24:18: 26:8a:a5:59:9e:30:cd:5f:40:3b:a1:92:39:8b:c0: 5c:fb:52:e7:52:ec:fa:18:c6:bc:aa:8b:eb:29:2c: f3:03:86:84:c3:dc:6d:89:e4:a1:b1:3a:48:43:df: 6b:38:45:e6:61:44:d8:58:a2:d8:17:d8:89:17:05: a6:a6:48:11:00:d5:2e:07:db:de:2d:f2:f0:4c:e3: 5d:6f:64:6b:33:bc:35:e0:75:c3:b6:fa:e8:9f:df: 54:6b:36:c9:79:ea:9e:8b:53:aa:18:24:d5:c3:01: 3a:f9:f2:58:20:6e:5b:0f:35:ca:1e:f4:f8:34:94: 29:68:71:d8:c8:69:9b:6d:13:45:04:a7:61:45:36: 35:ec:e6:d4:42:ac:da:9e:50:1d:bb:57:36:5f:ac: 21:82:03:4d:d7:bf:4f:4e:1d:53:ec:b8:17:d5:38: f0:23:bd:0d:96:92:6d:f3:22:d8:6c:bd:a2:61:39: 7c:98:94:b0:87:7a:47:b4:dd:6a:e5:e2:14:00:25: d3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:5B:6F:C4:CF:47:35:BA:9E:B0:62:9D:E4:2D:1A:B5:BD:37:C4:54 X509v3 Authority Key Identifier: keyid:40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.217.128.0/22 Signature Algorithm: sha256WithRSAEncryption b2:08:ae:57:34:65:79:69:6e:2f:40:69:ec:8d:2a:ff:e5:be: 91:3b:71:36:41:99:5f:f8:94:5f:0d:47:0a:29:37:e5:34:79: d0:d5:0c:53:8e:02:f7:37:97:3b:fe:2d:8d:2c:7a:75:87:d1: ea:b5:cd:30:16:31:e5:00:0c:90:2d:10:e6:0d:40:37:dd:31: e3:3c:c9:e9:2f:60:6f:7f:58:f8:7b:a5:39:fa:71:2c:17:1d: 79:06:92:fa:82:8e:83:40:56:30:8f:bd:7e:0e:a7:db:60:56: 71:b4:ff:e5:2d:42:4d:2d:9e:16:ea:1e:d8:dd:90:56:41:09: 8c:61:d5:99:b9:6e:ec:3d:f6:45:4e:bc:1c:7d:57:ea:8b:95: 0f:e9:ea:ea:16:41:43:97:95:57:29:69:76:ec:1a:a9:73:82: 59:e6:7e:ac:61:2d:6a:30:67:b4:a3:a4:8f:57:53:4c:1c:bc: e3:c2:7b:3a:0c:13:16:60:e2:16:da:3b:bd:f3:08:3e:c6:89: 78:77:83:97:7b:fe:cc:c5:2a:7d:8f:54:b3:89:de:ab:65:b7: 7e:a1:99:34:6f:9b:eb:d8:e2:b8:2a:0f:5a:09:a6:2a:8f:fc: 2a:d0:c4:ef:df:bb:bf:aa:fd:8a:b6:10:d4:da:f9:8f:65:ba: 1c:77:a5:5b -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICNR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4OUQxMTAvBgNVBAUTKDQwQjhEMjJFRjIzQjM3QjBCOUU1M0YzQzRFMTBENkFF M0VCOEE5OUYwHhcNMjUwNjE2MTUxMDU1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MjFlOS0xYjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ1WknrX4cDtebDAd717sLg6P77SHVtuE/tnTFlUtCy0Qvj5SfNMxpjcchsM 8AsM+Y8DC4GCE935JBgmiqVZnjDNX0A7oZI5i8Bc+1LnUuz6GMa8qovrKSzzA4aE w9xtieShsTpIQ99rOEXmYUTYWKLYF9iJFwWmpkgRANUuB9veLfLwTONdb2RrM7w1 4HXDtvron99UazbJeeqei1OqGCTVwwE6+fJYIG5bDzXKHvT4NJQpaHHYyGmbbRNF BKdhRTY17ObUQqzanlAdu1c2X6whggNN179PTh1T7LgX1TjwI70NlpJt8yLYbL2i YTl8mJSwh3pHtN1q5eIUACXTIwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJRbb8TP RzW6nrBineQtGrW9N8RUMB8GA1UdIwQYMBaAFEC40i7yOzewueU/PE4Q1q4+uKmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg5RC9DN0M2M0RBODFE OUUxMUUyODNDRUZBOEUwOEIwMkNEMi9RTGpTTHZJN043QzU1VDg4VGhEV3JqNjRx WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMalNMdkk3TjdDNTVUODhUaERXcmo2NHFaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4OUQvQzdDNjNEQTgxRDlFMTFFMjgzQ0VGQThFMDhCMDJDRDIvMzc3M0FDMEM4 QjYxMTFFRkEzQTQ5MDM3QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCy9mAMA0GCSqGSIb3DQEBCwUAA4IBAQCyCK5XNGV5aW4vQGnsjSr/ 5b6RO3E2QZlf+JRfDUcKKTflNHnQ1QxTjgL3N5c7/i2NLHp1h9Hqtc0wFjHlAAyQ LRDmDUA33THjPMnpL2Bvf1j4e6U5+nEsFx15BpL6go6DQFYwj71+DqfbYFZxtP/l LUJNLZ4W6h7Y3ZBWQQmMYdWZuW7sPfZFTrwcfVfqi5UP6erqFkFDl5VXKWl27Bqp c4JZ5n6sYS1qMGe0o6SPV1NMHLzjwns6DBMWYOIW2ju98wg+xol4d4OXe/7MxSp9 j1Szid6rZbd+oZk0b5vr2OK4Kg9aCaYqj/wq0MTv37u/qv2KthDU2vmPZbocd6Vb -----END CERTIFICATE-----Generated at Mon Mar 2 07:40:08 2026 by rpki-client