$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/AF73E1423D2011F0ACC34F2BC4F9AE02.roa File: AF73E1423D2011F0ACC34F2BC4F9AE02.roa (raw, json) Hash identifier: W7MZ66614Bjz+q19F1iQRur60uJ3iXxnIUipfMhpqPA= Subject key identifier: FA:F2:70:DA:5D:26:C7:A6:EB:B9:A6:D5:DB:DA:DF:01:EA:BE:3B:18 Certificate issuer: /CN=A91E7656/serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Certificate serial: 0CA4 Authority key identifier: A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/AF73E1423D2011F0ACC34F2BC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:54:15 +0000 ROA not before: Sun 14 Dec 2025 18:15:27 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4859 IP address blocks: 203.207.96.0/21 maxlen: 21 203.207.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3236 (0xca4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7656, serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Validity Not Before: Dec 14 18:15:27 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a44507-52ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:8c:e4:9e:6f:bf:d6:a1:58:9a:b7:cb:17: 54:d9:09:b5:3a:d2:92:1c:55:0e:f0:ff:4c:62:5b: 81:cd:09:9f:c1:fa:5b:40:c4:cb:72:1d:07:87:7f: 8b:d4:94:dc:bf:eb:4b:9a:9e:a0:75:fb:35:23:d8: 83:05:c0:f0:9f:70:d8:0c:e0:b7:9c:51:de:48:ae: 2b:fa:ea:20:30:46:50:78:24:26:50:9d:19:7b:88: fa:b2:0e:cb:59:ca:1e:66:f2:0b:6b:f8:d7:db:fb: 36:21:8a:c4:d2:10:d8:f6:36:cf:cb:10:42:f3:bb: ea:be:b1:8f:a2:c9:e7:95:de:ed:4e:e6:b8:81:a0: ec:ad:da:45:05:0b:bd:ac:32:be:6d:98:9e:ae:7f: 7d:f8:22:d7:04:6e:07:ee:3a:59:60:25:81:fb:62: 11:e7:c3:21:a7:76:44:8c:c4:a8:51:39:39:ae:a0: 7c:2f:d5:69:90:bf:ef:fe:05:f7:c4:e1:0d:68:4c: c3:1a:12:74:95:fa:ed:df:41:07:6a:85:67:33:30: a2:d5:66:02:3d:3d:cd:e1:70:a2:e9:0e:d7:12:60: e7:0b:61:79:81:f9:9d:17:85:bc:60:b8:5b:14:e5: 8f:a7:32:d2:2c:1b:99:63:ad:05:6b:e6:de:3b:26: 4b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:F2:70:DA:5D:26:C7:A6:EB:B9:A6:D5:DB:DA:DF:01:EA:BE:3B:18 X509v3 Authority Key Identifier: keyid:A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/AF73E1423D2011F0ACC34F2BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.207.96.0-203.207.107.255 Signature Algorithm: sha256WithRSAEncryption 9d:e1:e3:50:37:bb:d0:e2:04:9a:a0:84:c1:ec:79:f6:0e:ef: 62:49:97:84:cb:f4:c4:89:94:73:2f:4c:93:62:77:74:9e:51: cb:fb:47:c4:90:f5:d1:b6:18:a3:86:39:b2:a4:7c:2a:d0:04: 65:0a:4b:9a:b7:c3:a9:34:8b:cd:da:4b:3e:b2:80:2b:90:15: 1a:42:af:5e:53:68:b3:db:74:8e:fa:da:4e:40:52:b6:cd:15: 78:f5:e8:9e:f0:72:1c:84:42:e6:fd:af:02:ef:86:9c:9d:8b: d4:cc:86:54:57:0a:88:22:7c:c5:2b:10:13:2f:9c:4c:02:4c: e3:15:2c:d1:95:21:6c:23:68:41:1f:65:b5:6f:42:86:3a:77: 7a:a1:c1:65:3a:76:c1:94:78:c1:65:8e:09:c7:5f:28:e1:c8: ff:47:01:31:e1:66:ec:43:58:af:47:02:35:ce:eb:84:d6:9d: f8:d6:e3:53:a8:0b:e1:ee:25:be:eb:2f:03:e9:ed:17:a0:72: 79:8a:19:2d:fb:f9:93:69:4b:08:9f:77:fc:71:ea:a8:27:ea: ec:c5:f8:04:07:b5:da:fb:cf:69:ed:6b:95:5e:62:d9:70:31: 10:25:91:ce:78:21:58:85:4e:66:c2:b2:a9:21:e5:de:09:9c: b2:c8:05:f7 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICDKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2NTYxMTAvBgNVBAUTKEEyMEM1N0Y1MkNFOThDODg0OEY2MzYyNTBFNEE0Njcw ODExQjUwNzYwHhcNMjUxMjE0MTgxNTI3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDUwNy01MmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfeM5J5vv9ahWJq3yxdU2Qm1OtKSHFUO8P9MYluBzQmfwfpbQMTLch0Hh3+L 1JTcv+tLmp6gdfs1I9iDBcDwn3DYDOC3nFHeSK4r+uogMEZQeCQmUJ0Ze4j6sg7L WcoeZvILa/jX2/s2IYrE0hDY9jbPyxBC87vqvrGPosnnld7tTua4gaDsrdpFBQu9 rDK+bZiern99+CLXBG4H7jpZYCWB+2IR58Mhp3ZEjMSoUTk5rqB8L9VpkL/v/gX3 xOENaEzDGhJ0lfrt30EHaoVnMzCi1WYCPT3N4XCi6Q7XEmDnC2F5gfmdF4W8YLhb FOWPpzLSLBuZY60Fa+beOyZL9QIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFPrycNpd Jsem67mm1dva3wHqvjsYMB8GA1UdIwQYMBaAFKIMV/Us6YyISPY2JQ5KRnCBG1B2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzY1Ni8wRUUzQTVCQzBD RDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJaEk5allsRGtwR2NJRWJV SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29neFg5U3pwakloSTlqWWxEa3BHY0lFYlVIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc2NTYvMEVFM0E1QkMwQ0Q2MTFFQUJGNTYyNTUzQzRGOUFFMDIvQUY3M0UxNDIz RDIwMTFGMEFDQzM0RjJCQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAXLz2ADBALLz2gwDQYJKoZIhvcNAQELBQADggEBAJ3h41A3u9Di BJqghMHsefYO72JJl4TL9MSJlHMvTJNid3SeUcv7R8SQ9dG2GKOGObKkfCrQBGUK S5q3w6k0i83aSz6ygCuQFRpCr15TaLPbdI762k5AUrbNFXj16J7wchyEQub9rwLv hpydi9TMhlRXCogifMUrEBMvnEwCTOMVLNGVIWwjaEEfZbVvQoY6d3qhwWU6dsGU eMFljgnHXyjhyP9HATHhZuxDWK9HAjXO64TWnfjW41OoC+HuJb7rLwPp7RegcnmK GS37+ZNpSwifd/xx6qgn6uzF+AQHtdr7z2nta5VeYtlwMRAlkc54IViFTmbCsqkh 5d4JnLLIBfc= -----END CERTIFICATE-----Generated at Mon Mar 2 23:24:19 2026 by rpki-client