$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa File: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (raw, json) Hash identifier: r4+DOtWwyuCWCou7THCDzdNsPWvF2TgJVmwFVcXYJF4= Subject key identifier: E5:1F:46:72:28:81:96:6A:49:75:A4:60:DA:0A:34:AC:60:69:ED:93 Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E5E Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa Signing time: Fri 27 Mar 2026 06:17:56 +0000 ROA not before: Fri 27 Mar 2026 06:17:56 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 19551 IP address blocks: 203.121.47.0/24 maxlen: 24 210.19.176.0/24 maxlen: 24 211.24.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 17:47:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3678 (0xe5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Mar 27 06:17:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69c62113-f595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:31:ca:77:0b:bc:c5:b3:f6:0b:3a:32:e1:23: c0:c7:39:df:4a:b3:6c:73:c0:c6:40:e9:96:81:5e: be:0e:90:5d:0b:f5:37:f7:69:d7:5c:10:23:36:bd: 98:fa:7e:2b:54:3f:3d:8e:e2:f5:c3:88:5a:1e:2c: 48:2d:bc:48:19:3a:1b:b5:1a:7e:65:a8:37:24:f9: 6f:6c:a6:b8:2e:d9:2a:e3:f2:97:9d:38:bf:13:d7: 44:c1:cb:31:a7:52:7b:85:85:74:be:42:b9:d7:c1: ba:2f:1f:ec:a4:81:8d:e6:fe:e2:70:b5:e3:05:5c: 71:e3:0d:0d:6b:38:6b:6e:c7:ab:09:c5:1a:90:1f: d8:67:37:1f:bc:9d:dd:54:f7:25:17:03:d8:a4:66: 84:4c:23:ef:ca:90:cd:33:b5:67:48:ee:3f:c3:e6: 4e:eb:81:46:55:7e:ce:74:fd:f7:dc:41:ff:b4:24: f8:f5:c7:a0:68:8a:c9:d2:f5:ec:4c:0e:b6:2a:d4: 70:77:74:a0:18:07:5a:f7:1e:1a:27:cd:5e:7b:7d: 3b:c0:11:87:51:29:19:eb:c0:7f:0b:fb:31:eb:b6: a7:26:fd:1e:42:8f:22:af:e7:a0:76:25:49:67:61: de:7d:68:c1:35:a7:19:7d:9d:fb:74:ba:73:38:a9: 1c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1F:46:72:28:81:96:6A:49:75:A4:60:DA:0A:34:AC:60:69:ED:93 X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.121.47.0/24 210.19.176.0/24 211.24.174.0/24 Signature Algorithm: sha256WithRSAEncryption 20:df:76:41:d3:bb:88:c1:a5:3d:bf:09:a2:f1:24:24:c8:0b: 76:43:1e:ae:fe:83:48:92:eb:95:14:3e:62:dd:4c:53:6e:37: 0c:28:f6:fe:16:d8:48:20:64:54:39:76:d0:4c:b0:3c:5d:b4: d3:6a:d0:80:5b:88:0b:57:f6:df:67:3f:3a:63:83:d7:46:31: 4d:02:eb:7f:69:cc:89:19:f0:a1:c3:0e:5d:ed:2d:e6:b2:cf: 5f:21:19:60:ec:42:94:5a:58:1c:12:64:55:ae:74:f8:e0:bc: 41:81:f9:f3:24:02:42:44:5f:1d:6c:a1:63:af:3d:0a:37:0f: 94:92:58:c1:53:37:c4:6e:b4:40:14:20:34:be:20:1f:42:03: 00:47:1b:d8:6f:66:94:9a:e7:b1:68:be:96:78:9c:34:dc:a2: cf:76:64:8b:5f:1e:9f:33:09:cf:b1:f6:65:0b:fb:0b:9d:56: c0:e8:91:77:a8:7e:89:00:0f:c7:5b:e4:f1:18:06:54:fa:50: fc:71:ea:e7:c7:c5:b9:1c:09:80:90:97:50:96:fe:70:c2:a7: 22:97:40:54:4b:4c:60:7c:76:2a:67:5c:ad:ab:75:dd:35:ea: 42:23:67:f8:76:26:2e:2a:2e:71:5d:7b:9c:60:ed:15:2c:17: e4:87:b9:d9 -----BEGIN CERTIFICATE----- MIIFSDCCBDCgAwIBAgICDl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwMzI3MDYxNzU2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWM2MjExMy1mNTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDHKdwu8xbP2Czoy4SPAxznfSrNsc8DGQOmWgV6+DpBdC/U392nXXBAjNr2Y +n4rVD89juL1w4haHixILbxIGTobtRp+Zag3JPlvbKa4Ltkq4/KXnTi/E9dEwcsx p1J7hYV0vkK518G6Lx/spIGN5v7icLXjBVxx4w0NazhrbserCcUakB/YZzcfvJ3d VPclFwPYpGaETCPvypDNM7VnSO4/w+ZO64FGVX7OdP333EH/tCT49cegaIrJ0vXs TA62KtRwd3SgGAda9x4aJ81ee307wBGHUSkZ68B/C/sx67anJv0eQo8ir+egdiVJ Z2HefWjBNacZfZ37dLpzOKkcxQIDAQABo4ICbDCCAmgwHQYDVR0OBBYEFOUfRnIo gZZqSXWkYNoKNKxgae2TMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdCQzQvMkQxQTU5NUFENTBEMTFFOUJBRDZDMjI2QzRGOUFFMDIvQ0UzRkNFMzRB RjE2MTFGMEI1MEJGRjdBQzRGOUFFMDIucm9hMCsGCCsGAQUFBwEHAQH/BBwwGjAY BAIAATASAwQAy3kvAwQA0hOwAwQA0xiuMA0GCSqGSIb3DQEBCwUAA4IBAQAg33ZB 07uIwaU9vwmi8SQkyAt2Qx6u/oNIkuuVFD5i3UxTbjcMKPb+FthIIGRUOXbQTLA8 XbTTatCAW4gLV/bfZz86Y4PXRjFNAut/acyJGfChww5d7S3mss9fIRlg7EKUWlgc EmRVrnT44LxBgfnzJAJCRF8dbKFjrz0KNw+UkljBUzfEbrRAFCA0viAfQgMARxvY b2aUmuexaL6WeJw03KLPdmSLXx6fMwnPsfZlC/sLnVbA6JF3qH6JAA/HW+TxGAZU +lD8cernx8W5HAmAkJdQlv5wwqcil0BUS0xgfHYqZ1ytq3XdNepCI2f4diYuKi5x XXucYO0VLBfkh7nZ -----END CERTIFICATE-----Generated at Fri Apr 17 18:18:53 2026 by rpki-client