$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa File: CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa (raw, json) Hash identifier: 8R5uh7x6V8pvBla2Bmxfwk8flqX3fLEl492SUiDmrZ0= Subject key identifier: 69:43:BA:91:D8:EF:E7:41:D8:72:99:49:BD:20:C5:83:02:49:93:DA Certificate issuer: /CN=A91E7BC4/serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Certificate serial: 0E3D Authority key identifier: DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa Signing time: Tue 24 Feb 2026 18:15:22 +0000 ROA not before: Tue 24 Feb 2026 18:15:22 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 19551 IP address blocks: 203.121.47.0/24 maxlen: 24 211.24.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 18:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3645 (0xe3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BC4, serialNumber=DDA7F8A74A0A74CFF6EB630428B6C9D70D57BD76 Validity Not Before: Feb 24 18:15:22 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=699deaba-2789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:67:51:4d:75:e7:45:31:37:2e:b1:7b:16:df: 0d:4c:8e:6e:e0:16:f9:5a:69:61:df:b9:86:ea:d1: d8:f6:96:d6:c0:bd:65:6c:e2:43:01:de:a8:57:c8: 05:dc:96:60:eb:b8:0b:9e:6a:70:bb:90:5a:8e:bf: 93:5e:ac:3e:a3:1f:4c:f6:c9:21:b8:2f:d5:09:4e: bd:30:3f:aa:5b:3a:86:51:9e:48:11:0e:0f:64:ba: 16:bb:48:56:ac:d3:a0:82:49:0d:66:07:62:77:e7: 06:96:5e:1b:fb:f1:dd:0b:b2:f2:54:84:55:14:f6: ed:3a:12:00:a7:be:18:b0:50:3a:f3:9e:33:b5:48: 12:b1:f0:8d:e2:cc:c8:c8:ae:0d:1e:55:72:98:c6: b4:86:8d:82:3e:2f:6b:bf:7c:da:35:58:cc:66:75: 32:2f:3e:a6:ec:83:3d:77:79:b4:b5:fa:eb:ad:44: 0c:a0:59:f6:01:2d:f6:d4:82:02:93:c8:5f:4f:5e: 1d:6a:15:19:56:78:ad:6a:24:26:bf:0f:b8:c7:b7: 24:31:77:32:a9:f8:72:b5:c6:f3:d8:74:9a:ca:44: 8d:3e:25:a8:e4:17:8c:8c:0d:f5:82:58:c9:77:5f: c0:ed:59:03:ff:ac:20:5b:3e:fc:86:88:0b:44:7c: c7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:43:BA:91:D8:EF:E7:41:D8:72:99:49:BD:20:C5:83:02:49:93:DA X509v3 Authority Key Identifier: keyid:DD:A7:F8:A7:4A:0A:74:CF:F6:EB:63:04:28:B6:C9:D7:0D:57:BD:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/3af4p0oKdM_262MEKLbJ1w1XvXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3af4p0oKdM_262MEKLbJ1w1XvXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BC4/2D1A595AD50D11E9BAD6C226C4F9AE02/CE3FCE34AF1611F0B50BFF7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.121.47.0/24 211.24.174.0/24 Signature Algorithm: sha256WithRSAEncryption 46:58:74:12:1c:a2:ec:cc:e1:c5:5f:67:84:a3:3c:f8:2b:eb: 19:a6:42:f2:dc:55:7c:d9:c1:a3:84:92:1c:d4:75:3d:5c:61: d4:11:ea:5f:46:ef:da:94:3d:97:bf:50:9e:15:9d:6b:f7:e3: bd:21:a5:06:6a:ff:50:ba:33:c4:d4:3b:3c:dc:2a:76:e8:5a: 3e:66:64:d4:1d:b2:8c:fe:a6:08:76:e8:15:62:c4:a5:2e:36: 6e:ec:97:87:58:ad:a9:12:ce:d7:23:43:57:3f:25:c8:5a:32: cb:96:53:27:da:6f:3b:88:38:2f:4b:a1:cc:c9:c4:57:09:ea: 16:62:d7:1d:cb:ad:d8:11:26:23:3c:95:0c:72:3b:b4:a9:47: 7e:b0:b6:7d:95:11:f1:e3:fe:31:63:41:79:fa:99:34:df:df: 31:c1:ce:09:dd:41:9c:18:8e:d2:69:25:e3:20:e9:7e:8f:7b: 20:35:3d:59:84:dc:16:10:b3:7e:31:0b:4c:79:2a:fc:d4:ee: e2:68:a5:79:6e:19:29:e2:52:fa:4d:90:a6:c1:b1:10:77:d4: b6:48:85:cb:07:03:6a:44:1b:1d:83:5d:08:05:27:49:9e:52: 8e:b5:85:59:c3:86:76:13:74:72:29:be:79:2f:20:13:03:6c: 13:0c:62:94 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx RTdCQzQxMTAvBgNVBAUTKEREQTdGOEE3NEEwQTc0Q0ZGNkVCNjMwNDI4QjZDOUQ3 MEQ1N0JENzYwHhcNMjYwMjI0MTgxNTIyWhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTlkZWFiYS0yNzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGdRTXXnRTE3LrF7Ft8NTI5u4Bb5Wmlh37mG6tHY9pbWwL1lbOJDAd6oV8gF 3JZg67gLnmpwu5Bajr+TXqw+ox9M9skhuC/VCU69MD+qWzqGUZ5IEQ4PZLoWu0hW rNOggkkNZgdid+cGll4b+/HdC7LyVIRVFPbtOhIAp74YsFA6854ztUgSsfCN4szI yK4NHlVymMa0ho2CPi9rv3zaNVjMZnUyLz6m7IM9d3m0tfrrrUQMoFn2AS321IIC k8hfT14dahUZVnitaiQmvw+4x7ckMXcyqfhytcbz2HSaykSNPiWo5BeMjA31gljJ d1/A7VkD/6wgWz78hogLRHzHdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGlDupHY 7+dB2HKZSb0gxYMCSZPaMB8GA1UdIwQYMBaAFN2n+KdKCnTP9utjBCi2ydcNV712 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JDNC8yRDFBNTk1QUQ1 MEQxMUU5QkFENkMyMjZDNEY5QUUwMi8zYWY0cDBvS2RNXzI2Mk1FS0xiSjF3MVh2 WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNhZjRwMG9LZE1fMjYyTUVLTGJKMXcxWHZYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdCQzQvMkQxQTU5NUFENTBEMTFFOUJBRDZDMjI2QzRGOUFFMDIvQ0UzRkNFMzRB RjE2MTFGMEI1MEJGRjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLeS8DBADTGK4wDQYJKoZIhvcNAQELBQADggEBAEZYdBIc ouzM4cVfZ4SjPPgr6xmmQvLcVXzZwaOEkhzUdT1cYdQR6l9G79qUPZe/UJ4VnWv3 470hpQZq/1C6M8TUOzzcKnboWj5mZNQdsoz+pgh26BVixKUuNm7sl4dYrakSztcj Q1c/JchaMsuWUyfabzuIOC9LoczJxFcJ6hZi1x3LrdgRJiM8lQxyO7SpR36wtn2V EfHj/jFjQXn6mTTf3zHBzgndQZwYjtJpJeMg6X6PeyA1PVmE3BYQs34xC0x5KvzU 7uJopXluGSniUvpNkKbBsRB31LZIhcsHA2pEGx2DXQgFJ0meUo61hVnDhnYTdHIp vnkvIBMDbBMMYpQ= -----END CERTIFICATE-----Generated at Mon Mar 2 02:56:51 2026 by rpki-client