$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/292A3CF0376511F0A9D2D035C4F9AE02.roa File: 292A3CF0376511F0A9D2D035C4F9AE02.roa (raw, json) Hash identifier: TmFg+HOl9xaRO/AbRFAiUKYp2chUNve0kCcIJD9gzds= Subject key identifier: D3:03:B5:D2:D2:A3:ED:4E:D0:58:E9:87:FA:EA:9E:7F:F6:FB:91:19 Certificate issuer: /CN=A91E7FA1/serialNumber=FDE0D8AC88DBFC6ADE67DFFF5A3AC2EF266C5CDC Certificate serial: 99 Authority key identifier: FD:E0:D8:AC:88:DB:FC:6A:DE:67:DF:FF:5A:3A:C2:EF:26:6C:5C:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eDYrIjb_GreZ9__WjrC7yZsXNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/292A3CF0376511F0A9D2D035C4F9AE02.roa Signing time: Sun 01 Mar 2026 07:05:00 +0000 ROA not before: Fri 23 May 2025 05:54:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.3.100.0/24 maxlen: 24 203.3.101.0/24 maxlen: 24 203.3.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/_eDYrIjb_GreZ9__WjrC7yZsXNw.crl rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/_eDYrIjb_GreZ9__WjrC7yZsXNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eDYrIjb_GreZ9__WjrC7yZsXNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 08:41:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7FA1, serialNumber=FDE0D8AC88DBFC6ADE67DFFF5A3AC2EF266C5CDC Validity Not Before: May 23 05:54:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a3e51c-6254 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:33:19:d4:05:d6:17:bc:71:7f:39:86:4d:a0: 1c:24:e6:b5:8b:ae:23:95:d8:d7:4a:04:01:ad:b1: b5:ae:3c:af:77:01:55:cb:64:48:39:56:dc:09:8b: ca:4c:de:b8:af:b1:f7:c8:79:09:59:30:d1:04:76: c5:1e:bd:b6:d0:0c:6b:71:3d:56:45:52:fe:54:6a: c9:ed:9c:82:cc:1c:7a:e7:5e:e9:52:8d:72:40:b9: 94:14:8a:c5:26:49:da:97:32:07:33:e3:69:69:87: 98:14:5f:be:5a:46:77:50:7a:2f:78:0f:87:e0:8b: 4b:e2:ca:4c:72:7f:fd:72:10:b0:46:5b:e8:69:00: 10:c0:8d:df:0a:57:a8:69:ed:42:87:83:f1:f2:be: 8b:53:e7:94:33:4a:b7:bc:90:d1:44:02:49:62:f0: da:00:05:4a:eb:3c:f9:06:3e:98:20:17:5c:81:5e: 1e:73:70:e6:d3:94:8a:87:44:9e:1c:be:d4:a0:0c: 5b:d4:ff:ec:0a:7d:4b:76:be:67:fc:00:5f:be:47: a0:de:7d:b5:c4:0f:0d:86:d2:8b:9c:61:bd:97:df: 58:f6:7e:7b:b8:23:d6:03:a6:8d:4f:99:89:ec:41: 03:dc:8c:3c:f7:7c:b9:ab:a8:32:17:1e:e5:7d:35: df:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:03:B5:D2:D2:A3:ED:4E:D0:58:E9:87:FA:EA:9E:7F:F6:FB:91:19 X509v3 Authority Key Identifier: keyid:FD:E0:D8:AC:88:DB:FC:6A:DE:67:DF:FF:5A:3A:C2:EF:26:6C:5C:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/_eDYrIjb_GreZ9__WjrC7yZsXNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eDYrIjb_GreZ9__WjrC7yZsXNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/292A3CF0376511F0A9D2D035C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.3.100.0-203.3.102.255 Signature Algorithm: sha256WithRSAEncryption 3c:9e:0d:03:d4:c6:7d:7e:49:c7:08:3f:3f:67:c0:fe:db:47: 72:f4:6d:d4:16:f4:98:d5:3d:ee:34:6b:3c:a1:35:b3:96:23: db:c9:55:06:43:dc:46:2c:59:38:eb:90:7b:a8:15:3a:a5:2a: 5c:66:48:82:c8:83:d4:df:04:29:41:d3:ca:d5:98:25:25:c1: 29:0c:2e:b2:e6:2f:e9:88:c1:c9:a8:07:ff:5b:e5:28:ab:21: 5e:9b:3c:0e:6d:27:f9:b9:73:28:ea:d7:da:a6:22:64:03:b3: 48:29:29:63:ee:0b:f8:5d:a4:d0:4b:82:35:1e:d0:dc:7c:0a: b9:72:3e:70:fd:41:fa:30:73:b2:78:98:57:f4:17:c8:2f:54: b1:2d:e8:93:d4:c4:e0:81:8f:d9:55:3e:e8:a4:ff:0f:e6:ab: 3e:33:97:18:1a:0c:5e:98:09:9f:47:d8:04:fc:84:3f:ec:e3: 73:e5:f7:94:03:ca:ff:ab:93:fa:85:2e:5a:a6:d1:72:2d:39: f0:84:91:cc:68:5f:ad:5a:2d:dc:c7:ef:1a:d8:77:35:3a:42: 40:ba:10:77:9a:c6:e6:03:07:b7:6d:cc:da:30:74:1f:2a:3d: d7:b0:cc:a7:0d:1c:af:35:e1:9e:89:41:10:1d:7f:f0:eb:10: 10:c8:7f:a1 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdGQTExMTAvBgNVBAUTKEZERTBEOEFDODhEQkZDNkFERTY3REZGRjVBM0FDMkVG MjY2QzVDREMwHhcNMjUwNTIzMDU1NDE2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZTUxYy02MjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzMZ1AXWF7xxfzmGTaAcJOa1i64jldjXSgQBrbG1rjyvdwFVy2RIOVbcCYvK TN64r7H3yHkJWTDRBHbFHr220AxrcT1WRVL+VGrJ7ZyCzBx6517pUo1yQLmUFIrF JknalzIHM+NpaYeYFF++WkZ3UHoveA+H4ItL4spMcn/9chCwRlvoaQAQwI3fCleo ae1Ch4Px8r6LU+eUM0q3vJDRRAJJYvDaAAVK6zz5Bj6YIBdcgV4ec3Dm05SKh0Se HL7UoAxb1P/sCn1Ldr5n/ABfvkeg3n21xA8NhtKLnGG9l99Y9n57uCPWA6aNT5mJ 7EED3Iw893y5q6gyFx7lfTXf2QIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFNMDtdLS o+1O0Fjph/rqnn/2+5EZMB8GA1UdIwQYMBaAFP3g2KyI2/xq3mff/1o6wu8mbFzc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0ZBMS9CRjkwNzRFMjJG QTAxMUYwOEEwNkMwNTdDNEY5QUUwMi9fZURZcklqYl9HcmVaOV9fV2pyQzd5WnNY TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19lRFlySWpiX0dyZVo5X19XanJDN3lac1hOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdGQTEvQkY5MDc0RTIyRkEwMTFGMDhBMDZDMDU3QzRGOUFFMDIvMjkyQTNDRjAz NzY1MTFGMEE5RDJEMDM1QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBALLA2QDBADLA2YwDQYJKoZIhvcNAQELBQADggEBADyeDQPUxn1+ SccIPz9nwP7bR3L0bdQW9JjVPe40azyhNbOWI9vJVQZD3EYsWTjrkHuoFTqlKlxm SILIg9TfBClB08rVmCUlwSkMLrLmL+mIwcmoB/9b5SirIV6bPA5tJ/m5cyjq19qm ImQDs0gpKWPuC/hdpNBLgjUe0Nx8CrlyPnD9Qfowc7J4mFf0F8gvVLEt6JPUxOCB j9lVPuik/w/mqz4zlxgaDF6YCZ9H2AT8hD/s43Pl95QDyv+rk/qFLlqm0XItOfCE kcxoX61aLdzH7xrYdzU6QkC6EHeaxuYDB7dtzNowdB8qPdewzKcNHK814Z6JQRAd f/DrEBDIf6E= -----END CERTIFICATE-----Generated at Mon Mar 2 04:36:59 2026 by rpki-client