$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa File: 311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa (raw, json) Hash identifier: aHoZLC2L3b3zGtWoG3wC75zKVeJj+YJNHv+9PZJe2Ss= Subject key identifier: CB:26:D4:46:91:3D:37:FA:F1:7E:C3:0B:BB:DE:FD:64:E1:FE:6D:F3 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 19D6 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:50:49 +0000 ROA not before: Fri 20 Feb 2026 17:14:57 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 45167 IP address blocks: 203.18.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 16:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6614 (0x19d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 20 17:14:57 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a48a89-413c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0c:c0:84:7d:7f:8d:c4:88:08:a3:c4:e1:7d: a2:ce:a3:37:3d:57:3d:6a:cb:dd:72:9d:d7:75:7d: 4c:47:4f:09:11:c1:d4:62:58:2e:2f:dd:ef:56:4c: bc:e0:af:94:00:6b:d2:35:70:80:0a:c7:c5:7c:83: 85:fd:74:ab:7b:8b:a4:48:3f:66:c9:5d:c6:3c:01: e8:37:4e:aa:54:d3:eb:ea:2b:77:e8:43:12:67:5d: 1b:9f:7c:3a:ae:8e:32:8f:c2:a8:7d:a2:d3:86:01: 6e:c8:e6:c4:ac:cb:b6:7a:93:13:2b:53:8a:cf:2d: 21:83:7e:0e:fa:ef:87:3f:e7:7f:af:18:a4:63:8a: da:a2:33:87:34:e9:83:ce:25:37:04:96:73:b7:47: 46:5e:65:48:66:81:e2:24:e8:2c:d2:86:94:fb:b9: d6:84:e7:d3:f1:d3:22:26:9a:89:2b:b2:ba:81:4d: 75:28:c1:08:23:31:93:6b:7c:79:ed:b4:fd:b5:23: dd:fc:5d:86:de:b5:ad:27:27:5b:fc:2c:9c:52:2c: 01:0a:8b:03:a0:16:ef:6b:ee:84:16:2f:43:47:18: 30:ca:f4:26:c1:c5:bf:51:14:a3:ed:e5:17:e6:72: b7:f9:14:69:14:d4:fc:9f:4a:58:fa:15:37:14:a1: 51:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:26:D4:46:91:3D:37:FA:F1:7E:C3:0B:BB:DE:FD:64:E1:FE:6D:F3 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.18.213.0/24 Signature Algorithm: sha256WithRSAEncryption 81:f7:65:3b:79:26:dc:6e:60:d9:f5:3f:4c:89:d4:02:00:60: e8:75:09:39:78:2e:58:41:44:8e:d3:15:c8:36:b1:b6:32:c9: cc:63:0c:9f:9a:d8:e0:54:7f:af:75:a1:03:64:c5:90:4d:a0: 17:2c:58:ea:70:ed:a0:0f:85:f1:76:83:77:d3:4f:b8:d4:48: 61:af:2a:c8:86:61:c1:55:27:6e:57:e0:06:45:f7:29:4e:27: 9a:a6:d7:de:58:42:e4:3d:5b:f8:2b:a8:f8:e9:84:e1:04:44: 71:de:0b:db:92:ee:c7:88:b2:4c:df:0f:b4:2e:e0:7d:0d:11: 02:10:65:ab:2c:7f:c9:2f:cf:36:fd:09:df:42:39:75:7a:b3: 82:f8:25:5f:d5:ad:67:87:a9:d3:e6:4f:d3:40:39:56:96:2d: 86:0d:b9:1d:ef:c2:49:92:fb:e1:2f:4c:19:f9:d8:d5:fa:e7: 77:ea:f4:dd:57:2b:7d:ed:94:0f:bf:59:26:c3:33:1e:08:28: 9c:2a:6b:d6:bb:2b:26:6a:14:5f:3b:41:c8:c0:12:99:7d:e8: f4:6b:f5:41:ce:32:29:00:83:fa:fc:54:29:c0:d9:87:91:93: 11:43:55:3f:15:10:90:a6:52:ce:9f:50:88:6d:fb:87:cc:10: 38:8b:0d:b6 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICGdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjYwMjIwMTcxNDU3WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE4OS00MTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQzAhH1/jcSICKPE4X2izqM3PVc9asvdcp3XdX1MR08JEcHUYlguL93vVky8 4K+UAGvSNXCACsfFfIOF/XSre4ukSD9myV3GPAHoN06qVNPr6it36EMSZ10bn3w6 ro4yj8KofaLThgFuyObErMu2epMTK1OKzy0hg34O+u+HP+d/rxikY4raojOHNOmD ziU3BJZzt0dGXmVIZoHiJOgs0oaU+7nWhOfT8dMiJpqJK7K6gU11KMEIIzGTa3x5 7bT9tSPd/F2G3rWtJydb/CycUiwBCosDoBbva+6EFi9DRxgwyvQmwcW/URSj7eUX 5nK3+RRpFNT8n0pY+hU3FKFRYQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFMsm1EaR PTf68X7DC7ve/WTh/m3zMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMzExQTlBOENE QUFFMTFFOUEwRDJENzdCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxLVMA0GCSqGSIb3DQEBCwUAA4IBAQCB92U7eSbcbmDZ9T9MidQC AGDodQk5eC5YQUSO0xXINrG2MsnMYwyfmtjgVH+vdaEDZMWQTaAXLFjqcO2gD4Xx doN300+41EhhryrIhmHBVSduV+AGRfcpTieaptfeWELkPVv4K6j46YThBERx3gvb ku7HiLJM3w+0LuB9DRECEGWrLH/JL882/QnfQjl1erOC+CVf1a1nh6nT5k/TQDlW li2GDbkd78JJkvvhL0wZ+djV+ud36vTdVyt97ZQPv1kmwzMeCCicKmvWuysmahRf O0HIwBKZfej0a/VBzjIpAIP6/FQpwNmHkZMRQ1U/FRCQplLOn1CIbfuHzBA4iw22 -----END CERTIFICATE-----Generated at Mon Mar 2 21:13:12 2026 by rpki-client