$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/2395AD02E44911EFB4261C43C4F9AE02.roa File: 2395AD02E44911EFB4261C43C4F9AE02.roa (raw, json) Hash identifier: 1Zpk8RfUapMSkxzkOHMO32Pm1ddo8IyMkiVIMe2U8Zo= Subject key identifier: F6:25:08:0A:EC:BB:59:80:98:18:E3:94:AC:CB:D2:B5:BC:F7:9C:83 Certificate issuer: /CN=A91EB2B8/serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Certificate serial: 03AD Authority key identifier: A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/2395AD02E44911EFB4261C43C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:50:06 +0000 ROA not before: Wed 11 Jun 2025 02:18:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 13335 IP address blocks: 123.108.74.0/24 maxlen: 24 123.108.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB2B8, serialNumber=A69700E78D0C812AD2E2C114C82C655A0ACD447F Validity Not Before: Jun 11 02:18:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48a5e-62c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:63:92:74:90:19:90:db:05:40:63:03:92:e7: c4:f5:66:f6:34:82:07:4d:8a:09:c8:38:8c:6d:88: 28:97:f1:83:59:c7:05:1e:53:0e:09:07:65:31:8f: 71:a5:60:89:7d:c9:98:ae:61:33:2d:e7:86:5d:c8: c6:b8:c1:b0:95:db:26:60:85:68:26:f1:86:38:3a: ca:89:9a:8f:e2:c6:05:37:65:db:54:7c:e9:cc:b3: 7c:5b:86:bf:cf:29:bc:ed:00:4b:4c:c0:e5:f0:56: e3:62:79:96:b3:57:85:e9:4c:8e:33:d3:66:de:64: b3:42:73:3c:73:28:11:6e:02:a3:da:19:86:49:9c: 84:e8:b0:0c:a0:4d:9d:16:e1:14:33:89:9e:7c:70: ac:1c:b2:cd:e3:f6:d2:fd:e0:ec:96:fe:1b:23:a4: 63:cf:1e:39:6a:37:36:b4:18:35:a8:05:a6:4b:a8: ea:88:de:2a:62:97:e9:8b:0c:41:4d:26:90:1f:35: 5d:b6:c3:78:7a:57:02:47:3a:dc:a3:5a:de:5b:5c: d6:b2:43:5a:8a:4d:81:e0:a5:cd:68:be:5a:49:f2: 8c:fd:d8:7e:81:e3:cb:34:06:c2:38:d1:d7:a4:ae: fb:33:d2:ec:2e:8f:fa:2e:f1:9a:64:a2:80:29:92: dd:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:25:08:0A:EC:BB:59:80:98:18:E3:94:AC:CB:D2:B5:BC:F7:9C:83 X509v3 Authority Key Identifier: keyid:A6:97:00:E7:8D:0C:81:2A:D2:E2:C1:14:C8:2C:65:5A:0A:CD:44:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/ppcA540MgSrS4sEUyCxlWgrNRH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ppcA540MgSrS4sEUyCxlWgrNRH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB2B8/3F44CBAE2F4D11ED8F5A6A64C4F9AE02/2395AD02E44911EFB4261C43C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 123.108.74.0/23 Signature Algorithm: sha256WithRSAEncryption b6:e6:47:7a:20:de:ae:9a:60:11:6c:8f:10:2f:b1:a5:62:5c: 97:95:7e:58:84:9f:57:5c:5d:a2:71:1e:e3:ef:58:b9:63:93: e5:41:84:92:27:1b:49:3f:e8:54:1c:e3:5e:c5:0f:d1:18:db: 63:f8:d0:d6:3f:87:6d:86:87:76:11:b6:ed:54:bb:d6:1a:53: c7:a4:70:52:4b:ca:f2:8d:bc:2e:df:88:81:68:87:b5:cf:b3: 37:30:39:f3:28:80:d8:50:96:ff:36:91:94:3a:65:00:9a:1d: 86:17:66:25:f6:8d:41:98:89:ff:e7:c8:c0:92:5b:ec:47:c7: 71:dd:be:1d:af:53:92:a3:7c:f4:b3:ed:f1:bf:2c:27:35:33: 14:43:6a:cc:59:40:83:ea:6e:2f:22:75:e1:c2:97:a0:69:c2: 48:70:27:02:d4:7c:bc:d9:8b:23:c4:d2:cb:93:1d:06:2e:7f: 74:d7:d3:96:ba:84:cc:23:41:10:3d:2c:7e:03:01:fa:b2:45: e5:11:f4:6c:45:a1:a5:b0:4b:d2:f6:8a:bd:9d:35:b5:43:24: 20:dd:d5:8b:4b:b1:32:29:3e:40:3f:98:40:18:61:c1:80:9b: 37:1c:d6:23:57:6b:e9:17:04:18:1b:80:2b:ab:be:4c:8c:2e: c5:41:7b:9c -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICA60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIyQjgxMTAvBgNVBAUTKEE2OTcwMEU3OEQwQzgxMkFEMkUyQzExNEM4MkM2NTVB MEFDRDQ0N0YwHhcNMjUwNjExMDIxODM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGE1ZS02MmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGOSdJAZkNsFQGMDkufE9Wb2NIIHTYoJyDiMbYgol/GDWccFHlMOCQdlMY9x pWCJfcmYrmEzLeeGXcjGuMGwldsmYIVoJvGGODrKiZqP4sYFN2XbVHzpzLN8W4a/ zym87QBLTMDl8FbjYnmWs1eF6UyOM9Nm3mSzQnM8cygRbgKj2hmGSZyE6LAMoE2d FuEUM4mefHCsHLLN4/bS/eDslv4bI6Rjzx45ajc2tBg1qAWmS6jqiN4qYpfpiwxB TSaQHzVdtsN4elcCRzrco1reW1zWskNaik2B4KXNaL5aSfKM/dh+gePLNAbCONHX pK77M9LsLo/6LvGaZKKAKZLdrwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPYlCArs u1mAmBjjlKzL0rW895yDMB8GA1UdIwQYMBaAFKaXAOeNDIEq0uLBFMgsZVoKzUR/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjJCOC8zRjQ0Q0JBRTJG NEQxMUVEOEY1QTZBNjRDNEY5QUUwMi9wcGNBNTQwTWdTclM0c0VVeUN4bFdnck5S SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BwY0E1NDBNZ1NyUzRzRVV5Q3hsV2dyTlJIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIyQjgvM0Y0NENCQUUyRjREMTFFRDhGNUE2QTY0QzRGOUFFMDIvMjM5NUFEMDJF NDQ5MTFFRkI0MjYxQzQzQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBe2xKMA0GCSqGSIb3DQEBCwUAA4IBAQC25kd6IN6ummARbI8QL7Gl YlyXlX5YhJ9XXF2icR7j71i5Y5PlQYSSJxtJP+hUHONexQ/RGNtj+NDWP4dthod2 EbbtVLvWGlPHpHBSS8ryjbwu34iBaIe1z7M3MDnzKIDYUJb/NpGUOmUAmh2GF2Yl 9o1BmIn/58jAklvsR8dx3b4dr1OSo3z0s+3xvywnNTMUQ2rMWUCD6m4vInXhwpeg acJIcCcC1Hy82YsjxNLLkx0GLn9019OWuoTMI0EQPSx+AwH6skXlEfRsRaGlsEvS 9oq9nTW1QyQg3dWLS7EyKT5AP5hAGGHBgJs3HNYjV2vpFwQYG4Arq75MjC7FQXuc -----END CERTIFICATE-----Generated at Mon Mar 2 10:51:48 2026 by rpki-client