$ rpki-client -vvf rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa File: 4FCB21E6E05211EE8AEC805CC4F9AE02.roa (raw, json) Hash identifier: Y3W6eu0QWST7zh19YAcDvUHXdwf78PpnsxN0IME5lPE= Subject key identifier: 1D:FA:66:8A:11:6F:A8:EC:8F:6C:06:03:E4:D7:B1:F9:A2:34:D9:3E Certificate issuer: /CN=A91F378B/serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Certificate serial: 0175 Authority key identifier: 31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa Signing time: Mon 02 Mar 2026 13:25:54 +0000 ROA not before: Thu 23 Oct 2025 06:48:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9237 IP address blocks: 203.91.128.0/19 maxlen: 24 2406:af40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 13:25:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F378B, serialNumber=318553ED09C200958CB15DCCE277CC48AA42A388 Validity Not Before: Oct 23 06:48:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a58fe2-1127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cb:28:11:64:37:50:5b:07:6b:16:99:cd:0b: af:81:73:68:62:67:5d:36:c9:e1:ef:4f:ec:d8:fb: 6e:72:91:87:2c:80:fc:83:41:1a:f1:32:dd:95:60: e2:ef:c5:55:2d:fe:19:1f:79:5f:61:60:67:c8:2c: a5:b9:53:2b:2f:79:6f:7c:ae:44:44:20:7c:10:87: fe:d3:fc:64:a0:37:99:16:88:f4:81:bc:8b:45:c5: ce:cd:87:52:c5:06:3c:62:80:21:0e:26:fa:ec:ab: b9:4c:37:44:63:9e:59:7e:c2:2f:ad:ed:5c:06:6f: 39:de:92:16:55:a7:f7:a8:9a:db:b6:2a:ab:b4:19: 6d:36:ed:f5:ae:03:3e:02:6a:22:00:ef:90:fe:c3: 8a:88:5f:41:e7:b0:7b:83:0e:7b:65:42:25:84:dd: 9e:e7:07:24:a7:54:5a:28:c1:50:37:73:3e:77:c7: e5:36:0d:74:03:55:92:33:d2:23:5d:be:87:4b:cb: a3:c2:8a:8f:95:15:c6:d9:e8:9c:6f:c7:63:43:98: 85:6c:8a:78:9d:95:eb:f6:55:94:19:6e:86:03:d7: 18:bc:d6:76:8e:1e:cf:a3:ae:af:60:aa:31:ec:e8: 69:9e:a7:eb:eb:b5:6c:76:d4:35:1e:e6:da:dc:10: 36:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:FA:66:8A:11:6F:A8:EC:8F:6C:06:03:E4:D7:B1:F9:A2:34:D9:3E X509v3 Authority Key Identifier: keyid:31:85:53:ED:09:C2:00:95:8C:B1:5D:CC:E2:77:CC:48:AA:42:A3:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/MYVT7QnCAJWMsV3M4nfMSKpCo4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MYVT7QnCAJWMsV3M4nfMSKpCo4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F378B/C13AA776E05111EEB5B0925BC4F9AE02/4FCB21E6E05211EE8AEC805CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.91.128.0/19 IPv6: 2406:af40::/32 Signature Algorithm: sha256WithRSAEncryption 5d:b3:f4:de:39:22:ac:73:b3:dd:3a:10:bb:3a:7e:fc:e8:b4: 73:c6:6b:9f:2d:7e:8e:7c:1d:46:de:2b:15:a2:13:30:29:5e: 12:21:f4:d2:87:30:87:7c:f2:eb:b0:92:24:a4:a9:c7:2f:b9: f8:7c:40:37:bc:c0:6d:3f:d0:f5:fc:3e:c0:5d:76:db:27:04: 7d:7b:d4:15:e6:16:98:95:81:6a:ee:6c:0f:7a:e5:eb:41:e6: 21:c0:f8:97:f2:ac:42:45:7b:d5:57:af:98:46:cc:09:b4:da: 9a:4e:3f:41:05:0a:aa:0c:e9:78:63:89:b7:66:3b:70:9c:30: 7a:d1:4a:e0:ca:d5:5d:0d:2a:23:15:f0:99:87:49:f4:79:47: 12:ba:4f:d4:30:8f:44:d5:c8:23:10:87:8d:6c:b5:7d:3c:91: 3b:22:94:4c:6b:b7:bc:f6:1e:b4:70:ba:7a:d6:e5:c7:5b:92: 70:b6:1f:ae:7b:34:d1:e5:bb:5f:57:be:07:bd:de:de:e0:35: a8:27:ab:8b:94:4d:8c:38:b6:fb:22:88:67:7f:a9:74:7a:f8: ae:62:a7:ca:9e:42:be:07:e5:6f:b8:18:c6:dc:03:53:45:99: 6d:3b:38:c1:a5:1b:48:19:1a:d0:43:59:cc:6a:b3:01:09:6a: 28:29:09:4d -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM3OEIxMTAvBgNVBAUTKDMxODU1M0VEMDlDMjAwOTU4Q0IxNURDQ0UyNzdDQzQ4 QUE0MkEzODgwHhcNMjUxMDIzMDY0ODM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OGZlMi0xMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMsoEWQ3UFsHaxaZzQuvgXNoYmddNsnh70/s2PtucpGHLID8g0Ea8TLdlWDi 78VVLf4ZH3lfYWBnyCyluVMrL3lvfK5ERCB8EIf+0/xkoDeZFoj0gbyLRcXOzYdS xQY8YoAhDib67Ku5TDdEY55ZfsIvre1cBm853pIWVaf3qJrbtiqrtBltNu31rgM+ AmoiAO+Q/sOKiF9B57B7gw57ZUIlhN2e5wckp1RaKMFQN3M+d8flNg10A1WSM9Ij Xb6HS8ujwoqPlRXG2eicb8djQ5iFbIp4nZXr9lWUGW6GA9cYvNZ2jh7Po66vYKox 7Ohpnqfr67VsdtQ1Huba3BA2cwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFB36ZooR b6jsj2wGA+TXsfmiNNk+MB8GA1UdIwQYMBaAFDGFU+0JwgCVjLFdzOJ3zEiqQqOI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzc4Qi9DMTNBQTc3NkUw NTExMUVFQjVCMDkyNUJDNEY5QUUwMi9NWVZUN1FuQ0FKV01zVjNNNG5mTVNLcENv NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01ZVlQ3UW5DQUpXTXNWM000bmZNU0twQ280Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM3OEIvQzEzQUE3NzZFMDUxMTFFRUI1QjA5MjVCQzRGOUFFMDIvNEZDQjIxRTZF MDUyMTFFRThBRUM4MDVDQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQFy1uAMA0EAgACMAcDBQAkBq9AMA0GCSqGSIb3DQEBCwUAA4IBAQBd s/TeOSKsc7PdOhC7On786LRzxmufLX6OfB1G3isVohMwKV4SIfTShzCHfPLrsJIk pKnHL7n4fEA3vMBtP9D1/D7AXXbbJwR9e9QV5haYlYFq7mwPeuXrQeYhwPiX8qxC RXvVV6+YRswJtNqaTj9BBQqqDOl4Y4m3ZjtwnDB60UrgytVdDSojFfCZh0n0eUcS uk/UMI9E1cgjEIeNbLV9PJE7IpRMa7e89h60cLp61uXHW5Jwth+uezTR5btfV74H vd7e4DWoJ6uLlE2MOLb7Iohnf6l0eviuYqfKnkK+B+VvuBjG3ANTRZltOzjBpRtI GRrQQ1nMarMBCWooKQlN -----END CERTIFICATE-----Generated at Mon Mar 2 18:08:11 2026 by rpki-client