$ rpki-client -vvf rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa File: 3B5A1BBA21F411F0848CDE7EC4F9AE02.roa (raw, json) Hash identifier: uwAj/+Du5C1qEvZtOUqf44R0VMo9+4/mthpipOHyiGw= Subject key identifier: FE:2A:BB:7B:25:A4:FC:73:76:0D:DB:5D:6D:30:F9:25:AF:7E:92:CE Certificate issuer: /CN=A91F37AB/serialNumber=94C8EF3F2A922EE144AA6F0B66436CA466CC4B0A Certificate serial: E7 Authority key identifier: 94:C8:EF:3F:2A:92:2E:E1:44:AA:6F:0B:66:43:6C:A4:66:CC:4B:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa Signing time: Fri 05 Jun 2026 07:38:49 +0000 ROA not before: Fri 05 Jun 2026 07:38:49 +0000 ROA not after: Tue 31 Aug 2027 00:00:00 +0000 asID: 396982 IP address blocks: 203.25.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.crl rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 02:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F37AB, serialNumber=94C8EF3F2A922EE144AA6F0B66436CA466CC4B0A Validity Not Before: Jun 5 07:38:49 2026 GMT Not After : Aug 31 00:00:00 2027 GMT Subject: CN=6a227d09-1ffb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ec:fa:4c:0e:2a:2e:b8:b2:28:00:05:d6:7b: bb:e3:61:a0:70:f6:a0:73:25:87:4b:f2:70:83:c0: b0:a9:29:9e:2c:dc:37:b7:9b:41:a8:ff:0e:e9:6e: df:6a:d2:80:d5:2f:85:7a:f3:cc:ac:bd:49:db:9a: 01:d2:81:d3:46:66:07:5f:e9:42:91:56:dc:f2:e0: 2e:f8:12:e1:e4:eb:4f:41:fd:95:17:ba:f9:62:ab: 11:44:83:cb:d9:72:95:64:5c:79:00:b0:03:7b:cf: 7c:de:e1:37:9a:48:40:8e:2c:6a:94:d7:c1:40:4d: a8:76:e2:37:cf:c1:d1:44:47:2f:9d:ec:77:14:da: 3d:13:fa:d5:05:53:7d:11:1c:87:73:cd:c6:e1:38: 7f:d7:d5:86:9e:97:25:c1:c8:e5:a8:ad:87:45:79: 3d:02:52:05:c8:07:ef:3e:f9:e8:53:ec:49:cb:f4: f0:f9:00:f2:fb:cf:8d:01:31:d8:b1:60:04:45:8b: c5:4e:ea:71:7c:34:3e:49:dc:14:9b:3a:0d:f8:e2: be:18:07:80:bb:50:f2:8d:1b:82:88:bd:c7:ee:93: c3:af:15:83:57:d7:c6:be:da:5e:e8:48:a1:3a:ee: 97:ed:a8:ff:73:1a:d6:e8:a6:ab:84:3b:89:4e:3a: 9b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2A:BB:7B:25:A4:FC:73:76:0D:DB:5D:6D:30:F9:25:AF:7E:92:CE X509v3 Authority Key Identifier: keyid:94:C8:EF:3F:2A:92:2E:E1:44:AA:6F:0B:66:43:6C:A4:66:CC:4B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.25.240.0/24 Signature Algorithm: sha256WithRSAEncryption a2:98:5f:95:6f:3b:a8:e5:72:c4:23:c4:b1:e9:e6:33:47:0f: 11:34:9a:c7:9b:62:fc:3a:3a:66:e6:dd:ee:22:7f:07:d1:96: 32:c7:b6:cc:36:6b:ff:e5:dd:70:c2:a3:01:7d:e1:c2:82:f7: cd:a4:e6:9a:4f:ab:7c:07:6c:6a:32:5a:84:5d:9e:07:96:0c: 0c:b4:34:1b:f5:a8:db:ff:de:75:1f:af:02:16:49:72:97:f5: 16:c9:06:17:f2:aa:d9:84:a8:f7:cf:72:08:95:df:3f:5d:33: b4:c0:2a:4f:33:ee:4a:94:e0:3d:00:72:cf:c7:07:c1:ef:db: 5a:3a:e2:de:a9:2f:8f:fc:1d:4d:38:9f:a5:ac:93:c9:22:63: c8:66:91:4d:26:0f:4d:dd:91:17:91:90:de:e9:a3:93:b8:ce: 5a:44:93:f8:c2:8c:bb:41:c7:65:02:45:a4:c9:c8:43:c7:ea: 18:cc:a2:6a:84:18:6e:5a:e1:bb:ef:e5:f3:82:84:45:31:08: 2f:49:2b:f9:4e:28:03:19:79:30:ad:5a:c2:35:7c:2a:a7:41: 40:3d:01:4c:e4:fb:85:9a:2f:5d:7d:4a:69:a4:65:b3:1d:e8: f1:a1:53:42:fc:8a:75:83:eb:3e:34:46:13:b3:9a:1b:1f:0d: 46:bd:f4:d8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM3QUIxMTAvBgNVBAUTKDk0QzhFRjNGMkE5MjJFRTE0NEFBNkYwQjY2NDM2Q0E0 NjZDQzRCMEEwHhcNMjYwNjA1MDczODQ5WhcNMjcwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02YTIyN2QwOS0xZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsez6TA4qLriyKAAF1nu742GgcPagcyWHS/Jwg8CwqSmeLNw3t5tBqP8O6W7f atKA1S+FevPMrL1J25oB0oHTRmYHX+lCkVbc8uAu+BLh5OtPQf2VF7r5YqsRRIPL 2XKVZFx5ALADe8983uE3mkhAjixqlNfBQE2oduI3z8HRREcvnex3FNo9E/rVBVN9 ERyHc83G4Th/19WGnpclwcjlqK2HRXk9AlIFyAfvPvnoU+xJy/Tw+QDy+8+NATHY sWAERYvFTupxfDQ+SdwUmzoN+OK+GAeAu1DyjRuCiL3H7pPDrxWDV9fGvtpe6Eih Ou6X7aj/cxrW6KarhDuJTjqbjQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFP4qu3sl pPxzdg3bXW0w+SWvfpLOMB8GA1UdIwQYMBaAFJTI7z8qki7hRKpvC2ZDbKRmzEsK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzdBQi8yNjQ4NDU5MDIx RjMxMUYwQTI4MTM1N0FDNEY5QUUwMi9sTWp2UHlxU0x1RkVxbThMWmtOc3BHYk1T d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNanZQeXFTTHVGRXFtOExaa05zcEdiTVN3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM3QUIvMjY0ODQ1OTAyMUYzMTFGMEEyODEzNTdBQzRGOUFFMDIvM0I1QTFCQkEy MUY0MTFGMDg0OENERTdFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxnwMA0GCSqGSIb3DQEBCwUAA4IBAQCimF+Vbzuo5XLEI8Sx6eYz Rw8RNJrHm2L8Ojpm5t3uIn8H0ZYyx7bMNmv/5d1wwqMBfeHCgvfNpOaaT6t8B2xq MlqEXZ4HlgwMtDQb9ajb/951H68CFklyl/UWyQYX8qrZhKj3z3IIld8/XTO0wCpP M+5KlOA9AHLPxwfB79taOuLeqS+P/B1NOJ+lrJPJImPIZpFNJg9N3ZEXkZDe6aOT uM5aRJP4woy7QcdlAkWkychDx+oYzKJqhBhuWuG77+XzgoRFMQgvSSv5TigDGXkw rVrCNXwqp0FAPQFM5PuFmi9dfUpppGWzHejxoVNC/Ip1g+s+NEYTs5obHw1GvfTY -----END CERTIFICATE-----Generated at Sat Jun 13 09:20:38 2026 by rpki-client