$ rpki-client -vvf rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/B3481ED4D5B611ECA61EEC28C4F9AE02.roa File: B3481ED4D5B611ECA61EEC28C4F9AE02.roa (raw, json) Hash identifier: SFrPVIEcm3Sob1UjztJCMJRsgyH7hMthtgc0D0N7bCM= Subject key identifier: 5D:56:0D:22:C9:45:D4:B5:FC:1A:F9:4A:A4:32:17:A6:00:5D:6E:56 Certificate issuer: /CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Certificate serial: 039A Authority key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/B3481ED4D5B611ECA61EEC28C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:52:10 +0000 ROA not before: Fri 19 Dec 2025 00:20:40 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4826 IP address blocks: 203.13.208.0/24 maxlen: 24 203.13.209.0/24 maxlen: 24 203.13.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F823E, serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Validity Not Before: Dec 19 00:20:40 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a43679-be92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:41:ca:43:73:cf:7b:45:52:8a:27:5e:67: cf:9a:92:1c:85:47:ba:56:01:ce:5a:f8:71:b6:5b: 61:bb:98:69:83:17:31:92:27:1d:77:e8:d0:fc:d7: 61:c9:5f:2e:77:7e:c8:6b:7f:59:12:1d:18:c6:4c: 8c:c7:be:51:e7:31:e3:a9:aa:3b:12:07:9c:3e:0d: b8:c1:5d:1e:54:26:e6:15:fa:0a:b6:e0:da:96:d3: f7:87:54:af:49:aa:48:41:e7:17:28:e3:fe:f1:97: 06:f6:bc:0d:3a:b7:d9:cc:0f:64:6f:f2:4e:25:07: 6a:7f:4c:31:90:d8:3d:ac:f9:62:0b:9a:2f:c4:4c: b5:75:be:ff:be:8d:5b:df:c0:af:48:a3:89:e5:9e: 7e:81:49:af:ec:bb:95:95:2a:65:26:87:14:05:a9: 48:d4:82:d9:15:e4:a3:1b:aa:32:d4:b5:13:ce:6b: e0:d3:cb:31:5c:22:1b:ea:d6:3c:91:e8:1d:d7:74: d2:07:3c:a0:62:18:88:70:44:9c:1f:e3:a4:83:79: c3:d2:1a:56:5b:67:c4:7c:46:14:0e:42:21:09:34: 59:07:da:d1:81:2c:29:94:d1:13:ff:25:2e:e2:42: 89:3f:7f:a6:70:55:18:02:b3:96:ca:8c:2f:3b:87: 46:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:56:0D:22:C9:45:D4:B5:FC:1A:F9:4A:A4:32:17:A6:00:5D:6E:56 X509v3 Authority Key Identifier: keyid:3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/B3481ED4D5B611ECA61EEC28C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.13.208.0-203.13.210.255 Signature Algorithm: sha256WithRSAEncryption c0:f0:ec:16:8b:88:34:e4:05:10:85:15:8d:a4:f8:e1:c8:bb: 13:c9:0f:67:e8:b5:75:23:cf:43:42:04:ea:74:dd:39:e9:0d: 47:d5:f8:77:23:03:06:f6:96:79:81:6d:59:03:09:37:98:95: e8:c6:6e:fe:6f:12:9f:7d:90:9d:a3:1e:2a:2f:7e:a8:f9:db: c3:36:c6:57:b3:00:d8:7d:92:34:cb:49:c2:ff:c5:5c:7d:dd: c6:10:72:1a:be:a8:48:79:f9:ff:01:ce:52:d4:37:2d:38:a6: 26:10:39:58:08:f7:fe:8f:ba:46:0c:fd:ed:9d:93:a0:83:f8: 27:ff:f4:51:2b:d0:29:30:d3:be:1d:55:08:79:71:4e:ad:29: 38:4c:a2:08:bc:84:64:8d:22:bf:4d:ad:7f:27:e6:63:ad:1c: fc:fa:5a:bb:44:ce:26:ff:11:0f:dc:48:d0:99:fe:a0:43:73: e9:2b:84:52:85:38:e7:20:82:c4:3f:79:c5:3f:e2:55:b7:4b: fc:9e:0e:f7:0a:d4:d2:7e:7c:33:98:f8:ff:61:13:ce:8f:1a: 26:6c:ea:01:52:72:6f:f2:57:0a:c1:b8:bd:f3:df:a0:3b:8a: 1f:75:c5:c8:0c:26:c5:5f:cd:43:39:19:ad:e5:70:00:f9:bc: 3a:de:1e:88 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyM0UxMTAvBgNVBAUTKDNFRUFERjE0NUFFMjlCNDgyNDBBM0ZCQTNBRkJEOTQ5 QThGMTUzNUQwHhcNMjUxMjE5MDAyMDQwWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MzY3OS1iZTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0BBykNzz3tFUoonXmfPmpIchUe6VgHOWvhxtlthu5hpgxcxkicdd+jQ/Ndh yV8ud37Ia39ZEh0YxkyMx75R5zHjqao7EgecPg24wV0eVCbmFfoKtuDaltP3h1Sv SapIQecXKOP+8ZcG9rwNOrfZzA9kb/JOJQdqf0wxkNg9rPliC5ovxEy1db7/vo1b 38CvSKOJ5Z5+gUmv7LuVlSplJocUBalI1ILZFeSjG6oy1LUTzmvg08sxXCIb6tY8 kegd13TSBzygYhiIcEScH+Okg3nD0hpWW2fEfEYUDkIhCTRZB9rRgSwplNET/yUu 4kKJP3+mcFUYArOWyowvO4dGAQIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFF1WDSLJ RdS1/Br5SqQyF6YAXW5WMB8GA1UdIwQYMBaAFD7q3xRa4ptIJAo/ujr72Umo8VNd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODIzRS83RDY5QTgzQ0Q1 QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0wZ2tDai02T3Z2WlNhanhV MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1cmZGRnJpbTBna0NqLTZPdnZaU2FqeFUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgyM0UvN0Q2OUE4M0NENUIxMTFFQzkzNTFFNjIwQzRGOUFFMDIvQjM0ODFFRDRE NUI2MTFFQ0E2MUVFQzI4QzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBATLDdADBADLDdIwDQYJKoZIhvcNAQELBQADggEBAMDw7BaLiDTk BRCFFY2k+OHIuxPJD2fotXUjz0NCBOp03TnpDUfV+HcjAwb2lnmBbVkDCTeYlejG bv5vEp99kJ2jHiovfqj528M2xlezANh9kjTLScL/xVx93cYQchq+qEh5+f8BzlLU Ny04piYQOVgI9/6PukYM/e2dk6CD+Cf/9FEr0Ckw074dVQh5cU6tKThMogi8hGSN Ir9NrX8n5mOtHPz6WrtEzib/EQ/cSNCZ/qBDc+krhFKFOOcggsQ/ecU/4lW3S/ye DvcK1NJ+fDOY+P9hE86PGiZs6gFScm/yVwrBuL3z36A7ih91xcgMJsVfzUM5Ga3l cAD5vDreHog= -----END CERTIFICATE-----Generated at Mon Mar 2 15:50:24 2026 by rpki-client