$ rpki-client -vvf rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/93957C3A25B211ECB5356475C4F9AE02.roa File: 93957C3A25B211ECB5356475C4F9AE02.roa (raw, json) Hash identifier: zjvOB7IYcWX+u9sgyuLHr3NjWHNslBwt7oZG0S7MoWU= Subject key identifier: 88:74:29:E3:0A:56:61:D9:4F:D9:77:7B:CC:F1:21:CC:FB:4C:56:7D Certificate issuer: /CN=A91F916A/serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Certificate serial: 2548 Authority key identifier: CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/93957C3A25B211ECB5356475C4F9AE02.roa Signing time: Mon 30 Mar 2026 16:18:52 +0000 ROA not before: Mon 30 Mar 2026 16:18:52 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 3758 IP address blocks: 202.176.192.0/19 maxlen: 24 203.208.224.0/19 maxlen: 24 2404:5800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9544 (0x2548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F916A, serialNumber=CF7AC6E7853E4958287006430076584657E0C950 Validity Not Before: Mar 30 16:18:52 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69caa26c-900e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:45:40:6f:42:7e:5a:0e:4d:99:78:6c:d2:81: e4:6e:18:f2:93:94:07:00:f8:0f:f2:9c:88:34:fb: 37:1f:26:30:7d:a7:b6:ae:00:a2:6e:4a:5b:b1:f5: 62:f3:de:a7:32:75:81:ae:86:0b:c2:07:06:9a:6d: 71:4b:3c:92:ca:b9:94:ac:ae:84:4d:bb:18:b9:33: 32:f0:4b:13:48:94:fd:7f:3a:00:0a:9a:ec:31:52: b8:f2:fc:9f:7a:cb:ac:79:7e:34:df:ef:5f:e6:47: 51:9c:53:09:43:c1:c2:bd:50:76:29:28:d1:02:a3: d2:93:d0:d2:1d:6e:77:25:59:db:ed:55:d2:31:b8: 02:15:61:f7:79:35:da:f2:48:6b:78:e7:e3:9a:de: bd:0d:4b:00:2c:30:0b:15:d1:10:88:21:96:bf:d7: 5b:79:9e:c8:58:e4:6c:9c:29:e1:4f:bd:02:7b:8a: 28:f6:d9:68:23:2d:46:36:b3:48:1b:ea:93:73:78: 4a:0e:96:d1:b1:d2:16:88:61:eb:29:10:5d:67:e6: 29:68:aa:1a:c4:d3:e2:e8:77:43:22:fe:5d:e0:c2: 51:91:35:67:d3:2b:8d:cd:40:11:a9:1a:e0:64:d6: 0f:3c:3c:23:4e:07:a8:ff:e7:1e:c2:ee:7a:16:f7: 94:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:74:29:E3:0A:56:61:D9:4F:D9:77:7B:CC:F1:21:CC:FB:4C:56:7D X509v3 Authority Key Identifier: keyid:CF:7A:C6:E7:85:3E:49:58:28:70:06:43:00:76:58:46:57:E0:C9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/z3rG54U-SVgocAZDAHZYRlfgyVA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z3rG54U-SVgocAZDAHZYRlfgyVA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F916A/1D7AD0BA458D11E5B3957A79C4F9AE02/93957C3A25B211ECB5356475C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 202.176.192.0/19 203.208.224.0/19 IPv6: 2404:5800::/32 Signature Algorithm: sha256WithRSAEncryption 23:d9:77:10:9f:f8:f6:d0:f5:b4:df:ea:71:8d:94:2d:ef:d8: 78:b2:5b:b9:4f:2e:bd:c3:4a:b6:9c:61:1d:b7:93:39:a0:b3: 94:55:8b:27:58:d9:8d:4b:1c:26:48:0b:95:f0:d1:91:f4:9d: 40:33:0f:d3:d0:86:b7:f6:6b:d9:65:fe:ac:01:8b:22:95:f5: 36:20:f8:c9:ef:ec:77:e3:87:8e:6d:30:45:92:9e:95:17:20: 4a:9a:53:62:d2:b3:12:17:39:55:ee:89:3e:dc:8f:f2:25:14: d0:7d:e3:4f:b5:12:70:d1:25:64:76:75:90:85:df:ac:db:6a: df:35:8f:d5:5d:8c:1a:3e:12:07:39:82:fa:33:04:ab:f1:8d: 21:77:46:d2:ab:6f:e9:07:4b:d9:b3:16:a1:47:10:d3:4b:24: 7f:08:84:b7:fc:fb:91:e3:c8:29:85:35:3f:6c:4c:55:2d:36: 66:2e:86:8b:3a:3c:33:00:af:e0:02:e8:be:cc:03:af:07:63: e6:1c:c8:d5:54:7e:96:07:ce:c5:90:58:a3:0b:bf:31:0f:81: 31:3b:f7:fa:f5:7c:b4:38:43:08:b8:8e:c0:41:58:48:c5:b5: c6:a7:d5:22:c1:09:44:33:1e:4d:9a:b4:7d:9a:b6:14:7a:1e: d9:6d:be:43 -----BEGIN CERTIFICATE----- MIIFUTCCBDmgAwIBAgICJUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxNkExMTAvBgNVBAUTKENGN0FDNkU3ODUzRTQ5NTgyODcwMDY0MzAwNzY1ODQ2 NTdFMEM5NTAwHhcNMjYwMzMwMTYxODUyWhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWNhYTI2Yy05MDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkVAb0J+Wg5NmXhs0oHkbhjyk5QHAPgP8pyINPs3HyYwfae2rgCibkpbsfVi 896nMnWBroYLwgcGmm1xSzySyrmUrK6ETbsYuTMy8EsTSJT9fzoACprsMVK48vyf esuseX403+9f5kdRnFMJQ8HCvVB2KSjRAqPSk9DSHW53JVnb7VXSMbgCFWH3eTXa 8khreOfjmt69DUsALDALFdEQiCGWv9dbeZ7IWORsnCnhT70Ce4oo9tloIy1GNrNI G+qTc3hKDpbRsdIWiGHrKRBdZ+YpaKoaxNPi6HdDIv5d4MJRkTVn0yuNzUARqRrg ZNYPPDwjTgeo/+cewu56FveUjQIDAQABo4ICdTCCAnEwHQYDVR0OBBYEFIh0KeMK VmHZT9l3e8zxIcz7TFZ9MB8GA1UdIwQYMBaAFM96xueFPklYKHAGQwB2WEZX4MlQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTE2QS8xRDdBRDBCQTQ1 OEQxMUU1QjM5NTdBNzlDNEY5QUUwMi96M3JHNTRVLVNWZ29jQVpEQUhaWVJsZmd5 VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ozckc1NFUtU1Znb2NBWkRBSFpZUmxmZ3lWQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkxNkEvMUQ3QUQwQkE0NThEMTFFNUIzOTU3QTc5QzRGOUFFMDIvOTM5NTdDM0Ey NUIyMTFFQ0I1MzU2NDc1QzRGOUFFMDIucm9hMDQGCCsGAQUFBwEHAQH/BCUwIzAS BAIAATAMAwQFyrDAAwQFy9DgMA0EAgACMAcDBQAkBFgAMA0GCSqGSIb3DQEBCwUA A4IBAQAj2XcQn/j20PW03+pxjZQt79h4slu5Ty69w0q2nGEdt5M5oLOUVYsnWNmN SxwmSAuV8NGR9J1AMw/T0Ia39mvZZf6sAYsilfU2IPjJ7+x344eObTBFkp6VFyBK mlNi0rMSFzlV7ok+3I/yJRTQfeNPtRJw0SVkdnWQhd+s22rfNY/VXYwaPhIHOYL6 MwSr8Y0hd0bSq2/pB0vZsxahRxDTSyR/CIS3/PuR48gphTU/bExVLTZmLoaLOjwz AK/gAui+zAOvB2PmHMjVVH6WB87FkFijC78xD4ExO/f69Xy0OEMIuI7AQVhIxbXG p9UiwQlEMx5NmrR9mrYUeh7Zbb5D -----END CERTIFICATE-----Generated at Fri Apr 17 07:34:17 2026 by rpki-client