$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa File: C39CEEAAE17C11EC93AB7473C4F9AE02.roa (raw, json) Hash identifier: PR8KeMJagYnX5NaTEbruuVcGt2m5beEPxS5c4L9WBIU= Subject key identifier: 96:F9:18:8C:3A:1B:88:81:2C:C7:34:66:CB:CF:3A:B4:12:A6:6E:C4 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0A0D Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa Signing time: Mon 02 Mar 2026 12:53:23 +0000 ROA not before: Wed 27 Aug 2025 01:05:35 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133481 IP address blocks: 203.170.208.0/24 maxlen: 24 203.170.209.0/24 maxlen: 24 203.170.212.0/24 maxlen: 24 203.170.213.0/24 maxlen: 24 203.170.216.0/24 maxlen: 24 203.170.217.0/24 maxlen: 24 203.170.218.0/24 maxlen: 24 203.170.219.0/24 maxlen: 24 203.170.220.0/24 maxlen: 24 203.170.221.0/24 maxlen: 24 203.170.222.0/24 maxlen: 24 203.170.223.0/24 maxlen: 24 203.170.240.0/24 maxlen: 24 203.170.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Mar 2026 23:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2573 (0xa0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Aug 27 01:05:35 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a58843-9cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:85:7d:36:ef:e9:05:bc:b9:52:bf:d0:fc:a8: eb:1e:99:29:dc:10:fe:c5:8f:7c:d6:47:5b:bc:9e: 26:4b:91:4a:5d:4d:71:e3:3c:40:e7:35:a5:e1:ec: e9:c8:10:10:fd:19:cb:83:3a:63:bf:1a:e8:39:af: c1:08:d5:52:f3:b7:b5:dd:10:79:32:7b:0a:91:c4: 83:16:31:dd:98:a3:fb:41:9f:9c:8a:af:5d:4a:5d: cf:10:02:2f:82:21:76:86:f5:29:46:85:e8:6a:70: 7e:cd:fd:89:b4:76:7d:8f:63:53:04:c1:8d:c0:81: e8:4f:a7:00:aa:68:e5:f9:70:37:c7:29:d2:00:1d: f3:65:31:01:67:73:ea:32:73:98:9c:ee:9d:33:11: f5:ed:12:05:bc:c0:11:72:36:5d:35:bd:2e:29:c8: ce:8c:81:21:29:f7:17:98:b6:f2:7b:36:a6:e0:45: a5:3e:e6:a1:38:e6:fa:a7:fa:c7:32:5a:4c:13:19: c6:43:37:46:aa:02:02:8b:6f:dd:e2:be:ff:1d:df: 42:69:78:6a:4b:ad:82:82:f8:f6:8e:b1:5d:b7:0c: 32:f8:ce:21:29:12:6c:28:94:77:dc:29:c0:76:42: 21:69:5e:03:c7:9a:27:d6:c5:c2:ba:c6:e6:f6:5c: e3:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F9:18:8C:3A:1B:88:81:2C:C7:34:66:CB:CF:3A:B4:12:A6:6E:C4 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.170.208.0/23 203.170.212.0/23 203.170.216.0/21 203.170.240.0/23 Signature Algorithm: sha256WithRSAEncryption 17:17:e5:cb:48:e9:59:0c:14:18:35:ae:0a:e4:b8:c8:df:df: a6:55:d0:93:72:0d:d6:fd:7d:f0:05:dd:2a:e4:ed:fb:25:dd: 00:88:0c:65:4d:45:5f:1a:ea:89:37:b4:e2:f1:f4:57:d3:a6: c7:79:ef:a4:29:bd:69:27:ac:63:5d:ff:e8:95:73:f1:6f:d9: fb:05:6d:e2:15:75:fa:a3:db:f3:96:8e:8b:f1:ca:1c:1b:a1: ba:f6:10:6b:64:e2:3b:33:55:b4:61:4c:3f:b4:a9:1b:3d:27: 6c:49:f1:7b:1f:4d:e5:1a:3e:90:4d:1e:fb:18:08:ff:d3:c5: f9:dc:24:85:9e:6c:9b:82:fa:f9:ac:17:22:33:d4:60:a1:63: 28:62:c5:ee:62:6a:f1:6b:1a:66:ce:7f:1d:50:38:68:8b:36: cf:95:0d:b5:9d:5e:ee:b9:c4:b3:04:dc:27:6e:01:3c:96:f8: 4f:5e:98:08:2d:10:68:08:40:36:bb:bd:8d:ea:97:b7:84:a7: 4e:b6:92:7e:84:88:c5:4a:08:1d:dc:75:bb:5b:f7:3e:45:02: b7:23:60:40:21:2b:b4:54:37:62:62:61:1e:e3:72:77:d4:b4: 54:5a:83:cd:c7:32:e5:40:46:d3:69:5d:ce:b4:a9:e8:e0:e1: c3:aa:31:af -----BEGIN CERTIFICATE----- MIIFTjCCBDagAwIBAgICCg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjUwODI3MDEwNTM1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1ODg0My05Y2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYV9Nu/pBby5Ur/Q/KjrHpkp3BD+xY981kdbvJ4mS5FKXU1x4zxA5zWl4ezp yBAQ/RnLgzpjvxroOa/BCNVS87e13RB5MnsKkcSDFjHdmKP7QZ+ciq9dSl3PEAIv giF2hvUpRoXoanB+zf2JtHZ9j2NTBMGNwIHoT6cAqmjl+XA3xynSAB3zZTEBZ3Pq MnOYnO6dMxH17RIFvMARcjZdNb0uKcjOjIEhKfcXmLbyezam4EWlPuahOOb6p/rH MlpMExnGQzdGqgICi2/d4r7/Hd9CaXhqS62Cgvj2jrFdtwwy+M4hKRJsKJR33CnA dkIhaV4Dx5on1sXCusbm9lzjIwIDAQABo4ICcjCCAm4wHQYDVR0OBBYEFJb5GIw6 G4iBLMc0ZsvPOrQSpm7EMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQzM5Q0VFQUFF MTdDMTFFQzkzQUI3NDczQzRGOUFFMDIucm9hMDEGCCsGAQUFBwEHAQH/BCIwIDAe BAIAATAYAwQBy6rQAwQBy6rUAwQDy6rYAwQBy6rwMA0GCSqGSIb3DQEBCwUAA4IB AQAXF+XLSOlZDBQYNa4K5LjI39+mVdCTcg3W/X3wBd0q5O37Jd0AiAxlTUVfGuqJ N7Ti8fRX06bHee+kKb1pJ6xjXf/olXPxb9n7BW3iFXX6o9vzlo6L8cocG6G69hBr ZOI7M1W0YUw/tKkbPSdsSfF7H03lGj6QTR77GAj/08X53CSFnmybgvr5rBciM9Rg oWMoYsXuYmrxaxpmzn8dUDhoizbPlQ21nV7uucSzBNwnbgE8lvhPXpgILRBoCEA2 u72N6pe3hKdOtpJ+hIjFSggd3HW7W/c+RQK3I2BAISu0VDdiYmEe43J31LRUWoPN xzLlQEbTaV3OtKno4OHDqjGv -----END CERTIFICATE-----Generated at Sun Mar 15 01:19:59 2026 by rpki-client