$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa File: 1347AA9019FE11ECB459B141C4F9AE02.roa (raw, json) Hash identifier: FpSEkpsQMaA9en+9841zTtAmY9K+gYFgxlRnEd7kAEM= Subject key identifier: F5:84:56:21:96:3A:7D:57:97:85:E3:05:3D:5D:0C:AA:83:CE:0A:49 Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 05AD Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:00:10 +0000 ROA not before: Wed 25 Jun 2025 00:04:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.20.197.0/24 maxlen: 24 203.20.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Mar 2026 22:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Jun 25 00:04:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a45479-884c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6b:3d:3c:7a:68:0b:51:a4:0b:5a:43:1c:67: e5:f8:2f:99:19:dd:96:3e:d8:ea:8c:9b:cb:ba:5b: 7e:5d:17:b7:a3:4c:92:65:10:fc:bd:af:45:5f:42: 0e:d3:d0:6c:28:fd:4a:76:6f:5d:09:cc:9d:2d:06: 51:a0:1f:86:83:bf:7b:0a:c2:73:ac:2d:e1:78:5e: 73:47:3d:64:19:45:b9:3e:01:4b:1b:7c:2a:47:e1: bb:41:2c:f1:2c:f7:0a:af:79:ed:a8:60:94:10:c5: dd:65:a1:97:42:0f:ea:aa:96:d5:f3:26:48:ff:f6: e0:23:dc:8e:29:54:8c:3c:82:2a:e0:f5:62:85:65: 13:37:1a:f2:42:0f:ad:1c:a1:b9:05:b0:d5:95:8d: c1:7c:a8:f3:1b:c8:a9:30:79:5b:29:41:90:c6:7f: b6:a7:7e:5c:90:4e:d9:60:28:0d:fb:17:78:bf:df: 36:bc:be:43:eb:f4:3a:cf:4b:11:21:ea:7b:13:49: 80:59:a8:89:5f:ef:91:d9:7d:eb:9f:57:a7:88:ea: 57:d0:8c:b3:91:e4:e9:cc:db:e8:19:9a:43:6a:ca: de:a3:c2:a7:2c:88:4f:e4:ab:8f:c2:00:fd:b8:6b: 1d:bc:3b:78:25:11:32:69:16:fc:6f:46:a6:00:03: c1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:84:56:21:96:3A:7D:57:97:85:E3:05:3D:5D:0C:AA:83:CE:0A:49 X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.20.197.0/24 203.20.199.0/24 Signature Algorithm: sha256WithRSAEncryption 95:ff:c8:3e:06:9c:d9:83:44:f4:eb:e1:84:09:c2:3f:5f:b3: 03:12:9b:09:f9:af:8f:3c:17:e5:e9:39:13:33:b9:88:ce:dd: 69:73:21:ca:79:36:f2:55:7d:7b:52:36:a0:60:fb:f6:ab:dc: b2:83:5d:98:33:42:94:6a:e0:94:f0:4c:d6:21:80:b7:8a:ff: 09:6c:e8:11:1e:15:28:06:6b:6d:dc:eb:14:cf:ae:9c:f5:bc: 81:5d:41:a1:aa:0a:d9:7a:c9:04:de:f5:cd:be:5a:73:52:8f: dd:55:c3:b5:80:43:7f:6f:a6:9e:bf:f4:a7:95:e4:86:c8:45: 85:ec:bc:71:a0:ed:25:35:06:cd:22:91:07:f0:27:5a:bd:7a: 91:8c:a3:52:48:c5:aa:ea:02:a7:32:54:56:2a:85:b3:f5:17: 37:e9:0e:f5:fa:40:3c:64:85:25:21:f7:27:eb:52:44:c5:61: 67:37:42:d8:6b:cf:f2:a6:61:36:81:c4:d4:68:67:d5:fa:00: ce:d9:82:af:11:ec:ed:a0:b7:28:02:69:68:91:12:70:b6:fc: 3c:81:8b:9f:42:05:b2:e9:83:17:c4:f1:ff:79:24:65:ea:ff: 43:59:1d:35:4a:b5:d0:12:51:1a:d2:a9:2e:5b:ee:c8:9a:9c: 54:1b:31:f0 -----BEGIN CERTIFICATE----- MIIFQjCCBCqgAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjUwNjI1MDAwNDEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTQ3OS04ODRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ms9PHpoC1GkC1pDHGfl+C+ZGd2WPtjqjJvLult+XRe3o0ySZRD8va9FX0IO 09BsKP1Kdm9dCcydLQZRoB+Gg797CsJzrC3heF5zRz1kGUW5PgFLG3wqR+G7QSzx LPcKr3ntqGCUEMXdZaGXQg/qqpbV8yZI//bgI9yOKVSMPIIq4PVihWUTNxryQg+t HKG5BbDVlY3BfKjzG8ipMHlbKUGQxn+2p35ckE7ZYCgN+xd4v982vL5D6/Q6z0sR Iep7E0mAWaiJX++R2X3rn1eniOpX0IyzkeTpzNvoGZpDasreo8KnLIhP5KuPwgD9 uGsdvDt4JREyaRb8b0amAAPBcQIDAQABo4ICZjCCAmIwHQYDVR0OBBYEFPWEViGW On1Xl4XjBT1dDKqDzgpJMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU2QkIvNUNFQTU0OTQxNkQ1MTFFQ0E3RjNGNDZBQzRGOUFFMDIvMTM0N0FBOTAx OUZFMTFFQ0I0NTlCMTQxQzRGOUFFMDIucm9hMCUGCCsGAQUFBwEHAQH/BBYwFDAS BAIAATAMAwQAyxTFAwQAyxTHMA0GCSqGSIb3DQEBCwUAA4IBAQCV/8g+BpzZg0T0 6+GECcI/X7MDEpsJ+a+PPBfl6TkTM7mIzt1pcyHKeTbyVX17UjagYPv2q9yyg12Y M0KUauCU8EzWIYC3iv8JbOgRHhUoBmtt3OsUz66c9byBXUGhqgrZeskE3vXNvlpz Uo/dVcO1gEN/b6aev/SnleSGyEWF7LxxoO0lNQbNIpEH8CdavXqRjKNSSMWq6gKn MlRWKoWz9Rc36Q71+kA8ZIUlIfcn61JExWFnN0LYa8/ypmE2gcTUaGfV+gDO2YKv EeztoLcoAmlokRJwtvw8gYufQgWy6YMXxPH/eSRl6v9DWR01SrXQElEa0qkuW+7I mpxUGzHw -----END CERTIFICATE-----Generated at Thu Mar 19 14:28:04 2026 by rpki-client