$ rpki-client -vvf rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa File: 21EE9510083211EB81509633C4F9AE02.roa (raw, json) Hash identifier: iKMQHOBFrgyHmy/Ps4jIsLKGqzItSxXRkBRTt6rveQ4= Subject key identifier: F5:59:CC:BA:5B:7B:07:59:D0:3A:8C:A3:E0:25:36:57:53:9A:0B:AA Certificate issuer: /CN=A91814E9/serialNumber=C42FF1D2FF352981BC5F82240EC9394EFAB31186 Certificate serial: 0838 Authority key identifier: C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:52:05 +0000 ROA not before: Tue 18 Nov 2025 20:12:16 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 1221 IP address blocks: 203.4.192.0/24 maxlen: 24 203.4.193.0/24 maxlen: 24 203.4.194.0/24 maxlen: 24 203.4.195.0/24 maxlen: 24 203.4.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.crl rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 20:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2104 (0x838) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91814E9, serialNumber=C42FF1D2FF352981BC5F82240EC9394EFAB31186 Validity Not Before: Nov 18 20:12:16 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a45295-9a32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c5:85:79:27:b9:8f:78:12:82:17:bf:67:5c: 94:e8:f3:9a:ae:66:23:6e:d6:c5:8a:fa:b3:a5:3e: 80:eb:a3:6f:e2:69:19:5c:9d:90:0b:93:b0:ef:94: 5f:11:9f:65:5c:0c:e3:fe:0a:1e:bd:8c:8b:0a:08: 08:97:d1:ab:92:b9:a9:80:54:4e:2d:9c:f7:70:16: b7:83:61:30:17:f9:54:ac:d9:2f:e4:6c:b1:5d:1e: eb:9f:32:f9:b7:0a:4b:d7:9f:d5:65:00:b6:4b:ec: 4f:76:a1:60:de:4b:3e:09:a5:52:2d:5e:1a:ef:b8: e2:fc:0d:da:a5:08:8d:e0:cd:dd:fc:41:27:7e:6c: fb:a3:3e:10:71:16:fd:4f:22:f0:64:c8:f8:1a:34: 27:75:66:58:0b:f4:e8:d2:ec:d0:ff:ca:91:fc:78: 53:ae:1e:1c:81:02:a3:71:ea:70:71:40:6a:2b:39: 84:88:e2:20:d0:f5:89:06:0c:1b:cf:b6:ed:c0:16: 20:f5:ef:a7:b1:22:bb:db:bc:fa:28:12:fe:f5:47: 78:a6:6e:ff:03:3f:a5:8e:15:f5:8b:52:6a:63:6e: a0:bd:48:c0:41:e6:76:90:fe:a3:a4:cb:17:3b:6a: 7e:52:ca:f9:b4:25:5c:a9:8e:6c:2b:af:24:83:cf: 17:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:59:CC:BA:5B:7B:07:59:D0:3A:8C:A3:E0:25:36:57:53:9A:0B:AA X509v3 Authority Key Identifier: keyid:C4:2F:F1:D2:FF:35:29:81:BC:5F:82:24:0E:C9:39:4E:FA:B3:11:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/xC_x0v81KYG8X4IkDsk5TvqzEYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xC_x0v81KYG8X4IkDsk5TvqzEYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91814E9/FE57C2BC083011EBBFE4C732C4F9AE02/21EE9510083211EB81509633C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.4.192.0-203.4.196.255 Signature Algorithm: sha256WithRSAEncryption 3d:fc:1e:3a:68:15:2f:c3:88:8e:ff:bd:8a:68:23:47:35:79: d4:75:f8:78:6d:45:77:17:cf:c2:c0:25:bf:4e:c3:27:f8:1a: 03:5f:11:15:b9:0a:9a:99:97:dc:b4:a7:53:84:9d:5a:d9:1f: 2e:21:0b:2b:e2:55:ef:55:80:33:ed:d5:21:1c:cc:c2:77:fd: 15:7a:67:30:ff:9d:28:49:cc:58:79:6b:05:4c:73:30:29:a6: 37:00:44:53:87:61:62:94:ce:7a:79:92:5d:46:d5:58:df:9a: 83:cb:48:a1:6f:47:27:d4:05:7a:92:4f:7c:68:bc:e7:fc:bd: f7:47:7d:c0:c9:df:b0:58:39:2f:dc:08:2e:4d:fb:a3:9c:bb: fc:1d:16:bb:39:f0:14:47:b3:c2:71:ed:b6:c2:38:c3:37:ca: 6e:a4:9f:ac:bf:08:b1:b9:d5:7e:f7:be:71:aa:81:07:86:8c: cf:3e:39:67:95:1c:3f:05:32:09:84:b6:56:5b:68:b5:86:8f: 9a:b0:f9:81:ad:34:3e:bb:84:26:52:4d:59:5e:bb:f9:ea:0e: 9d:73:d4:dd:3e:f6:7b:b1:9c:dd:e3:b2:af:5c:2e:9d:35:78: 3b:0f:b7:9f:67:25:0d:85:52:99:0d:6e:9d:c3:90:23:d1:cd: 93:ff:ba:f0 -----BEGIN CERTIFICATE----- MIIFRDCCBCygAwIBAgICCDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0RTkxMTAvBgNVBAUTKEM0MkZGMUQyRkYzNTI5ODFCQzVGODIyNDBFQzkzOTRF RkFCMzExODYwHhcNMjUxMTE4MjAxMjE2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTI5NS05YTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MWFeSe5j3gSghe/Z1yU6POarmYjbtbFivqzpT6A66Nv4mkZXJ2QC5Ow75Rf EZ9lXAzj/goevYyLCggIl9GrkrmpgFROLZz3cBa3g2EwF/lUrNkv5GyxXR7rnzL5 twpL15/VZQC2S+xPdqFg3ks+CaVSLV4a77ji/A3apQiN4M3d/EEnfmz7oz4QcRb9 TyLwZMj4GjQndWZYC/To0uzQ/8qR/HhTrh4cgQKjcepwcUBqKzmEiOIg0PWJBgwb z7btwBYg9e+nsSK727z6KBL+9Ud4pm7/Az+ljhX1i1JqY26gvUjAQeZ2kP6jpMsX O2p+Usr5tCVcqY5sK68kg88XKwIDAQABo4ICaDCCAmQwHQYDVR0OBBYEFPVZzLpb ewdZ0DqMo+AlNldTmguqMB8GA1UdIwQYMBaAFMQv8dL/NSmBvF+CJA7JOU76sxGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTRFOS9GRTU3QzJCQzA4 MzAxMUVCQkZFNEM3MzJDNEY5QUUwMi94Q194MHY4MUtZRzhYNElrRHNrNVR2cXpF WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDX3gwdjgxS1lHOFg0SWtEc2s1VHZxekVZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE0RTkvRkU1N0MyQkMwODMwMTFFQkJGRTRDNzMyQzRGOUFFMDIvMjFFRTk1MTAw ODMyMTFFQjgxNTA5NjMzQzRGOUFFMDIucm9hMCcGCCsGAQUFBwEHAQH/BBgwFjAU BAIAATAOMAwDBAbLBMADBADLBMQwDQYJKoZIhvcNAQELBQADggEBAD38HjpoFS/D iI7/vYpoI0c1edR1+HhtRXcXz8LAJb9Owyf4GgNfERW5CpqZl9y0p1OEnVrZHy4h CyviVe9VgDPt1SEczMJ3/RV6ZzD/nShJzFh5awVMczAppjcARFOHYWKUznp5kl1G 1VjfmoPLSKFvRyfUBXqST3xovOf8vfdHfcDJ37BYOS/cCC5N+6Ocu/wdFrs58BRH s8Jx7bbCOMM3ym6kn6y/CLG51X73vnGqgQeGjM8+OWeVHD8FMgmEtlZbaLWGj5qw +YGtND67hCZSTVleu/nqDp1z1N0+9nuxnN3jsq9cLp01eDsPt59nJQ2FUpkNbp3D kCPRzZP/uvA= -----END CERTIFICATE-----Generated at Sat Mar 7 22:32:16 2026 by rpki-client