$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa File: A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa (raw, json) Hash identifier: K760WpwGH2xh6WudVA2vmROV5JRDgr80xWvrGvdg5+s= Subject key identifier: 1A:C2:17:FE:86:3A:19:A5:47:EF:EE:B8:80:F5:41:1F:7D:00:DC:1E Certificate issuer: /CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Certificate serial: 022D Authority key identifier: A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa Signing time: Sun 01 Mar 2026 06:32:52 +0000 ROA not before: Wed 05 Mar 2025 04:19:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136557 IP address blocks: 203.34.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 02:01:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C52, serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Validity Not Before: Mar 5 04:19:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a3dd94-48e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:cf:25:70:bb:9e:ef:21:b2:7e:b5:d8:ab:7f: 03:43:bd:d3:be:ee:c4:e0:01:6c:c8:7c:75:67:c2: 43:ed:06:fb:8e:12:10:b3:92:1c:95:28:0d:28:2d: e6:b8:cd:ee:4e:ef:ba:53:87:f0:94:4c:8e:79:a1: b3:c5:58:ae:7b:3a:5a:ea:9e:f9:b3:93:7a:b7:c4: 0d:4f:10:78:d9:53:cd:04:da:7d:cd:ee:71:eb:6c: e4:69:54:53:5a:1f:a3:f2:66:40:08:8f:e3:f6:49: d2:78:d5:42:35:93:53:26:fc:c7:1e:8d:76:18:3e: 28:0a:b4:55:60:6d:cf:e1:d2:fb:0f:f2:61:5d:02: 3e:92:e5:a2:b3:81:10:25:70:99:c6:7b:05:4b:43: 91:93:19:22:25:d2:0b:ca:f2:38:20:25:03:7c:10: 68:d7:7b:57:64:ad:bf:2b:e9:80:ae:c5:23:e8:76: 26:27:fa:f5:31:b6:b0:86:51:32:f8:f1:f5:35:3e: f5:5b:30:6c:a6:0f:81:85:a9:be:44:59:bc:bb:de: 67:d3:c3:37:c2:9d:c6:7c:76:a5:37:41:19:9f:da: 61:ee:a7:9f:4b:d4:90:8b:82:cb:5d:0b:d9:de:46: 0f:52:f4:a4:31:06:9d:10:83:93:d1:cd:28:c3:28: 5b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C2:17:FE:86:3A:19:A5:47:EF:EE:B8:80:F5:41:1F:7D:00:DC:1E X509v3 Authority Key Identifier: keyid:A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.34.5.0/24 Signature Algorithm: sha256WithRSAEncryption af:75:b0:ab:39:b7:f6:a2:e8:bc:42:e6:7e:1c:4e:74:31:20: 5b:fe:7b:3e:75:92:09:1d:12:ff:0e:a1:cb:3b:d2:d9:5e:ac: 90:e6:13:28:08:09:4b:02:33:c4:67:0b:e1:08:20:c6:5d:c2: cc:18:82:5d:a9:a5:16:eb:44:e5:8c:a0:3b:0c:5b:9e:89:0e: 90:5e:cb:5f:16:74:ca:a8:d2:04:23:35:2a:b7:52:5f:33:f6: 77:de:ed:14:20:b3:39:e6:1d:65:dc:f6:45:c8:80:28:f8:08: 58:0a:b8:9f:f8:29:53:6d:ef:43:68:69:3c:c4:a7:09:32:d0: 94:3c:8a:12:1b:1e:e2:aa:79:90:76:2a:2e:35:b7:ad:32:40: cc:56:fa:84:04:75:86:14:cf:ff:f1:5d:b2:0b:5a:97:1d:a1: 54:79:2c:a5:5d:61:78:fd:ae:b7:0e:a5:24:1a:45:6e:33:99: 90:f8:04:53:dc:7a:9f:56:90:4d:87:1f:5b:eb:84:a6:bf:ed: 3a:72:f1:c9:e0:6c:56:e0:5e:d5:17:0d:d5:b6:af:3b:a5:bd: 5a:87:00:e2:dd:f7:ec:5f:7e:90:f2:5c:f9:d6:89:26:d7:5f: 5c:63:5c:46:27:a5:34:5e:9e:70:d0:7a:1a:46:27:c7:b9:7a: c7:a9:55:72 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDNTIxMTAvBgNVBAUTKEE5OTBEQTI1Q0Y0RTAxQkNFQjdFQzc1QzE3ODYwRkI5 NDdCRTA5MkEwHhcNMjUwMzA1MDQxOTQ1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZGQ5NC00OGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6c8lcLue7yGyfrXYq38DQ73Tvu7E4AFsyHx1Z8JD7Qb7jhIQs5IclSgNKC3m uM3uTu+6U4fwlEyOeaGzxViuezpa6p75s5N6t8QNTxB42VPNBNp9ze5x62zkaVRT Wh+j8mZACI/j9knSeNVCNZNTJvzHHo12GD4oCrRVYG3P4dL7D/JhXQI+kuWis4EQ JXCZxnsFS0ORkxkiJdILyvI4ICUDfBBo13tXZK2/K+mArsUj6HYmJ/r1MbawhlEy +PH1NT71WzBspg+Bham+RFm8u95n08M3wp3GfHalN0EZn9ph7qefS9SQi4LLXQvZ 3kYPUvSkMQadEIOT0c0owyhbuwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFBrCF/6G OhmlR+/uuID1QR99ANweMB8GA1UdIwQYMBaAFKmQ2iXPTgG8637HXBeGD7lHvgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUM1Mi8wRTVEQkZCNEM0 QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0FienJmc2RjRjRZUHVVZS1D U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaRGFKYzlPQWJ6cmZzZGNGNFlQdVVlLUNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDNTIvMEU1REJGQjRDNEJDMTFFRDg4NDAzQTQ4QzRGOUFFMDIvQTQwQzAzQjBE M0I1MTFFREEyQTlERDdCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyyIFMA0GCSqGSIb3DQEBCwUAA4IBAQCvdbCrObf2oui8QuZ+HE50 MSBb/ns+dZIJHRL/DqHLO9LZXqyQ5hMoCAlLAjPEZwvhCCDGXcLMGIJdqaUW60Tl jKA7DFueiQ6QXstfFnTKqNIEIzUqt1JfM/Z33u0UILM55h1l3PZFyIAo+AhYCrif +ClTbe9DaGk8xKcJMtCUPIoSGx7iqnmQdiouNbetMkDMVvqEBHWGFM//8V2yC1qX HaFUeSylXWF4/a63DqUkGkVuM5mQ+ART3HqfVpBNhx9b64Smv+06cvHJ4GxW4F7V Fw3Vtq87pb1ahwDi3ffsX36Q8lz51okm119cY1xGJ6U0Xp5w0HoaRifHuXrHqVVy -----END CERTIFICATE-----Generated at Sat Mar 7 22:29:56 2026 by rpki-client