$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa File: 248F325863DE11EC8CB33722C4F9AE02.roa (raw, json) Hash identifier: WnvcGDFfkuo1N5I0y+7/3yeVNJIXinVmE3vvM9mei7c= Subject key identifier: 30:DB:F2:6F:19:64:70:C3:E9:D0:C9:72:0B:D2:24:67:4B:86:3E:3E Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 5ED4 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa Signing time: Mon 02 Mar 2026 22:19:53 +0000 ROA not before: Thu 28 Aug 2025 14:56:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23902 IP address blocks: 203.119.8.0/22 maxlen: 24 203.119.72.0/22 maxlen: 24 2001:dc8::/48 maxlen: 48 2001:dc8:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 14:32:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24276 (0x5ed4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:47 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a60d09-2d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bf:04:51:be:55:a8:bb:16:5b:a9:08:c8:af: 67:79:dc:f5:84:dc:61:cd:86:73:7a:c9:45:d8:73: 79:ee:c8:db:9a:a0:1e:32:1c:1a:72:1b:70:b0:a0: 6b:92:58:3c:bc:61:71:46:b4:ce:8b:e5:d9:7e:f3: 67:63:8d:cb:4c:24:f8:7e:33:dc:bd:6b:12:a0:69: e2:3d:b3:81:eb:cd:f9:39:77:6a:a1:00:40:5c:ab: d2:9c:e1:6a:01:20:76:b9:32:6f:4f:76:14:60:15: be:17:31:68:2e:3c:1d:e1:e4:84:3c:b3:65:6a:23: 3b:89:28:23:db:3f:8a:2c:ad:b3:86:c2:ff:07:76: d8:97:2c:56:a4:79:71:dc:66:f3:8c:2e:df:8e:f1: 25:84:ea:2b:75:ac:5e:4c:5c:d7:e7:ed:dc:bf:92: ce:3f:bb:66:b5:45:a9:99:8c:fd:ef:3a:ae:35:d8: 52:6a:9a:9f:d4:e3:f0:2f:1f:97:ff:4e:29:e8:ac: 25:ba:cc:28:d3:90:72:4d:ef:c3:da:de:f6:8f:97: 78:4c:d1:dd:ac:da:26:45:92:b1:26:ab:ff:62:7c: 0d:a9:85:10:6f:41:04:44:90:f7:78:b9:15:ac:98: 6e:be:f8:08:d9:f5:a1:7a:3c:0e:31:9e:c4:df:1e: af:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DB:F2:6F:19:64:70:C3:E9:D0:C9:72:0B:D2:24:67:4B:86:3E:3E X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/248F325863DE11EC8CB33722C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.119.8.0/22 203.119.72.0/22 IPv6: 2001:dc8::/47 Signature Algorithm: sha256WithRSAEncryption 8f:b6:b2:05:0b:b3:9f:c9:be:e1:69:7f:f3:f0:4b:07:ca:f4: b3:ed:e6:d1:9a:5a:f1:21:04:35:38:3b:f0:ba:4b:3d:e4:e0: e2:9b:23:99:97:c3:c9:f2:24:2c:58:e8:99:9c:aa:1c:c0:b7: 74:3e:be:aa:8b:4f:d2:da:07:23:46:33:fe:5f:15:38:41:b4: 8b:29:52:42:ec:eb:71:a6:a3:45:35:8e:11:25:08:37:70:88: 28:ae:4d:54:9a:c7:c7:78:d0:7a:f2:b3:15:cf:58:8f:24:39: 0f:31:33:50:40:a0:b7:81:00:35:df:31:d4:88:4a:67:46:92: 33:e7:eb:a0:a7:0c:bf:d0:b4:88:41:ca:69:03:90:51:54:7f: de:05:e7:80:ec:cc:bb:36:e0:78:36:77:52:07:48:b2:94:72: aa:fe:dc:37:6b:d0:b7:53:49:9c:d1:2c:a4:ed:75:13:2b:d7: d3:57:02:6d:73:aa:5d:39:ca:36:5d:df:c6:43:f0:9a:e7:d9: b9:19:45:ec:6b:ec:ce:66:92:6e:77:ff:e0:2a:42:8f:12:f1: c8:d3:46:b5:8d:dd:3a:eb:9d:23:49:db:07:35:2e:db:fc:74: b1:52:24:64:83:65:a1:fb:b1:54:78:9d:e1:27:ce:8d:e9:ed: db:af:2c:81 -----BEGIN CERTIFICATE----- MIIFUzCCBDugAwIBAgICXtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2MGQwOS0yZDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt78EUb5VqLsWW6kIyK9nedz1hNxhzYZzeslF2HN57sjbmqAeMhwachtwsKBr klg8vGFxRrTOi+XZfvNnY43LTCT4fjPcvWsSoGniPbOB6835OXdqoQBAXKvSnOFq ASB2uTJvT3YUYBW+FzFoLjwd4eSEPLNlaiM7iSgj2z+KLK2zhsL/B3bYlyxWpHlx 3GbzjC7fjvElhOordaxeTFzX5+3cv5LOP7tmtUWpmYz97zquNdhSapqf1OPwLx+X /04p6Kwluswo05ByTe/D2t72j5d4TNHdrNomRZKxJqv/YnwNqYUQb0EERJD3eLkV rJhuvvgI2fWhejwOMZ7E3x6vMQIDAQABo4ICdzCCAnMwHQYDVR0OBBYEFDDb8m8Z ZHDD6dDJcgvSJGdLhj4+MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMjQ4RjMyNTg2 M0RFMTFFQzhDQjMzNzIyQzRGOUFFMDIucm9hMDYGCCsGAQUFBwEHAQH/BCcwJTAS BAIAATAMAwQCy3cIAwQCy3dIMA8EAgACMAkDBwEgAQ3IAAAwDQYJKoZIhvcNAQEL BQADggEBAI+2sgULs5/JvuFpf/PwSwfK9LPt5tGaWvEhBDU4O/C6Sz3k4OKbI5mX w8nyJCxY6JmcqhzAt3Q+vqqLT9LaByNGM/5fFThBtIspUkLs63Gmo0U1jhElCDdw iCiuTVSax8d40HrysxXPWI8kOQ8xM1BAoLeBADXfMdSISmdGkjPn66CnDL/QtIhB ymkDkFFUf94F54DszLs24Hg2d1IHSLKUcqr+3Ddr0LdTSZzRLKTtdRMr19NXAm1z ql05yjZd38ZD8Jrn2bkZRexr7M5mkm53/+AqQo8S8cjTRrWN3TrrnSNJ2wc1Ltv8 dLFSJGSDZaH7sVR4neEnzo3p7duvLIE= -----END CERTIFICATE-----Generated at Sat Mar 7 22:47:43 2026 by rpki-client