$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC1CF/FA71B1D81DAD11F185E42FBE3D3D8C67/840FB8CC1DAE11F1AA3EBAC03D3D8C67.roa File: 840FB8CC1DAE11F1AA3EBAC03D3D8C67.roa (raw, json) Hash identifier: r5BB+japYC6seEdkVZLK22Dexuxs6mCJDX2FzRf3yv4= Subject key identifier: 52:C6:E5:40:7B:72:D3:8B:FF:15:88:0B:24:48:5E:E0:7B:A4:B3:57 Certificate issuer: /CN=A91AC1CF/serialNumber=596B644F839101F5598BD120CADE954851A0CE4A Certificate serial: 02 Authority key identifier: 59:6B:64:4F:83:91:01:F5:59:8B:D1:20:CA:DE:95:48:51:A0:CE:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWtkT4ORAfVZi9Egyt6VSFGgzko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC1CF/FA71B1D81DAD11F185E42FBE3D3D8C67/840FB8CC1DAE11F1AA3EBAC03D3D8C67.roa Signing time: Thu 12 Mar 2026 00:58:00 +0000 ROA not before: Thu 12 Mar 2026 00:58:00 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 1221 IP address blocks: 203.148.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC1CF/FA71B1D81DAD11F185E42FBE3D3D8C67/WWtkT4ORAfVZi9Egyt6VSFGgzko.crl rsync://rpki.apnic.net/member_repository/A91AC1CF/FA71B1D81DAD11F185E42FBE3D3D8C67/WWtkT4ORAfVZi9Egyt6VSFGgzko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWtkT4ORAfVZi9Egyt6VSFGgzko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 06:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC1CF, serialNumber=596B644F839101F5598BD120CADE954851A0CE4A Validity Not Before: Mar 12 00:58:00 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69b20f98-8c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:48:93:41:e3:a6:a9:32:a8:a8:50:bc:1a:a4: 8c:3e:22:50:03:47:aa:2e:8a:8f:db:9c:31:f7:24: d7:17:33:18:b6:80:e4:7f:b0:25:60:23:3f:52:44: ef:c9:70:46:45:ae:82:e4:5d:a7:ca:99:41:b3:73: 29:f4:97:78:b3:6c:e6:2e:a0:0f:5f:a3:c9:6d:08: 21:73:bb:66:62:98:d3:4f:b2:c2:08:df:a2:d2:33: 86:66:ab:7c:f0:43:fd:9c:c4:ac:15:99:14:77:7b: de:07:ca:98:07:39:16:c7:73:42:2d:a5:1a:46:5d: 70:87:87:dd:6e:39:84:4e:7b:df:06:fb:c8:c7:8a: c3:15:31:98:32:25:d5:cb:8f:22:80:5f:07:5e:9b: 6a:73:a3:19:e4:2a:9a:92:4f:7d:89:df:f8:a0:d4: a9:0b:9b:cd:79:8b:61:38:4a:73:a9:cd:a0:23:5b: eb:c4:b9:4b:8d:a0:0d:86:6d:fd:b4:83:6b:18:47: 60:fe:0a:37:a3:66:d6:8c:c8:8a:de:f3:95:26:bf: 9e:40:33:69:d1:f3:9e:4f:11:e7:33:17:11:e0:ed: 2c:67:d6:3b:07:85:51:b2:41:64:b9:c6:87:fd:60: 86:70:19:d7:8e:4c:89:71:f5:e1:5d:bc:19:82:fc: 57:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C6:E5:40:7B:72:D3:8B:FF:15:88:0B:24:48:5E:E0:7B:A4:B3:57 X509v3 Authority Key Identifier: keyid:59:6B:64:4F:83:91:01:F5:59:8B:D1:20:CA:DE:95:48:51:A0:CE:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC1CF/FA71B1D81DAD11F185E42FBE3D3D8C67/WWtkT4ORAfVZi9Egyt6VSFGgzko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WWtkT4ORAfVZi9Egyt6VSFGgzko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC1CF/FA71B1D81DAD11F185E42FBE3D3D8C67/840FB8CC1DAE11F1AA3EBAC03D3D8C67.roa sbgp-ipAddrBlock: critical IPv4: 203.148.93.0/24 Signature Algorithm: sha256WithRSAEncryption 42:1a:09:d6:b3:ca:c5:17:c2:3a:4c:9e:e0:81:11:e3:75:7f: 62:98:41:66:a9:13:ee:d6:d1:09:d7:42:f5:e0:cc:9a:0d:d0: d3:15:5f:1d:26:44:23:6d:62:51:8d:78:62:2e:71:da:3b:69: c8:e5:bb:df:06:36:49:1d:fb:6a:1d:48:23:91:14:f2:d4:a1: e8:2e:69:58:57:07:bc:af:18:b3:d2:91:9c:e2:60:5c:34:8d: 6f:06:28:94:e2:1d:0e:36:66:f3:f4:2c:2b:82:03:0d:3f:c5: f9:60:fc:ea:f1:e6:cc:bf:f7:ec:bc:61:83:66:36:bd:3c:b8: a9:bc:8c:dd:3a:9f:3c:f3:9c:2c:14:d4:a7:ef:65:8b:76:4c: 6e:f7:4e:7f:29:1b:42:d3:63:ad:b8:07:ff:13:d2:81:f0:99: eb:ac:64:af:6c:e4:bf:7b:ab:7e:b2:98:50:c2:ea:4a:53:fd: fb:8f:05:80:d6:1d:c1:9f:2f:3e:4d:bb:7d:7b:dc:78:bd:d7: 49:91:f0:d0:ac:90:d7:02:94:7b:28:02:48:cd:25:2d:35:9a: 83:48:a9:d3:e4:3b:19:0b:98:95:1a:9a:81:34:1d:e8:7b:3e: 28:bf:f9:7b:0a:61:15:12:fa:d5:74:b5:d1:6b:65:70:bf:ed: 91:1e:73:8d -----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzFDRjExMC8GA1UEBRMoNTk2QjY0NEY4MzkxMDFGNTU5OEJEMTIwQ0FERTk1NDg1 MUEwQ0U0QTAeFw0yNjAzMTIwMDU4MDBaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YjIwZjk4LThjMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFSJNB46apMqioULwapIw+IlADR6ouio/bnDH3JNcXMxi2gOR/sCVgIz9SRO/J cEZFroLkXafKmUGzcyn0l3izbOYuoA9fo8ltCCFzu2ZimNNPssII36LSM4Zmq3zw Q/2cxKwVmRR3e94HypgHORbHc0ItpRpGXXCHh91uOYROe98G+8jHisMVMZgyJdXL jyKAXwdem2pzoxnkKpqST32J3/ig1KkLm815i2E4SnOpzaAjW+vEuUuNoA2Gbf20 g2sYR2D+CjejZtaMyIre85Umv55AM2nR855PEeczFxHg7Sxn1jsHhVGyQWS5xof9 YIZwGdeOTIlx9eFdvBmC/Fd1AgMBAAGjggJgMIICXDAdBgNVHQ4EFgQUUsblQHty 04v/FYgLJEhe4Huks1cwHwYDVR0jBBgwFoAUWWtkT4ORAfVZi9Egyt6VSFGgzkow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDMUNGL0ZBNzFCMUQ4MURB RDExRjE4NUU0MkZCRTNEM0Q4QzY3L1dXdGtUNE9SQWZWWmk5RWd5dDZWU0ZHZ3pr by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV1d0a1Q0T1JBZlZaaTlFZ3l0NlZTRkdnemtvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzFDRi9GQTcxQjFEODFEQUQxMUYxODVFNDJGQkUzRDNEOEM2Ny84NDBGQjhDQzFE QUUxMUYxQUEzRUJBQzAzRDNEOEM2Ny5yb2EwHwYIKwYBBQUHAQcBAf8EEDAOMAwE AgABMAYDBADLlF0wDQYJKoZIhvcNAQELBQADggEBAEIaCdazysUXwjpMnuCBEeN1 f2KYQWapE+7W0QnXQvXgzJoN0NMVXx0mRCNtYlGNeGIucdo7acjlu98GNkkd+2od SCORFPLUoeguaVhXB7yvGLPSkZziYFw0jW8GKJTiHQ42ZvP0LCuCAw0/xflg/Orx 5sy/9+y8YYNmNr08uKm8jN06nzzznCwU1KfvZYt2TG73Tn8pG0LTY624B/8T0oHw meusZK9s5L97q36ymFDC6kpT/fuPBYDWHcGfLz5Nu3173Hi910mR8NCskNcClHso AkjNJS01moNIqdPkOxkLmJUamoE0Heh7Pii/+XsKYRUS+tV0tdFrZXC/7ZEec40= -----END CERTIFICATE-----Generated at Thu Mar 19 14:21:53 2026 by rpki-client