$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/08A71970723811EDB0BD0312C4F9AE02.roa File: 08A71970723811EDB0BD0312C4F9AE02.roa (raw, json) Hash identifier: FAsv4u0lMC/I3QYc2qVpW+Zdc9wxgYJL7HZ2HtRyWFE= Subject key identifier: 22:FD:D6:6D:84:DF:65:DF:AF:E9:B2:2B:20:09:98:93:FB:02:E3:2D Certificate issuer: /CN=A91B6172/serialNumber=21B2EA742FF0EF9EBCCEF3998790E3F5B08D6B63 Certificate serial: 0274 Authority key identifier: 21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/08A71970723811EDB0BD0312C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:17:43 +0000 ROA not before: Thu 23 Oct 2025 03:46:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4826 IP address blocks: 203.23.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 01:32:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6172, serialNumber=21B2EA742FF0EF9EBCCEF3998790E3F5B08D6B63 Validity Not Before: Oct 23 03:46:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69a45897-bc89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ae:5f:a6:20:a0:a8:fa:15:3b:f7:34:8a:0b: b5:3b:8d:a5:3e:65:26:7f:42:f6:aa:55:bf:dc:c5: 52:2d:15:10:be:82:69:27:e6:79:5a:16:df:5d:bf: cd:0b:78:a5:01:5a:95:6f:eb:a5:8b:fb:52:0a:22: 98:01:5f:db:2b:6f:56:c5:bb:6c:d5:79:44:66:61: 55:b0:b9:4b:69:82:4c:5b:c9:6e:ca:bf:81:24:da: c5:30:ba:42:f4:65:a9:99:c3:bd:a1:20:e6:bb:43: 77:27:a5:f3:a2:83:07:70:34:b1:c8:f0:3c:70:cc: fc:de:bb:1d:e6:c3:de:4c:23:d5:ea:68:3c:64:8a: de:23:e2:6c:8f:d8:0c:7f:76:ae:e9:58:3a:dc:97: f8:6f:6d:ac:99:f1:f0:53:d6:9d:fb:5a:12:2b:62: 62:e0:6e:f1:e8:63:bb:94:5f:53:95:0c:5f:62:64: 38:ad:8a:aa:50:52:52:0d:30:5b:ea:50:8d:f6:70: 7f:d2:ea:aa:bc:8e:8f:95:3f:23:f4:66:fd:69:84: ab:75:8b:09:ee:30:61:35:f9:a9:27:d5:a3:0f:0e: a4:ac:70:18:98:7a:93:58:e9:a4:70:db:a6:cd:2b: a0:cc:19:30:40:88:12:3c:e4:d7:28:3a:58:da:d6: f0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:FD:D6:6D:84:DF:65:DF:AF:E9:B2:2B:20:09:98:93:FB:02:E3:2D X509v3 Authority Key Identifier: keyid:21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/08A71970723811EDB0BD0312C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.23.97.0/24 Signature Algorithm: sha256WithRSAEncryption 79:d3:a7:1c:3b:23:f1:9a:dc:73:c7:25:07:d8:1a:e2:53:2f: 04:0d:92:59:53:f1:79:8c:cf:90:6e:7b:a5:42:3f:b8:9b:aa: 5f:92:7b:56:51:bc:f0:a6:2d:da:3d:9c:53:d8:98:ef:91:72: 9b:3d:bd:98:c6:32:36:1c:f5:6a:b7:af:62:cd:84:b1:fe:e2: 4b:ba:ba:24:04:f3:3c:e7:d4:39:db:e6:53:38:dd:1e:88:28: 3f:e3:b0:93:c3:f5:2c:82:fd:17:1d:c9:9c:1f:6c:1b:e7:59: b0:18:86:63:1b:bd:c0:3c:33:d1:1a:a6:c5:32:68:b2:48:30: 09:d1:34:1d:c6:c1:f2:df:2e:b7:35:68:b9:40:d6:26:31:8e: 05:8c:37:59:20:7b:4d:0d:32:20:f4:94:ab:09:fd:82:1b:00: fd:fe:5d:5c:36:7b:f1:86:d0:86:af:19:c9:06:70:d8:1e:b8: f6:64:6b:e2:30:55:be:d5:e4:74:61:86:91:ae:f9:8e:a0:b0: f9:96:7f:a8:c1:6f:3f:ed:ae:f8:18:eb:c7:29:b0:d6:e8:56: 66:45:d0:e4:5f:35:bd:5e:45:7e:04:69:0c:0d:b7:06:13:7b: 55:18:20:39:cc:0a:6f:5b:2b:d9:5a:0b:6b:5e:5a:24:f6:30: ed:a2:1e:ac -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYxNzIxMTAvBgNVBAUTKDIxQjJFQTc0MkZGMEVGOUVCQ0NFRjM5OTg3OTBFM0Y1 QjA4RDZCNjMwHhcNMjUxMDIzMDM0NjEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTg5Ny1iYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0K5fpiCgqPoVO/c0igu1O42lPmUmf0L2qlW/3MVSLRUQvoJpJ+Z5WhbfXb/N C3ilAVqVb+uli/tSCiKYAV/bK29Wxbts1XlEZmFVsLlLaYJMW8luyr+BJNrFMLpC 9GWpmcO9oSDmu0N3J6XzooMHcDSxyPA8cMz83rsd5sPeTCPV6mg8ZIreI+Jsj9gM f3au6Vg63Jf4b22smfHwU9ad+1oSK2Ji4G7x6GO7lF9TlQxfYmQ4rYqqUFJSDTBb 6lCN9nB/0uqqvI6PlT8j9Gb9aYSrdYsJ7jBhNfmpJ9WjDw6krHAYmHqTWOmkcNum zSugzBkwQIgSPOTXKDpY2tbwOwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFCL91m2E 32Xfr+myKyAJmJP7AuMtMB8GA1UdIwQYMBaAFCGy6nQv8O+evM7zmYeQ4/WwjWtj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjE3Mi9CQTU0QzEzNDcy MkIxMUVEOTdENzNDNUFDNEY5QUUwMi9JYkxxZENfdzc1Njh6dk9aaDVEajliQ05h Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0liTHFkQ193NzU2OHp2T1poNURqOWJDTmEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYxNzIvQkE1NEMxMzQ3MjJCMTFFRDk3RDczQzVBQzRGOUFFMDIvMDhBNzE5NzA3 MjM4MTFFREIwQkQwMzEyQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxdhMA0GCSqGSIb3DQEBCwUAA4IBAQB506ccOyPxmtxzxyUH2Bri Uy8EDZJZU/F5jM+QbnulQj+4m6pfkntWUbzwpi3aPZxT2JjvkXKbPb2YxjI2HPVq t69izYSx/uJLurokBPM859Q52+ZTON0eiCg/47CTw/Usgv0XHcmcH2wb51mwGIZj G73APDPRGqbFMmiySDAJ0TQdxsHy3y63NWi5QNYmMY4FjDdZIHtNDTIg9JSrCf2C GwD9/l1cNnvxhtCGrxnJBnDYHrj2ZGviMFW+1eR0YYaRrvmOoLD5ln+owW8/7a74 GOvHKbDW6FZmRdDkXzW9XkV+BGkMDbcGE3tVGCA5zApvWyvZWgtrXlok9jDtoh6s -----END CERTIFICATE-----Generated at Sun Mar 8 01:46:29 2026 by rpki-client