$ rpki-client -vvf rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa File: 2EA68D96D65211EB8DAD1886C4F9AE02.roa (raw, json) Hash identifier: 2z/07142KRcC5lJIKi6aYRS5wWoeJVFtsDdL/K6XB7w= Subject key identifier: 06:A9:5D:F3:05:1A:9A:14:DD:9B:2B:5A:1A:2D:6B:FB:CB:BD:E4:14 Certificate issuer: /CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Certificate serial: 061F Authority key identifier: 8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa Signing time: Sun 01 Mar 2026 09:51:37 +0000 ROA not before: Mon 14 Jul 2025 23:34:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.3.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 22:30:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B929F, serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Validity Not Before: Jul 14 23:34:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=69a40c29-9d99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a2:88:65:56:21:e4:d1:bb:f9:4d:c4:8b:0d: 3f:6d:50:30:8b:ca:ee:9f:df:b0:e7:49:2b:2a:67: eb:1f:26:32:2c:b2:57:d8:f5:13:da:f9:5e:18:00: 26:36:3b:f5:ca:07:65:44:89:6c:7c:9c:91:c0:4e: a1:b6:43:07:7e:43:61:eb:57:17:0c:ef:48:b0:24: 82:3b:05:f1:c7:ed:64:c8:d2:21:2a:da:c7:14:d3: 22:54:35:48:46:7a:6a:e1:26:a5:47:ef:a5:c2:71: cf:cb:04:5d:8f:c4:0b:b7:7a:a3:c1:78:fd:b6:18: 64:a3:52:ba:33:f1:56:d0:38:b1:08:d8:b9:ec:3c: d4:3b:e8:4e:a5:c7:2c:69:51:4e:55:bc:ac:27:f7: 12:b5:4b:6e:a0:e4:e1:d0:13:ba:56:4e:03:12:6f: f3:40:60:7b:a0:35:31:72:71:9e:58:bf:a8:d5:eb: 74:3a:8c:29:1a:a8:90:26:e2:60:bf:7a:d3:4f:db: aa:e1:93:98:0c:9f:91:b7:61:94:c8:a6:02:4c:0b: b3:96:d5:64:64:88:12:8e:72:ee:ce:f9:67:49:57: 2c:f7:b0:94:72:0f:f8:d3:c8:a9:8c:c8:b7:02:24: 1d:0b:3e:42:2a:ab:45:bc:9c:25:7e:09:16:06:21: 92:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A9:5D:F3:05:1A:9A:14:DD:9B:2B:5A:1A:2D:6B:FB:CB:BD:E4:14 X509v3 Authority Key Identifier: keyid:8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.3.122.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:36:bf:9d:ce:9b:9c:7e:f8:71:d7:e3:4c:f1:6d:ca:0e:e5: 12:16:cc:8f:82:76:98:25:61:4c:85:c7:0f:d5:c1:18:a9:3a: 28:80:1b:83:d5:06:c0:45:87:01:0f:d7:15:99:90:cb:b2:40: b6:04:18:23:43:80:1b:02:95:78:4f:78:bd:ea:9f:0d:3c:86: b5:39:df:96:b3:a7:80:44:53:4f:c3:f4:fb:69:79:b7:5b:86: 6f:4e:cb:85:e0:de:14:ca:09:5e:53:9e:f4:22:19:21:32:69: f0:5b:e9:56:87:40:ff:d2:79:08:ac:6b:ac:82:f8:d1:16:ba: 75:ff:03:d4:bc:05:3f:ff:06:28:47:be:c0:df:58:14:e3:5e: 0b:82:e0:1f:9d:83:04:22:f4:c6:c6:57:c3:66:ed:0b:f7:06: a6:58:4b:9f:2a:20:cc:17:f5:b4:14:05:0f:f6:81:66:97:9c: 71:6d:51:b0:7c:96:8f:fa:2b:f2:3e:c4:28:78:1a:04:cf:41: bb:d6:f2:61:89:9a:6d:51:9d:fc:16:d7:ee:91:27:2c:ec:27: 58:1f:db:60:03:8c:80:23:e1:9a:f5:dc:ff:36:ab:9d:a0:cc: c8:96:1f:67:54:ce:75:d4:03:5a:1f:dc:ad:e8:85:8b:bb:75: 23:73:99:14 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOUYxMTAvBgNVBAUTKDhCNTdERDE2QkQ5N0ZCNUJGQzIxRDlDQ0E5RTJCODZE NTUwMkUyODgwHhcNMjUwNzE0MjMzNDI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGMyOS05ZDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36KIZVYh5NG7+U3Eiw0/bVAwi8run9+w50krKmfrHyYyLLJX2PUT2vleGAAm Njv1ygdlRIlsfJyRwE6htkMHfkNh61cXDO9IsCSCOwXxx+1kyNIhKtrHFNMiVDVI Rnpq4SalR++lwnHPywRdj8QLt3qjwXj9thhko1K6M/FW0DixCNi57DzUO+hOpccs aVFOVbysJ/cStUtuoOTh0BO6Vk4DEm/zQGB7oDUxcnGeWL+o1et0OowpGqiQJuJg v3rTT9uq4ZOYDJ+Rt2GUyKYCTAuzltVkZIgSjnLuzvlnSVcs97CUcg/408ipjMi3 AiQdCz5CKqtFvJwlfgkWBiGSZwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFAapXfMF GpoU3ZsrWhota/vLveQUMB8GA1UdIwQYMBaAFItX3Ra9l/tb/CHZzKniuG1VAuKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5Ri8zQkU1NDlDRUQ2 NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0xdjhJZG5NcWVLNGJWVUM0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kxZmRGcjJYLTF2OElkbk1xZUs0YlZVQzRvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyOUYvM0JFNTQ5Q0VENjRFMTFFQjk0RDRGMjdEQzRGOUFFMDIvMkVBNjhEOTZE NjUyMTFFQjhEQUQxODg2QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAywN6MA0GCSqGSIb3DQEBCwUAA4IBAQB8Nr+dzpucfvhx1+NM8W3K DuUSFsyPgnaYJWFMhccP1cEYqToogBuD1QbARYcBD9cVmZDLskC2BBgjQ4AbApV4 T3i96p8NPIa1Od+Ws6eARFNPw/T7aXm3W4ZvTsuF4N4UygleU570IhkhMmnwW+lW h0D/0nkIrGusgvjRFrp1/wPUvAU//wYoR77A31gU414LguAfnYMEIvTGxlfDZu0L 9wamWEufKiDMF/W0FAUP9oFml5xxbVGwfJaP+ivyPsQoeBoEz0G71vJhiZptUZ38 FtfukScs7CdYH9tgA4yAI+Ga9dz/NqudoMzIlh9nVM511ANaH9yt6IWLu3Ujc5kU -----END CERTIFICATE-----Generated at Sun Mar 8 00:02:56 2026 by rpki-client