$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/DF9C04F4897811F08A9D002AC4F9AE02.roa File: DF9C04F4897811F08A9D002AC4F9AE02.roa (raw, json) Hash identifier: 1eWJrnzvRDCq+R12qi5MDc8zwDz6onremzl8rIyFdWg= Subject key identifier: B7:E0:B9:09:87:23:69:49:1B:95:48:25:71:2D:9B:F4:35:6E:EF:5A Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 031F Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/DF9C04F4897811F08A9D002AC4F9AE02.roa Signing time: Sun 01 Mar 2026 15:04:45 +0000 ROA not before: Thu 04 Sep 2025 10:21:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 395793 IP address blocks: 203.21.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Mar 2026 08:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 799 (0x31f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Sep 4 10:21:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a4558d-4ae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:ad:df:c2:36:d8:3d:4c:c7:bb:22:5b:e6: ae:02:df:7f:94:33:bb:67:b9:b7:21:60:c4:e8:8d: f5:bc:f4:59:f8:ca:4f:9a:c6:cd:63:d0:b9:f7:c1: c9:21:c9:e3:e9:28:a4:83:2e:42:02:cf:b6:4b:65: e0:6f:1e:ee:91:96:ee:46:4d:f5:eb:7e:81:95:55: 4f:17:9b:f6:3b:01:ed:14:67:ab:04:ae:19:fb:e8: 44:9f:97:6a:78:a6:d5:79:1d:d3:10:be:41:e1:6c: b1:fe:58:c0:b3:5c:e5:5e:c2:b6:b7:02:a9:ed:7a: 5b:d1:36:a1:34:47:0f:4c:04:af:da:18:12:ef:fe: 49:2c:6e:ef:16:a3:09:e9:e6:44:57:d1:ec:88:e8: df:c0:13:2a:20:a7:9f:16:25:64:09:24:56:d6:51: 29:9b:d4:c6:fa:a2:b1:d4:cf:dc:39:ef:f9:7b:c2: 07:0b:8f:f6:fe:5b:d2:ad:f7:7f:10:ad:7e:3e:60: f4:07:1e:9a:99:cf:92:9b:07:f1:30:0a:a0:94:23: 7d:d5:75:61:b9:b2:77:eb:e0:b4:ee:a1:82:b6:a0: 8e:63:73:32:c8:fe:48:d6:4f:01:63:0d:d2:ad:48: d1:4e:91:1d:ed:31:dd:b4:6c:23:ef:6b:7d:31:2b: fa:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E0:B9:09:87:23:69:49:1B:95:48:25:71:2D:9B:F4:35:6E:EF:5A X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/DF9C04F4897811F08A9D002AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.21.72.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:bb:46:1a:28:7d:fb:95:2f:d3:6d:08:8a:7f:70:6d:d3:17: 68:91:c7:a3:a4:ae:9c:99:5e:b7:fc:50:05:37:76:34:2c:7e: a1:86:23:4b:7d:91:1e:19:85:b4:4d:51:5c:ba:26:35:aa:15: 74:66:19:37:56:bd:b1:e9:8c:6b:83:2b:1b:e0:67:c0:c3:c8: fd:f3:7c:27:fd:6b:9e:00:49:7a:a4:43:a2:ea:23:49:3d:b8: 9b:7b:c6:03:43:84:70:7f:ed:c5:0c:7b:27:c1:35:91:b6:01: f2:77:47:26:b8:91:74:4f:fc:0f:bd:18:e5:77:bf:66:ab:2f: 63:c6:a9:45:a6:f5:90:c1:1a:1a:80:b5:94:2b:13:4a:b6:77: 2b:25:b0:1a:16:c7:83:7f:bb:3a:f8:c2:dc:18:01:8e:b0:8e: 32:65:9e:4b:2b:fc:fc:dc:c9:59:0c:fb:54:b9:e0:16:26:d0: 53:6d:99:78:c2:29:27:1b:30:8a:d8:c5:f2:f9:82:27:21:ce: 68:19:71:cf:b0:5c:ff:a5:ce:4b:fe:47:0d:97:c0:4c:3e:2c: a9:96:61:46:54:3e:a4:b9:c9:50:c3:63:5f:57:8d:12:5d:ba: 53:b8:33:a7:3d:f9:29:d3:1c:04:cf:d6:4c:9e:72:bd:fa:06: cf:3b:b5:08 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwOTA0MTAyMTA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTU4ZC00YWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaSt38I22D1Mx7siW+auAt9/lDO7Z7m3IWDE6I31vPRZ+MpPmsbNY9C598HJ Icnj6Sikgy5CAs+2S2Xgbx7ukZbuRk31636BlVVPF5v2OwHtFGerBK4Z++hEn5dq eKbVeR3TEL5B4Wyx/ljAs1zlXsK2twKp7Xpb0TahNEcPTASv2hgS7/5JLG7vFqMJ 6eZEV9HsiOjfwBMqIKefFiVkCSRW1lEpm9TG+qKx1M/cOe/5e8IHC4/2/lvSrfd/ EK1+PmD0Bx6amc+SmwfxMAqglCN91XVhubJ36+C07qGCtqCOY3MyyP5I1k8BYw3S rUjRTpEd7THdtGwj72t9MSv6QwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLfguQmH I2lJG5VIJXEtm/Q1bu9aMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2NkEvRUMwOUFBNEEzMDdEMTFFREE2QzNBMjEyQzRGOUFFMDIvREY5QzA0RjQ4 OTc4MTFGMDhBOUQwMDJBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxVIMA0GCSqGSIb3DQEBCwUAA4IBAQBfu0YaKH37lS/TbQiKf3Bt 0xdokcejpK6cmV63/FAFN3Y0LH6hhiNLfZEeGYW0TVFcuiY1qhV0Zhk3Vr2x6Yxr gysb4GfAw8j983wn/WueAEl6pEOi6iNJPbibe8YDQ4Rwf+3FDHsnwTWRtgHyd0cm uJF0T/wPvRjld79mqy9jxqlFpvWQwRoagLWUKxNKtncrJbAaFseDf7s6+MLcGAGO sI4yZZ5LK/z83MlZDPtUueAWJtBTbZl4wiknGzCK2MXy+YInIc5oGXHPsFz/pc5L /kcNl8BMPiyplmFGVD6kuclQw2NfV40SXbpTuDOnPfkp0xwEz9ZMnnK9+gbPO7UI -----END CERTIFICATE-----Generated at Wed Mar 4 14:34:24 2026 by rpki-client