$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/5DCE1A1AA63C11ED9306165AC4F9AE02.roa File: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (raw, json) Hash identifier: ry8gAyMl/oF2tDrb6QBcr0lUpoct2VpMmyLx0Y2gIls= Subject key identifier: 79:A3:D5:2B:13:86:5F:32:D5:9C:6C:9F:CD:5F:87:AF:8C:3E:BD:B9 Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 025C Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/5DCE1A1AA63C11ED9306165AC4F9AE02.roa Signing time: Tue 03 Mar 2026 02:36:18 +0000 ROA not before: Tue 03 Mar 2026 02:36:18 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 400289 IP address blocks: 203.23.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Mar 2026 01:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 604 (0x25c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Mar 3 02:36:18 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69a64921-7e7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8c:29:b4:d5:73:c5:d5:fd:39:7d:e4:2a:84: 02:3c:9b:4d:4e:7f:d1:6b:91:0f:71:a0:7c:ab:1d: 63:cd:ac:0c:2e:8a:47:1a:52:fe:75:db:31:e5:65: ff:c8:20:d4:1f:38:ab:16:80:71:7a:1a:7f:ee:95: dc:ad:e4:bd:e2:39:ca:3b:91:c3:70:ef:06:08:6a: 15:e4:38:a4:5b:cc:6d:cf:bc:c1:70:78:b4:e6:b7: df:ef:b4:b2:97:bb:38:4d:95:f1:01:a2:4d:86:18: 13:44:24:c7:c8:14:b5:f2:f5:44:40:46:41:1e:4f: c4:27:b3:93:ed:c4:d7:60:c2:ca:fa:31:1a:39:7f: 40:f4:ee:ca:19:29:56:3c:41:4a:40:a8:19:a5:c5: 59:d3:37:c7:0b:a7:dc:5e:18:d3:d9:53:d8:af:27: 4a:c3:19:74:4c:1f:aa:41:b2:ac:79:e2:98:ce:2d: 6e:37:6b:97:d3:8a:43:0a:04:82:dd:82:6e:17:be: 88:4a:7d:eb:ec:00:35:2c:7a:e1:3d:30:3f:de:50: d4:b6:2c:7b:fc:3c:00:dd:5d:9d:22:d1:08:6e:6a: 4a:b4:90:be:bf:4d:3d:14:bd:d1:cb:62:83:cd:43: db:64:3c:54:d1:38:21:c1:01:df:70:b9:c5:bf:1d: 82:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A3:D5:2B:13:86:5F:32:D5:9C:6C:9F:CD:5F:87:AF:8C:3E:BD:B9 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/5DCE1A1AA63C11ED9306165AC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.23.164.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:14:9c:4b:23:e7:ac:89:26:6b:89:04:dc:c7:cd:6f:90:5f: 49:3e:de:3d:8f:3c:16:89:dd:45:cc:b3:2b:0f:e3:76:20:97: 97:8c:3d:ea:c0:02:f7:3a:a1:77:4e:4b:b0:48:a3:0f:78:db: 63:d0:8f:cf:cd:70:30:47:63:67:89:ff:d7:e7:b0:ff:d1:30: 98:65:21:80:fc:12:3a:75:37:cc:32:b5:76:dc:62:7b:04:5f: 4c:98:92:ce:26:7c:5d:d5:bb:83:57:82:d6:39:a5:7e:fa:4f: 0c:e4:10:0d:cc:9d:c9:e2:9c:18:fb:24:26:49:fd:68:e9:fd: 38:03:85:d0:54:32:f1:c6:cf:c5:1c:18:95:17:39:b6:84:34: 54:c5:1a:c3:94:0f:4c:67:30:04:e8:e3:f8:ca:81:6d:d9:b0: a2:79:92:cf:af:6a:ff:f5:e0:39:7c:78:82:9a:89:61:06:1e: 4f:35:5b:f1:37:5e:ef:4a:2e:60:4c:9f:3e:0d:b7:54:22:39: e7:30:69:22:43:d8:78:f2:27:c1:8d:fb:20:23:e7:9e:34:2f: 24:16:73:69:ec:7d:8a:07:d4:72:e4:f3:65:1e:87:81:9f:bf: 31:40:8e:c4:2c:8b:2f:08:2f:13:53:ba:25:aa:13:fd:c7:21: df:53:4b:51 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjYwMzAzMDIzNjE4WhcNMjcwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE2NDkyMS03ZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1owptNVzxdX9OX3kKoQCPJtNTn/Ra5EPcaB8qx1jzawMLopHGlL+ddsx5WX/ yCDUHzirFoBxehp/7pXcreS94jnKO5HDcO8GCGoV5DikW8xtz7zBcHi05rff77Sy l7s4TZXxAaJNhhgTRCTHyBS18vVEQEZBHk/EJ7OT7cTXYMLK+jEaOX9A9O7KGSlW PEFKQKgZpcVZ0zfHC6fcXhjT2VPYrydKwxl0TB+qQbKseeKYzi1uN2uX04pDCgSC 3YJuF76ISn3r7AA1LHrhPTA/3lDUtix7/DwA3V2dItEIbmpKtJC+v009FL3Ry2KD zUPbZDxU0TghwQHfcLnFvx2CYwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFHmj1SsT hl8y1Zxsn81fh6+MPr25MB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDUyNDAvMjdEREU3RDg5QjdEMTFFREIzQzMzRjVEQzRGOUFFMDIvNURDRTFBMUFB NjNDMTFFRDkzMDYxNjVBQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxekMA0GCSqGSIb3DQEBCwUAA4IBAQAtFJxLI+esiSZriQTcx81v kF9JPt49jzwWid1FzLMrD+N2IJeXjD3qwAL3OqF3TkuwSKMPeNtj0I/PzXAwR2Nn if/X57D/0TCYZSGA/BI6dTfMMrV23GJ7BF9MmJLOJnxd1buDV4LWOaV++k8M5BAN zJ3J4pwY+yQmSf1o6f04A4XQVDLxxs/FHBiVFzm2hDRUxRrDlA9MZzAE6OP4yoFt 2bCieZLPr2r/9eA5fHiCmolhBh5PNVvxN17vSi5gTJ8+DbdUIjnnMGkiQ9h48ifB jfsgI+eeNC8kFnNp7H2KB9Ry5PNlHoeBn78xQI7ELIsvCC8TU7olqhP9xyHfU0tR -----END CERTIFICATE-----Generated at Tue Mar 17 04:20:29 2026 by rpki-client