$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa File: 9549EE609A7311EF8A9F432EC4F9AE02.roa (raw, json) Hash identifier: LStciIupeAadWR9QuICSlgD8xRoxfgRjYZY3eP+3Bmw= Subject key identifier: BF:EC:D3:F1:D9:64:64:3E:46:AB:41:B8:08:77:EA:C9:71:5F:56:BC Certificate issuer: /CN=A91D6C1B/serialNumber=2CFB0CEF6D16D6676EEA211643EC8E85C25CF2FF Certificate serial: 0108 Authority key identifier: 2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:26:46 +0000 ROA not before: Sat 17 Jan 2026 05:23:56 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 7545 IP address blocks: 203.23.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Mar 2026 05:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6C1B, serialNumber=2CFB0CEF6D16D6676EEA211643EC8E85C25CF2FF Validity Not Before: Jan 17 05:23:56 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a43e96-3f8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5d:74:26:ec:cf:04:f4:c9:98:9b:9c:61:96: 06:7e:28:1a:09:91:99:8e:6d:eb:7b:fa:a9:27:b0: 1c:1e:58:2a:53:79:d2:ba:e6:17:dd:1c:3e:33:aa: 30:38:d4:cf:f5:ed:ea:09:70:ca:76:9f:23:ca:de: e5:07:a6:e2:c8:c3:30:dd:a7:30:fa:8f:26:ca:b8: ba:da:a9:a6:8f:8f:36:a0:8a:2b:93:bc:25:de:da: 23:9a:f7:cb:7a:15:28:3f:cf:d1:29:51:6c:7a:e6: 17:d7:90:ee:03:23:04:22:c2:ff:09:45:14:a9:25: c7:d1:34:8a:1f:38:d3:6b:b9:9d:46:0d:e7:9e:75: 6c:d4:29:9d:fd:79:df:f6:7e:4f:78:61:ae:c2:ae: 74:98:7f:d7:6d:10:f8:eb:cf:23:9b:b5:a2:06:4e: 97:45:0c:b0:c5:23:b4:34:30:22:02:7f:2b:2d:cd: ab:1e:2d:23:3f:63:a8:d6:77:65:46:82:1b:eb:bb: da:98:d9:2f:21:45:20:7f:c8:37:fe:20:59:88:81: ed:c3:12:8d:d3:7a:a7:86:1c:d8:ba:9c:5e:7a:cd: 55:44:2e:be:76:d4:84:91:3a:e0:09:97:05:23:43: d0:2f:57:85:95:8f:c5:fd:38:f7:f8:fd:f0:59:52: 37:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:EC:D3:F1:D9:64:64:3E:46:AB:41:B8:08:77:EA:C9:71:5F:56:BC X509v3 Authority Key Identifier: keyid:2C:FB:0C:EF:6D:16:D6:67:6E:EA:21:16:43:EC:8E:85:C2:5C:F2:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/LPsM720W1mdu6iEWQ-yOhcJc8v8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LPsM720W1mdu6iEWQ-yOhcJc8v8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6C1B/E57306CA9A7211EF8EB4162DC4F9AE02/9549EE609A7311EF8A9F432EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.23.36.0/24 Signature Algorithm: sha256WithRSAEncryption 93:45:87:90:cc:5e:31:d0:04:70:ae:cc:50:59:70:4b:d1:ec: d2:d5:7a:3a:13:58:3c:6f:da:f9:f3:bf:eb:cc:5b:9f:75:0a: 13:96:54:cc:83:d0:be:ed:d3:e8:cd:cb:bb:08:9e:84:f7:15: 30:90:ae:f4:da:51:74:83:22:f6:c0:b1:05:98:6b:d6:da:e9: 89:15:c2:52:03:2f:7c:e1:d0:6c:1b:61:2c:81:d7:c5:b7:18: 2a:38:5c:ce:01:da:14:87:76:43:bd:10:e8:b3:c8:4e:b7:76: 0d:28:de:e4:1e:5e:9b:f0:96:43:80:3c:92:95:0f:b1:49:49: e9:ec:8c:63:b4:fc:62:15:fd:d0:10:d6:7b:cd:74:06:ce:2a: d5:52:f6:c7:27:6e:34:10:09:46:15:52:b1:49:38:60:da:0d: 8d:05:9d:45:15:18:68:7e:47:35:0d:ca:36:57:d1:2f:39:6f: 9b:ae:b8:49:7d:ed:20:d5:a6:3f:b6:d7:7e:6c:27:35:78:f3: 74:6a:5c:9d:39:c7:87:71:f3:a3:af:6e:87:c0:b1:76:e6:e4: 16:83:7d:97:84:77:6c:de:b0:9a:e5:c8:31:02:e3:42:fd:7d: 0d:0d:2a:88:a1:3b:6b:68:6a:b0:b1:8c:3c:7f:9c:ad:66:e9: 15:a4:53:bb -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZDMUIxMTAvBgNVBAUTKDJDRkIwQ0VGNkQxNkQ2Njc2RUVBMjExNjQzRUM4RTg1 QzI1Q0YyRkYwHhcNMjYwMTE3MDUyMzU2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0M2U5Ni0zZjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsl10JuzPBPTJmJucYZYGfigaCZGZjm3re/qpJ7AcHlgqU3nSuuYX3Rw+M6ow ONTP9e3qCXDKdp8jyt7lB6biyMMw3acw+o8myri62qmmj482oIork7wl3tojmvfL ehUoP8/RKVFseuYX15DuAyMEIsL/CUUUqSXH0TSKHzjTa7mdRg3nnnVs1Cmd/Xnf 9n5PeGGuwq50mH/XbRD4688jm7WiBk6XRQywxSO0NDAiAn8rLc2rHi0jP2Oo1ndl RoIb67vamNkvIUUgf8g3/iBZiIHtwxKN03qnhhzYupxees1VRC6+dtSEkTrgCZcF I0PQL1eFlY/F/Tj3+P3wWVI3VwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFL/s0/HZ ZGQ+RqtBuAh36slxX1a8MB8GA1UdIwQYMBaAFCz7DO9tFtZnbuohFkPsjoXCXPL/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkMxQi9FNTczMDZDQTlB NzIxMUVGOEVCNDE2MkRDNEY5QUUwMi9MUHNNNzIwVzFtZHU2aUVXUS15T2hjSmM4 djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xQc003MjBXMW1kdTZpRVdRLXlPaGNKYzh2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZDMUIvRTU3MzA2Q0E5QTcyMTFFRjhFQjQxNjJEQzRGOUFFMDIvOTU0OUVFNjA5 QTczMTFFRjhBOUY0MzJFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAyxckMA0GCSqGSIb3DQEBCwUAA4IBAQCTRYeQzF4x0ARwrsxQWXBL 0ezS1Xo6E1g8b9r587/rzFufdQoTllTMg9C+7dPozcu7CJ6E9xUwkK702lF0gyL2 wLEFmGvW2umJFcJSAy984dBsG2EsgdfFtxgqOFzOAdoUh3ZDvRDos8hOt3YNKN7k Hl6b8JZDgDySlQ+xSUnp7IxjtPxiFf3QENZ7zXQGzirVUvbHJ240EAlGFVKxSThg 2g2NBZ1FFRhofkc1Dco2V9EvOW+brrhJfe0g1aY/ttd+bCc1ePN0alydOceHcfOj r26HwLF25uQWg32XhHds3rCa5cgxAuNC/X0NDSqIoTtraGqwsYw8f5ytZukVpFO7 -----END CERTIFICATE-----Generated at Sat Mar 7 17:28:24 2026 by rpki-client