$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa File: 069E7950F3C611EE807A6F3EC4F9AE02.roa (raw, json) Hash identifier: 3lew0eWd1qOFTsxVuUp/2jEVgW6mEPimb05KX288f8k= Subject key identifier: 9A:17:A9:F2:43:EA:B4:FD:45:F8:2F:C9:A5:ED:4D:8E:63:AA:C0:9C Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Certificate serial: 0177 Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:57:14 +0000 ROA not before: Fri 23 May 2025 04:56:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 203.170.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 03:52:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF41, serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Validity Not Before: May 23 04:56:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a5a54a-73ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d1:0f:a3:77:87:42:be:5a:12:6f:bd:c7:78: 36:60:91:41:f9:72:44:a0:fa:c7:cf:5e:ba:12:b0: 0d:0b:e2:0f:17:96:05:94:0c:39:64:7c:34:a0:8a: e9:a5:b3:93:46:f1:db:e8:81:74:ed:eb:74:b9:85: 56:67:8b:8a:0c:a3:f5:bb:bb:6c:9f:b0:3e:83:81: 84:25:c9:43:05:ea:67:83:d0:55:bb:d7:3f:5f:2f: b2:56:56:4b:4a:d8:8b:ac:fc:c6:dc:95:d6:07:f6: ce:04:99:89:77:b5:1d:6d:bb:eb:ab:92:b4:09:24: 0e:d8:46:d6:71:e4:95:87:c4:77:8b:be:ca:d1:1b: 01:31:9e:7e:91:5d:c9:27:02:65:c6:c4:c9:d4:11: 2c:4b:32:d3:a7:da:78:37:7b:db:bf:04:ce:91:74: 4c:54:28:0a:e9:2b:cc:da:a4:e3:b9:59:fe:c4:d5: 89:fd:dc:ae:5e:16:91:11:e7:bb:88:63:6f:a2:a6: 68:bc:51:8a:85:34:13:d6:ea:4c:16:61:9f:57:a9: 0b:a2:a7:48:4e:90:78:f0:4f:da:4f:e4:5f:d6:ce: da:b1:c3:cf:eb:7b:b4:1b:8c:07:ce:48:45:e9:f9: b1:34:d5:41:ec:6e:e9:a0:67:f5:af:82:7b:c8:2c: 18:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:17:A9:F2:43:EA:B4:FD:45:F8:2F:C9:A5:ED:4D:8E:63:AA:C0:9C X509v3 Authority Key Identifier: keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.170.90.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:14:f2:b9:6e:2f:70:2d:c9:25:66:8e:5e:3a:38:b6:af:58: 40:ae:59:0f:b3:61:da:31:f3:99:a3:af:8f:9a:51:e8:cf:85: 6b:7c:cd:62:99:89:e2:d2:53:04:e1:f8:89:5a:a3:b7:85:3e: 5c:9a:15:9a:28:1f:9b:64:b7:a8:13:93:67:36:cf:ec:c4:40: 19:1b:b3:7e:d5:ad:7d:34:4d:20:cb:d4:4d:81:7f:7c:17:7d: ca:72:ef:09:c4:15:29:24:32:23:92:e7:18:92:be:00:20:8a: 71:5c:61:93:61:f6:68:3b:6c:0f:d5:27:a5:7b:5a:39:85:1e: 16:83:17:ac:1a:8f:04:33:ae:d5:27:85:c6:d6:33:b7:ec:2d: 82:9f:0c:7f:fc:29:5a:05:3a:b8:55:c4:e7:21:78:58:08:d3: ca:63:11:87:7a:6c:12:59:b6:dc:a2:be:22:52:84:99:46:a3: 26:45:bb:79:85:4a:3a:44:27:2d:09:7e:35:85:0b:ef:69:4f: 57:3a:72:df:ce:4e:4e:0a:8e:a9:6c:e1:10:3f:a7:5b:94:93: e3:8d:cb:96:b8:52:e8:72:2f:dd:20:f0:85:80:71:98:97:2d: c1:c8:49:d0:ab:b4:88:8a:46:e5:42:c7:21:b4:d7:24:96:33: 07:08:77:70 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGNDExMTAvBgNVBAUTKDMzNkRERTdFQzMyODA0OTk5NjQzNzFDQUVFMjYyMEZC RkNBQ0RDOTgwHhcNMjUwNTIzMDQ1NjAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1YTU0YS03M2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tEPo3eHQr5aEm+9x3g2YJFB+XJEoPrHz166ErANC+IPF5YFlAw5ZHw0oIrp pbOTRvHb6IF07et0uYVWZ4uKDKP1u7tsn7A+g4GEJclDBepng9BVu9c/Xy+yVlZL StiLrPzG3JXWB/bOBJmJd7Udbbvrq5K0CSQO2EbWceSVh8R3i77K0RsBMZ5+kV3J JwJlxsTJ1BEsSzLTp9p4N3vbvwTOkXRMVCgK6SvM2qTjuVn+xNWJ/dyuXhaREee7 iGNvoqZovFGKhTQT1upMFmGfV6kLoqdITpB48E/aT+Rf1s7ascPP63u0G4wHzkhF 6fmxNNVB7G7poGf1r4J7yCwYWQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFJoXqfJD 6rT9RfgvyaXtTY5jqsCcMB8GA1UdIwQYMBaAFDNt3n7DKASZlkNxyu4mIPv8rNyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUY0MS9DNzVEQTEzMkYy RkIxMUVFOUZDRjc2NENDNEY5QUUwMi9NMjNlZnNNb0JKbVdRM0hLN2lZZy1feXMz SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00yM2Vmc01vQkptV1EzSEs3aVlnLV95czNKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGNDEvQzc1REExMzJGMkZCMTFFRTlGQ0Y3NjRDQzRGOUFFMDIvMDY5RTc5NTBG M0M2MTFFRTgwN0E2RjNFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBy6paMA0GCSqGSIb3DQEBCwUAA4IBAQAbFPK5bi9wLcklZo5eOji2 r1hArlkPs2HaMfOZo6+PmlHoz4VrfM1imYni0lME4fiJWqO3hT5cmhWaKB+bZLeo E5NnNs/sxEAZG7N+1a19NE0gy9RNgX98F33Kcu8JxBUpJDIjkucYkr4AIIpxXGGT YfZoO2wP1Sele1o5hR4WgxesGo8EM67VJ4XG1jO37C2Cnwx//ClaBTq4VcTnIXhY CNPKYxGHemwSWbbcor4iUoSZRqMmRbt5hUo6RCctCX41hQvvaU9XOnLfzk5OCo6p bOEQP6dblJPjjcuWuFLoci/dIPCFgHGYly3ByEnQq7SIikblQschtNckljMHCHdw -----END CERTIFICATE-----Generated at Thu Mar 19 15:37:33 2026 by rpki-client