$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa File: 19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa (raw, json) Hash identifier: +ezEBpxkY8f4PY2reVhjPmzVyzhmj21Jd5Qr+MbJDt0= Subject key identifier: 4E:10:C3:C3:E0:E9:0B:BB:79:15:78:59:30:73:F4:96:4A:EC:29:34 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2899 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa Signing time: Tue 31 Mar 2026 16:19:45 +0000 ROA not before: Tue 31 Mar 2026 16:19:45 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 139710 IP address blocks: 203.213.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 15:44:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10393 (0x2899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Mar 31 16:19:45 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69cbf421-4c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7e:53:2a:9e:4c:1b:5c:68:1c:d0:1c:fb:d2: 14:9b:f2:df:58:f3:7a:8b:22:dc:0f:fe:b4:ce:f1: 18:ae:e0:cc:31:15:73:47:42:40:32:8f:54:df:de: 30:bb:c5:06:9b:95:0a:7b:ec:fa:54:ec:fc:0e:78: 72:bd:40:2d:05:1f:f3:a4:5e:8b:89:4a:48:7f:22: 71:0a:0f:b4:81:41:dc:d9:13:9c:9a:94:12:77:23: b6:92:2b:c1:a4:fc:2a:71:2e:33:53:2a:8e:e0:8f: 1c:a8:22:a1:6d:9e:8d:c8:34:b0:13:0f:6f:98:17: 4f:4d:90:b6:37:f0:49:4f:1b:ec:41:75:80:5d:3e: fa:31:91:86:fc:77:88:d5:91:59:00:0e:1c:2b:fa: fb:39:0b:e8:31:c4:8e:c9:9b:13:c4:94:f0:3e:56: 52:30:41:ef:04:e1:0c:35:6d:11:61:70:e5:48:4f: a1:6d:9e:18:73:17:32:e4:40:58:b5:de:01:26:32: 75:6f:51:4a:a2:b2:ba:15:30:4f:42:60:29:bb:e4: 9b:1e:9d:73:28:8b:59:ff:b2:43:35:85:72:80:17: a7:d1:1b:77:34:a7:91:d2:73:fe:d6:e7:ee:b8:f2: c7:e5:78:1d:30:b6:f0:ca:27:e7:6f:e0:f2:26:f9: f0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:10:C3:C3:E0:E9:0B:BB:79:15:78:59:30:73:F4:96:4A:EC:29:34 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/19A3CD9E4B7011EC8E9FCB48C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.213.198.0/24 Signature Algorithm: sha256WithRSAEncryption 64:1a:2d:c0:9c:06:41:4f:c5:02:49:80:10:8d:39:32:91:01: ca:0b:2d:60:94:81:2c:97:c4:28:56:80:8a:11:9f:49:18:56: bc:8b:1d:53:68:91:28:1f:af:ad:8f:fe:05:0c:7d:32:57:3e: 48:af:d1:7a:a0:b0:6a:d6:96:57:77:e9:69:de:e2:c9:70:b6: e0:37:5c:b0:ac:39:ca:e3:3b:4c:8b:b1:3a:16:96:99:b6:dd: 92:0d:f9:4a:f6:2d:fd:21:e7:07:6d:da:2b:4a:44:5b:6d:3e: 43:0b:37:c3:b0:84:2c:2d:80:d1:09:ac:77:64:d1:b3:c3:78: 0f:91:60:e5:63:66:82:da:98:bb:b7:f9:a2:a9:e2:ea:3d:2a: d7:77:88:1e:f3:ae:cd:f0:f9:da:87:56:d5:9e:8f:09:41:22: a8:8b:2e:a0:b2:82:c1:ee:3e:be:17:06:d5:ed:ca:34:f7:ab: 76:0c:d2:92:b1:e2:bf:3b:a6:58:8e:de:c1:27:38:22:50:70: 9c:6a:60:8b:17:1d:49:1e:82:25:78:f8:8b:9f:44:78:28:f9: 40:25:e2:25:1e:4a:01:04:fd:fb:18:d9:2b:d7:95:5a:c0:44: df:1b:7a:71:17:66:3d:85:59:7a:d5:c9:5b:fd:0f:d1:ec:80: ca:46:52:0a -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICKJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjYwMzMxMTYxOTQ1WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWNiZjQyMS00YzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA335TKp5MG1xoHNAc+9IUm/LfWPN6iyLcD/60zvEYruDMMRVzR0JAMo9U394w u8UGm5UKe+z6VOz8DnhyvUAtBR/zpF6LiUpIfyJxCg+0gUHc2ROcmpQSdyO2kivB pPwqcS4zUyqO4I8cqCKhbZ6NyDSwEw9vmBdPTZC2N/BJTxvsQXWAXT76MZGG/HeI 1ZFZAA4cK/r7OQvoMcSOyZsTxJTwPlZSMEHvBOEMNW0RYXDlSE+hbZ4Ycxcy5EBY td4BJjJ1b1FKorK6FTBPQmApu+SbHp1zKItZ/7JDNYVygBen0Rt3NKeR0nP+1ufu uPLH5XgdMLbwyifnb+DyJvnwVwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFE4Qw8Pg 6Qu7eRV4WTBz9JZK7Ck0MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvMTlBM0NEOUU0 QjcwMTFFQzhFOUZDQjQ4QzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy9XGMA0GCSqGSIb3DQEBCwUAA4IBAQBkGi3AnAZBT8UCSYAQjTky kQHKCy1glIEsl8QoVoCKEZ9JGFa8ix1TaJEoH6+tj/4FDH0yVz5Ir9F6oLBq1pZX d+lp3uLJcLbgN1ywrDnK4ztMi7E6FpaZtt2SDflK9i39IecHbdorSkRbbT5DCzfD sIQsLYDRCax3ZNGzw3gPkWDlY2aC2pi7t/miqeLqPSrXd4ge867N8Pnah1bVno8J QSKoiy6gsoLB7j6+FwbV7co096t2DNKSseK/O6ZYjt7BJzgiUHCcamCLFx1JHoIl ePiLn0R4KPlAJeIlHkoBBP37GNkr15VawETfG3pxF2Y9hVl61clb/Q/R7IDKRlIK -----END CERTIFICATE-----Generated at Mon Apr 6 12:44:23 2026 by rpki-client