$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/B6D7E1547EEE11EF8B38A43BC4F9AE02.roa File: B6D7E1547EEE11EF8B38A43BC4F9AE02.roa (raw, json) Hash identifier: cJEHBjaWoZAYCAIuSskRztc/35ypdzkq1zp55zUeLck= Subject key identifier: 6B:13:C5:16:A0:EB:EE:E1:F5:D9:68:73:70:93:A3:AB:A3:4A:97:C1 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2866 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/B6D7E1547EEE11EF8B38A43BC4F9AE02.roa Signing time: Sun 01 Mar 2026 18:39:00 +0000 ROA not before: Tue 08 Apr 2025 15:53:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152891 IP address blocks: 203.213.202.0/24 maxlen: 24 2001:4457:5b7b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Mar 2026 15:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10342 (0x2866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69a487c4-5349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:37:e0:17:87:3b:4f:fb:84:74:49:b3:fa:c9: 6d:e9:3b:ce:61:01:17:75:2b:44:c3:f1:d9:a9:fe: bd:78:45:b7:7c:9b:3a:92:8d:4c:8a:9c:2c:70:d4: 19:c0:b7:cf:93:15:fa:5f:a5:af:db:63:47:b5:e1: 84:d2:43:48:af:5c:7f:1c:57:89:56:6b:cb:30:f1: 3d:39:99:b8:6c:8c:69:95:8f:0d:f2:87:5c:37:77: c8:01:a5:a2:dd:b8:4e:e8:39:4f:f2:7a:8d:aa:16: 04:51:03:e7:25:1b:41:2c:b8:cb:e1:47:e0:33:ea: bb:f0:dc:2b:10:21:bb:f7:fc:20:e5:22:9d:9a:71: 2b:4f:d5:a4:e8:d1:8c:61:e9:71:b2:a9:c6:94:21: a4:ba:b1:8d:fe:db:5a:95:b6:c2:3e:53:9c:c8:76: c5:ae:83:ed:7e:c0:8b:26:4c:81:04:79:cf:4d:0a: 1a:c5:66:e9:13:c8:70:aa:71:d3:11:54:a5:c6:84: 6f:9b:78:b5:92:58:9e:58:14:5c:05:ed:f8:b6:65: db:e3:76:c8:ac:cf:fc:e8:6d:48:12:e2:2d:1d:18: 67:41:c9:79:ff:d9:95:51:5e:8d:a4:04:ef:19:c8: f3:94:e5:85:15:59:77:9d:d6:e3:eb:1a:24:ec:68: 57:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:13:C5:16:A0:EB:EE:E1:F5:D9:68:73:70:93:A3:AB:A3:4A:97:C1 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/B6D7E1547EEE11EF8B38A43BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.213.202.0/24 IPv6: 2001:4457:5b7b::/48 Signature Algorithm: sha256WithRSAEncryption 1b:9b:88:ed:ff:1f:cd:c8:08:4f:a4:23:91:49:41:50:27:57: fd:47:b8:c5:d1:a0:23:82:8a:dc:cd:5b:a1:99:6e:63:20:cb: ba:0d:a1:ba:85:f2:09:c0:cb:d1:ea:75:8a:c4:4a:16:a9:ed: 38:c2:27:95:ee:f9:73:26:ac:d0:fa:9b:6b:94:e0:02:3b:4f: 83:e7:09:4c:13:b7:a0:11:e8:7d:39:32:27:ed:7c:71:18:36: 42:78:a6:38:6c:2c:fb:d1:2e:80:30:f5:e3:71:a5:35:39:fe: 3e:aa:b1:bf:58:24:03:87:a5:98:21:59:06:43:93:5f:3e:17: 42:76:92:60:4a:2c:33:59:d8:e8:7d:b7:cd:49:c2:09:65:da: 28:2d:90:d7:73:a5:d6:e5:94:08:2c:bc:97:9a:e0:2e:33:c0: ed:1d:82:07:a0:58:bc:23:c2:2a:50:83:33:cf:58:73:c4:54: 03:52:e6:e6:c7:06:fe:e1:55:cd:7e:dc:b2:19:6d:49:08:b9: f0:3b:79:77:dd:95:ff:53:3b:84:59:5c:77:ee:4f:76:05:9f: 41:24:df:bc:ab:43:9d:bc:1d:72:07:37:da:60:bf:e4:63:7a: 33:2c:27:72:47:9b:c0:f3:c3:3d:00:77:10:9c:42:89:9a:5a: 8e:ad:f8:77 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICKGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ODdjNC01MzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDfgF4c7T/uEdEmz+slt6TvOYQEXdStEw/HZqf69eEW3fJs6ko1MipwscNQZ wLfPkxX6X6Wv22NHteGE0kNIr1x/HFeJVmvLMPE9OZm4bIxplY8N8odcN3fIAaWi 3bhO6DlP8nqNqhYEUQPnJRtBLLjL4UfgM+q78NwrECG79/wg5SKdmnErT9Wk6NGM YelxsqnGlCGkurGN/ttalbbCPlOcyHbFroPtfsCLJkyBBHnPTQoaxWbpE8hwqnHT EVSlxoRvm3i1klieWBRcBe34tmXb43bIrM/86G1IEuItHRhnQcl5/9mVUV6NpATv GcjzlOWFFVl3ndbj6xok7GhXQQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFGsTxRag 6+7h9dloc3CTo6ujSpfBMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQjZEN0UxNTQ3 RUVFMTFFRjhCMzhBNDNCQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQAy9XKMA8EAgACMAkDBwAgAURXW3swDQYJKoZIhvcNAQELBQADggEB ABubiO3/H83ICE+kI5FJQVAnV/1HuMXRoCOCitzNW6GZbmMgy7oNobqF8gnAy9Hq dYrEShap7TjCJ5Xu+XMmrND6m2uU4AI7T4PnCUwTt6AR6H05MiftfHEYNkJ4pjhs LPvRLoAw9eNxpTU5/j6qsb9YJAOHpZghWQZDk18+F0J2kmBKLDNZ2Oh9t81Jwgll 2igtkNdzpdbllAgsvJea4C4zwO0dggegWLwjwipQgzPPWHPEVANS5ubHBv7hVc1+ 3LIZbUkIufA7eXfdlf9TO4RZXHfuT3YFn0Ek37yrQ528HXIHN9pgv+RjejMsJ3JH m8Dzwz0AdxCcQomaWo6t+Hc= -----END CERTIFICATE-----Generated at Sun Mar 8 03:24:20 2026 by rpki-client