$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa File: C2B5BE908CAF11EBBADF6F60C4F9AE02.roa (raw, json) Hash identifier: JYlmSzYa1KKkgxaInECg87m4sygQ0rNDKLYWt4pbRKQ= Subject key identifier: 5C:4A:A1:0C:59:39:92:7F:F3:39:0A:F0:81:FA:E1:2A:0E:9A:A9:17 Certificate issuer: /CN=A91E4519/serialNumber=A9A75555ED70672F71D52F6593B91B4420BAA70B Certificate serial: 06EA Authority key identifier: A9:A7:55:55:ED:70:67:2F:71:D5:2F:65:93:B9:1B:44:20:BA:A7:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa Signing time: Sat 28 Mar 2026 22:29:28 +0000 ROA not before: Sat 28 Mar 2026 22:29:28 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142011 IP address blocks: 203.89.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.crl rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 Apr 2026 21:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4519, serialNumber=A9A75555ED70672F71D52F6593B91B4420BAA70B Validity Not Before: Mar 28 22:29:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=69c85648-2534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f8:1b:b7:35:d6:c5:fb:f8:53:e6:b2:21:66: fe:4f:97:a4:f7:55:7f:e1:b9:1d:9e:5d:26:66:25: b3:39:48:d2:8e:e1:53:45:7f:b9:52:4b:8f:c1:ed: 1a:e1:7c:8b:11:67:e9:a5:26:f0:68:d1:01:75:09: 42:4f:88:5b:01:80:f1:14:14:43:34:ca:09:8c:b6: a2:06:45:2a:69:51:92:97:f5:1c:f1:00:b3:9e:d6: 51:36:02:3b:10:c4:ef:cd:d7:ee:8d:0e:88:9f:f0: be:d9:ec:e5:d7:51:b6:7b:00:80:83:63:7b:df:48: 13:97:5b:2d:d0:8a:a0:ea:47:b5:48:b4:53:b9:46: 41:a6:42:b2:02:a9:1e:48:bb:b9:d9:5a:21:22:d6: 75:ef:78:24:ad:2c:30:a5:8c:5f:ca:af:37:c1:53: 7b:4a:7a:d3:bd:ed:95:96:3f:8c:12:9e:35:fb:8f: ab:b5:7c:97:2b:af:53:ee:31:31:80:98:b2:f9:42: 2b:df:08:7d:fa:94:c8:2c:5b:60:89:93:aa:1b:41: fd:b2:ef:00:85:e1:eb:11:e5:4e:dc:69:f3:50:48: 13:71:cc:00:43:64:3e:cc:26:d3:bc:bb:93:d7:68: bb:73:a2:a7:4d:ee:33:e9:2f:61:56:24:4f:5c:88: 7c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4A:A1:0C:59:39:92:7F:F3:39:0A:F0:81:FA:E1:2A:0E:9A:A9:17 X509v3 Authority Key Identifier: keyid:A9:A7:55:55:ED:70:67:2F:71:D5:2F:65:93:B9:1B:44:20:BA:A7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/qadVVe1wZy9x1S9lk7kbRCC6pws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qadVVe1wZy9x1S9lk7kbRCC6pws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4519/0426491E8CAE11EBAA1B1F5EC4F9AE02/C2B5BE908CAF11EBBADF6F60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 203.89.151.0/24 Signature Algorithm: sha256WithRSAEncryption e5:57:79:ea:0d:6c:d7:31:0b:c5:0f:fa:08:bb:88:08:9c:30: a7:0c:86:0f:d7:e7:13:de:90:f3:72:b2:82:22:d4:d1:88:12: 1c:d3:d5:65:85:1c:17:95:19:75:c8:a6:6d:49:c9:04:0d:fc: 34:e8:3e:10:17:4c:a1:d7:ba:c2:cb:fe:5f:81:e1:48:2f:a4: b5:46:d2:fb:da:41:38:f0:e5:59:4c:ab:c6:8a:02:e4:6c:39: 92:14:71:74:87:8e:23:34:0f:25:43:a1:7d:29:4f:f6:fd:e3: c8:c0:40:48:64:ee:5c:70:3d:eb:f7:d9:d1:47:40:0c:25:50: c9:03:1b:92:8c:8f:b9:b2:64:3a:69:ad:61:dd:ed:79:93:67: 15:79:3e:43:d5:93:c0:e0:53:42:6e:9b:3a:40:f1:dd:55:19: 61:4e:6e:4b:e9:8b:62:04:81:5c:9f:12:74:2c:e2:57:8f:b4: 0c:ce:08:79:f6:3a:a4:9d:e6:24:42:a6:09:42:2a:89:51:48: 59:5c:d7:ee:c5:22:b5:32:b7:c2:f3:77:0a:54:3c:22:67:88: ee:75:67:93:f2:61:f8:13:07:23:5e:af:8c:45:16:6d:eb:ea: 10:8d:30:e4:75:7b:d0:fc:57:eb:b4:f9:9f:3d:6c:aa:33:0a: 13:73:0c:f0 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ1MTkxMTAvBgNVBAUTKEE5QTc1NTU1RUQ3MDY3MkY3MUQ1MkY2NTkzQjkxQjQ0 MjBCQUE3MEIwHhcNMjYwMzI4MjIyOTI4WhcNMjcwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWM4NTY0OC0yNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/gbtzXWxfv4U+ayIWb+T5ek91V/4bkdnl0mZiWzOUjSjuFTRX+5UkuPwe0a 4XyLEWfppSbwaNEBdQlCT4hbAYDxFBRDNMoJjLaiBkUqaVGSl/Uc8QCzntZRNgI7 EMTvzdfujQ6In/C+2ezl11G2ewCAg2N730gTl1st0Iqg6ke1SLRTuUZBpkKyAqke SLu52VohItZ173gkrSwwpYxfyq83wVN7SnrTve2Vlj+MEp41+4+rtXyXK69T7jEx gJiy+UIr3wh9+pTILFtgiZOqG0H9su8AheHrEeVO3GnzUEgTccwAQ2Q+zCbTvLuT 12i7c6KnTe4z6S9hViRPXIh8XQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFxKoQxZ OZJ/8zkK8IH64SoOmqkXMB8GA1UdIwQYMBaAFKmnVVXtcGcvcdUvZZO5G0QguqcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDUxOS8wNDI2NDkxRThD QUUxMUVCQUExQjFGNUVDNEY5QUUwMi9xYWRWVmUxd1p5OXgxUzlsazdrYlJDQzZw d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZFZWZTF3Wnk5eDFTOWxrN2tiUkNDNnB3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ1MTkvMDQyNjQ5MUU4Q0FFMTFFQkFBMUIxRjVFQzRGOUFFMDIvQzJCNUJFOTA4 Q0FGMTFFQkJBREY2RjYwQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAy1mXMA0GCSqGSIb3DQEBCwUAA4IBAQDlV3nqDWzXMQvFD/oIu4gI nDCnDIYP1+cT3pDzcrKCItTRiBIc09VlhRwXlRl1yKZtSckEDfw06D4QF0yh17rC y/5fgeFIL6S1RtL72kE48OVZTKvGigLkbDmSFHF0h44jNA8lQ6F9KU/2/ePIwEBI ZO5ccD3r99nRR0AMJVDJAxuSjI+5smQ6aa1h3e15k2cVeT5D1ZPA4FNCbps6QPHd VRlhTm5L6YtiBIFcnxJ0LOJXj7QMzgh59jqkneYkQqYJQiqJUUhZXNfuxSK1MrfC 83cKVDwiZ4judWeT8mH4EwcjXq+MRRZt6+oQjTDkdXvQ/FfrtPmfPWyqMwoTcwzw -----END CERTIFICATE-----Generated at Mon Apr 6 11:29:35 2026 by rpki-client