$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA23A/8D59A2E4582311F18D7F2C9EA7833773/A08CACAC631411F19BD88A887D47A888.roa File: A08CACAC631411F19BD88A887D47A888.roa (raw, json) Hash identifier: cui5kt/ao4ZSMnSmpM+vFQ/6IaNn7ud21wvDYaj2E2c= Subject key identifier: E2:6F:6A:9B:34:CE:7E:1A:E9:FF:8B:3F:B9:14:E3:42:A4:34:2C:C5 Certificate issuer: /CN=A91EA23A/serialNumber=0A25D1F321E50A0BCAC7C1D07F319397A391013F Certificate serial: 13 Authority key identifier: 0A:25:D1:F3:21:E5:0A:0B:CA:C7:C1:D0:7F:31:93:97:A3:91:01:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiXR8yHlCgvKx8HQfzGTl6ORAT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA23A/8D59A2E4582311F18D7F2C9EA7833773/A08CACAC631411F19BD88A887D47A888.roa Signing time: Mon 08 Jun 2026 08:32:47 +0000 ROA not before: Mon 08 Jun 2026 08:32:47 +0000 ROA not after: Fri 30 Jul 2027 00:00:00 +0000 asID: 137409 IP address blocks: 203.16.243.0/24 maxlen: 24 203.25.206.0/23 maxlen: 23 203.28.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA23A/8D59A2E4582311F18D7F2C9EA7833773/CiXR8yHlCgvKx8HQfzGTl6ORAT8.crl rsync://rpki.apnic.net/member_repository/A91EA23A/8D59A2E4582311F18D7F2C9EA7833773/CiXR8yHlCgvKx8HQfzGTl6ORAT8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiXR8yHlCgvKx8HQfzGTl6ORAT8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Jun 2026 09:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA23A, serialNumber=0A25D1F321E50A0BCAC7C1D07F319397A391013F Validity Not Before: Jun 8 08:32:47 2026 GMT Not After : Jul 30 00:00:00 2027 GMT Subject: CN=6a267e2f-f7f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:89:5e:ca:ca:0b:ae:15:8b:dd:89:8a:76:e2: 5b:4d:24:5d:12:a4:47:1c:32:ff:34:0b:cb:90:d7: 0b:e0:e7:5e:ba:8c:dc:e1:27:96:16:5e:fe:68:9b: 7b:04:46:e0:12:ac:03:dc:99:72:3a:a0:06:69:0f: 05:18:b5:c2:45:ee:ec:a4:ff:fe:b3:9e:0b:0d:06: 44:ae:5b:a3:60:58:05:c1:30:7a:18:61:c3:a5:f5: 86:8f:47:23:cf:2e:8b:f9:da:9c:b9:77:27:6b:56: 53:2a:e7:b6:cb:34:92:b6:32:af:19:ca:2f:c6:f9: 7d:76:11:13:b5:70:ac:dd:b0:b5:7d:13:76:58:6b: ad:bf:a5:65:6d:2a:20:63:d7:35:9f:9b:34:e1:56: 2a:94:90:f3:0d:49:15:a3:ad:4e:65:d6:6d:98:07: 35:29:39:2f:07:52:9b:7c:a0:6f:7c:be:f6:1b:68: c4:fb:d6:b0:7e:f1:27:95:9f:ff:ad:6c:1c:f7:3c: cd:e5:c7:7b:3e:d5:b6:1b:2c:4c:db:01:8d:26:e2: e3:3a:58:00:c5:a3:a0:c2:f9:02:8d:79:83:c8:1f: db:ee:17:80:b6:e2:47:82:b3:6c:f2:fc:37:9e:ac: d5:3f:78:27:4b:ab:8b:70:a2:f2:8f:40:dd:34:6b: 60:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6F:6A:9B:34:CE:7E:1A:E9:FF:8B:3F:B9:14:E3:42:A4:34:2C:C5 X509v3 Authority Key Identifier: keyid:0A:25:D1:F3:21:E5:0A:0B:CA:C7:C1:D0:7F:31:93:97:A3:91:01:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA23A/8D59A2E4582311F18D7F2C9EA7833773/CiXR8yHlCgvKx8HQfzGTl6ORAT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiXR8yHlCgvKx8HQfzGTl6ORAT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA23A/8D59A2E4582311F18D7F2C9EA7833773/A08CACAC631411F19BD88A887D47A888.roa sbgp-ipAddrBlock: critical IPv4: 203.16.243.0/24 203.25.206.0/23 203.28.75.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:ee:09:d0:b4:03:c8:c5:1a:36:d2:86:d0:1d:c6:cc:83:df: 43:da:b2:84:98:c1:ac:a7:16:ee:db:74:d3:eb:32:40:a9:e6: da:8a:29:39:ad:70:8a:a4:b8:9f:1e:4e:cd:85:e1:bc:23:0a: ba:73:a7:51:af:db:cc:0b:ee:bb:2a:24:19:51:8a:1d:cb:82: 0f:82:20:eb:5c:48:75:0d:a0:f2:8f:69:39:b1:bd:22:4e:49: 98:c3:82:85:68:28:41:5f:bc:7f:07:97:de:b5:54:6a:c0:06: 14:c9:0c:5f:72:03:e4:9f:49:d8:50:cb:4f:c0:68:8e:48:a8: 77:42:06:0f:43:ad:4e:73:ca:08:6e:91:c0:15:a2:1d:45:31: f1:dc:8c:59:48:71:64:55:55:28:35:03:e9:52:11:49:d6:66: 74:9f:40:85:f3:97:e0:14:a2:26:20:bb:87:60:3f:15:98:d1: e1:2c:b6:65:c9:ad:19:9f:8b:a1:70:6a:64:70:32:12:80:a7: a7:a9:b9:70:76:16:68:46:13:8b:b1:28:4a:d5:b2:28:60:b3: 68:21:5f:33:8d:20:61:18:d6:fb:8e:96:1c:b3:5d:89:d2:c3: 95:aa:0a:c2:ee:1f:95:43:0c:15:02:a4:0d:ff:94:b0:59:f4: 42:e0:b4:b3 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTIzQTExMC8GA1UEBRMoMEEyNUQxRjMyMUU1MEEwQkNBQzdDMUQwN0YzMTkzOTdB MzkxMDEzRjAeFw0yNjA2MDgwODMyNDdaFw0yNzA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTZhMjY3ZTJmLWY3ZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4iV7KyguuFYvdiYp24ltNJF0SpEccMv80C8uQ1wvg5166jNzhJ5YWXv5om3sE RuASrAPcmXI6oAZpDwUYtcJF7uyk//6zngsNBkSuW6NgWAXBMHoYYcOl9YaPRyPP Lov52py5dydrVlMq57bLNJK2Mq8Zyi/G+X12ERO1cKzdsLV9E3ZYa62/pWVtKiBj 1zWfmzThViqUkPMNSRWjrU5l1m2YBzUpOS8HUpt8oG98vvYbaMT71rB+8SeVn/+t bBz3PM3lx3s+1bYbLEzbAY0m4uM6WADFo6DC+QKNeYPIH9vuF4C24keCs2zy/Dee rNU/eCdLq4twovKPQN00a2AXAgMBAAGjggJsMIICaDAdBgNVHQ4EFgQU4m9qmzTO fhrp/4s/uRTjQqQ0LMUwHwYDVR0jBBgwFoAUCiXR8yHlCgvKx8HQfzGTl6ORAT8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBMjNBLzhENTlBMkU0NTgy MzExRjE4RDdGMkM5RUE3ODMzNzczL0NpWFI4eUhsQ2d2S3g4SFFmekdUbDZPUkFU OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2lYUjh5SGxDZ3ZLeDhIUWZ6R1RsNk9SQVQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTIzQS84RDU5QTJFNDU4MjMxMUYxOEQ3RjJDOUVBNzgzMzc3My9BMDhDQUNBQzYz MTQxMUYxOUJEODhBODg3RDQ3QTg4OC5yb2EwKwYIKwYBBQUHAQcBAf8EHDAaMBgE AgABMBIDBADLEPMDBAHLGc4DBADLHEswDQYJKoZIhvcNAQELBQADggEBAI7uCdC0 A8jFGjbShtAdxsyD30PasoSYwaynFu7bdNPrMkCp5tqKKTmtcIqkuJ8eTs2F4bwj Crpzp1Gv28wL7rsqJBlRih3Lgg+CIOtcSHUNoPKPaTmxvSJOSZjDgoVoKEFfvH8H l961VGrABhTJDF9yA+SfSdhQy0/AaI5IqHdCBg9DrU5zyghukcAVoh1FMfHcjFlI cWRVVSg1A+lSEUnWZnSfQIXzl+AUoiYgu4dgPxWY0eEstmXJrRmfi6FwamRwMhKA p6epuXB2FmhGE4uxKErVsihgs2ghXzONIGEY1vuOlhyzXYnSw5WqCsLuH5VDDBUC pA3/lLBZ9ELgtLM= -----END CERTIFICATE-----Generated at Tue Jun 9 18:25:08 2026 by rpki-client