$ rpki-client -vvf rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa File: 1C9DA52E9BD011F0AE2D7868C4F9AE02.roa (raw, json) Hash identifier: kJRxLxZAkXPr0TVPlk3QZ3IleQyxvaLuHor998FaAvE= Subject key identifier: EC:15:C6:76:D5:8A:63:0C:D5:3E:A6:20:D4:A6:E4:99:68:6B:09:59 Certificate issuer: /CN=A91211D4/serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Certificate serial: 072D Authority key identifier: 96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa Signing time: Sun 01 Mar 2026 16:17:07 +0000 ROA not before: Sat 27 Sep 2025 18:30:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142006 IP address blocks: 103.164.86.0/24 maxlen: 24 103.164.87.0/24 maxlen: 24 2001:df6:4280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1837 (0x72d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91211D4, serialNumber=968D2AAA6168CB496944A727018AFB42A26E31E1 Validity Not Before: Sep 27 18:30:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a46683-1214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:31:ee:53:92:d3:80:f3:9b:1d:98:87:0f: 5d:36:82:f9:6a:24:23:5a:50:0b:ad:3b:6f:33:c3: 28:19:18:f6:d3:2a:4b:88:19:1d:18:b0:e9:51:75: 34:be:f4:a4:a2:5c:90:aa:2c:49:e7:ba:77:ea:da: 02:c5:e6:7a:e5:64:7f:d7:16:99:a7:9f:8f:c5:92: 1e:4b:49:46:3d:6a:2b:77:bc:c3:c7:39:02:50:eb: eb:f2:68:56:ec:9a:46:5d:f6:f2:ce:30:3c:ae:4b: 55:0d:eb:d0:bf:06:b7:e4:5b:c7:c9:62:42:9b:49: 0c:c7:a9:bd:41:f1:20:fb:19:78:53:56:95:06:52: dd:4c:ba:ff:b3:16:aa:a1:68:a3:2e:72:19:c1:fd: 08:b1:8e:48:e0:13:40:11:6e:83:33:8d:12:da:d1: f8:18:b2:2a:e3:7a:2b:0b:b2:71:24:95:c5:e5:63: 8e:97:33:a3:7f:d2:a7:d7:be:ec:74:44:b6:96:97: 11:04:d0:58:25:8f:58:f5:38:b3:b7:61:9c:8f:14: d2:0e:03:ec:62:b7:01:c6:53:14:3a:e6:2e:0f:04: 89:72:f1:b2:5e:06:09:55:16:82:92:a0:b1:e2:2b: c3:f6:88:f4:f0:5a:7e:a4:02:ed:bf:5a:8c:9c:b9: 91:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:15:C6:76:D5:8A:63:0C:D5:3E:A6:20:D4:A6:E4:99:68:6B:09:59 X509v3 Authority Key Identifier: keyid:96:8D:2A:AA:61:68:CB:49:69:44:A7:27:01:8A:FB:42:A2:6E:31:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/lo0qqmFoy0lpRKcnAYr7QqJuMeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lo0qqmFoy0lpRKcnAYr7QqJuMeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91211D4/A9F4965286CD11EBA4AFF609C4F9AE02/1C9DA52E9BD011F0AE2D7868C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.164.86.0/23 IPv6: 2001:df6:4280::/48 Signature Algorithm: sha256WithRSAEncryption c3:a5:54:6b:df:66:b0:da:9a:51:52:2e:c4:84:c2:dd:00:02: f1:32:66:f9:0b:ab:c4:73:6a:aa:f0:c4:f6:d7:1c:53:d0:32: 5b:2c:f4:a9:6e:61:9b:48:68:2b:b8:f2:34:33:d1:28:db:07: c2:e3:98:e8:0d:60:aa:1f:73:ae:0b:83:53:67:d5:98:02:68: 17:ce:99:fd:bd:0d:14:7b:97:e9:e1:20:88:ef:f7:4b:4a:bf: 70:4a:58:ec:6c:ee:5d:8b:1b:49:ca:3d:9a:0d:13:20:7c:25: a1:2f:be:ba:40:de:e1:d1:01:f6:ad:a5:80:80:83:38:37:b5: ce:14:24:bb:5a:30:93:21:58:9d:86:17:3a:2a:e1:dc:5a:de: d8:f4:25:5a:dd:ae:5b:2e:b2:ff:fa:db:2e:e1:d4:ab:e9:d4: e8:7f:2b:c1:9c:c3:62:51:5d:32:87:92:ef:79:4e:4b:e9:41: e7:97:c1:68:f7:58:bb:54:ac:72:cf:fd:09:54:4a:f1:6d:a1: da:7e:b3:80:06:37:8f:d7:a1:0c:74:98:bd:90:03:21:a8:41: 69:f6:2e:e9:c8:1e:ea:19:5e:65:16:7b:dc:e2:21:59:e8:7d: 2b:85:f6:7a:05:28:85:9d:2d:6b:78:ec:ff:fc:60:f8:09:01: bc:1e:d0:77 -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjExRDQxMTAvBgNVBAUTKDk2OEQyQUFBNjE2OENCNDk2OTQ0QTcyNzAxOEFGQjQy QTI2RTMxRTEwHhcNMjUwOTI3MTgzMDU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjY4My0xMjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJwx7lOS04Dzmx2Yhw9dNoL5aiQjWlALrTtvM8MoGRj20ypLiBkdGLDpUXU0 vvSkolyQqixJ57p36toCxeZ65WR/1xaZp5+PxZIeS0lGPWord7zDxzkCUOvr8mhW 7JpGXfbyzjA8rktVDevQvwa35FvHyWJCm0kMx6m9QfEg+xl4U1aVBlLdTLr/sxaq oWijLnIZwf0IsY5I4BNAEW6DM40S2tH4GLIq43orC7JxJJXF5WOOlzOjf9Kn177s dES2lpcRBNBYJY9Y9Tizt2GcjxTSDgPsYrcBxlMUOuYuDwSJcvGyXgYJVRaCkqCx 4ivD9oj08Fp+pALtv1qMnLmRlwIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFOwVxnbV imMM1T6mINSm5JloawlZMB8GA1UdIwQYMBaAFJaNKqphaMtJaUSnJwGK+0KibjHh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTFENC9BOUY0OTY1Mjg2 Q0QxMUVCQTRBRkY2MDlDNEY5QUUwMi9sbzBxcW1Gb3kwbHBSS2NuQVlyN1FxSnVN ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvMHFxbUZveTBscFJLY25BWXI3UXFKdU1lRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjExRDQvQTlGNDk2NTI4NkNEMTFFQkE0QUZGNjA5QzRGOUFFMDIvMUM5REE1MkU5 QkQwMTFGMEFFMkQ3ODY4QzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6RWMA8EAgACMAkDBwAgAQ32QoAwDQYJKoZIhvcNAQELBQADggEB AMOlVGvfZrDamlFSLsSEwt0AAvEyZvkLq8RzaqrwxPbXHFPQMlss9KluYZtIaCu4 8jQz0SjbB8LjmOgNYKofc64Lg1Nn1ZgCaBfOmf29DRR7l+nhIIjv90tKv3BKWOxs 7l2LG0nKPZoNEyB8JaEvvrpA3uHRAfatpYCAgzg3tc4UJLtaMJMhWJ2GFzoq4dxa 3tj0JVrdrlsusv/62y7h1Kvp1Oh/K8Gcw2JRXTKHku95TkvpQeeXwWj3WLtUrHLP /QlUSvFtodp+s4AGN4/XoQx0mL2QAyGoQWn2LunIHuoZXmUWe9ziIVnofSuF9noF KIWdLWt47P/8YPgJAbwe0Hc= -----END CERTIFICATE-----Generated at Mon Mar 2 18:26:39 2026 by rpki-client