$ rpki-client -vvf rpki.apnic.net/member_repository/A91376D4/8E32683A4F3311EBBF49E357C4F9AE02/ACD87DA66C4811EBB9A7CF73C4F9AE02.roa File: ACD87DA66C4811EBB9A7CF73C4F9AE02.roa (raw, json) Hash identifier: 8ZogQsAJSObbc1LEfPoW5Crx/qRsbQdEqjtGRmTCjaw= Subject key identifier: 17:C1:FE:F5:83:F7:62:53:4D:B3:67:23:EB:4D:85:C0:E4:24:E2:4C Certificate issuer: /CN=A91376D4/serialNumber=590D2785F306E8914A1DFE9B27D57C6B89FCDA93 Certificate serial: 077E Authority key identifier: 59:0D:27:85:F3:06:E8:91:4A:1D:FE:9B:27:D5:7C:6B:89:FC:DA:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ0nhfMG6JFKHf6bJ9V8a4n82pM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91376D4/8E32683A4F3311EBBF49E357C4F9AE02/ACD87DA66C4811EBB9A7CF73C4F9AE02.roa Signing time: Sun 01 Mar 2026 14:11:24 +0000 ROA not before: Thu 26 Feb 2026 21:18:18 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 134499 IP address blocks: 103.161.66.0/24 maxlen: 24 103.161.67.0/24 maxlen: 24 2001:df5:bb80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91376D4/8E32683A4F3311EBBF49E357C4F9AE02/WQ0nhfMG6JFKHf6bJ9V8a4n82pM.crl rsync://rpki.apnic.net/member_repository/A91376D4/8E32683A4F3311EBBF49E357C4F9AE02/WQ0nhfMG6JFKHf6bJ9V8a4n82pM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ0nhfMG6JFKHf6bJ9V8a4n82pM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:17:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1918 (0x77e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91376D4, serialNumber=590D2785F306E8914A1DFE9B27D57C6B89FCDA93 Validity Not Before: Feb 26 21:18:18 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69a4490c-689f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ea:e3:55:74:2e:67:d9:e4:98:a9:aa:60:07: ff:f4:01:4f:45:37:07:e5:21:7f:f8:44:1f:00:66: b9:66:ea:68:c3:bd:73:c9:51:e7:b9:b0:0e:43:6e: 3c:3c:45:b3:b8:d7:1a:14:49:68:1e:21:a0:81:2f: 53:05:84:34:61:1e:3b:35:a8:af:1b:67:5d:0e:85: 49:1e:dd:cf:20:4b:ea:2a:09:cd:eb:cd:f3:db:11: fe:14:9b:38:1e:93:76:d6:8c:15:58:64:ed:77:b6: 84:09:ef:63:1a:47:0b:85:0f:41:f4:2d:b3:33:a5: e2:f2:ab:e2:8e:db:a6:38:82:56:87:c5:d9:65:0a: 70:f6:f1:eb:60:0f:bb:4b:88:a2:a4:29:a5:2e:10: 1d:2e:f0:cd:cb:ba:63:e3:14:e2:f8:94:a3:dc:e3: 8d:f5:9b:ef:32:ed:b8:e6:0f:57:cf:82:a7:41:ef: 5a:5c:18:49:0e:e8:52:79:58:b4:7d:a1:bb:e8:92: 4b:ac:d3:40:46:be:8f:3e:80:2d:35:3e:b2:31:3c: 0d:a3:1f:37:d3:6e:61:4f:67:15:99:0f:ac:e4:c6: 46:90:f6:12:b3:61:fa:12:e8:7b:02:a1:5d:cf:69: 9d:28:8a:80:bd:f1:09:43:b2:d2:8a:de:38:82:73: 34:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:C1:FE:F5:83:F7:62:53:4D:B3:67:23:EB:4D:85:C0:E4:24:E2:4C X509v3 Authority Key Identifier: keyid:59:0D:27:85:F3:06:E8:91:4A:1D:FE:9B:27:D5:7C:6B:89:FC:DA:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91376D4/8E32683A4F3311EBBF49E357C4F9AE02/WQ0nhfMG6JFKHf6bJ9V8a4n82pM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ0nhfMG6JFKHf6bJ9V8a4n82pM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91376D4/8E32683A4F3311EBBF49E357C4F9AE02/ACD87DA66C4811EBB9A7CF73C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.161.66.0/23 IPv6: 2001:df5:bb80::/48 Signature Algorithm: sha256WithRSAEncryption 53:0a:26:14:be:72:6e:75:08:2f:df:5d:30:20:a2:13:08:a2: 67:fc:f0:7e:61:4b:97:82:a1:b4:b0:de:d9:84:15:72:1d:84: 09:15:49:44:ce:cb:cb:ae:5a:e1:70:a0:d6:ec:ff:9c:29:44: b7:31:0f:d4:7a:23:53:3f:6d:ea:4a:02:bd:96:9e:11:b0:f9: fb:1c:ce:43:40:39:c6:39:26:84:83:85:4d:f7:cc:6b:a3:15: 2d:f0:3e:04:5f:9c:51:87:f6:4d:b4:09:f8:a9:fa:e4:e7:27: 04:e3:42:ff:8d:00:3c:7f:c8:6d:c8:e8:f4:2e:1e:fc:e8:51: 8d:e8:07:ac:50:21:f0:1c:25:5e:a7:51:d5:bc:4f:8d:85:4a: 6f:4e:b8:cb:07:ec:16:29:b0:0a:f2:6f:d6:9b:e0:b8:e7:1e: 3f:cc:a1:6f:f3:04:64:84:1a:14:71:99:13:75:c0:19:61:54: 23:84:56:24:02:68:62:0d:6d:ea:3b:72:0e:e6:46:a2:19:9e: 9a:9e:a0:06:dc:a7:26:8c:d6:50:ea:d3:40:4e:d1:4f:9b:21: 03:f2:bf:8f:95:ec:15:08:f5:cb:27:59:2e:69:3a:2d:48:3c: c6:8d:7b:ed:e3:c5:97:09:af:a7:46:ae:39:a2:d7:b4:c7:34: 44:66:02:7a -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICB34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc2RDQxMTAvBgNVBAUTKDU5MEQyNzg1RjMwNkU4OTE0QTFERkU5QjI3RDU3QzZC ODlGQ0RBOTMwHhcNMjYwMjI2MjExODE4WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDkwYy02ODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAturjVXQuZ9nkmKmqYAf/9AFPRTcH5SF/+EQfAGa5Zupow71zyVHnubAOQ248 PEWzuNcaFEloHiGggS9TBYQ0YR47NaivG2ddDoVJHt3PIEvqKgnN683z2xH+FJs4 HpN21owVWGTtd7aECe9jGkcLhQ9B9C2zM6Xi8qvijtumOIJWh8XZZQpw9vHrYA+7 S4iipCmlLhAdLvDNy7pj4xTi+JSj3OON9ZvvMu245g9Xz4KnQe9aXBhJDuhSeVi0 faG76JJLrNNARr6PPoAtNT6yMTwNox83025hT2cVmQ+s5MZGkPYSs2H6Euh7AqFd z2mdKIqAvfEJQ7LSit44gnM0FQIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFBfB/vWD 92JTTbNnI+tNhcDkJOJMMB8GA1UdIwQYMBaAFFkNJ4XzBuiRSh3+myfVfGuJ/NqT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzZENC84RTMyNjgzQTRG MzMxMUVCQkY0OUUzNTdDNEY5QUUwMi9XUTBuaGZNRzZKRktIZjZiSjlWOGE0bjgy cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dRMG5oZk1HNkpGS0hmNmJKOVY4YTRuODJwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc2RDQvOEUzMjY4M0E0RjMzMTFFQkJGNDlFMzU3QzRGOUFFMDIvQUNEODdEQTY2 QzQ4MTFFQkI5QTdDRjczQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ6FCMA8EAgACMAkDBwAgAQ31u4AwDQYJKoZIhvcNAQELBQADggEB AFMKJhS+cm51CC/fXTAgohMIomf88H5hS5eCobSw3tmEFXIdhAkVSUTOy8uuWuFw oNbs/5wpRLcxD9R6I1M/bepKAr2WnhGw+fsczkNAOcY5JoSDhU33zGujFS3wPgRf nFGH9k20Cfip+uTnJwTjQv+NADx/yG3I6PQuHvzoUY3oB6xQIfAcJV6nUdW8T42F Sm9OuMsH7BYpsAryb9ab4LjnHj/MoW/zBGSEGhRxmRN1wBlhVCOEViQCaGINbeo7 cg7mRqIZnpqeoAbcpyaM1lDq00BO0U+bIQPyv4+V7BUI9csnWS5pOi1IPMaNe+3j xZcJr6dGrjmi17THNERmAno= -----END CERTIFICATE-----Generated at Mon Mar 2 17:08:03 2026 by rpki-client