$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa File: 2F9887306F0D11EE9B369C60C4F9AE02.roa (raw, json) Hash identifier: J6f5Iwq0hCkPy85AsFOXOv2n5dM2/bZSE2OvIibeXCQ= Subject key identifier: E5:01:6B:90:64:84:CB:5C:66:F8:C5:3A:FD:A7:85:31:D9:8A:29:71 Certificate issuer: /CN=A91554E6/serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Certificate serial: 01C1 Authority key identifier: C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa Signing time: Sun 01 Mar 2026 18:55:18 +0000 ROA not before: Wed 09 Jul 2025 02:38:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149866 IP address blocks: 103.189.160.0/23 maxlen: 24 2400:8760::/32 maxlen: 32 2400:8760:5::/48 maxlen: 48 2400:8760:6::/48 maxlen: 48 2400:8760:11::/48 maxlen: 48 2400:8760:12::/48 maxlen: 48 2400:8760:13::/48 maxlen: 48 2400:8760:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6, serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Validity Not Before: Jul 9 02:38:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a48b96-41ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:17:05:67:bf:26:3c:9d:c4:23:8d:af:e3:83: 66:eb:d3:75:6b:39:36:19:cd:28:3a:ef:c4:0e:19: bc:3d:5c:00:92:b0:93:75:88:cb:10:68:82:0f:22: 07:54:3b:81:68:cb:4b:65:1d:98:df:39:35:f3:18: a4:e7:8b:3c:31:96:7e:71:6f:ad:a6:0a:7a:3b:10: 68:42:0e:ac:e2:cc:7b:66:9c:a6:5a:6e:84:e0:dd: b4:87:42:7a:13:70:df:97:9e:b5:25:2b:92:95:29: 3b:4a:c6:ba:52:51:ea:bb:b8:18:e2:34:b4:97:a3: c3:6a:45:15:f0:9d:76:01:7f:d0:5d:eb:72:97:22: b2:3b:58:5b:17:ac:52:c0:71:a5:29:ca:e3:5c:b1: 96:3c:ba:ee:ec:4c:da:bd:fd:4d:11:5d:32:67:69: 8a:a2:a0:55:d9:6c:d1:21:47:3d:44:b4:cd:6a:0a: 6b:6f:06:ef:34:bf:c4:d1:fc:53:4f:55:bd:71:cb: 70:fd:32:84:b7:2d:2e:6a:c7:1f:0c:45:e5:fe:66: 58:6e:14:32:59:cb:90:33:f9:f7:a0:df:ee:18:01: 48:c2:08:77:80:9c:2e:f6:c0:48:de:97:bf:f3:06: 7c:c0:cd:19:bd:70:63:26:2d:04:7d:62:f0:f7:95: 31:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:01:6B:90:64:84:CB:5C:66:F8:C5:3A:FD:A7:85:31:D9:8A:29:71 X509v3 Authority Key Identifier: keyid:C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/2F9887306F0D11EE9B369C60C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.189.160.0/23 IPv6: 2400:8760::/32 Signature Algorithm: sha256WithRSAEncryption 8c:e2:47:6a:14:f3:49:b7:85:73:b4:5f:d4:6e:c7:ec:f1:f4: d6:90:c0:bb:5c:7d:fc:f9:5a:a4:36:da:fd:45:59:fc:a5:23: 18:07:a9:f9:e4:90:55:f5:cc:0b:95:f2:8e:80:0c:9a:99:32: 43:cc:25:6a:65:7a:a3:c4:0d:b4:e5:5a:d9:81:b1:b7:de:9c: 55:37:7f:5f:05:ad:fd:e6:08:98:e6:44:d6:ad:e2:05:0d:24: cc:5f:de:5b:b7:f6:7b:ed:04:54:4a:51:3c:6c:29:9e:1a:ec: 1e:5c:52:4a:81:3b:59:60:e9:56:cd:7c:8c:49:4f:72:44:b5: 25:66:3e:db:2c:92:d1:07:fa:66:5e:ec:ed:2b:04:ff:14:35: a2:3a:08:29:a2:f5:ca:80:d6:0f:97:60:95:34:b7:55:df:cb: 60:6c:d0:6b:a1:55:78:64:f5:86:c8:b9:17:a9:1b:54:35:49: 26:67:a7:5c:74:92:6d:72:1b:ec:73:ac:01:ac:3d:25:ed:2a: 72:1e:55:6c:00:44:9d:57:12:32:07:43:cf:0d:40:b3:dd:44: ac:00:e7:61:d2:46:c5:91:0f:bf:c6:6c:34:e1:85:40:1f:d7: 80:e8:32:64:2b:c1:23:70:bd:fa:8d:97:e6:b9:2e:6f:e3:7e: 74:d9:84:07 -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEM3OEQxRTU5NTkxQkUwQzc1MjREMzZCREY4NUM4QUM2 RUExOTBGOEUwHhcNMjUwNzA5MDIzODA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0OGI5Ni00MWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBcFZ78mPJ3EI42v44Nm69N1azk2Gc0oOu/EDhm8PVwAkrCTdYjLEGiCDyIH VDuBaMtLZR2Y3zk18xik54s8MZZ+cW+tpgp6OxBoQg6s4sx7ZpymWm6E4N20h0J6 E3Dfl561JSuSlSk7Ssa6UlHqu7gY4jS0l6PDakUV8J12AX/QXetylyKyO1hbF6xS wHGlKcrjXLGWPLru7Ezavf1NEV0yZ2mKoqBV2WzRIUc9RLTNagprbwbvNL/E0fxT T1W9cctw/TKEty0uascfDEXl/mZYbhQyWcuQM/n3oN/uGAFIwgh3gJwu9sBI3pe/ 8wZ8wM0ZvXBjJi0EfWLw95UxvwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFOUBa5Bk hMtcZvjFOv2nhTHZiilxMB8GA1UdIwQYMBaAFMeNHllZG+DHUk02vfhcisbqGQ+O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi94NDBlV1ZrYjRNZFNUVGE5LUZ5S3h1b1pE NDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g0MGVXVmtiNE1kU1RUYTktRnlLeHVvWkQ0NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU0RTYvOUYwNjc3NDhFRDRCMTFFQ0FCOEZBQTc3QzRGOUFFMDIvMkY5ODg3MzA2 RjBEMTFFRTlCMzY5QzYwQzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQBZ72gMA0EAgACMAcDBQAkAIdgMA0GCSqGSIb3DQEBCwUAA4IBAQCM 4kdqFPNJt4VztF/Ubsfs8fTWkMC7XH38+VqkNtr9RVn8pSMYB6n55JBV9cwLlfKO gAyamTJDzCVqZXqjxA205VrZgbG33pxVN39fBa395giY5kTWreIFDSTMX95bt/Z7 7QRUSlE8bCmeGuweXFJKgTtZYOlWzXyMSU9yRLUlZj7bLJLRB/pmXuztKwT/FDWi OggpovXKgNYPl2CVNLdV38tgbNBroVV4ZPWGyLkXqRtUNUkmZ6dcdJJtchvsc6wB rD0l7SpyHlVsAESdVxIyB0PPDUCz3USsAOdh0kbFkQ+/xmw04YVAH9eA6DJkK8Ej cL36jZfmuS5v43502YQH -----END CERTIFICATE-----Generated at Mon Mar 2 05:41:24 2026 by rpki-client