$ rpki-client -vvf rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa File: CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa (raw, json) Hash identifier: HsF8gy96J2wsoICfYmcwznwixkV1OQ/RoRjC/SmAq8g= Subject key identifier: 5E:6F:83:C5:96:3A:78:43:AD:35:42:62:2B:A3:57:1C:62:32:D4:16 Certificate issuer: /CN=A91637DD/serialNumber=7C131EE0A80B834D48D17D69655A5BC7BE668B6A Certificate serial: 04E2 Authority key identifier: 7C:13:1E:E0:A8:0B:83:4D:48:D1:7D:69:65:5A:5B:C7:BE:66:8B:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa Signing time: Sun 01 Mar 2026 16:08:48 +0000 ROA not before: Sat 31 Jan 2026 23:20:03 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 149295 IP address blocks: 103.177.242.0/23 maxlen: 23 103.177.242.0/24 maxlen: 24 103.177.243.0/24 maxlen: 24 2001:df0:2dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.crl rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 18:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91637DD, serialNumber=7C131EE0A80B834D48D17D69655A5BC7BE668B6A Validity Not Before: Jan 31 23:20:03 2026 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=69a46490-023f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d5:4b:ae:5d:de:46:ef:61:dd:2f:d9:a9:bd: 88:1d:57:90:06:40:ed:5b:42:17:b0:cc:50:9b:44: ed:95:67:7c:dd:a9:13:42:36:d4:a6:ca:9e:f6:b4: 6e:ee:9d:43:94:39:9c:8b:fe:e6:2f:7a:79:65:da: 4f:7c:80:50:9e:63:ef:f4:d4:97:f8:38:c3:d0:8e: 93:a3:2f:45:0f:77:fd:cf:47:a7:1f:d7:56:fd:1c: 70:bd:86:e1:37:90:80:5b:ab:ac:c8:d2:f7:c3:dd: 39:d9:e5:36:4f:2b:85:87:d6:88:6d:95:6f:a5:0b: 85:30:29:3e:c8:e2:11:d4:eb:3f:fe:f5:42:29:f4: f9:85:43:62:96:97:2a:eb:a9:69:56:e5:3a:aa:0c: f8:61:41:64:ed:38:13:aa:e8:47:c0:60:a8:1c:d6: fd:4b:5f:da:bf:c1:ba:87:cf:5b:27:67:24:79:e9: 82:f3:8b:d5:98:1a:b8:68:4b:e5:8a:18:60:49:10: e5:2d:de:a9:63:fd:84:99:8a:b6:62:6d:80:89:59: 0c:04:be:e0:62:00:0b:f8:95:e8:80:b4:03:c4:ca: 35:4a:fd:b8:f4:78:41:8a:82:bc:fb:7c:72:22:c9: 21:f5:15:79:ff:51:0c:53:22:68:2c:3c:b2:77:e9: e5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:6F:83:C5:96:3A:78:43:AD:35:42:62:2B:A3:57:1C:62:32:D4:16 X509v3 Authority Key Identifier: keyid:7C:13:1E:E0:A8:0B:83:4D:48:D1:7D:69:65:5A:5B:C7:BE:66:8B:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/fBMe4KgLg01I0X1pZVpbx75mi2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fBMe4KgLg01I0X1pZVpbx75mi2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91637DD/DE59F6025E7311EC8BE4CC4EC4F9AE02/CA95FB0EA1E611EDABFD7D7FC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.177.242.0/23 IPv6: 2001:df0:2dc0::/48 Signature Algorithm: sha256WithRSAEncryption 3b:cd:18:d8:25:76:eb:bc:bf:60:f7:b3:dd:39:ed:d9:fe:a5: a3:63:06:11:ea:70:7a:55:43:7b:b7:de:d1:7a:9f:74:d8:00: bc:d8:44:25:36:4a:c5:27:93:a5:5f:c2:ee:31:a9:84:de:d6: 1d:ff:3b:b0:a8:ce:79:51:7b:aa:db:e6:67:05:e6:b2:e9:d5: ff:63:fc:95:57:0e:d0:4e:7f:b3:ca:f3:b1:09:43:b9:e6:95: 9a:2f:b5:87:e3:0e:b2:b7:2e:b4:34:f5:8c:11:e4:e5:42:08: 15:c1:21:d4:e1:ab:e3:8d:b8:e4:6f:c8:94:31:68:1d:1d:aa: 59:af:38:0e:7c:11:8a:bc:86:b7:2a:e7:e0:7b:cd:bb:d0:b8: 8a:4a:b6:02:91:c9:99:ee:d2:f1:ad:4e:dd:f5:56:8b:d8:2e: 27:eb:39:46:7f:f3:3b:ca:a7:ac:88:af:62:08:9f:90:ae:81: ed:68:4b:44:b3:70:f9:a9:98:67:44:ed:c8:82:6b:e4:d3:0e: 7c:b6:57:9d:ca:65:8d:e7:e0:d1:01:79:b6:db:e8:4e:c6:46: d7:7d:cd:d0:0f:06:eb:4e:4e:5e:ef:80:39:f9:92:18:c8:62: 2c:e7:5e:cd:d1:cc:19:0e:81:a6:f5:39:26:f5:e2:70:6d:87: f7:42:d5:2c -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM3REQxMTAvBgNVBAUTKDdDMTMxRUUwQTgwQjgzNEQ0OEQxN0Q2OTY1NUE1QkM3 QkU2NjhCNkEwHhcNMjYwMTMxMjMyMDAzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NjQ5MC0wMjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9VLrl3eRu9h3S/Zqb2IHVeQBkDtW0IXsMxQm0TtlWd83akTQjbUpsqe9rRu 7p1DlDmci/7mL3p5ZdpPfIBQnmPv9NSX+DjD0I6Toy9FD3f9z0enH9dW/RxwvYbh N5CAW6usyNL3w9052eU2TyuFh9aIbZVvpQuFMCk+yOIR1Os//vVCKfT5hUNilpcq 66lpVuU6qgz4YUFk7TgTquhHwGCoHNb9S1/av8G6h89bJ2ckeemC84vVmBq4aEvl ihhgSRDlLd6pY/2EmYq2Ym2AiVkMBL7gYgAL+JXogLQDxMo1Sv249HhBioK8+3xy Iskh9RV5/1EMUyJoLDyyd+nl8wIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFF5vg8WW OnhDrTVCYiujVxxiMtQWMB8GA1UdIwQYMBaAFHwTHuCoC4NNSNF9aWVaW8e+Zotq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzdERC9ERTU5RjYwMjVF NzMxMUVDOEJFNENDNEVDNEY5QUUwMi9mQk1lNEtnTGcwMUkwWDFwWlZwYng3NW1p Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZCTWU0S2dMZzAxSTBYMXBaVnBieDc1bWkyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM3REQvREU1OUY2MDI1RTczMTFFQzhCRTRDQzRFQzRGOUFFMDIvQ0E5NUZCMEVB MUU2MTFFREFCRkQ3RDdGQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ7HyMA8EAgACMAkDBwAgAQ3wLcAwDQYJKoZIhvcNAQELBQADggEB ADvNGNglduu8v2D3s9057dn+paNjBhHqcHpVQ3u33tF6n3TYALzYRCU2SsUnk6Vf wu4xqYTe1h3/O7CoznlRe6rb5mcF5rLp1f9j/JVXDtBOf7PK87EJQ7nmlZovtYfj DrK3LrQ09YwR5OVCCBXBIdThq+ONuORvyJQxaB0dqlmvOA58EYq8hrcq5+B7zbvQ uIpKtgKRyZnu0vGtTt31VovYLifrOUZ/8zvKp6yIr2IIn5Cuge1oS0SzcPmpmGdE 7ciCa+TTDny2V53KZY3n4NEBebbb6E7GRtd9zdAPButOTl7vgDn5khjIYiznXs3R zBkOgab1OSb14nBth/dC1Sw= -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:20 2026 by rpki-client