$ rpki-client -vvf rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa File: AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa (raw, json) Hash identifier: Q7KENmdDsJuGfmoppCYs9Ac9pRDOPNUkJM7G9SEV/XE= Subject key identifier: D1:9B:38:6B:CB:FC:8E:B0:C7:5C:9D:BE:B4:FC:91:82:67:90:6D:95 Certificate issuer: /CN=A91642A0/serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Certificate serial: 0D63 Authority key identifier: 02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa Signing time: Sun 01 Mar 2026 12:18:18 +0000 ROA not before: Mon 28 Apr 2025 18:57:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137453 IP address blocks: 103.134.126.0/24 maxlen: 24 103.134.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:37:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91642A0, serialNumber=02AE84F611B7E82FD7D6FF8F452D8725EF489088 Validity Not Before: Apr 28 18:57:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=69a42e8a-2e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e1:8e:5b:23:60:7b:23:92:93:e1:e7:61:7e: 37:af:c5:b6:93:d4:3e:e3:03:0d:f8:16:15:ae:3f: 4f:d0:e8:79:ae:df:be:dd:ec:1d:2d:97:01:97:96: 12:80:22:e5:f8:22:de:3b:8f:12:53:cb:60:dc:25: 18:49:24:50:a2:8a:d6:56:42:f7:44:8d:39:5d:63: e7:c5:de:4b:e2:19:11:6f:02:09:08:95:4a:9c:30: f7:01:a1:69:56:72:24:3f:f3:98:af:cc:14:b8:9e: 5e:c1:e0:9d:59:f8:6e:a4:9f:41:c0:44:d9:3f:f9: 85:ca:52:59:83:c7:94:a9:a6:6e:21:b0:70:12:18: f6:61:d0:3a:9c:7e:3f:0b:11:31:fd:88:1e:65:55: d8:b0:6f:6a:4c:33:7f:18:51:1f:68:8b:8f:ce:e3: b6:f0:12:bb:4c:42:ba:e4:7a:80:9f:77:84:dd:f4: 30:10:0e:00:35:89:d7:73:eb:9d:b9:3b:e2:6d:16: cf:6a:ae:e0:e5:2c:7e:22:44:d9:b7:1e:81:ca:af: 35:59:8f:3c:3b:1a:e1:71:03:3d:db:3d:0b:06:d7: 30:32:01:0c:cf:10:a0:72:19:ff:2a:00:9c:c6:af: e4:1e:98:ba:d8:05:26:56:28:7a:27:dc:fe:ae:36: 27:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9B:38:6B:CB:FC:8E:B0:C7:5C:9D:BE:B4:FC:91:82:67:90:6D:95 X509v3 Authority Key Identifier: keyid:02:AE:84:F6:11:B7:E8:2F:D7:D6:FF:8F:45:2D:87:25:EF:48:90:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/Aq6E9hG36C_X1v-PRS2HJe9IkIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aq6E9hG36C_X1v-PRS2HJe9IkIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91642A0/CA7D1162F67611E990BAA222C4F9AE02/AFB0FFCCB19211EC9EAAD44EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.134.126.0/23 Signature Algorithm: sha256WithRSAEncryption 71:8e:9d:c0:f3:d3:a7:5e:5d:20:4d:50:f3:d6:69:fa:13:0b: 12:29:f2:e9:c1:d1:b6:49:86:5a:a0:19:53:4e:c2:2d:9d:56: ac:27:f6:4f:b1:8f:07:8f:4a:9b:d4:aa:07:10:ad:19:52:bf: 65:4a:cc:dd:00:8b:70:71:cc:de:08:62:b8:f8:56:0f:3f:9f: 4f:f1:b4:62:68:32:b3:88:5c:17:e8:17:d3:00:b2:3a:73:0c: 9a:e6:59:f0:f1:21:87:54:c7:e3:bf:c4:af:24:4a:71:03:c4: b3:3a:32:db:e9:23:56:14:bf:0c:fb:95:1f:85:f8:3b:d6:d9: a5:c0:3a:bc:20:a4:98:c7:65:71:09:ac:85:db:90:0e:7c:19: 75:28:8c:77:4d:b5:e8:dd:21:94:c1:1d:1e:ba:be:ad:9c:9d: 92:c0:2f:08:55:2f:69:2b:83:91:f0:b0:c4:87:9a:07:bd:18: ec:f0:12:7b:6c:38:94:29:52:28:6b:48:84:d7:5e:db:c4:3b: 21:72:3f:dc:19:b8:99:d5:8c:07:81:7f:e9:7d:10:45:bd:aa: 33:ff:da:c9:3d:de:20:8b:97:8c:44:57:82:93:33:5b:51:9f: 96:3d:4a:91:75:ac:3c:44:33:0c:c8:ed:4f:4f:11:59:21:56: 65:65:5a:c4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyQTAxMTAvBgNVBAUTKDAyQUU4NEY2MTFCN0U4MkZEN0Q2RkY4RjQ1MkQ4NzI1 RUY0ODkwODgwHhcNMjUwNDI4MTg1NzQxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmU4YS0yZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+GOWyNgeyOSk+HnYX43r8W2k9Q+4wMN+BYVrj9P0Oh5rt++3ewdLZcBl5YS gCLl+CLeO48SU8tg3CUYSSRQoorWVkL3RI05XWPnxd5L4hkRbwIJCJVKnDD3AaFp VnIkP/OYr8wUuJ5eweCdWfhupJ9BwETZP/mFylJZg8eUqaZuIbBwEhj2YdA6nH4/ CxEx/YgeZVXYsG9qTDN/GFEfaIuPzuO28BK7TEK65HqAn3eE3fQwEA4ANYnXc+ud uTvibRbPaq7g5Sx+IkTZtx6Byq81WY88OxrhcQM92z0LBtcwMgEMzxCgchn/KgCc xq/kHpi62AUmVih6J9z+rjYnBQIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNGbOGvL /I6wx1ydvrT8kYJnkG2VMB8GA1UdIwQYMBaAFAKuhPYRt+gv19b/j0UthyXvSJCI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDJBMC9DQTdEMTE2MkY2 NzYxMUU5OTBCQUEyMjJDNEY5QUUwMi9BcTZFOWhHMzZDX1gxdi1QUlMySEplOUlr SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FxNkU5aEczNkNfWDF2LVBSUzJISmU5SWtJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQyQTAvQ0E3RDExNjJGNjc2MTFFOTkwQkFBMjIyQzRGOUFFMDIvQUZCMEZGQ0NC MTkyMTFFQzlFQUFENDRFQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ4Z+MA0GCSqGSIb3DQEBCwUAA4IBAQBxjp3A89OnXl0gTVDz1mn6 EwsSKfLpwdG2SYZaoBlTTsItnVasJ/ZPsY8Hj0qb1KoHEK0ZUr9lSszdAItwccze CGK4+FYPP59P8bRiaDKziFwX6BfTALI6cwya5lnw8SGHVMfjv8SvJEpxA8SzOjLb 6SNWFL8M+5Ufhfg71tmlwDq8IKSYx2VxCayF25AOfBl1KIx3TbXo3SGUwR0eur6t nJ2SwC8IVS9pK4OR8LDEh5oHvRjs8BJ7bDiUKVIoa0iE117bxDshcj/cGbiZ1YwH gX/pfRBFvaoz/9rJPd4gi5eMRFeCkzNbUZ+WPUqRdaw8RDMMyO1PTxFZIVZlZVrE -----END CERTIFICATE-----Generated at Mon Mar 2 04:06:51 2026 by rpki-client