$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/2455276E39B311EEA6DFE66BC4F9AE02.roa File: 2455276E39B311EEA6DFE66BC4F9AE02.roa (raw, json) Hash identifier: Ot9ybUKOEhuNzPb2fA0AHKITpD0tgf/ehRwyWkuwPQQ= Subject key identifier: FA:41:75:D4:EF:97:C0:4E:E7:B7:CD:03:ED:4E:7C:08:4C:65:7E:3E Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 027F Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/2455276E39B311EEA6DFE66BC4F9AE02.roa Signing time: Sun 01 Mar 2026 10:56:49 +0000 ROA not before: Sat 29 Nov 2025 00:27:31 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150387 IP address blocks: 103.26.238.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 639 (0x27f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7, serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: Nov 29 00:27:31 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a41b71-364b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:64:0a:5c:66:fa:ad:73:57:84:05:b7:dc:ec: 3f:31:79:32:ae:4d:48:d9:8d:42:6d:c9:12:e0:7a: 07:31:89:57:e6:08:85:c1:2b:2a:0f:b8:75:ce:3f: ce:8e:eb:3c:af:fe:e8:13:0f:10:64:96:96:6b:8e: bd:da:a8:18:9b:74:3f:0d:62:5a:62:e0:42:a3:45: 4a:65:d6:e8:28:a7:a0:2a:09:18:c8:ee:85:5c:4c: 5d:fa:df:89:9d:ac:c8:6c:ae:4c:55:a4:3e:12:70: 90:60:e0:02:ba:5a:c9:6b:28:8c:ea:78:4e:4f:01: 93:d8:aa:73:2e:04:78:bf:a5:8d:4b:cd:f1:c0:db: c7:ac:4a:5b:bd:2c:3b:cd:a1:97:ea:fa:38:d4:0e: 7c:12:93:2e:c7:c6:a1:e4:a2:36:e1:36:d2:58:52: a4:d2:b9:48:7f:ac:ab:ad:b4:af:bf:0c:89:77:1b: e2:42:4c:82:91:2f:3c:17:9d:31:91:4f:46:9f:9d: 9d:9e:d7:0e:f2:a9:cd:a2:05:a1:13:64:dd:78:87: 13:2d:2b:5c:18:cb:91:fe:2c:4c:dd:ee:20:63:7c: 14:6d:36:03:15:9a:54:f1:2d:d1:64:07:f4:fd:8a: 01:61:a4:1c:9b:99:83:1f:73:34:83:38:3d:31:f7: 08:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:41:75:D4:EF:97:C0:4E:E7:B7:CD:03:ED:4E:7C:08:4C:65:7E:3E X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/2455276E39B311EEA6DFE66BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.26.238.0/23 Signature Algorithm: sha256WithRSAEncryption b8:b8:21:ef:6f:d9:2f:2d:e8:5c:f1:7a:f5:2d:a4:d0:36:38: 2e:e1:7f:82:fe:21:bf:bd:ce:6b:32:4c:ec:1f:7c:96:24:0e: bc:99:ab:9d:0a:85:63:90:2b:33:0b:e2:9a:53:e2:24:84:be: 5b:eb:a2:e6:5d:42:67:59:eb:ed:08:8f:02:08:b0:de:ad:ba: c5:33:f5:a1:dc:fd:22:36:55:2f:41:db:8d:1e:eb:e5:d9:2e: a3:69:3e:87:79:e7:c9:af:fa:4c:05:cd:13:4f:5e:39:8a:13: 44:93:c6:d0:1e:ee:18:2c:2f:f1:dc:50:38:03:03:b3:81:f3: 4b:24:25:a2:95:a5:fd:9b:28:a7:3e:6c:10:16:25:f6:66:4c: be:a7:9f:f6:4d:08:84:66:91:ab:2a:c4:16:0d:ba:74:2e:f1: 46:b9:ca:e8:09:07:48:d5:e5:be:db:04:a2:74:84:d0:04:bc: 30:da:1b:52:d4:91:97:b2:30:72:6a:d8:4d:73:75:74:cc:8c: cd:1c:9d:8f:34:4a:e0:2f:71:43:89:07:5d:4e:2b:a1:2e:49: 47:ab:dc:e1:fc:05:74:be:74:a4:e8:3d:4e:1a:76:83:28:d4: 90:db:11:18:8a:70:db:ee:c6:ff:17:da:e7:67:67:90:98:18: 0c:bf:6d:a8 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjUxMTI5MDAyNzMxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MWI3MS0zNjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2QKXGb6rXNXhAW33Ow/MXkyrk1I2Y1CbckS4HoHMYlX5giFwSsqD7h1zj/O jus8r/7oEw8QZJaWa4692qgYm3Q/DWJaYuBCo0VKZdboKKegKgkYyO6FXExd+t+J nazIbK5MVaQ+EnCQYOACulrJayiM6nhOTwGT2KpzLgR4v6WNS83xwNvHrEpbvSw7 zaGX6vo41A58EpMux8ah5KI24TbSWFKk0rlIf6yrrbSvvwyJdxviQkyCkS88F50x kU9Gn52dntcO8qnNogWhE2TdeIcTLStcGMuR/ixM3e4gY3wUbTYDFZpU8S3RZAf0 /YoBYaQcm5mDH3M0gzg9MfcI1QIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFPpBddTv l8BO57fNA+1OfAhMZX4+MB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5QjcvQjFFNTRBQjg1NkEyMTFFREI0QTFCMjI1QzRGOUFFMDIvMjQ1NTI3NkUz OUIzMTFFRUE2REZFNjZCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZxruMA0GCSqGSIb3DQEBCwUAA4IBAQC4uCHvb9kvLehc8Xr1LaTQ Njgu4X+C/iG/vc5rMkzsH3yWJA68maudCoVjkCszC+KaU+IkhL5b66LmXUJnWevt CI8CCLDerbrFM/Wh3P0iNlUvQduNHuvl2S6jaT6HeefJr/pMBc0TT145ihNEk8bQ Hu4YLC/x3FA4AwOzgfNLJCWilaX9myinPmwQFiX2Zky+p5/2TQiEZpGrKsQWDbp0 LvFGucroCQdI1eW+2wSidITQBLww2htS1JGXsjByathNc3V0zIzNHJ2PNErgL3FD iQddTiuhLklHq9zh/AV0vnSk6D1OGnaDKNSQ2xEYinDb7sb/F9rnZ2eQmBgMv22o -----END CERTIFICATE-----Generated at Mon Mar 2 06:21:03 2026 by rpki-client