$ rpki-client -vvf rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/2C4CD10078C011EE90D36F13C4F9AE02.roa File: 2C4CD10078C011EE90D36F13C4F9AE02.roa (raw, json) Hash identifier: /FvIDYbl/mVf08+fKbfi2snHOASjdNbVb4Yy2Ni1NGg= Subject key identifier: 0A:F2:32:B5:A0:5B:83:14:84:80:9D:4E:C1:B1:93:14:12:46:06:86 Certificate issuer: /CN=A91925D2/serialNumber=34517CC29F74169FD736A2C240619F8B330FDD9D Certificate serial: 01C1 Authority key identifier: 34:51:7C:C2:9F:74:16:9F:D7:36:A2:C2:40:61:9F:8B:33:0F:DD:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NFF8wp90Fp_XNqLCQGGfizMP3Z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/2C4CD10078C011EE90D36F13C4F9AE02.roa Signing time: Sun 01 Mar 2026 15:09:29 +0000 ROA not before: Sun 11 Jan 2026 03:22:58 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151967 IP address blocks: 103.65.138.0/23 maxlen: 24 2001:df3:8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/NFF8wp90Fp_XNqLCQGGfizMP3Z0.crl rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/NFF8wp90Fp_XNqLCQGGfizMP3Z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NFF8wp90Fp_XNqLCQGGfizMP3Z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91925D2, serialNumber=34517CC29F74169FD736A2C240619F8B330FDD9D Validity Not Before: Jan 11 03:22:58 2026 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69a456a9-0e46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:35:83:b2:93:70:c6:85:45:4e:a3:b1:c2: 18:02:87:6e:4e:e9:27:ac:2a:6c:21:9d:d2:dc:37: 87:36:ef:f1:d9:ec:91:cf:4d:57:70:e9:0a:a4:83: 8e:21:ae:78:61:15:5c:89:0e:a3:0f:5d:bb:95:b3: 32:7d:64:62:38:e7:5e:dc:b7:9a:ed:96:13:27:01: ca:ff:2a:3a:0b:60:72:60:3c:c0:49:d5:b8:0a:6e: 88:21:79:6a:22:3e:f4:46:bc:4b:da:8b:94:26:18: d4:45:83:5a:40:49:16:91:60:dc:ca:bb:2f:59:66: 68:2d:00:d2:c6:07:00:70:39:c2:16:c7:c5:fa:a1: ae:e2:39:0a:1f:ff:02:85:00:45:e9:3e:3b:de:e4: 27:71:f5:b7:75:91:f4:70:2c:10:9f:70:54:9b:ae: a9:28:33:41:1b:a7:45:b0:cf:1f:b6:72:91:58:40: e7:58:23:52:1a:fc:8d:46:bc:2e:01:ae:24:13:3c: b1:b5:85:2a:38:fd:10:ba:a4:49:e8:e2:b8:7a:08: 47:f7:64:61:70:8c:eb:b6:88:b4:9c:45:12:c2:b9: 66:4f:d6:5f:bd:e2:37:8c:67:d3:a1:78:ee:b0:a3: c7:92:67:e9:3b:fb:ef:13:03:9a:9d:aa:7e:62:75: 3d:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:F2:32:B5:A0:5B:83:14:84:80:9D:4E:C1:B1:93:14:12:46:06:86 X509v3 Authority Key Identifier: keyid:34:51:7C:C2:9F:74:16:9F:D7:36:A2:C2:40:61:9F:8B:33:0F:DD:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/NFF8wp90Fp_XNqLCQGGfizMP3Z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NFF8wp90Fp_XNqLCQGGfizMP3Z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/2C4CD10078C011EE90D36F13C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.65.138.0/23 IPv6: 2001:df3:8c0::/48 Signature Algorithm: sha256WithRSAEncryption 2f:49:2a:1d:43:d3:63:94:ed:15:fc:9d:f3:95:27:3a:6c:82: 57:61:5e:8e:f8:5b:64:6d:15:a0:12:34:a6:f9:07:bf:56:8e: 4e:75:54:63:8e:80:05:f4:bd:3f:99:f8:aa:6f:af:b1:62:9c: 91:d1:96:07:f5:f8:1b:cd:bb:25:e5:65:3c:f9:43:cc:47:d3: 47:87:e3:86:28:bc:bd:5d:55:24:a2:87:9a:e4:eb:79:34:e2: 29:0a:81:14:db:47:50:03:64:c8:23:ed:81:b3:83:1e:d6:37: 46:bf:ca:f7:16:e8:90:e1:25:ee:b9:46:f5:23:0a:01:eb:91: d8:dd:ea:1e:55:fb:04:c9:83:c2:8f:f8:5c:5a:01:46:4c:a4: a9:52:2d:f6:74:6f:29:57:c8:19:d9:51:99:39:98:23:ab:22: a5:60:d3:55:f2:99:26:ae:c0:c4:2f:64:1f:ca:37:07:f3:5e: 27:9f:42:3f:6e:12:56:e4:9e:35:8b:89:b5:10:31:73:53:46: ad:0f:0d:13:d0:ec:0f:02:52:30:a9:66:d7:f5:37:51:fb:b8: 4d:e8:ea:fe:a8:56:83:78:04:30:ee:43:a2:f2:c5:73:14:66: 08:bc:3e:eb:d4:f0:48:fd:6a:88:2c:0e:3e:69:15:f5:6f:82: 8c:f2:1d:cf -----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTI1RDIxMTAvBgNVBAUTKDM0NTE3Q0MyOUY3NDE2OUZENzM2QTJDMjQwNjE5RjhC MzMwRkREOUQwHhcNMjYwMTExMDMyMjU4WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTZhOS0wZTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJw1g7KTcMaFRU6jscIYAoduTuknrCpsIZ3S3DeHNu/x2eyRz01XcOkKpIOO Ia54YRVciQ6jD127lbMyfWRiOOde3Lea7ZYTJwHK/yo6C2ByYDzASdW4Cm6IIXlq Ij70RrxL2ouUJhjURYNaQEkWkWDcyrsvWWZoLQDSxgcAcDnCFsfF+qGu4jkKH/8C hQBF6T473uQncfW3dZH0cCwQn3BUm66pKDNBG6dFsM8ftnKRWEDnWCNSGvyNRrwu Aa4kEzyxtYUqOP0QuqRJ6OK4eghH92RhcIzrtoi0nEUSwrlmT9ZfveI3jGfToXju sKPHkmfpO/vvEwOanap+YnU95QIDAQABo4ICcTCCAm0wHQYDVR0OBBYEFAryMrWg W4MUhICdTsGxkxQSRgaGMB8GA1UdIwQYMBaAFDRRfMKfdBaf1zaiwkBhn4szD92d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjVEMi82REY2MDJEMDc4 QkYxMUVFOTNGRkI3NjRDNEY5QUUwMi9ORkY4d3A5MEZwX1hOcUxDUUdHZml6TVAz WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05GRjh3cDkwRnBfWE5xTENRR0dmaXpNUDNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTI1RDIvNkRGNjAyRDA3OEJGMTFFRTkzRkZCNzY0QzRGOUFFMDIvMkM0Q0QxMDA3 OEMwMTFFRTkwRDM2RjEzQzRGOUFFMDIucm9hMDAGCCsGAQUFBwEHAQH/BCEwHzAM BAIAATAGAwQBZ0GKMA8EAgACMAkDBwAgAQ3zCMAwDQYJKoZIhvcNAQELBQADggEB AC9JKh1D02OU7RX8nfOVJzpsgldhXo74W2RtFaASNKb5B79Wjk51VGOOgAX0vT+Z +Kpvr7FinJHRlgf1+BvNuyXlZTz5Q8xH00eH44YovL1dVSSih5rk63k04ikKgRTb R1ADZMgj7YGzgx7WN0a/yvcW6JDhJe65RvUjCgHrkdjd6h5V+wTJg8KP+FxaAUZM pKlSLfZ0bylXyBnZUZk5mCOrIqVg01XymSauwMQvZB/KNwfzXiefQj9uElbknjWL ibUQMXNTRq0PDRPQ7A8CUjCpZtf1N1H7uE3o6v6oVoN4BDDuQ6LyxXMUZgi8PuvU 8Ej9aogsDj5pFfVvgozyHc8= -----END CERTIFICATE-----Generated at Mon Mar 2 15:48:07 2026 by rpki-client