$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/B9D00D3C195A11EE83248835C4F9AE02.roa File: B9D00D3C195A11EE83248835C4F9AE02.roa (raw, json) Hash identifier: IKrxy8B0xln2/JXRoNpYRkD2plKtfCNK4wP4MpdyPME= Subject key identifier: 4D:2E:1E:0D:34:67:95:96:B2:3F:64:DD:F8:AF:60:92:5D:CF:F3:60 Certificate issuer: /CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Certificate serial: 0275 Authority key identifier: 02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/B9D00D3C195A11EE83248835C4F9AE02.roa Signing time: Thu 05 Feb 2026 12:21:36 +0000 ROA not before: Thu 05 Feb 2026 12:21:36 +0000 ROA not after: Wed 31 Mar 2027 00:00:00 +0000 asID: 150671 IP address blocks: 103.52.34.0/24 maxlen: 24 103.52.35.0/24 maxlen: 24 2001:df1:ac40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 02:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 629 (0x275) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0848, serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Validity Not Before: Feb 5 12:21:36 2026 GMT Not After : Mar 31 00:00:00 2027 GMT Subject: CN=69848b50-d74d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:02:c5:0d:ed:c7:5a:42:9d:cb:3f:02:58:17: 36:ba:ec:2b:0e:ff:78:ee:cd:a1:50:24:cc:b2:cf: aa:ef:3c:92:39:82:81:52:71:f5:50:a8:96:e2:55: f8:f2:6b:5f:fb:4e:b8:77:a5:25:52:3d:b8:26:c7: a2:df:b8:f7:9b:3a:95:0a:67:da:c7:46:bb:7c:d3: 08:a8:3d:83:de:00:67:06:cf:74:8b:9b:c2:39:34: 48:e7:c1:75:09:1b:67:f9:dc:8f:fd:26:1a:80:ca: 52:71:d8:04:2c:ad:80:09:52:7d:34:13:da:b6:12: 40:32:1d:5a:fb:1f:f9:f1:c7:01:b6:7b:21:fe:23: a8:9a:8f:03:e1:af:d6:ef:38:e5:63:77:0b:d7:a8: 9e:08:4d:c0:27:30:24:63:e5:61:65:75:9f:88:35: 23:be:2b:23:96:69:7f:3e:bb:5e:2c:d8:7e:a1:64: 3b:17:5c:42:a6:3c:9d:fe:60:f6:da:65:81:14:1c: 7d:45:ed:a4:45:6f:6e:73:fc:3c:ac:7f:95:7f:28: c8:85:96:86:77:4c:61:31:c0:9a:67:f2:d7:a4:19: 69:0f:f2:67:fb:bc:21:54:cf:ec:11:2a:5d:a5:24: 5b:17:00:22:0b:54:bd:6e:75:f6:a8:0a:9b:b1:4a: 9f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2E:1E:0D:34:67:95:96:B2:3F:64:DD:F8:AF:60:92:5D:CF:F3:60 X509v3 Authority Key Identifier: keyid:02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/B9D00D3C195A11EE83248835C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.34.0/23 IPv6: 2001:df1:ac40::/48 Signature Algorithm: sha256WithRSAEncryption 00:bb:95:ea:71:62:f3:d5:f0:15:46:ee:30:58:1a:49:f6:eb: 7d:8c:7c:7e:76:54:cf:39:66:18:ea:1a:ac:64:c8:c8:9c:31: 3f:53:0b:88:42:ce:58:b8:cb:29:9e:02:67:16:3f:51:dc:1e: d7:d2:62:7a:1f:6d:14:37:a9:fb:93:a3:3d:e3:3b:09:9a:0b: cb:fe:40:1b:25:71:6c:e7:29:04:a1:c7:c9:c1:9d:13:ca:6f: 5c:0d:de:26:ac:59:1b:e9:3b:11:08:d3:f5:32:b0:25:f8:c1: d2:45:7d:d8:8a:23:79:1f:5e:c5:73:d7:15:c4:72:9b:0e:4c: 34:ae:e5:ff:7a:40:d1:47:71:65:2d:89:1d:34:b0:8a:91:8e: 4a:69:33:e5:61:ef:c2:04:19:fc:21:63:c4:a0:bf:2c:1d:58: fa:cd:ce:70:93:6c:f4:a8:71:56:2f:ec:c1:13:a8:5b:1c:97: 1d:1a:57:74:40:fc:7c:26:b3:8f:fd:93:e8:33:91:13:27:e3: bb:8e:80:52:42:ce:81:50:6c:05:33:7c:b9:93:9c:74:ab:d4: 6b:3e:a1:81:a1:0c:3b:1e:01:48:cf:f8:05:de:ef:1c:10:77: 67:b6:c7:ab:32:45:e1:08:b9:dc:8a:43:7f:02:5c:54:3a:19: c3:9d:72:56 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QTA4NDgxMTAvBgNVBAUTKDAyNDIyOUM4MUFDMzUzNUEyMUQ2MEUyREMzMkE5Qjg4 QkQ2QUQ4MUYwHhcNMjYwMjA1MTIyMTM2WhcNMjcwMzMxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTg0OGI1MC1kNzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQLFDe3HWkKdyz8CWBc2uuwrDv947s2hUCTMss+q7zySOYKBUnH1UKiW4lX4 8mtf+064d6UlUj24Jsei37j3mzqVCmfax0a7fNMIqD2D3gBnBs90i5vCOTRI58F1 CRtn+dyP/SYagMpScdgELK2ACVJ9NBPathJAMh1a+x/58ccBtnsh/iOomo8D4a/W 7zjlY3cL16ieCE3AJzAkY+VhZXWfiDUjvisjlml/PrteLNh+oWQ7F1xCpjyd/mD2 2mWBFBx9Re2kRW9uc/w8rH+VfyjIhZaGd0xhMcCaZ/LXpBlpD/Jn+7whVM/sESpd pSRbFwAiC1S9bnX2qAqbsUqfQwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE0uHg00 Z5WWsj9k3fivYJJdz/NgMB8GA1UdIwQYMBaAFAJCKcgaw1NaIdYOLcMqm4i9atgf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDg0OC82NEQ4QjFERTc3 RTQxMUVEOTdGNTkzNERDNEY5QUUwMi9Ba0lweUJyRFUxb2gxZzR0d3lxYmlMMXEy QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FrSXB5QnJEVTFvaDFnNHR3eXFiaUwxcTJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4NDgvNjREOEIxREU3N0U0MTFFRDk3RjU5MzREQzRGOUFFMDIvQjlEMDBEM0Mx OTVBMTFFRTgzMjQ4ODM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnNCIwDwQCAAIwCQMHACABDfGsQDANBgkqhkiG9w0BAQsF AAOCAQEAALuV6nFi89XwFUbuMFgaSfbrfYx8fnZUzzlmGOoarGTIyJwxP1MLiELO WLjLKZ4CZxY/Udwe19Jieh9tFDep+5OjPeM7CZoLy/5AGyVxbOcpBKHHycGdE8pv XA3eJqxZG+k7EQjT9TKwJfjB0kV92IojeR9exXPXFcRymw5MNK7l/3pA0UdxZS2J HTSwipGOSmkz5WHvwgQZ/CFjxKC/LB1Y+s3OcJNs9KhxVi/swROoWxyXHRpXdED8 fCazj/2T6DOREyfju46AUkLOgVBsBTN8uZOcdKvUaz6hgaEMOx4BSM/4Bd7vHBB3 Z7bHqzJF4Qi53IpDfwJcVDoZw51yVg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:57:07 2026 by rpki-client