$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa File: CFDF8B8A5B5D11EE967F161DC4F9AE02.roa (raw, json) Hash identifier: vIQ6ijY/P5ugAhg4/kXnIXxgsJTlmnXdecL34fGC5qg= Subject key identifier: 5A:4D:65:86:06:5E:AA:95:1A:3E:8C:FB:20:60:82:FD:DE:65:41:60 Certificate issuer: /CN=A91A0A6C/serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Certificate serial: 0A63 Authority key identifier: A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa Signing time: Sun 01 Mar 2026 14:47:32 +0000 ROA not before: Mon 02 Jun 2025 20:24:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9370 IP address blocks: 103.26.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2659 (0xa63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0A6C, serialNumber=A787A63E49EE8EC6F97511607F1B7C5B0DF1164E Validity Not Before: Jun 2 20:24:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69a45184-df36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:69:01:75:1e:3d:3c:37:f7:a2:93:13:8b:3c: 95:6b:da:69:0b:9e:b2:31:ee:5c:42:27:3e:d5:2b: be:b3:eb:34:3d:be:08:ff:25:ff:cb:5f:a2:e0:88: f0:28:ae:cb:bf:42:cc:fb:22:74:72:c5:cf:24:df: dc:be:85:cd:ba:6a:32:6c:b4:09:cc:29:40:10:e4: 30:a8:1b:fd:91:92:d4:1f:6d:c3:46:41:82:ca:f3: a7:1a:d8:18:15:80:df:ef:18:76:c9:39:a0:a3:4c: 2a:c9:19:ab:71:54:76:4b:8c:0a:e7:30:6d:e3:90: a5:27:c5:c9:a7:4c:30:1f:40:34:76:d6:e1:37:e9: 9b:84:cb:c5:27:22:33:43:f9:11:a8:d1:c4:f1:ca: 41:ad:cd:eb:0c:15:65:b0:c0:82:02:17:33:42:a1: 3f:9f:f0:00:cb:9e:42:29:92:73:5b:1d:3a:da:7b: d0:ac:cb:5c:d1:1a:3e:4e:63:cd:3e:ff:00:d7:19: 90:c8:cd:84:70:00:4d:ec:9e:5c:65:b2:38:0b:ef: 78:fd:0b:dc:e4:73:a1:fa:69:0f:01:f1:80:73:13: 1f:1c:d7:80:7d:e2:4f:e6:4c:a3:41:b5:21:3c:19: 08:b7:dd:49:bb:8a:09:88:b4:98:4a:0c:8c:bb:18: 81:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4D:65:86:06:5E:AA:95:1A:3E:8C:FB:20:60:82:FD:DE:65:41:60 X509v3 Authority Key Identifier: keyid:A7:87:A6:3E:49:EE:8E:C6:F9:75:11:60:7F:1B:7C:5B:0D:F1:16:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/p4emPknujsb5dRFgfxt8Ww3xFk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p4emPknujsb5dRFgfxt8Ww3xFk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0A6C/B916F38882C211EA9A514639C4F9AE02/CFDF8B8A5B5D11EE967F161DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.26.32.0/24 Signature Algorithm: sha256WithRSAEncryption 60:3e:5a:3d:8e:be:13:6c:72:c8:89:fa:06:a3:fc:1e:35:53: 64:4c:17:d8:4f:9e:03:24:96:80:9b:f3:f3:8b:60:4f:c9:be: 39:ba:ad:fe:e4:85:d9:93:f7:1e:fc:f3:d8:62:33:e0:1a:df: 15:e9:6d:b3:13:41:57:b1:10:15:69:ec:27:f2:ae:04:d9:c4: 89:d5:67:6c:45:61:a6:d9:2e:0d:bd:85:49:57:b0:65:a1:aa: fe:a9:c7:78:26:56:89:06:85:9c:00:f1:27:e8:55:46:ef:f1: 38:55:30:1c:fd:a7:55:53:4c:26:24:29:11:f4:2d:18:40:51: f7:1e:fc:1c:21:ea:dd:a2:3d:73:87:ad:f5:e2:d0:d6:7e:2e: ae:62:96:ef:11:1b:a6:3b:48:07:d7:50:44:cd:c0:5f:96:08: 45:31:d4:14:4d:54:71:69:12:10:41:b7:f1:00:91:1c:78:35: 5b:75:01:97:e7:13:ef:dd:11:d6:27:8c:a0:49:a8:e4:36:3e: d9:e2:7d:8a:fa:2f:d6:02:f7:ef:6e:a7:ec:b9:c0:50:5b:a9: b1:12:67:d7:8a:47:69:98:f8:1a:00:4c:d5:8a:29:09:b4:ed: 1f:0c:84:90:01:93:cc:90:f7:c5:9c:e4:a7:67:ea:97:58:ad: 37:c8:af:c4 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICCmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBBNkMxMTAvBgNVBAUTKEE3ODdBNjNFNDlFRThFQzZGOTc1MTE2MDdGMUI3QzVC MERGMTE2NEUwHhcNMjUwNjAyMjAyNDUyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NTE4NC1kZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApGkBdR49PDf3opMTizyVa9ppC56yMe5cQic+1Su+s+s0Pb4I/yX/y1+i4Ijw KK7Lv0LM+yJ0csXPJN/cvoXNumoybLQJzClAEOQwqBv9kZLUH23DRkGCyvOnGtgY FYDf7xh2yTmgo0wqyRmrcVR2S4wK5zBt45ClJ8XJp0wwH0A0dtbhN+mbhMvFJyIz Q/kRqNHE8cpBrc3rDBVlsMCCAhczQqE/n/AAy55CKZJzWx062nvQrMtc0Ro+TmPN Pv8A1xmQyM2EcABN7J5cZbI4C+94/Qvc5HOh+mkPAfGAcxMfHNeAfeJP5kyjQbUh PBkIt91Ju4oJiLSYSgyMuxiBwwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFpNZYYG XqqVGj6M+yBggv3eZUFgMB8GA1UdIwQYMBaAFKeHpj5J7o7G+XURYH8bfFsN8RZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEE2Qy9COTE2RjM4ODgy QzIxMUVBOUE1MTQ2MzlDNEY5QUUwMi9wNGVtUGtudWpzYjVkUkZnZnh0OFd3M3hG azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A0ZW1Qa251anNiNWRSRmdmeHQ4V3czeEZrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBBNkMvQjkxNkYzODg4MkMyMTFFQTlBNTE0NjM5QzRGOUFFMDIvQ0ZERjhCOEE1 QjVEMTFFRTk2N0YxNjFEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQAZxogMA0GCSqGSIb3DQEBCwUAA4IBAQBgPlo9jr4TbHLIifoGo/we NVNkTBfYT54DJJaAm/Pzi2BPyb45uq3+5IXZk/ce/PPYYjPgGt8V6W2zE0FXsRAV aewn8q4E2cSJ1WdsRWGm2S4NvYVJV7Bloar+qcd4JlaJBoWcAPEn6FVG7/E4VTAc /adVU0wmJCkR9C0YQFH3HvwcIerdoj1zh6314tDWfi6uYpbvERumO0gH11BEzcBf lghFMdQUTVRxaRIQQbfxAJEceDVbdQGX5xPv3RHWJ4ygSajkNj7Z4n2K+i/WAvfv bqfsucBQW6mxEmfXikdpmPgaAEzViikJtO0fDISQAZPMkPfFnOSnZ+qXWK03yK/E -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:14 2026 by rpki-client