$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa File: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (raw, json) Hash identifier: BbJgy4+r5xqumD47JYCsm8jlMt7XgJ8HLQRHYGqlUlQ= Subject key identifier: DC:49:11:25:E5:D0:08:06:29:C6:F2:FC:19:78:DA:ED:07:3F:03:36 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 023D Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa Signing time: Mon 02 Mar 2026 02:11:38 +0000 ROA not before: Mon 02 Mar 2026 02:11:37 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136000 IP address blocks: 103.79.104.0/22 maxlen: 22 103.156.156.0/23 maxlen: 23 202.91.44.0/22 maxlen: 22 2400:3740::/32 maxlen: 32 2400:3740:11fe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13, serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Mar 2 02:11:37 2026 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4f1d9-4698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c2:e9:b0:23:43:47:1f:5a:4f:59:e2:2e:50: 25:58:c6:df:85:b0:1a:ff:f8:b2:30:bd:7e:a3:5c: af:4f:55:28:65:3b:f8:3b:bf:5c:3e:a8:b3:a7:cc: 67:6c:63:75:41:61:a9:1b:4e:81:13:da:f7:54:70: ee:a2:6d:4e:ff:25:25:3b:8a:a1:7c:5e:20:7a:0f: 34:a4:42:ef:1c:a0:15:f2:fd:71:f8:39:ca:ed:72: 60:fa:93:7b:e6:7b:e9:a5:c1:d4:56:ea:44:5f:71: 3d:8b:fc:ec:86:d9:10:b9:33:b8:87:91:59:b0:03: 44:3b:22:20:15:5b:82:fc:93:85:24:e8:93:56:f0: ee:5d:50:cd:76:a8:67:84:6e:7f:b1:1e:c7:90:48: 57:db:34:df:d7:a8:e4:0e:28:76:4b:41:3e:54:fa: a8:88:97:77:9c:9a:5c:fa:a5:32:14:6c:64:07:00: 8e:fa:40:17:b0:9c:dc:76:65:68:bb:b2:d7:1e:12: 19:59:07:82:08:11:41:09:ee:57:dd:f9:18:c7:ea: 13:57:5c:60:64:c5:0e:05:d2:35:ed:39:19:ef:50: 6f:7d:6b:02:a5:94:f1:40:e1:5c:0c:27:f9:8f:57: 3d:d1:80:2a:56:a3:b9:98:0f:91:85:2f:bb:a5:2d: 19:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:49:11:25:E5:D0:08:06:29:C6:F2:FC:19:78:DA:ED:07:3F:03:36 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/A8D327E4BBC711ED8DF23C40C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.79.104.0/22 103.156.156.0/23 202.91.44.0/22 IPv6: 2400:3740::/32 Signature Algorithm: sha256WithRSAEncryption c9:36:93:af:6a:2c:92:63:82:31:05:51:3e:c1:b2:f5:67:72: 6c:e7:58:d9:08:45:8a:fd:1a:53:70:3b:d9:58:5c:e1:0f:4d: 43:f6:50:1d:63:16:93:af:0e:1b:3f:4d:64:65:79:6e:4b:dd: 53:5d:17:8e:61:c0:3c:0a:3d:f6:e4:8a:89:38:f7:45:d6:2a: 96:0f:7e:36:52:26:06:dd:33:a5:d1:9c:ed:f6:36:1f:bf:9d: 1a:d2:75:99:cc:17:71:9d:39:ee:fb:5d:b0:c3:08:31:b5:47: e2:ae:16:53:5e:fb:26:a1:4e:46:03:ae:2e:36:41:05:fb:8d: 3b:e3:ed:9c:f9:f7:ce:e1:a5:f5:5a:b5:30:29:c3:84:0f:be: 08:ba:ce:f4:05:05:50:09:d8:4d:f2:48:6e:17:58:11:2b:ec: fd:86:e9:88:68:34:a4:f1:72:19:e4:d8:6d:49:d8:1f:33:0f: a1:c3:a4:49:c3:47:a9:08:8d:d4:1b:e3:58:ec:3e:d4:23:bb: 5a:28:07:b3:e6:44:bc:66:8e:82:86:c0:42:c6:05:51:9b:a7: 68:28:4d:f6:e7:b8:ef:df:f4:b3:b8:3a:67:be:b6:f7:76:72: 76:df:62:6b:7e:6e:08:0d:8c:40:29:9e:4c:e7:55:11:10:07: 8b:b8:60:c0 -----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjYwMzAyMDIxMTM3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0ZjFkOS00Njk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMLpsCNDRx9aT1niLlAlWMbfhbAa//iyML1+o1yvT1UoZTv4O79cPqizp8xn bGN1QWGpG06BE9r3VHDuom1O/yUlO4qhfF4geg80pELvHKAV8v1x+DnK7XJg+pN7 5nvppcHUVupEX3E9i/zshtkQuTO4h5FZsANEOyIgFVuC/JOFJOiTVvDuXVDNdqhn hG5/sR7HkEhX2zTf16jkDih2S0E+VPqoiJd3nJpc+qUyFGxkBwCO+kAXsJzcdmVo u7LXHhIZWQeCCBFBCe5X3fkYx+oTV1xgZMUOBdI17TkZ71BvfWsCpZTxQOFcDCf5 j1c90YAqVqO5mA+RhS+7pS0Z5QIDAQABo4ICezCCAncwHQYDVR0OBBYEFNxJESXl 0AgGKcby/Bl42u0HPwM2MB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRBMTMvQkI2QzlCNTRCOTgwMTFFREEzN0IxQjY1QzRGOUFFMDIvQThEMzI3RTRC QkM3MTFFRDhERjIzQzQwQzRGOUFFMDIucm9hMDoGCCsGAQUFBwEHAQH/BCswKTAY BAIAATASAwQCZ09oAwQBZ5ycAwQCylssMA0EAgACMAcDBQAkADdAMA0GCSqGSIb3 DQEBCwUAA4IBAQDJNpOvaiySY4IxBVE+wbL1Z3Js51jZCEWK/RpTcDvZWFzhD01D 9lAdYxaTrw4bP01kZXluS91TXReOYcA8Cj325IqJOPdF1iqWD342UiYG3TOl0Zzt 9jYfv50a0nWZzBdxnTnu+12wwwgxtUfirhZTXvsmoU5GA64uNkEF+4074+2c+ffO 4aX1WrUwKcOED74Ius70BQVQCdhN8khuF1gRK+z9humIaDSk8XIZ5NhtSdgfMw+h w6RJw0epCI3UG+NY7D7UI7taKAez5kS8Zo6ChsBCxgVRm6doKE3257jv3/SzuDpn vrb3dnJ232Jrfm4IDYxAKZ5M51UREAeLuGDA -----END CERTIFICATE-----Generated at Mon Mar 2 15:50:38 2026 by rpki-client