$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa File: AF0AC0A63D0A11EB9F59D648C4F9AE02.roa (raw, json) Hash identifier: KdzxhfaL6N8OpKtTXar6kXEIGG1BCxW71mfqiWDRui8= Subject key identifier: 44:75:96:2E:30:EF:F7:F5:DE:76:A4:8D:AA:93:B6:ED:8E:42:1A:E0 Certificate issuer: /CN=A91A9B22/serialNumber=461C728E2D563F0E092459BAA6BCE4B9D6C18BB8 Certificate serial: 0853 Authority key identifier: 46:1C:72:8E:2D:56:3F:0E:09:24:59:BA:A6:BC:E4:B9:D6:C1:8B:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa Signing time: Sun 01 Mar 2026 12:23:00 +0000 ROA not before: Tue 04 Nov 2025 21:10:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141202 IP address blocks: 103.156.106.0/23 maxlen: 27 2406:8540::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.crl rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 00:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2131 (0x853) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B22, serialNumber=461C728E2D563F0E092459BAA6BCE4B9D6C18BB8 Validity Not Before: Nov 4 21:10:44 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a42fa4-8519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:04:12:55:e0:94:bd:21:2c:11:cd:54:fa: e6:67:19:40:a5:5f:e4:2d:74:6b:bc:94:cd:6d:48: f2:b9:7d:9a:39:3c:26:6f:58:8c:17:93:a5:e4:c0: 7e:86:83:8d:7d:6d:43:aa:33:71:48:f5:d1:7b:46: d8:30:49:f3:94:c7:14:8e:ca:cc:09:5e:e3:96:4b: 16:81:0c:b0:93:9e:90:2f:65:f9:3d:85:d7:0e:1a: d1:ef:8b:7c:8a:1e:87:ef:70:e9:22:ab:72:3d:f8: d3:89:35:8a:1a:81:63:bd:a9:e1:68:90:e1:da:44: 67:4b:48:de:ce:e2:61:1f:48:b3:af:93:4a:75:1e: 1a:7a:94:0f:bc:4b:cb:68:0b:2f:c2:6d:8f:dc:84: 66:75:2c:b9:48:c5:be:c3:fa:be:08:5f:a8:90:92: 48:2c:7f:5f:dd:fa:7d:fa:26:64:92:4e:2b:ae:70: bb:ac:a6:38:f5:09:dc:02:4e:80:79:3f:4d:b3:84: f5:d7:a1:de:c2:8e:9c:bc:16:c3:c9:0a:44:db:aa: 3f:03:ec:1e:46:93:cc:86:9d:53:7b:d9:b5:17:bf: 0e:72:7e:1a:49:e0:1c:50:c3:7c:6a:8a:eb:db:e3: 98:c1:6a:97:f3:2c:5d:89:50:e6:2a:cb:63:d3:47: 6c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:75:96:2E:30:EF:F7:F5:DE:76:A4:8D:AA:93:B6:ED:8E:42:1A:E0 X509v3 Authority Key Identifier: keyid:46:1C:72:8E:2D:56:3F:0E:09:24:59:BA:A6:BC:E4:B9:D6:C1:8B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.156.106.0/23 IPv6: 2406:8540::/40 Signature Algorithm: sha256WithRSAEncryption 6c:2e:9d:de:0d:f2:41:d3:48:40:46:3c:ab:dc:82:e4:9a:93: 09:57:c3:f1:25:06:56:d2:36:ee:b8:28:58:43:42:2b:e7:bf: 28:0e:cc:de:a8:a5:1a:50:c0:e2:c8:58:ca:33:de:11:21:28: 12:cc:f1:f8:b7:0f:36:fb:e6:db:f9:07:6a:3a:a2:3d:c0:c4: f9:2b:4c:29:2f:03:51:2b:4b:87:f6:66:68:b1:c9:1e:1f:34: 36:48:42:52:b7:18:f9:1d:6f:ad:e5:ca:74:99:3f:0b:2b:f4: b7:4d:6a:a3:43:fe:13:af:91:76:52:7d:31:96:9f:81:9c:58: 6b:ba:84:d8:cc:69:8b:1d:ee:8c:61:7a:f1:36:a5:ca:22:01: 08:08:c8:74:d8:1c:52:dd:dc:1a:80:c5:ca:91:bc:f0:15:3e: 05:37:06:ab:1e:2a:77:db:84:7e:cf:c5:e0:47:0e:c3:35:fa: 61:94:4f:11:44:00:37:ee:d0:93:6a:a7:cd:c6:cb:6c:74:cd: 8f:5d:50:cc:9a:0f:88:d9:6b:cc:fc:65:c1:15:1a:6f:e0:83: cb:d4:e9:d9:80:f4:8a:14:9b:b7:26:96:c2:f0:83:d7:fd:bd: 9a:28:73:95:7f:a3:1b:0f:5f:0b:c2:57:4a:a6:b9:c1:28:82: 0a:02:7e:24 -----BEGIN CERTIFICATE----- MIIFTDCCBDSgAwIBAgICCFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMjIxMTAvBgNVBAUTKDQ2MUM3MjhFMkQ1NjNGMEUwOTI0NTlCQUE2QkNFNEI5 RDZDMThCQjgwHhcNMjUxMTA0MjExMDQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MmZhNC04NTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTYEElXglL0hLBHNVPrmZxlApV/kLXRrvJTNbUjyuX2aOTwmb1iMF5Ol5MB+ hoONfW1DqjNxSPXRe0bYMEnzlMcUjsrMCV7jlksWgQywk56QL2X5PYXXDhrR74t8 ih6H73DpIqtyPfjTiTWKGoFjvanhaJDh2kRnS0jezuJhH0izr5NKdR4aepQPvEvL aAsvwm2P3IRmdSy5SMW+w/q+CF+okJJILH9f3fp9+iZkkk4rrnC7rKY49QncAk6A eT9Ns4T116Hewo6cvBbDyQpE26o/A+weRpPMhp1Te9m1F78Ocn4aSeAcUMN8aorr 2+OYwWqX8yxdiVDmKstj00dsSwIDAQABo4ICcDCCAmwwHQYDVR0OBBYEFER1li4w 7/f13nakjaqTtu2OQhrgMB8GA1UdIwQYMBaAFEYcco4tVj8OCSRZuqa85LnWwYu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIyMi9ENzVGOTg1Q0ZD ODYxMUVBQkU4RjYyMkRDNEY5QUUwMi9SaHh5amkxV1B3NEpKRm02cHJ6a3VkYkJp N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JoeHlqaTFXUHc0SkpGbTZwcnprdWRiQmk3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCMjIvRDc1Rjk4NUNGQzg2MTFFQUJFOEY2MjJEQzRGOUFFMDIvQUYwQUMwQTYz RDBBMTFFQjlGNTlENjQ4QzRGOUFFMDIucm9hMC8GCCsGAQUFBwEHAQH/BCAwHjAM BAIAATAGAwQBZ5xqMA4EAgACMAgDBgAkBoVAADANBgkqhkiG9w0BAQsFAAOCAQEA bC6d3g3yQdNIQEY8q9yC5JqTCVfD8SUGVtI27rgoWENCK+e/KA7M3qilGlDA4shY yjPeESEoEszx+LcPNvvm2/kHajqiPcDE+StMKS8DUStLh/ZmaLHJHh80NkhCUrcY +R1vreXKdJk/Cyv0t01qo0P+E6+RdlJ9MZafgZxYa7qE2Mxpix3ujGF68TalyiIB CAjIdNgcUt3cGoDFypG88BU+BTcGqx4qd9uEfs/F4EcOwzX6YZRPEUQAN+7Qk2qn zcbLbHTNj11QzJoPiNlrzPxlwRUab+CDy9Tp2YD0ihSbtyaWwvCD1/29mihzlX+j Gw9fC8JXSqa5wSiCCgJ+JA== -----END CERTIFICATE-----Generated at Mon Mar 2 09:14:31 2026 by rpki-client