$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa File: A0D57302A33D11EBA479491CC4F9AE02.roa (raw, json) Hash identifier: kb9zEE+gQtKtKJqnoxGKbZ4ZB03+JVAlcBPaLyfwBcA= Subject key identifier: ED:96:C7:F4:60:B2:1D:43:3A:44:D6:09:04:88:28:9F:4C:56:BE:FC Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 06A5 Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa Signing time: Sun 01 Mar 2026 08:47:02 +0000 ROA not before: Fri 16 May 2025 23:32:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142066 IP address blocks: 103.166.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: May 16 23:32:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69a3fd06-ddaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6b:9c:55:09:5a:23:79:07:36:b8:4d:25:65: 7b:d1:59:34:ab:7d:83:13:8e:b2:93:36:c5:c5:67: f6:f6:08:cd:38:61:a6:fd:12:9d:2b:f4:d2:d2:55: d0:60:d9:c9:4a:24:49:38:bf:d7:e2:3e:71:5f:c3: 3e:35:8b:01:e2:dd:08:59:1b:5a:2a:2e:02:2d:29: db:42:3d:2e:13:ee:88:2e:b5:a1:89:f5:4d:c3:6f: f3:92:dc:cb:13:20:10:b2:13:17:5b:70:d6:72:cf: 26:51:28:dd:a1:02:f3:28:18:28:53:0f:e9:00:8d: 0a:9a:62:63:f4:d0:02:2a:93:03:cb:b7:bd:36:07: 28:1e:df:f7:b9:73:09:4f:9f:6e:50:a0:2c:cb:94: 5d:f3:16:7f:ef:e5:c4:06:f3:6a:bf:e8:63:c4:1e: 5f:24:97:eb:22:4a:71:61:ca:66:b7:9f:54:80:5f: a0:79:90:db:2c:48:eb:a8:00:87:fc:e6:c9:b7:4f: 18:57:7f:cb:89:fc:33:e8:b6:65:77:01:e1:2a:d8: b6:cd:e7:27:35:a1:83:db:cb:6c:ee:0b:dd:03:7b: c1:db:73:ba:22:73:be:47:63:f5:d2:03:65:4d:b2: c9:08:6e:8b:2d:de:c0:27:c0:24:7d:61:fc:1f:7d: 4d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:96:C7:F4:60:B2:1D:43:3A:44:D6:09:04:88:28:9F:4C:56:BE:FC X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.166.116.0/23 Signature Algorithm: sha256WithRSAEncryption 41:a8:b1:3b:7f:e3:af:aa:93:3f:0d:1d:de:3f:95:c8:c8:87: 69:d0:d9:82:4c:7e:75:a1:89:e4:ec:7d:75:8d:88:87:a5:5d: 4a:70:39:5f:6d:82:9e:1e:f4:42:33:61:79:ed:0a:7c:af:5c: 07:d6:61:07:0c:2b:cd:cb:c4:2b:54:33:da:67:53:13:ae:23: 73:fb:e7:e4:31:19:3d:4d:d5:bc:e5:82:29:de:cf:fe:01:1f: 6f:ee:dd:bd:df:f9:61:0c:03:20:a6:08:1e:4c:84:07:2c:78: 79:6f:48:c7:b8:93:3a:17:42:8a:1f:f8:10:fe:c1:16:4f:3d: 9c:92:70:5f:47:06:c2:76:8b:84:31:39:fb:2f:29:8a:fe:bd: a0:44:67:3e:f2:3e:42:d6:0c:01:86:d8:d1:eb:d4:b7:72:3d: 51:fd:8d:1e:60:49:bf:f4:3c:a9:b4:78:2a:47:97:02:04:74: c1:92:b7:47:cc:81:3c:aa:7f:ca:a6:df:d8:f7:1b:63:26:e7: 88:12:c6:c4:c7:6e:e7:16:44:cc:6b:71:0f:28:74:de:d2:00: c6:2f:50:0a:2a:0e:8a:e4:d0:88:6b:e0:ac:bd:e9:03:d9:93: 61:98:b1:89:cd:f9:1c:00:6f:57:95:c4:bb:f4:f6:91:99:4f: 46:c6:eb:9d -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjUwNTE2MjMzMjQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWEzZmQwNi1kZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WucVQlaI3kHNrhNJWV70Vk0q32DE46ykzbFxWf29gjNOGGm/RKdK/TS0lXQ YNnJSiRJOL/X4j5xX8M+NYsB4t0IWRtaKi4CLSnbQj0uE+6ILrWhifVNw2/zktzL EyAQshMXW3DWcs8mUSjdoQLzKBgoUw/pAI0KmmJj9NACKpMDy7e9NgcoHt/3uXMJ T59uUKAsy5Rd8xZ/7+XEBvNqv+hjxB5fJJfrIkpxYcpmt59UgF+geZDbLEjrqACH /ObJt08YV3/Lifwz6LZldwHhKti2zecnNaGD28ts7gvdA3vB23O6InO+R2P10gNl TbLJCG6LLd7AJ8AkfWH8H31NSwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFO2Wx/Rg sh1DOkTWCQSIKJ9MVr78MB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI3NEQvMUQ3MTNEMDhBMzNDMTFFQkIxMkNFRDFBQzRGOUFFMDIvQTBENTczMDJB MzNEMTFFQkE0Nzk0OTFDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBZ6Z0MA0GCSqGSIb3DQEBCwUAA4IBAQBBqLE7f+OvqpM/DR3eP5XI yIdp0NmCTH51oYnk7H11jYiHpV1KcDlfbYKeHvRCM2F57Qp8r1wH1mEHDCvNy8Qr VDPaZ1MTriNz++fkMRk9TdW85YIp3s/+AR9v7t293/lhDAMgpggeTIQHLHh5b0jH uJM6F0KKH/gQ/sEWTz2cknBfRwbCdouEMTn7LymK/r2gRGc+8j5C1gwBhtjR69S3 cj1R/Y0eYEm/9DyptHgqR5cCBHTBkrdHzIE8qn/Kpt/Y9xtjJueIEsbEx27nFkTM a3EPKHTe0gDGL1AKKg6K5NCIa+CsvekD2ZNhmLGJzfkcAG9XlcS79PaRmU9Gxuud -----END CERTIFICATE-----Generated at Mon Mar 2 10:56:47 2026 by rpki-client